Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
M
M
magary42017-01-18 19:40:13
symfony
magary4, 2017-01-18 19:40:13

Csrf protection without form component?

if i render simple html form
in controller logic like:
$db->delete("user_favorite_articles")->where(["id"=>$request->get("id"), "user_id"=>$this ->getCurrentUser()->id);
what about security in this case?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
D
Denis, 2017-01-18
@prototype_denis

api.symfony.com/3.1/Symfony/Component/Security/Csr...
This is not a forms component. This is the Security component.
This token is needed so that your forms are not "hijacked" - you guarantee with it that the request was made from the page of your host. (Of course, if the keys are not compromised)

Similar questions
M
Maxim2015-10-17 20:52:07
Using DataTransformer in Symfony2? 1Reply
I
Ivan Kondratiev2015-10-18 15:33:49
How to properly redirect to the previous page in symfony2? 1Reply
G
German Gavrilov2011-07-31 12:40:38
Symfony vs Kohana (After CI)? 7Reply
S
square2015-10-23 18:56:22
How to work with an entity field of type array? 2Reply
Y
yalex14422015-10-27 22:05:05
What is the best way to implement receiving data from a third-party API? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question