WIP Start implmenting CSRF

2015-01-09 09:22:31 +01:00 · 2015-01-09 09:22:31 +01:00 · e7ebd55299
commit e7ebd55299
parent 8f0e27cb86
2 changed files with 41 additions and 0 deletions
--- a/app/classes/Framadate/Security/Token.php
+++ b/app/classes/Framadate/Security/Token.php
@ -0,0 +1,21 @@
+<?php
+namespace Framadate\Security;
+
+class Token {
+
+    private $tokan_name;
+    private $time;
+    private $value;
+
+    function __construct($tokan_name, $time) {
+       $this->tokan_name = $tokan_name;
+       $this->time = $time;
+       $this->value = $this->generate();
+    }
+
+    private function generate() {
+        // TODO
+    }
+
+}
+ 
--- a/app/classes/Framadate/Services/SecurityService.php
+++ b/app/classes/Framadate/Services/SecurityService.php
@ -0,0 +1,20 @@
+<?php
+namespace Framadate\Services;
+
+use Framadate\Security\Token;
+
+class SecurityService {
+
+    function __construct() {
+    }
+
+    function getToken($tokan_name) {
+        if (!isset($_SESSION['token']) || !isset($_SESSION['token'][$tokan_name])) {
+            $_SESSION['token'][$tokan_name] = new Token($tokan_name, 60*5);
+        }
+
+        return $_SESSION['token'][$tokan_name]->getValue();
+    }
+
+}
+