[ create a new paste ] login | about

Project: EricBarnes
Link: http://ericbarnes.codepad.org/IOpwJi88    [ raw code | fork ]

suzkaw - PHP, pasted on Jan 8: 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27

<?php
session_start();
function generateToken($seed='mysupersecretkey')
	{
		$token = md5($seed.mktime());
		$_SESSION['token']=$token;
		return $token;
	}
generateToken();

//validate the form
if(isset($_POST['email']) && isset($_POST['pass']) && isset($_POST['token']))
{
	if($_POST['token'] != $_SESSION['token'])
	{
		die('Token is invalid');
	}
	//process the rest of form here
	
}
?>

<form action="test.php" method="post" name="test">
<input name="email" type="text" />
<input name="pass" type="password" />
<input name="token" type="hidden" value="<?php echo $_SESSION['token']; ?>" />
</form>


Create a new paste based on this one


Comments: