Adding CSRF into config Adding CSRF token into form open()

commit: 958543a38c2c97b0ec4c10fc9faf4f0753143880 [log] [tgz]
author: Derek Allard <derek.allard@ellislab.com> Thu Jul 22 14:10:26 2010 -0400
committer: Derek Allard <derek.allard@ellislab.com> Thu Jul 22 14:10:26 2010 -0400
tree: 3fe57f162c835afc278b537fd2e5932828c55e6c
parent: 924000e27e10eb32cff6b7666a9d41546fd5f2bd [diff] [blame]
diff --git a/system/helpers/form_helper.php b/system/helpers/form_helper.php
index 5feb3ce..632f945 100644
--- a/system/helpers/form_helper.php
+++ b/system/helpers/form_helper.php

@@ -62,6 +62,12 @@
 			$form .= form_hidden($hidden);
 		}
 
+		// CSRF
+		if ($CI->config->item('csrf_protection') === TRUE)
+		{
+			$form .= form_hidden($CI->security->csrf_token_name, $CI->security->csrf_hash);
+		}
+
 		return $form;
 	}
 }
commit	958543a38c2c97b0ec4c10fc9faf4f0753143880	[log] [tgz]
author	Derek Allard <derek.allard@ellislab.com>	Thu Jul 22 14:10:26 2010 -0400
committer	Derek Allard <derek.allard@ellislab.com>	Thu Jul 22 14:10:26 2010 -0400
tree	3fe57f162c835afc278b537fd2e5932828c55e6c
parent	924000e27e10eb32cff6b7666a9d41546fd5f2bd [diff] [blame]