Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- @session_start();
- /*
- * @author @0KaL_H4
- */
- class csrf {
- public function token($action) {
- if (!isset($_SESSION[md5(dirname(__FILE__))]['csrf_tokens'])) {
- $_SESSION[md5(dirname(__FILE__))]['csrf_tokens'] = array();
- }
- $gen_token = md5(uniqid(rand(), true));
- $_SESSION[md5(dirname(__FILE__))]['csrf_tokens'][md5($action)] = $gen_token;
- return $gen_token;
- }
- public function verify($action, $check) {
- if (!isset($_SESSION[md5(dirname(__FILE__))]['csrf_tokens'])) {
- $_SESSION[md5(dirname(__FILE__))]['csrf_tokens'] = array();
- return false;
- }
- if (isset($_SESSION[md5(dirname(__FILE__))]['csrf_tokens']) AND
- isset($_SESSION[md5(dirname(__FILE__))]['csrf_tokens'][md5($action)]) AND
- $_SESSION[md5(dirname(__FILE__))]['csrf_tokens'][md5($action)] == $check) {
- unset($_SESSION[md5(dirname(__FILE__))]['csrf_tokens'][md5($action)]);
- return true;
- } else {
- return false;
- }
- }
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement