You are here

Home » API reference » Zircon Profile 8.0 » CsrfTokenGenerator.php » CsrfTokenGenerator

public function CsrfTokenGenerator::validate in Zircon Profile 8.0

Same name and namespace in other branches
  1. 8 core/lib/Drupal/Core/Access/CsrfTokenGenerator.php \Drupal\Core\Access\CsrfTokenGenerator::validate()

Validates a token based on $value, the user session, and the private key.

Parameters

string $token: The token to be validated.

string $value: (optional) An additional value to base the token on.

Return value

bool TRUE for a valid token, FALSE for an invalid token.

File

core/lib/Drupal/Core/Access/CsrfTokenGenerator.php, line 89
Contains \Drupal\Core\Access\CsrfTokenGenerator.

Class

CsrfTokenGenerator
Generates and validates CSRF tokens.

Namespace

Drupal\Core\Access

Code

public function validate($token, $value = '') {
  $seed = $this->sessionMetadata
    ->getCsrfTokenSeed();
  if (empty($seed)) {
    return FALSE;
  }
  return $token === $this
    ->computeToken($seed, $value);
}