function csrf_get_protect($redirect = SEASURF_ATTACK_ERROR_PAGE) { $token = $this->get_token(); if (empty($token) || retrieve(GET, 'token', '') !== $token) { Session::_csrf_attack($redirect); return false; } return true; }