From ac90916b8463727caa8ed9244f3c526746f6e81b Mon Sep 17 00:00:00 2001 From: mark_story Date: Sat, 2 Oct 2010 00:22:44 -0400 Subject: [PATCH] Adding some documentation about token consumption. --- cake/libs/controller/components/security.php | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/cake/libs/controller/components/security.php b/cake/libs/controller/components/security.php index 335369cd0..0184312f6 100644 --- a/cake/libs/controller/components/security.php +++ b/cake/libs/controller/components/security.php @@ -715,7 +715,8 @@ class SecurityComponent extends Component { /** * Validate that the controller has a CSRF token in the POST data - * and that the token is legit/not expired. + * and that the token is legit/not expired. If the token is valid + * it will be removed from the list of valid tokens. * * @param Controller $controller A controller to check * @return boolean Valid csrf token.