Automatic protection from Cross-Site Request Forgery for PHP 7 projects.

This library handles CSRF protection automatically for you — including generating tokens, injecting them into all forms in the page and then verifying that a valid token is present whenever a POST request is received.

This repository is a core module of the PHP.Gt WebEngine, but can be used in any PHP 7+ project.