tkr/tkr/lib/session.php

18 lines
395 B
PHP

<?php
if (session_status() === PHP_SESSION_NONE) {
session_start();
}
$isLoggedIn = isset($_SESSION['username']);
function generateCsrfToken() {
if (empty($_SESSION['csrf_token'])) {
$_SESSION['csrf_token'] = bin2hex(random_bytes(32));
}
return $_SESSION['csrf_token'];
}
function validateCsrfToken($token) {
return hash_equals($_SESSION['csrf_token'], $token);
}