mirror.MikroTik/hotspotbilling.phpnuxbill
1
0
Fork 0
mirror of https://github.com/hotspotbilling/phpnuxbill.git synced 2025-08-03 17:54:41 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

move the CSRF Function to global function for easy access

Browse source
This commit is contained in:
Focuslinkstech 2024-10-09 17:05:23 +01:00 committed by Ibnu Maksum
parent 96365eef2a
commit bd30261e84
No known key found for this signature in database
GPG key ID: 7FC82848810579E5
2 changed files with 30 additions and 32 deletions
Download patch file Download diff file Expand all files Collapse all files

32
init.php
View file

@ -367,35 +367,3 @@ function isTableExist($table)
return false;
}
}
function generateCsrfToken($expiryTime = 3600)
{
$token = bin2hex(random_bytes(32));
$_SESSION['csrf_token'] = $token;
$_SESSION['csrf_token_time'] = time();
$_SESSION['csrf_token_expiry'] = $expiryTime;
return $token;
}
function validateCsrfToken($token)
{
if (!isset($_SESSION['csrf_token'])) {
_log(Lang::T("CSRF token not set in session."));
return false;
}
if (is_null($token)) {
_log(Lang::T("Token passed is null."));
return false;
}
$tokenAge = time() - $_SESSION['csrf_token_time'];
if ($tokenAge > $_SESSION['csrf_token_expiry']) {
_log(Lang::T("CSRF token has expired."));
return false;
}
return hash_equals($_SESSION['csrf_token'], $token);
}