Wiki

Articles tagged with "csrf", sorted by viewsX
Displaying 1-5 of 5 result(s).

How to validate CSRF token with session

Created 2 years ago by yangmlsHow-tos1 comment – viewed 33,281 times – ( +20 ) – version 1.1
First of all, You must change component config to enable the default Yii CSRF validation.
tags: CSRF, session

Logout CSRF Protection

Created 3 years ago by Rodrigo CoelhoTutorials1 comment – viewed 13,591 times – ( +10 ) – version 1.1
CSRF is the acronymn for Cross-site request forgery. It is an attack which forces an end user to execute unwanted actions on a web application in which he/she is currently authenticated.

Checking for "expired" sessions/logins on the client side

Created about a year ago by le_topHow-tos0 comments – viewed 13,212 times – ( +5 ) – version 1.1
Getting "Expired token" errors ? Here is a solution to avoid invalid CSRF on POST or ajax requests, or user identity changes.

[PT-BR] Proteção Contra Logout CSRF

Created 3 years ago by Rodrigo CoelhoTutorials0 comments – viewed 6,197 times – ( +2 / -1 ) – version 1.1
CSRF é o acrônimo para Cross-site request forgery. CSRF é um ataque que forca o usuário a executar ações não desejadas numa aplicação Web na qual ele está autenticado.

default csrf security and ajax post in one controller

Created 9 months ago by jasonbanTutorials3 comments – viewed 4,122 times – ( +1 / -2 ) – version 1.1
Hello Yii friends