diff options
| author | Arron Woods <aw@chartblocks.com> | 2015-05-18 18:13:57 +0100 |
|---|---|---|
| committer | Arron Woods <aw@chartblocks.com> | 2015-05-18 18:13:57 +0100 |
| commit | 482ce747db34349ba131b9b01bc77b18ab6168c9 (patch) | |
| tree | ddbb0cef42b88b1fff409dab9ff4ee14a9b1dc95 | |
| parent | 92364a9965c75b8703271b76e689ed726dd74c27 (diff) | |
| download | php-ssrs-482ce747db34349ba131b9b01bc77b18ab6168c9.zip php-ssrs-482ce747db34349ba131b9b01bc77b18ab6168c9.tar.gz php-ssrs-482ce747db34349ba131b9b01bc77b18ab6168c9.tar.bz2 | |
CSRF support
| -rw-r--r-- | library/SSRS/Form/Adapter/AdapterInterface.php | 2 | ||||
| -rw-r--r-- | library/SSRS/Form/Adapter/ZendFramework2.php | 8 |
2 files changed, 10 insertions, 0 deletions
diff --git a/library/SSRS/Form/Adapter/AdapterInterface.php b/library/SSRS/Form/Adapter/AdapterInterface.php index 07a03f8..58b6196 100644 --- a/library/SSRS/Form/Adapter/AdapterInterface.php +++ b/library/SSRS/Form/Adapter/AdapterInterface.php @@ -13,4 +13,6 @@ interface AdapterInterface { public function getHTML(); public function validate($data); + + public function addCSRFElement($name, $value); } diff --git a/library/SSRS/Form/Adapter/ZendFramework2.php b/library/SSRS/Form/Adapter/ZendFramework2.php index fef6585..26e28a2 100644 --- a/library/SSRS/Form/Adapter/ZendFramework2.php +++ b/library/SSRS/Form/Adapter/ZendFramework2.php @@ -94,6 +94,14 @@ class ZendFramework2 extends AbstractAdapter { return $this; } + public function addCSRFElement($name, $value) { + $csrf = new \Zend\Form\Element\Hidden($name); + $csrf->setValue($value); + + $this->form->add($csrf); + return $this; + } + public function getUserParameters() { return array_filter($this->executionInfo->getReportParameters(), function(ReportParameter $parameter) { return ($parameter->data['PromptUser'] && false === empty($parameter->data['Prompt'])); |