Development

- Ensure that request-method is always lowercase. - Fixed spaces instead of tabs to comply with PSR-2.
2026-06-17 00:37:52 +00:00 · 2016-11-25 12:51:45 +01:00
parent 2dd2d95af5
commit 1c515119b4
24 changed files with 3052 additions and 3066 deletions
@@ -3,66 +3,69 @@ namespace Pecee;

 class CsrfToken
 {
-	const CSRF_KEY = 'XSRF-TOKEN';
+    const CSRF_KEY = 'XSRF-TOKEN';

-	protected $token;
+    protected $token;

-	/**
-	 * Generate random identifier for CSRF token
-	 *
-	 * @return string
-	 */
-	public static function generateToken()
-	{
-		if (function_exists('mcrypt_create_iv')) {
-			return bin2hex(mcrypt_create_iv(32, MCRYPT_DEV_URANDOM));
-		}
-		return bin2hex(openssl_random_pseudo_bytes(32));
-	}
+    /**
+     * Generate random identifier for CSRF token
+     *
+     * @return string
+     */
+    public static function generateToken()
+    {
+        if (function_exists('mcrypt_create_iv')) {
+            return bin2hex(mcrypt_create_iv(32, MCRYPT_DEV_URANDOM));
+        }

-	/**
-	 * Validate valid CSRF token
-	 *
-	 * @param string $token
-	 * @return bool
-	 */
-	public function validate($token)
-	{
-		if ($token !== null && $this->getToken() !== null) {
-			return hash_equals($token, $this->getToken());
-		}
-		return false;
-	}
+        return bin2hex(openssl_random_pseudo_bytes(32));
+    }

-	/**
-	 * Set csrf token cookie
-	 *
-	 * @param $token
-	 */
-	public function setToken($token)
-	{
-		setcookie(static::CSRF_KEY, $token, time() + 60 * 120, '/');
-	}
+    /**
+     * Validate valid CSRF token
+     *
+     * @param string $token
+     * @return bool
+     */
+    public function validate($token)
+    {
+        if ($token !== null && $this->getToken() !== null) {
+            return hash_equals($token, $this->getToken());
+        }

-	/**
-	 * Get csrf token
-	 * @return string|null
-	 */
-	public function getToken()
-	{
-		if ($this->hasToken()) {
-			return $_COOKIE[static::CSRF_KEY];
-		}
-		return null;
-	}
+        return false;
+    }

-	/**
-	 * Returns whether the csrf token has been defined
-	 * @return bool
-	 */
-	public function hasToken()
-	{
-		return isset($_COOKIE[static::CSRF_KEY]);
-	}
+    /**
+     * Set csrf token cookie
+     *
+     * @param $token
+     */
+    public function setToken($token)
+    {
+        setcookie(static::CSRF_KEY, $token, time() + 60 * 120, '/');
+    }
+
+    /**
+     * Get csrf token
+     * @return string|null
+     */
+    public function getToken()
+    {
+        if ($this->hasToken()) {
+            return $_COOKIE[static::CSRF_KEY];
+        }
+
+        return null;
+    }
+
+    /**
+     * Returns whether the csrf token has been defined
+     * @return bool
+     */
+    public function hasToken()
+    {
+        return isset($_COOKIE[static::CSRF_KEY]);
+    }

 }