Details

Security

Bug when checking incomming CSRF tokens. Check was only performed for token names not for their value.

Additional Options

/* $_SEQ_SESSION_NAME
 * Name of the session.
 * default:PHPSESSID
 */

$_SEQ_SESSION_NAME = 'SESSIONNAME';

/* $_SEQ_FILTER_NOMATCH_ACTION
 * What happens when a value does not match its filter.
 * "delay": Delays response for 50 seconds.
 * "logout": Deletes current session.
 * If "logout" is used with "$_SEQ_ONERROR_REDIRECT_TO", the user will be redirected
 * to there.
 * OPTIONS (separated by space):
 * email, delay, logout, redirect
 */                 
$_SEQ_FILTER_NOMATCH_ACTION = 'redirect';