SecurityController

Security Controller Trait Adds cross-site scripting protection methods to a controller based class

 trait System\Traits\SecurityController

Methods

protected makeXsrfCookie () : Symfony\Component\HttpFoundation\Cookie

Adds anti-CSRF cookie.

Adds a cookie with a token for CSRF checks to the response.

Returns
Symfony\Component\HttpFoundation\Cookie

protected verifyCsrfToken () : bool

Checks the request data / headers for a valid CSRF token.

Returns
bool

Returns false if a valid token is not found or cms.enableCsrfProtection is set to false

protected verifyForceSecure () : bool

Checks if the back-end should force a secure protocol (HTTPS) enabled by config.

Returns
bool

Used by

Class Description
EventLogs

Event Logs controller

MailBrandSettings

Mail brand customization controller

MailLayouts

Mail layouts controller

MailPartials

Mail partials controller

MailTemplates

Mail templates controller

RequestLogs

Request Logs controller

Settings

Settings controller

Updates

Updates controller

Controller

The Backend base controller class, used by Backend controllers.

AccessLogs

Access Logs controller

Auth

Authentication controller

Files

Backend files controller

Index

Dashboard controller

Media

Backend Media Manager

Preferences

Editor Settings controller

UserGroups

Backend user groups controller

UserRoles

Backend user groups controller

Users

Backend user controller

Controller

The CMS controller class.

Index

CMS index

Media

CMS Media Manager

ThemeLogs

Request Logs controller

ThemeOptions

Theme customization controller

Themes

Theme selector controller

Copyright © 2024 Winter CMS