CsrfTokenGenerator::computeToken

protected CsrfTokenGenerator::computeToken($seed, $value = '')

Generates a token based on $value, the token seed, and the private key.

Parameters

string $seed: The per-session token seed.

string $value: (optional) An additional value to base the token on.

Return value

string A 43-character URL-safe token for validation, based on the token seed, the hash salt provided by Settings::getHashSalt(), and the 'drupal_private_key' configuration variable.

File

core/lib/Drupal/Core/Access/CsrfTokenGenerator.php, line 108

Class

CsrfTokenGenerator: Generates and validates CSRF tokens.

Namespace

Drupal\Core\Access

Code

protected function computeToken($seed, $value = '') {
  return Crypt::hmacBase64($value, $seed . $this->privateKey->get() . Settings::getHashSalt());
}

Links:

https://api.drupal.org/api/drupal/core%21lib%21Drupal%21Core%21Access%21CsrfTokenGenerator.php/function/CsrfTokenGenerator%3A%3AcomputeToken/8.2.x

doc_Drupal

2016-10-29 08:59:13

Comments