Symfony\Component\Form\Extension\Csrf\CsrfProvider\DefaultCsrfProvider
Default implementation of CsrfProviderInterface.
This provider uses the session ID returned by session_id() as well as a
user-defined secret value to secure the CSRF token.
- Author: Bernhard Schussek <bschussek@gmail.com>
Synopsis
class DefaultCsrfProvider
implements
CsrfProviderInterface
{
- // members
- protected string $secret;
- // methods
- public void __construct()
- public void generateCsrfToken()
- public void isCsrfTokenValid()
- protected string getSessionId()
Hierarchy
Extended by
Implements
Members
protected
- $secret
—
string
A secret value used for generating the CSRF token
Methods
protected
- getSessionId() — Returns the ID of the user session.
public
- __construct() — Initializes the provider with a secret value
- generateCsrfToken() — {@inheritDoc}
- isCsrfTokenValid() — {@inheritDoc}