Wiki articles tagged with "CSRF"

Showing 1-5 of 5 items.

default csrf security and ajax post in one controller

Created 10 years ago by jasonban, updated 10 years ago by CeBe.
3 comments

Hello Yii friends

0 3
8 followers
Viewed: 27 974 times
Version: 1.1
Category: Tutorials
Tags: ajax request, CSRF, php, post, security

Checking for "expired" sessions/logins on the client side

Created 11 years ago by le_top, updated 9 years ago by le_top.
0 comments

Getting "Expired token" errors ? Here is a solution to avoid invalid CSRF on POST or ajax requests, or user identity changes.

4 0
12 followers
Viewed: 36 452 times
Version: 1.1
Category: How-tos
Tags: allowAutoLogin, Cache-Control, cookie, CSRF, login, security, session, user auth, UserIdentity

How to validate CSRF token with session

Created 13 years ago by yangmls, updated 13 years ago by yangmls.
7 comments

First of all, You must change component config to enable the default Yii CSRF validation.

21 0
27 followers
Viewed: 102 514 times
Version: 1.1
Category: How-tos
Tags: CSRF, session

[PT-BR] Proteção Contra Logout CSRF

Created 13 years ago by Rodrigo Coelho, updated 13 years ago by Rodrigo Coelho.
0 comments

CSRF é o acrônimo para Cross-site request forgery.
CSRF é um ataque que forca o usuário a executar ações não desejadas numa aplicação Web na qual ele está autenticado.

2 1
3 followers
Viewed: 14 013 times
Version: 1.1
Category: Tutorials
Tags: CSRF, Logout CSRF, security, Segurança

Logout CSRF Protection

Created 13 years ago by Rodrigo Coelho, updated 13 years ago by Rodrigo Coelho.
1 comment

CSRF is the acronymn for Cross-site request forgery.
It is an attack which forces an end user to execute unwanted actions on a web application in which he/she is currently authenticated.

10 0
11 followers
Viewed: 30 355 times
Version: 1.1
Category: Tutorials
Tags: CSRF, Logout CSRF, security