Same name and namespace in other branches
- 8.9.x core/lib/Drupal.php \Drupal::csrfToken()
- 9 core/lib/Drupal.php \Drupal::csrfToken()
Returns the CSRF token manager service.
The generated token is based on the session ID of the current user. Normally, anonymous users do not have a session, so the generated token will be different on every page request. To generate a token for users without a session, manually start a session prior to calling this function.
Return value
\Drupal\Core\Access\CsrfTokenGenerator The CSRF token manager.
See also
\Drupal\Core\Session\SessionManager::start()
3 calls to Drupal::csrfToken()
- DrupalTest::testCsrfToken in core/
tests/ Drupal/ Tests/ Core/ DrupalTest.php - Tests the csrfToken() method.
- Media::getDynamicPluginConfig in core/
modules/ ckeditor5/ src/ Plugin/ CKEditor5Plugin/ Media.php - Allows a plugin to modify its static configuration.
- MediaFilterController::checkCsrf in core/
modules/ media/ src/ Controller/ MediaFilterController.php - Throws an AccessDeniedHttpException if the request fails CSRF validation.
File
- core/
lib/ Drupal.php, line 622
Class
- Drupal
- Static Service Container wrapper.
Code
public static function csrfToken() {
return static::getContainer()
->get('csrf_token');
}