PHP cookie::salt Examples

Programming Language: PHP

Class/Type: cookie

Method/Function: salt

Examples at hotexamples.com: 5

PHP Cookie salt is a security measure used to prevent attacks like cross-site scripting and session hijacking. It involves adding a random string of characters to the data being stored in a cookie, making it more difficult for attackers to manipulate or access the data.

Here are some code examples using PHP Cookie salt:

Example 1: Generating a cookie with a salt

In this example, we generate a random salt and add it to the sensitive data we want to store in a cookie. We then hash the salted data using SHA-256 and store it in the cookie with a name of "my_cookie". The cookie will last for one hour and will be accessible to all pages in the website.

Package library: This example doesn't require any additional package/library.

Example 2: Verifying the cookie using the salt

In this example, we retrieve the cookie and split it into two parts - the hash and the salt. We then use the salt to hash the sensitive data again and compare it to the original hash stored in the cookie. If the hashes match, we know that the data is valid and hasn't been tampered with. Package library: This example doesn't require any additional package/library.

PHP cookie::salt - 5 examples found. These are the top rated real world PHP examples of cookie::salt from package kirby extracted from open source projects. You can rate examples to help us improve the quality of examples.

Frequently Used Methods

Show Hide

set(30)

delete(30)

get(30)

del(6)

exists(6)

salt(5)

getInstance(5)

remove(4)

put(3)

Delete(2)

setCookie(2)

queue(2)

logOut(1)

rcoll(1)

path(1)

make(1)

getUserId(1)

lifetime(1)

item(1)

Exists(1)

expire(1)

domain(1)

developer(1)

coll_call(1)

close_key(1)

check_cookie(1)

Get(1)

validateAuthCookie(1)

cookie Class Documentation

Example #1

Show file

File: cookie.php Project: webmatter/gallery3-contrib

 /**
  * Fetch a cookie value, using the Input library.
  *
  * @param   string   cookie name
  * @param   mixed    default value
  * @param   boolean  use XSS cleaning on the value
  * @return  string
  */
 public static function get($name = NULL, $default = NULL, $xss_clean = FALSE)
 {
     // Return an array of all the cookies if we don't have a name
     if ($name === NULL) {
         $cookies = array();
         foreach ($_COOKIE as $key => $value) {
             $cookies[$key] = cookie::get($key, $default, $xss_clean);
         }
         return $cookies;
     }
     if (!isset($_COOKIE[$name])) {
         return $default;
     }
     // Get the cookie value
     $cookie = $_COOKIE[$name];
     // Find the position of the split between salt and contents
     $split = strlen(cookie::salt($name, NULL));
     if (isset($cookie[$split]) and $cookie[$split] === '~') {
         // Separate the salt and the value
         list($hash, $value) = explode('~', $cookie, 2);
         if (cookie::salt($name, $value) === $hash) {
             if ($xss_clean === TRUE and Kohana::config('core.global_xss_filtering') === FALSE) {
                 return Input::instance()->xss_clean($value);
             }
             // Cookie signature is valid
             return $value;
         }
         // The cookie signature is invalid, delete it
         cookie::delete($name);
     }
     return $default;
 }

Example #2

Show file

File: cookie.php Project: nyan-cat/easyweb

 static function start($salt, $expire = null, $domain = null, $path = '/')
 {
     self::$salt = $salt;
     self::$expire = $expire;
     self::$domain = $domain;
     self::$path = $path;
 }

Example #3

Show file

File: cookie.php Project: ukd1/kohana

 /**
  * Sets a signed cookie.
  *
  * @param   string   name of cookie
  * @param   string   contents of cookie
  * @param   integer  lifetime in seconds
  * @return  boolean
  */
 public static function set($key, $value, $expiration = NULL)
 {
     if ($expiration === NULL) {
         // Use the default expiration
         $expiration = cookie::$expiration;
     }
     if ($expiration !== 0) {
         // The expiration is expected to be a UNIX timestamp
         $expiration += time();
     }
     // Add the salt to the cookie value
     $value = cookie::salt($key, $value) . '~' . $value;
     return setcookie($key, $value, $expiration, cookie::$path, cookie::$domain, cookie::$secure, cookie::$httponly);
 }

Example #4

Show file

File: CookieTest.php Project: nevermlnd/cv

	/**
	 * Tests cookie::salt()
	 *
	 * @test
	 * @dataProvider provider_salt
	 * @covers cookie::salt
	 * @param mixed   $key      key to use
	 * @param mixed   $value    value to salt with
	 * @param boolean $expected Output for cookie::delete()
	 */
	public function test_salt($key, $value, $expected)
	{
		$this->assertSame($expected, cookie::salt($key, $value));
	}

Example #5

Show file

File: FunctionalTest.php Project: vimofthevine/sentry

 /**
  * Test logged in from cookie
  */
 public function testLoggedInFromCookie()
 {
     DB::insert('users', array('id', 'username', 'token'))->values(array(2, 'logged_in_cookie_user', 1234))->execute();
     $_COOKIE['a1_a1_autologin'] = cookie::salt('a1_a1_autologin', '1234.2') . '~1234.2';
     $this->assertType('string', cookie::get('a1_a1_autologin'));
     $result = A1::instance('a1')->logged_in();
     $this->assertTrue($result);
     $session = Session::instance(Kohana::config('a1.session_type'));
     $user = $session->get('a1_a1');
     $this->assertType('object', $user);
     $this->assertEquals('logged_in_cookie_user', $user->username);
     $this->assertEquals(2, $user->id);
 }