프로퍼티 | 타입 | 설명 | |
---|---|---|---|
$config | * Variable: $config config file for CSRFProtector | ||
$cookieExpiryTime | * Variable: $cookieExpiryTime expiry time for cookie | ||
$requiredConfigurations | * Variable: $requiredConfigurations Contains list of those parameters that are required to be there in config file for csrfp to work |
프로퍼티 | 타입 | 설명 | |
---|---|---|---|
$requestType | * Variable: $requestType Varaible to store weather request type is post or get |
메소드 | 설명 | |
---|---|---|
authorizePost ( ) | * Function: authorizePost function to authorise incoming post requests | |
generateAuthToken ( ) | * Function: generateAuthToken function to generate random hash of length as given in parameter max length = 128 | |
init ( $length = null, $action = null ) | * Function: init | |
isURLallowed ( ) | * Function: isURLallowed Function to check if a url mataches for any urls Listed in config file | |
ob_handler ( $buffer, $flags ) | * Function: ob_handler Rewrites | |
refreshToken ( ) | * Function: refreshToken Function to set auth cookie |
메소드 | 설명 | |
---|---|---|
failedValidationAction ( ) | * Function: failedValidationAction function to be called in case of failed validation performs logging and take appropriate action | |
getCurrentUrl ( ) | * Function: getCurrentUrl Function to return current url of executing page | |
isValidToken ( $token ) | * Function: isValidToken function to check the validity of token in session array Function also clears all tokens older than latest one | |
logCSRFattack ( ) | * Function: logCSRFattack Functio to log CSRF Attack |
public static authorizePost ( ) |
public static generateAuthToken ( ) |
public static init ( $length = null, $action = null ) |
public static isURLallowed ( ) |
public static ob_handler ( $buffer, $flags ) |
public static $cookieExpiryTime |
protected static $requestType |