|
|
@ -27,7 +27,7 @@ class Request extends \yii\base\Request |
|
|
|
* You may use [[\yii\web\Html::beginForm()]] to generate his hidden input. |
|
|
|
* You may use [[\yii\web\Html::beginForm()]] to generate his hidden input. |
|
|
|
* @see http://en.wikipedia.org/wiki/Cross-site_request_forgery |
|
|
|
* @see http://en.wikipedia.org/wiki/Cross-site_request_forgery |
|
|
|
*/ |
|
|
|
*/ |
|
|
|
public $enableCsrfValidation = true; |
|
|
|
public $enableCsrfValidation = false; |
|
|
|
/** |
|
|
|
/** |
|
|
|
* @var string the name of the token used to prevent CSRF. Defaults to 'YII_CSRF_TOKEN'. |
|
|
|
* @var string the name of the token used to prevent CSRF. Defaults to 'YII_CSRF_TOKEN'. |
|
|
|
* This property is effectively only when {@link enableCsrfValidation} is true. |
|
|
|
* This property is effectively only when {@link enableCsrfValidation} is true. |
|
|
|