Essential PHP Security Book Cover
Essential PHP Security by Chris Shiflett
About | Contents | Buy Now | Reviews | Errata | Code
  1. Foreword
  2. Preface
  1. Introduction
  2. Forms and URLs
          ch02.pdf
  3. Databases and SQL
  4. Sessions and Cookies
          ch04.pdf
  5. Includes
  6. Files and Commands
  7. Authentication and Authorization
  8. Shared Hosting
  1. Configuration Directives
  2. Functions
  3. Cryptography
  4. Index

Check a Token in a Form

(Chapter 2, Forms and URLs - Pg 28)

< Back to Code Repository

<?php

if (isset($_SESSION['token']) &&
    $_POST['token'] == $_SESSION['token'])
{
    /* Valid Token */
}

$token_age time() - $_SESSION['token_time'];

if ($token_age <= 300)
{
    /* Less than five minutes has passed. */
}

?>