public function validateTokenOwnership($token, $timestamp, $session_token = '') { $required_token = $this->generateActionToken($timestamp, $session_token); return _elgg_services()->crypto->areEqual($token, $required_token); }