search

slimphp / Slim-Csrf

Slim Framework CSRF protection middleware
MIT License
340 stars 59 forks source link

Use hash_equals to check token #3

Closed geggleto closed 9 years ago

geggleto commented 9 years ago

hash_equals — Timing attack safe string comparison to check the values

codeguy commented 9 years ago

Done. See https://github.com/slimphp/Slim-Csrf/commit/bd4c149110f4c9c6280756c1d89b4362917846aa