public function csrf_validate(&$data)
{
$session_token = Session::token();
if (is_array($data) and $this->session_id()) {
foreach ($data as $k => $v) {
if ($k == 'token' or $k == '_token') {
if ($session_token === $v) {
unset($data[$k]);
return true;
}
}
}
}
}