Cakephp 3 How to prevent multiple form submissions

Asked Apr 08 '16 at 11:10

Active Apr 11 '16 at 01:10

Viewed 442 times

I've used the CsrfComponent, and I even implement the csrfToken by myself but neither of the solutions seem to work.

Here is my code:

view:

<?php $session->write('sCsrfToken', sha1(microtime())); ?>
<?= $this->Form->create(false)?>
<!-- Some input fields -->
<?= $this->Form->input('pCsrfToken', ['type' => 'hidden',
                         'value' =>  h($session->read('sCsrfToken'))]) ?>
<?= $this->Form->button('Submit') ?>
<?= $this->form->end();?>

controller:

if($this->request->is('post')){
$sessionToken = $session->read('sCsrfToken');
$postToken    = $this->request->data('pCsrfToken');

if(empty($sessionToken) || $postToken != $sessionToken) {
throw new Exception();
} 
else {
$session->write('sCsrfToken', sha1(microtime())); 
//DB INSERT, SEND MAIL...
}

Thank you

edited Apr 11 '16 at 01:10

asked Apr 08 '16 at 11:10

Truong

What behaviour are you expecting? – JayIsTooCommon Apr 08 '16 at 12:55
hi @Jay I'm trying to avoid multiple form submissions – Truong Apr 10 '16 at 09:23
possible duplicate of http://stackoverflow.com/questions/19194356/how-to-disable-a-submit-button-after-submission-in-php – Faiyaz Alam Apr 11 '16 at 04:49

Cakephp 3 How to prevent multiple form submissions

0 Answers0