/** * Check CSRF token identity * * @return bool */ public function validateToken() { $request = new Request(); $postToken = $request->post('_csrf'); $cookieToken = $request->cookie('_csrf'); $sessionToken = Service::get('session')->_csrf; if ($postToken == $sessionToken && $cookieToken == $sessionToken) { return true; } return false; }