Skip to content

Kirby 5.0.4

csrf()

Checks / returns a CSRF token

csrf(string|null $check = null): string|bool

Parameters

Name Type Default Description
$check stringornull null Pass a token here to compare it to the one in the session

Return types

stringorbool

Either the token or a boolean check result

Examples

Token generation

<input type="hidden" name="csrf" value="<?= csrf() ?>">

Checking the token

$token = get('csrf');
if (csrf($token) === true) {
  // Success
} else {
  // Token doesn't match
}