sessionStorage->csrf)) { $this->sessionStorage->csrf = array(); } $nonce = self::getToken(); $this->sessionStorage->csrf[$nonce] = true; return $nonce; } /** * Check if the token exists for the current session (a token can be used only one time) * * @access public * @param string $token CSRF token * @return bool */ public function validateCSRFToken($token) { if (isset($this->sessionStorage->csrf[$token])) { unset($this->sessionStorage->csrf[$token]); return true; } return false; } }