fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-04-02 01:52:10 +09:00
Code Issues Projects Releases Packages Wiki Activity

Initial implementation of CSRF token enforcement in Security class

Browse source
This commit is contained in:
Kijin Sung 2017-03-06 15:54:56 +09:00
parent b8569aa5ab
commit 89255d0281
2 changed files with 22 additions and 7 deletions
Download patch file Download diff file Expand all files Collapse all files

2
tests/unit/framework/SecurityTest.php
View file

@ -111,7 +111,7 @@ class SecurityTest extends \Codeception\TestCase\Test
$this->assertTrue(Rhymix\Framework\Security::checkCSRF());
$_SERVER['REQUEST_METHOD'] = 'POST';
$this->assertTrue(Rhymix\Framework\Security::checkCSRF());
$this->assertFalse(Rhymix\Framework\Security::checkCSRF());
$_SERVER['HTTP_REFERER'] = 'http://www.foobar.com/';
$this->assertFalse(Rhymix\Framework\Security::checkCSRF());