File tree Expand file tree Collapse file tree 1 file changed +12
-0
lines changed
src/Symfony/Component/Form/Extension/Csrf/CsrfProvider Expand file tree Collapse file tree 1 file changed +12
-0
lines changed Original file line number Diff line number Diff line change 1111
1212namespace Symfony \Component \Form \Extension \Csrf \CsrfProvider ;
1313
14+ use Symfony \Component \Security \Core \Util \StringUtils ;
15+
1416/**
1517 * Default implementation of CsrfProviderInterface.
1618 *
@@ -54,6 +56,16 @@ public function generateCsrfToken($intention)
5456 */
5557 public function isCsrfTokenValid ($ intention$ token
5658 {
59+ $ expectedToken$ this generateCsrfToken ($ intention
60+
61+ if (function_exists ('hash_equals ' )) {
62+ return hash_equals ($ expectedToken$ token
63+ }
64+
65+ if (class_exists ('Symfony\Component\Security\Core\Util\StringUtils ' )) {
66+ return StringUtils::equals ($ expectedToken$ token
67+ }
68+
5769 return $ token$ this generateCsrfToken ($ intention
5870 }
5971
You can’t perform that action at this time.
0 commit comments