Skip to content
This repository has been archived by the owner on Apr 9, 2020. It is now read-only.

SBordier44/PSR15-CsrfMiddleware

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits

src

src

 
 

tests

tests

 
 

.gitignore

.gitignore

 
 

.php_cs

.php_cs

 
 

.travis.yml

.travis.yml

 
 

README.md

README.md

 
 

composer.json

composer.json

 
 

phpcs.xml

phpcs.xml

 
 

phpunit.xml

phpunit.xml

 
 

Repository files navigation

PSR-15 CSRF Middleware

Build Status Coverage Status

This middleware check every POST, PUT or DELETE request for a CSRF Token. Token are persisted using an ArrayAccess compatible Session and are generated on demand.

Installation

composer require nuboxdevcom/psr15-csrf-middleware

How to use it

$middleware = new CsrfMiddleware($_SESSION, 200);
$app->pipe($middleware);

// Generate input
$input = "<input type='hidden' name='{$middleware->getFormKey()}' value='{$middleware->generateToken()}'/>"

Middleware are constructed with this parameters:

  • session, ArrayAccess|array, used to store token
  • limit, int, limit the number of token to persist
  • sessionKey, string
  • formKey, string

About

A PSR-15 compatible Middleware to prevent CSRF

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

1.0.2 Latest
Jan 28, 2018

Packages

No packages published

Languages