Conditions | 5 |
Paths | 3 |
Total Lines | 13 |
Code Lines | 7 |
Lines | 0 |
Ratio | 0 % |
Changes | 1 | ||
Bugs | 0 | Features | 0 |
1 | <?php |
||
45 | public function onKernelRequest( RequestEvent $event ) |
||
46 | { |
||
47 | $request = $event->getRequest(); |
||
48 | |||
49 | if( !$event->isMasterRequest() |
||
50 | || !in_array( $request->getMethod(), ['POST', 'PUT', 'PATCH', 'DELETE'] ) ) { |
||
51 | return; |
||
52 | } |
||
53 | |||
54 | $sessionToken = $this->container->get( 'security.csrf.token_manager' )->getToken( '_token' ); |
||
55 | |||
56 | if( $sessionToken && (string) $sessionToken !== (string) $request->request->get( '_token' ) ) { |
||
57 | $event->setResponse( new Response( 'Page expired', 419 ) ); |
||
58 | } |
||
61 |