function drupal_valid_token
Validates a token based on $value, the user session, and the private key.
Parameters
$token: The token to be validated.
$value: An additional value to base the token on.
$skip_anonymous: Set to true to skip token validation for anonymous users.
Return value
True for a valid token, false for an invalid token. When $skip_anonymous is true, the return value will always be true for anonymous users.
17 calls to drupal_valid_token()
- aggregator_admin_refresh_feed in modules/
aggregator/ aggregator.admin.inc - Page callback: Refreshes a feed, then redirects to the overview page.
- ajax_base_page_theme in includes/
ajax.inc - Theme callback for Ajax requests.
- color_palette_color_value in modules/
color/ color.module - Determines the value for a palette color field.
- comment_approve in modules/
comment/ comment.pages.inc - Menu callback; publish specified comment.
- dashboard_update in modules/
dashboard/ dashboard.module - Sets the new weight of each region according to the drag-and-drop order.
File
-
includes/
common.inc, line 5376
Code
function drupal_valid_token($token, $value = '', $skip_anonymous = FALSE) {
global $user;
return $skip_anonymous && $user->uid == 0 || $token === drupal_get_token($value);
}Buggy or inaccurate documentation? Please file an issue. Need support? Need help programming? Connect with the Drupal community.