vdlp/oc-csrf-plugin

Adds CSRF protection to October CMS frontend.

Maintainers

Package info

github.com/vdlp/oc-csrf-plugin

Type:october-plugin

pkg:composer/vdlp/oc-csrf-plugin

Statistics

Installs: 40 370

Dependents: 0

Suggesters: 0

Stars: 5

Open Issues: 0

Security

Advisories: 0

Aikido package health analysis

2.3.0 2025-07-08 10:29 UTC

Requires

Requires (Dev)

GPL-2.0 98fd1211f6618bd89f56173e1dd306cfd4cf7ecb

  • Van der Let & Partners <octobercms.woop@vdlp.nl>

This package is auto-updated.

Last update: 2026-03-08 12:01:46 UTC

README

Adds CSRF protection.

Requirements

  • PHP 8.0.2 or higher
  • October CMS 2.0 or higher

Installation

composer require vdlp/oc-csrf-plugin

Configuration

Add the plugin configuration to your config folder:

php artisan vendor:publish --provider="Vdlp\Csrf\ServiceProviders\CsrfServiceProvider" --tag="vdlp-csrf-config"

Add the CSRF token to the <head> section:

<meta name="csrf-token" content="{{ csrf_token() }}">

Add the CSRF token to the AJAX requests:

<script type="text/javascript">
$.ajaxSetup({
    headers: {
        'X-CSRF-TOKEN': $('meta[name="csrf-token"]').attr('content')
    }
});
</script>

Questions? Need help?

If you have any question about how to use this plugin, please don't hesitate to contact us at octobercms@vdlp.nl. We're happy to help you.