/** * Generate a hidden field with the current CSRF token. * * @return string */ public function token() { $token = !empty($this->csrfToken) ? $this->csrfToken : $this->session->getToken(); return $this->hidden('_token', $token); }