quioteframework / csrf
CSRF protection (token validation + delivery middleware) for Quiote, built on symfony/security-csrf.
dev-main
2026-07-05 15:55 UTC
Requires
- php: >=8.5.0
- quioteframework/quiote: *
- symfony/security-csrf: ^8.0
This package is auto-updated.
Last update: 2026-07-05 17:07:43 UTC
README
CSRF protection middleware for Quiote, built on symfony/security-csrf.
Install
composer require quioteframework/csrf
Enable
Nothing to do — this package is a mandatory dependency of the Quiote kernel and its plugin registers itself automatically. Every app is CSRF-protected by default.
To disable, set core.csrf.enabled to false in your app's settings, or remove this package entirely (the kernel degrades gracefully if it's absent).
License
MIT. See LICENSE.