Home Explore Help
Sign In
githab
/
cakephp
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

Clarify configuration options for CsrfProtectionMiddleware

Refs #12294
Mark Story 7 years ago
parent
87365d6b8f
commit
f8fb7b61ca
1 changed files with 6 additions and 5 deletions
Split View Show Diff Stats
  1. 6 5
      src/Http/Middleware/CsrfProtectionMiddleware.php

+ 6 - 5
src/Http/Middleware/CsrfProtectionMiddleware.php
View File 

@@ -40,11 +40,12 @@ class CsrfProtectionMiddleware
 
     /**
 
      * Default config for the CSRF handling.
 
      *
 
-     *  - `cookieName` = The name of the cookie to send.
 
-     *  - `expiry` = How long the CSRF token should last. Defaults to browser session.
 
-     *  - `secure` = Whether or not the cookie will be set with the Secure flag. Defaults to false.
 
-     *  - `httpOnly` = Whether or not the cookie will be set with the HttpOnly flag. Defaults to false.
 
-     *  - `field` = The form field to check. Changing this will also require configuring
 
+     *  - `cookieName` The name of the cookie to send.
 
+     *  - `expiry` A strotime compatible value of how long the CSRF token should last.
 
+     *    Defaults to browser session.
 
+     *  - `secure` Whether or not the cookie will be set with the Secure flag. Defaults to false.
 
+     *  - `httpOnly` Whether or not the cookie will be set with the HttpOnly flag. Defaults to false.
 
+     *  - `field` The form field to check. Changing this will also require configuring
 
      *    FormHelper.
 
      *
 
      * @var array