Adding some documentation about token consumption.

2025-01-19 02:56:15 +00:00 · 2010-10-02 00:22:44 -04:00 · 2010-10-02 00:22:44 -04:00 · ac90916b84
commit ac90916b84
parent a10f1478ee
1 changed files with 2 additions and 1 deletions
--- a/cake/libs/controller/components/security.php
+++ b/cake/libs/controller/components/security.php
@ -715,7 +715,8 @@ class SecurityComponent extends Component {

 /**
 * Validate that the controller has a CSRF token in the POST data
- * and that the token is legit/not expired.
+ * and that the token is legit/not expired.  If the token is valid
+ * it will be removed from the list of valid tokens.
 *
 * @param Controller $controller A controller to check
 * @return boolean Valid csrf token.