CHtml::form - no CSRF validation

Hello,

I have used


CHtml::form()

to generate a form tag but I see no CSRF validation.

Why ?

Kind Regards,

Marian

have you enabled csrf validation in your config/main.php config file

example:




'components'=>array(

                'request'=>array(

                        'enableCsrfValidation'=>true,

                ),

)



Aha, that was it. Thank you :)

Now… do I need to do something to validate the token or Yii does this automatically ?

It does it automatically :)

Great. Thank you :)