Enjoy an ad free experience by logging in. Not a member yet? Register.
Results 1 to 3 of 3
Thread: Security Token?
12-10-2008, 04:22 AM #1
Hi, i am trying to come up with a security token system for all my form, normal approach would be setting a token and put it in to the session whenerever the user request a new page.
$_SESSION['token'] = random string here.
The problem is, the string would be overwritten everytime when a user request a new page.
But it is common now for people to open up a few tab for a website.
And it would cause the token to expire, and cause the last few tabs you open to fail the security token check.
Is there a better soultion?
12-10-2008, 06:18 AM #2
- Join Date
- Dec 2004
- In a place far, far away...
- Thanked 1,043 Times in 1,019 Posts
What type of form do you have? Is it a contact form? And are you just trying to prevent spam? I suggest you read this article if its a contact form.
Users who have thanked _Aerospace_Eng_ for this post:
12-10-2008, 07:56 AM #3
Actually it is more of preventing spam, more like forcing the user to use my form to submit the data.