Skip to content

vdlp/oc-csrf-plugin

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

48 Commits

.github

.github

 
 

lang

lang

 
 

middleware

middleware

 
 

serviceproviders

serviceproviders

 
 

updates

updates

 
 

.gitattributes

.gitattributes

 
 

.gitignore

.gitignore

 
 

CHANGELOG.md

CHANGELOG.md

 
 

LICENSE

LICENSE

 
 

Plugin.php

Plugin.php

 
 

README.md

README.md

 
 

composer.json

composer.json

 
 

config.php

config.php

 
 

Repository files navigation

Vdlp.Csrf

Adds CSRF protection.

Requirements

  • PHP 8.0.2 or higher
  • October CMS 2.0 or higher

Installation

composer require vdlp/oc-csrf-plugin

Configuration

Add the plugin configuration to your config folder:

php artisan vendor:publish --provider="Vdlp\Csrf\ServiceProviders\CsrfServiceProvider" --tag="vdlp-csrf-config"

Add the CSRF token to the <head> section:

<meta name="csrf-token" content="{{ csrf_token() }}">

Add the CSRF token to the AJAX requests:

<script type="text/javascript">
$.ajaxSetup({
    headers: {
        'X-CSRF-TOKEN': $('meta[name="csrf-token"]').attr('content')
    }
});
</script>

Questions? Need help?

If you have any question about how to use this plugin, please don't hesitate to contact us at octobercms@vdlp.nl. We're happy to help you.

About

Adds CSRF protection to October CMS frontend.

Topics

php security octobercms csrf october-cms october-plugin

Resources

Readme

License

GPL-2.0 license
Activity
Custom properties

Stars

5 stars

Watchers

8 watching

Forks

3 forks
Report repository

Releases 11

v2.1.1 Latest
Oct 28, 2022
+ 10 releases

Packages

No packages published

Contributors 2

  •  
  •  

Languages