File Manager
Create Folder
Create File
Upload File
Home
/ Directory >
/
home1
/
swachhmaharashtr
/
public_html
/
libs
Item Name
Actions
ACL.php
Delete
Rename
Edit
Csrf.php
Delete
Rename
Edit
GUMP.php
Delete
Rename
Edit
Html2Doc.php
Delete
Rename
Edit
PHPMailer
Delete
Rename
Pagination.php
Delete
Rename
Edit
Uploader.php
Delete
Rename
Edit
XLSXWriter.php
Delete
Rename
Edit
lang
Delete
Rename
Edit File: Csrf.php
<?php /** * Csrf - Cross Site Request Forgery * @category Security */ class Csrf { public static $token = null; function __construct() { $token = get_session('csrf_token'); if (empty($token)) { $token = hash_value(random_str(12)); set_session('csrf_token', $token); //set new token in session if not available } self::$token = $token; } /** * Csrf - Verify if the request is coming from our origin * @category Security */ public static function cross_check() { $current_token = get_session('csrf_token'); $req_token = ""; if (!empty($_SERVER['HTTP_X_CSRF_TOKEN'])) { $req_token = $_SERVER['HTTP_X_CSRF_TOKEN']; } elseif (!empty($_REQUEST['csrf_token'])) { $req_token = $_REQUEST['csrf_token']; } if ($req_token != $current_token) { render_error("Cross-Site request Forgery Detected. Please Contact The System Administrator For More Information", 403); exit; } return null; } }