Hello,
I have used
CHtml::form()
to generate a form tag but I see no CSRF validation.
Why ?
Kind Regards,
Marian
Hello,
I have used
CHtml::form()
to generate a form tag but I see no CSRF validation.
Why ?
Kind Regards,
Marian
have you enabled csrf validation in your config/main.php config file
example:
'components'=>array(
'request'=>array(
'enableCsrfValidation'=>true,
),
)
Aha, that was it. Thank you
Now… do I need to do something to validate the token or Yii does this automatically ?
It does it automatically
Great. Thank you