do i have to use form_validation->run just to validate the csrf?
I’m pretty sure that Codeigniter automatically validates the CSRF (although I could be wrong)
If you use the form helper and use: form_open() it will automatically give you the csrf in a hidden input, on my website if the CSRF is wrong, or not existance, Ajax throws back error 500
yeah im getting error 500 in chrome but in firefox its good.
i even tried echoing $_POST and there’s csrf post.
I’m dam sure that Codeigniter automatically validates the CSRF..
im not sure if its only my browser’s cookie fcked up, because i tried it on other pc it works fine.