Documentation ¶
Overview ¶
Package csrf implements a request handler which generates a token to protect against Cross-Site Request Forgery.
Index ¶
Constants ¶
View Source
const ( TokenInvalid = "Forbidden. anti-CSRF Token/header missing or invalid" HeaderMissing = "Anti CSRF header is missing" )
Variables ¶
View Source
var (
ErrInvalidSession = errors.New("Session does not exist ?")
)
Functions ¶
This section is empty.
Types ¶
type Handler ¶
type Handler struct { Header string // Name of the anti-csrf request header to check Session session.Handler // contains filtered or unexported fields }
Handler is a special type of request handler that creates a token value used to protect against Cross-Site Request Forgery vulnerabilities.
func NewHandler ¶
NewHandler builds a new anti-CSRF request handler, creating a full session object.
Click to show internal directories.
Click to hide internal directories.