Fork me on GitHub


The instance is stored in the global "Session" class.

CSRF token


Between the "<form method="post">" and the "</form>" tag in the view one should add "<?php Session::getCsrfInput(); ?>". This call will echo a hidden input field to the form that will prevent Cross-Site-Request-Forgery (CSRF) attacks. Note: this is required when sending a form with the "post" method.

close02:53:56 - get /docs/session - 2 ms - 1 MB - debugger