sergio.hinojosa
/
eval-desempeno-v2
1
0
Forkuj 0
Kod Zgłoszenia 0 Oczekujące zmiany 0 Wydania 0 Wiki Aktywność
Nie możesz wybrać więcej, niż 25 tematów Tematy muszą się zaczynać od litery lub cyfry, mogą zawierać myślniki ('-') i mogą mieć do 35 znaków.
3 Commity
3 Gałęzie
14MB
Drzewo: 3e24477d40
Gałęzie Tagi
${ item.name }
Utwórz gałąź ${ searchTerm }
z '3e24477d40'
${ noResults }
eval-desempeno-v2/app/Config/Security.php

118 wiersze
3.3KB
Czysty Wina Historia 

  1. <?php

  2. 

  3. namespace Config;

  4. 

  5. use CodeIgniter\Config\BaseConfig;

  6. 

  7. class Security extends BaseConfig

  8. {

  9.     /**

  10.      * --------------------------------------------------------------------------

  11.      * CSRF Protection Method

  12.      * --------------------------------------------------------------------------

  13.      *

  14.      * Protection Method for Cross Site Request Forgery protection.

  15.      *

  16.      * @var string 'cookie' or 'session'

  17.      */

  18.     public $csrfProtection = 'cookie';

  19. 

  20.     /**

  21.      * --------------------------------------------------------------------------

  22.      * CSRF Token Randomization

  23.      * --------------------------------------------------------------------------

  24.      *

  25.      * Randomize the CSRF Token for added security.

  26.      *

  27.      * @var bool

  28.      */

  29.     public $tokenRandomize = false;

  30. 

  31.     /**

  32.      * --------------------------------------------------------------------------

  33.      * CSRF Token Name

  34.      * --------------------------------------------------------------------------

  35.      *

  36.      * Token name for Cross Site Request Forgery protection.

  37.      *

  38.      * @var string

  39.      */

  40.     public $tokenName = 'csrf_test_name';

  41. 

  42.     /**

  43.      * --------------------------------------------------------------------------

  44.      * CSRF Header Name

  45.      * --------------------------------------------------------------------------

  46.      *

  47.      * Header name for Cross Site Request Forgery protection.

  48.      *

  49.      * @var string

  50.      */

  51.     public $headerName = 'X-CSRF-TOKEN';

  52. 

  53.     /**

  54.      * --------------------------------------------------------------------------

  55.      * CSRF Cookie Name

  56.      * --------------------------------------------------------------------------

  57.      *

  58.      * Cookie name for Cross Site Request Forgery protection.

  59.      *

  60.      * @var string

  61.      */

  62.     public $cookieName = 'csrf_cookie_name';

  63. 

  64.     /**

  65.      * --------------------------------------------------------------------------

  66.      * CSRF Expires

  67.      * --------------------------------------------------------------------------

  68.      *

  69.      * Expiration time for Cross Site Request Forgery protection cookie.

  70.      *

  71.      * Defaults to two hours (in seconds).

  72.      *

  73.      * @var int

  74.      */

  75.     public $expires = 7200;

  76. 

  77.     /**

  78.      * --------------------------------------------------------------------------

  79.      * CSRF Regenerate

  80.      * --------------------------------------------------------------------------

  81.      *

  82.      * Regenerate CSRF Token on every submission.

  83.      *

  84.      * @var bool

  85.      */

  86.     public $regenerate = true;

  87. 

  88.     /**

  89.      * --------------------------------------------------------------------------

  90.      * CSRF Redirect

  91.      * --------------------------------------------------------------------------

  92.      *

  93.      * Redirect to previous page with error on failure.

  94.      *

  95.      * @var bool

  96.      */

  97.     public $redirect = true;

  98. 

  99.     /**

  100.      * --------------------------------------------------------------------------

  101.      * CSRF SameSite

  102.      * --------------------------------------------------------------------------

  103.      *

  104.      * Setting for CSRF SameSite cookie token.

  105.      *

  106.      * Allowed values are: None - Lax - Strict - ''.

  107.      *

  108.      * Defaults to `Lax` as recommended in this link:

  109.      *

  110.      * @see https://portswigger.net/web-security/csrf/samesite-cookies

  111.      *

  112.      * @var string

  113.      *

  114.      * @deprecated `Config\Cookie` $samesite property is used.

  115.      */

  116.     public $samesite = 'Lax';

  117. }