rfc:functiongetentropy

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Next revision		Previous revision
Last revisionBoth sides next revision
rfc:functiongetentropy [2008/11/30 02:49] – created preinheimerrfc:functiongetentropy [2011/08/06 10:51] – decline tyrael
Line 3: Line 3:
   * Date: 2008-11-29   * Date: 2008-11-29
   * Author: Paul Reinheimer <preinheimer@php.net>   * Author: Paul Reinheimer <preinheimer@php.net>
-  * Status: in the works+  * Status: Declined
  
  
Line 21: Line 21:
 <?php <?php
 $nonce = unpack('h', getEntropy(128)); $nonce = unpack('h', getEntropy(128));
-echo '<input type="hidden" name="csrf" value="' . $nonce . '">;+echo '<input type="hidden" name="csrf" value="' . $nonce . '">';
 $_SESSION['csrf'] = $nonce; $_SESSION['csrf'] = $nonce;
 </code> </code>
  
 +===== Changelog =====
 +Declined, as having http://php.net/openssl_random_pseudo_bytes makes this RFC obsolete.
rfc/functiongetentropy.txt · Last modified: 2017/09/22 13:28 by 127.0.0.1

Page Tools