Rami GB ramigb
ramigb
/ MY_Security.php
Created
October 11, 2015 08:00
— forked from CMCDragonkai/MY_Security.php
PHP: Codeigniter CSRF functionality does not support putting the CSRF token in the HTTP headers for the purposes of the double submit cookie method. It also only runs the CSRF check on POST and not on PUT or DELETE. This drop in MY_Security.php makes sure CSRF runs on POST, PUT or DELETE and checks the HTTP headers for X-XSRF-TOKEN recommended b…
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| class MY_Security extends CI_Security{ | |
| //overriding the normal csrf_verify, this gets automatically called in the Input library's constructor | |
| //verifying on POST and PUT and DELETE | |
| public function csrf_verify(){ | |
| $request_method = strtoupper($_SERVER['REQUEST_METHOD']); |
ramigb
/ gist:51fe1df3d0eb685abab1
Last active
August 29, 2015 14:14
— forked from valchonedelchev/gist:a48da9b6050983d56625
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env ruby | |
| require 'net/http' | |
| require 'json' | |
| def http_get(url) | |
| puts "http_get: #{url}" | |
| return Net::HTTP.get(URI(url)) | |
| end | |
| def handle_http(response, url) |