File: ex6.php

Recommend this page to a friend!

???

File:	`???`
Role:	Example script
Content typex:	`text/plain`
Description:	Example #6: Anti-XSRF Injection
Class:	Web Open Patch Filter values to prevent security exploits
Author:	By Marcos Bezerra
Last change:
Date:	15 years ago
Size:	`738 bytes`

Download


<?php





include_once("WebOpenPatch.php");





$wop = new WebOpenPatch();





$token = wopAntiXsrfInjection();





$form = '<form action="' . $_SERVER['PHP_SELF'] . '" method="POST">


         <input type="hidden" name="token" value="' . $token . '" />


         <!-- Restante do formul�rio -->


         <input type="submit" name="enviar" value="Enviar">


         </form>';





if (isset($_POST['enviar']) && $_POST['enviar'] == 'Enviar') { //se houve post





    if (wopAntiXsrfInjection(false)) { //checa validade do token





        //token � v�lido, continua processando os dados do form





    } else { //token inv�lido


        die("Dados inv�lidos!");


    }





} else { // n�o houve postagem


    echo $form; //exibe o form


}





?>

About us

Advertise on this site

For more information send a message to info at phpclasses dot org.

File: ex6.php

Contents