SessionCsrfProvider deprecated
SessionCsrfProvider deprecated
class SessionCsrfProvider extends DefaultCsrfProvider
deprecated
This provider uses a Symfony Session object to retrieve the user's session ID.
Methods
__construct(Session $session, string $secret) Initializes the provider with a Session object and a secret value. | ||
string | generateCsrfToken(string $intention) Generates a CSRF token for a page of your application. | from DefaultCsrfProvider |
bool | isCsrfTokenValid(string $intention, string $token) Validates a CSRF token. | from DefaultCsrfProvider |
Details
__construct(Session $session, string $secret)
Initializes the provider with a Session object and a secret value.
A recommended value for the secret is a generated value with at least 32 characters and mixed letters, digits and special characters.
string generateCsrfToken(string $intention)
Generates a CSRF token for a page of your application.
bool isCsrfTokenValid(string $intention, string $token)
Validates a CSRF token.
© 2004–2016 Fabien Potencier
Licensed under the MIT License.
http://api.symfony.com/3.1/Symfony/Component/Form/Extension/Csrf/CsrfProvider/SessionCsrfProvider.html