CakePHP
87
public function beforeFilter(Event $event)
{
$this->eventManager()->off($this->Csrf);
}
Security Component
Security Component applies tighter security to your application. It provides methods for
various tasks like:
Restricting which HTTP methods your application accepts:
You should
always verify the HTTP method being used before executing side-effects. You
should check the HTTP method or use
Cake\Network\Request::allowMethod()
to ensure the correct HTTP method is used.
Form tampering protection:
By default, the SecurityComponent prevents users
from tampering with forms in specific ways. The SecurityComponent will prevent
the following things:
o
Unknown fields cannot be added to the form.
o
Fields cannot be removed from the form.
o
Values in hidden inputs cannot be modified.
Do'stlaringiz bilan baham: