TalkPHP - View Single Post

Tanax · 12-11-2008, 06:57 AM

I have no idea, but how about:

PHP Code:


			
if($_SESSION['token'] == '')
{
       $_SESSION['token'] = 'random string';
}

that way, the token is only generated if the user don't already have a token.
But I'm not sure if this would actually work as a security then.

12-11-2008, 06:57 AM	#2 (permalink)
Tanax The Prestige Join Date: Sep 2007 Location: Sweden, Stockholm Posts: 1,080 Thanks: 115	I have no idea, but how about: PHP Code: `if($_SESSION['token'] == '') { $_SESSION['token'] = 'random string'; }` that way, the token is only generated if the user don't already have a token. But I'm not sure if this would actually work as a security then. __________________