CsrfToken

class OC\Security\CSRF\CsrfToken
Class CsrfToken represents the stored or provided CSRF token. To mitigate
BREACH alike vulnerabilities the token is returned in an encrypted value as
well in an unencrypted value. For display measures to the user always the
unencrypted one should be chosen.
Source:lib/private/Security/CSRF/CsrfToken.php#39

Properties

Methods

public OC\Security\CSRF\CsrfToken::__construct($value)
Source:

lib/private/Security/CSRF/CsrfToken.php#48

Parameters:
  • $value (string) Value of the token. Can be encrypted or not encrypted.
public OC\Security\CSRF\CsrfToken::getEncryptedValue()
Encrypted value of the token. This is used to mitigate BREACH alike
vulnerabilities. For display measures do use this functionality.
Source:lib/private/Security/CSRF/CsrfToken.php#58
Returns:string
public OC\Security\CSRF\CsrfToken::getDecryptedValue()
The unencrypted value of the token. Used for decrypting an already
encrypted token.
Source:lib/private/Security/CSRF/CsrfToken.php#73
Returns:string