Skip to content

dederobert/duskphp-middleware

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
src
src
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
.php_cs
.php_cs
 
 
.travis.yml
.travis.yml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
composer.json
composer.json
 
 
phpcs.xml
phpcs.xml
 
 
phpunit.xml
phpunit.xml
 
 

Repository files navigation

DuskPHP - Middleware

Build Status Coverage Status

Provide middleware:

  • a CSRF authenticator which protect against CSRF attack with a token authentication

How to use

  • ## CSRF Authenticator How to use it ?

This middleware check every POST, PUT and DELETE request for a CSRF token.

$middleware = new CsrfMiddleware($_SESSION, 200);
$dispatcher->pipe($middleware);

Input

The middleware check if the string <:csrf_token_field:> is in response and replace it with the authenticator's token.

<form action="" method="post">
   ...
   <:csrf_token_field:>
</form>

LICENSE

DuskPHP - A simple PHP framework build with middleware pattern

Copyright (C) 2017 HovenSoft

This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation, either version 3 of the License, or any later version

This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.

You should have received a copy of the GNU General Public License along with this program. If not, see www.gnu.org/licenses.

About

A middleware's collection

Topics

middleware psr-7 psr-15 csrf-protection csrf-tokens http-middleware csrf-prevention

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases 1

CSRF Authentification Latest
Aug 26, 2017

Packages

No packages published

Languages