CSRF protector: Prevent CSRF exploits by storing keys in database

Recommend this page to a friend!

Download .zip

Info

View files (2)

Download .zip

Reputation

Support forum (1)

Blog

Links

Last Updated		Ratings				Unique User Downloads		Download Rankings
2009-04-12 (7 years ago)		Not enough user ratings				Total: 841 This week: 1		All time: 3,962 This week: 1,047

Version		License		PHP version		Categories
`csrf_class` 1.0		Public Domain		5		PHP 5, Databases, User Management, Se...

Description Author

This class can be used to prevent Cross-site Request Forgery (CSRF) exploits by storing token keys in database.

It can generate a random key and store it in a database record associated to the current session. It uses PEAR MDB2 database abstraction layer to support many types of databases.

The class can also check if the key is valid when the form is submitted with a token hidden input field. If it exists, the key record is deleted from the database to avoid it is reused.

Michael A. Peters

Name:	Michael A. Peters `<contact>`
Classes:	6 packages by Michael A. Peters
Country:	United States

Innovation award

Nominee: 2x

Files

File	Role	Description
`csrf_class.php`	Class	Class File
`README.html`	Doc.	Documentation

	csrf_class-2009-04-12.zip 4KB
	csrf_class-2009-04-12.tar.gz 4KB
	Install with Composer

Version Control

Unique User Downloads

Download Rankings

Total:	841
This week:	1

All time:	3,962
This week:	1,047

Applications that use this package

No pages of applications that use this class were specified.

If you know an application of this package, send a message to the author to add a link here.

Advertise on this site

For more information send a message to info at phpclasses dot org.