David A. Windham
david
/
laravel
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: d70914b84d
Branches Tags
laravel
/
app
/
Http
/
Middleware
/
VerifyCsrfToken.php

VerifyCsrfToken.php 819 B
History Raw

123456789101112131415161718192021222324252627282930313233343536373839 
  1. <?php namespace App\Http\Middleware;
    2. 

  2. 

  3. use Closure;
    4. 

  4. use Illuminate\Contracts\Routing\Middleware;
    5. 

  5. use Illuminate\Session\TokenMismatchException;
    6. 

  6. 

  7. class VerifyCsrfToken implements Middleware {
    8. 

  8. 

  9. 	/**
    10. 

  10. 	 * Handle an incoming request.
    11. 

  11. 	 *
    12. 

  12. 	 * @param  \Illuminate\Http\Request  $request
    13. 

  13. 	 * @param  \Closure  $next
    14. 

  14. 	 * @return mixed
    15. 

  15. 	 *
    16. 

  16. 	 * @throws TokenMismatchException
    17. 

  17. 	 */
    18. 

  18. 	public function handle($request, Closure $next)
    19. 

  19. 	{
    20. 

  20. 		if ($request->method() == 'GET' || $this->tokensMatch($request))
    21. 

  21. 		{
    22. 

  22. 			return $next($request);
    23. 

  23. 		}
    24. 

  24. 

  25. 		throw new TokenMismatchException;
    26. 

  26. 	}
    27. 

  27. 

  28. 	/**
    29. 

  29. 	 * Determine if the session and input CSRF tokens match.
    30. 

  30. 	 *
    31. 

  31. 	 * @param  \Illuminate\Http\Request  $request
    32. 

  32. 	 * @return bool
    33. 

  33. 	 */
    34. 

  34. 	protected function tokensMatch($request)
    35. 

  35. 	{
    36. 

  36. 		return $request->session()->token() == $request->input('_token');
    37. 

  37. 	}
    38. 

  38. 

  39. }
    40.