Merge pull request #312 from skipperbent/v3

V3
This commit is contained in:
Simon Sessingø
2017-11-10 13:03:02 +01:00
committed by GitHub
2 changed files with 21 additions and 7 deletions
+16 -5
View File
@@ -1,4 +1,5 @@
<?php <?php
namespace Pecee; namespace Pecee;
class CsrfToken class CsrfToken
@@ -48,24 +49,34 @@ class CsrfToken
* Set csrf token cookie * Set csrf token cookie
* Overwrite this method to save the token to another storage like session etc. * Overwrite this method to save the token to another storage like session etc.
* *
* @param $token * @param string $token
*/ */
public function setToken($token) public function setToken($token)
{ {
$this->token = $token;
setcookie(static::CSRF_KEY, $token, time() + 60 * 120, '/'); setcookie(static::CSRF_KEY, $token, time() + 60 * 120, '/');
} }
/** /**
* Get csrf token * Get csrf token
* @param string|null $defaultValue
* @return string|null * @return string|null
*/ */
public function getToken() public function getToken($defaultValue = null)
{ {
if ($this->hasToken() === true) { $this->token = ($this->hasToken() === true) ? $_COOKIE[static::CSRF_KEY] : null;
return $_COOKIE[static::CSRF_KEY];
return ($this->token !== null) ? $this->token : $defaultValue;
} }
return null; /**
* Refresh existing token
*/
public function refresh()
{
if ($this->token !== null) {
$this->setToken($this->token);
}
} }
/** /**
@@ -20,7 +20,7 @@ class BaseCsrfVerifier implements IMiddleware
$this->csrfToken = new CsrfToken(); $this->csrfToken = new CsrfToken();
// Generate or get the CSRF-Token from Cookie. // Generate or get the CSRF-Token from Cookie.
$this->token = ($this->hasToken() === false) ? $this->generateToken() : $this->csrfToken->getToken(); $this->token = $this->csrfToken->getToken($this->generateToken());
} }
/** /**
@@ -73,6 +73,9 @@ class BaseCsrfVerifier implements IMiddleware
} }
// Refresh existing token
$this->csrfToken->refresh();
} }
public function generateToken() public function generateToken()