18 lines
395 B
PHP
18 lines
395 B
PHP
<?php
|
|
if (session_status() === PHP_SESSION_NONE) {
|
|
session_start();
|
|
}
|
|
|
|
$isLoggedIn = isset($_SESSION['username']);
|
|
|
|
function generateCsrfToken() {
|
|
if (empty($_SESSION['csrf_token'])) {
|
|
$_SESSION['csrf_token'] = bin2hex(random_bytes(32));
|
|
}
|
|
return $_SESSION['csrf_token'];
|
|
}
|
|
|
|
function validateCsrfToken($token) {
|
|
return hash_equals($_SESSION['csrf_token'], $token);
|
|
}
|