58 unset($this->sessionToken);
68 unset($this->sessionToken);
85 public function generateToken($formName, $action =
'', $formInstanceName =
'')
87 if ($formName ==
'') {
88 throw new \InvalidArgumentException(
'$formName must not be empty.', 1294586643);
90 $tokenId = GeneralUtility::hmac($formName . $action . $formInstanceName . $this->
getSessionToken());
104 public function validateToken($tokenId, $formName, $action =
'', $formInstanceName =
'')
106 $validTokenId = GeneralUtility::hmac(((
string)$formName . (
string)$action) . (
string)$formInstanceName . $this->
getSessionToken());
107 if (hash_equals($validTokenId, (
string)$tokenId)) {
125 return GeneralUtility::makeInstance(Random::class)->generateRandomHexString(64);
134 if ($this->validationFailedCallback !==
null) {
135 $this->validationFailedCallback->__invoke();