public static function refreshToken()
{
$token = self::generateAuthToken();
if (!isset($_SESSION[self::$config['CSRFP_TOKEN']]) || !is_array($_SESSION[self::$config['CSRFP_TOKEN']])) {
$_SESSION[self::$config['CSRFP_TOKEN']] = array();
}
//set token to session for server side validation
array_push($_SESSION[self::$config['CSRFP_TOKEN']], $token);
//set token to cookie for client side processing
setcookie(self::$config['CSRFP_TOKEN'], $token, time() + self::$cookieExpiryTime);
}