| A | |
| authorisePost | |
| C | |
| createNewJsCache | |
| F | |
| failedValidationAction | |
| G | |
| generateAuthToken | |
| getCurrentUrl | |
| I | |
| init | |
| isURLallowed | |
| L | |
| logCSRFattack | |
| M | |
| modifyURL | |
| O | |
| ob_handler | |
| R | |
| refreshToken | |
| rewriteHTML | |
| U | |
| useCachedVersion |
function to authorise incoming post requests
public static function authorisePost()
Function to create new cache version of js
public static function createNewJsCache()
function to be called in case of failed validation performs logging and take appropriate action
private static function failedValidationAction()
function to generate random hash of length as given in parameter max length = 128
public static function generateAuthToken()
Function to return current url of executing page
private static function getCurrentUrl()
function to initialise the csrfProtector work flow
public static function init( $length = null, $action = null )
Function to check if a url mataches for any urls Listed in config file
public static function isURLallowed( $url )
Functio to log CSRF Attack
private static function logCSRFattack()
Function to modify url & append CSRF token
public static function modifyURL( $url, $token )
Rewrites form on the fly to add CSRF tokens to them.
public static function ob_handler( $buffer, $flags )
Function to set auth cookie
public static function refreshToken()
Function to perform static rewriting of forms and URLS
public static function rewriteHTML( $buffer )
function to check weather to use cached version of js file or not
public static function useCachedVersion()