Class: CSRF protector
| Recommend this page to a friend! |  Stumble It! |
 Bookmark in del.icio.us |
| Classes of Michael A. Peters | > | CSRF protector | > | Download .tar.gz .zip | > |  Support forum (1) |
> |  Blog |
> |   Latest changes |
||
|
| ||||||||||||||||||||||||||||||||||||||||||||
| Detailed description | ||
| This class can be used to prevent Cross-site Request Forgery (CSRF) exploits by storing token keys in database. It can generate a random key and store it in a database record associated to the current session. It uses PEAR MDB2 database abstraction layer to support many types of databases. The class can also check if the key is valid when the form is submitted with a token hidden input field. If it exists, the key record is deleted from the database to avoid it is reused. |
| Groups | ||
 |
PHP 5 | Classes using PHP 5 specific features | View top rated classes |
|
Databases | Database management, accessing and searching | View top rated classes |
|
User Management | User records, authentication and session handling | View top rated classes |
|
Security | Security protection and attack detection | View top rated classes |
 User ratings |
Applications |  Files |
||||
No application links were specified for this class.
 If you know an application of this package, send a message to the author to add a link here.
|
|||||||||||||||
For more information send a message to :
info at phpclasses dot org.
info at phpclasses dot org.
| Copyright (c) Icontem 1999-2012 | PHP Classes | - PHP Class Scripts |
| PHP Book Reviews | - Reviews of books and other products |