/** * Edit an existing post */ public function actionEdit() { $model = static::getModelByRequest('Post'); // fancy, right? $pageTitle = 'Edit Post : ' . $model->title; $token = CsrfHelper::getNewToken(__FUNCTION__); $this->_renderPostEdit($model, $pageTitle, $token); }
/** * Check if we have a CSRF happening * @param $action */ protected static function ensureCsrfTokenValidity($action) { // is the token valid? $isCsrfTokenValid = CsrfHelper::validateRequest($action); if (!$isCsrfTokenValid) { // nope? Come on, not you again. static::exitWithEatSpamException('CSRF validation Failed.'); } }