What is CSRF and how you can enable CSRF in CodeIgniter?

1.	What is CSRF and how you can enable CSRF in CodeIgniter?
Answer» In codeIgniter CSRF token is a random generated value that CHANGES with each HTTP request SENT by webform. When the form is submitted by user then WEBSITE CHECKS this submitted CSRF token equals or not the saved in the session. We can enable CSRF protection from config.php and UPDATE the following values $config['csrf_protection'] = TRUE; $config['csrf_token_name'] = 'csrf_test_name'; //The token name $config['csrf_cookie_name'] = 'csrf_cookie_name'; //The cookie name $config['csrf_expire'] = 7200; // It will expire after this given time.

Answer»

In codeIgniter CSRF token is a random generated value that CHANGES with each HTTP request SENT by webform. When the form is submitted by user then WEBSITE CHECKS this submitted CSRF token equals or not the saved in the session.

We can enable CSRF protection from config.php and UPDATE the following values

$config['csrf_protection'] = TRUE;
$config['csrf_token_name'] = 'csrf_test_name'; //The token name
$config['csrf_cookie_name'] = 'csrf_cookie_name'; //The cookie name
$config['csrf_expire'] = 7200; // It will expire after this given time.

Discussion

No Comment Found

Related InterviewSolutions

__PHP_Incomplete_Class when do we get this? How to solve this problem?
How to expose private members when JSON encoding an object?
How can you access class members as array indexes?
How to pass out of scope variables to a callback function?
What are promises?
What are generators?
What is a resource? Which functions return/create resource?
Does PHP support event loop? If yes give some example.
What is OPcache?
How does the method overriding work with Traits?