CSRF 1.0.0 | News | Yii PHP Framework

Yii Framework News

Feb 23, 2021

CSRF 1.0.0

First release of CSRF package was tagged. The package provides PSR-15 middleware for CSRF protection:

It supports two algorithms out of the box:
- Synchronizer CSRF token with customizable token generation and storage. By default, it uses random data and session.
- HMAC based token with customizable identity generation. Uses session by default.
It has ability to apply masking to CSRF token string to make BREACH attack impossible.

Extensive documentation is available.

Related News

Tags

yii3

News Archive

2024 (72)
2023 (90)
2022 (82)
2021 (101)
2020 (64)
2019 (75)
2018 (32)
2017 (35)
2016 (30)
2015 (9)
2014 (6)
2013 (11)
2012 (14)
2011 (10)
2010 (10)
2009 (23)
2008 (5)