\u9632\u6b62 PHP \u4e2d\u7684\u8de8\u7ad9\u8bf7\u6c42\u4f2a\u9020\uff08CSRF, Cross-Site Request Forgery\uff09\u653b\u51fb\uff0c\u662f\u4fdd\u969c Web \u5e94\u7528\u5b89\u5168\u6027\u7684\u91cd\u8981\u63aa\u65bd\u4e4b\u4e00\u3002\u4ee5\u4e0b\u9002\u7528\u4e8e\u4f60\u5728\u4f7f\u7528 PHP \u6784\u5efa\u767b\u5f55\u3001\u8868\u5355\u3001\u6570\u636e\u4fee\u6539\u7b49\u529f\u80fd\u65f6\u6709\u6548\u9632\u5fa1 CSRF \u653b\u51fb\u3002<\/p>\n\n\n\n
CSRF \u662f\u4e00\u79cd\u5229\u7528\u7528\u6237\u767b\u5f55\u72b6\u6001\uff0c\u8bf1\u5bfc\u5176\u5728\u4e0d\u77e5\u60c5\u60c5\u51b5\u4e0b\u6267\u884c\u6076\u610f\u64cd\u4f5c\u7684\u653b\u51fb\u3002<\/strong><\/p>\n\n\n\n \u4f8b\u5982\uff1a<\/p>\n\n\n\n \u6838\u5fc3\u539f\u5219\u662f\uff1a\u9a8c\u8bc1\u6bcf\u4e2a\u654f\u611f\u8bf7\u6c42\u662f\u5426\u6765\u81ea\u201c\u53ef\u4fe1\u9875\u9762\u201d<\/strong>\uff0c\u4e3b\u8981\u65b9\u6cd5\uff1a<\/p>\n\n\n\n \u6bcf\u6b21\u751f\u6210\u4e00\u4e2a\u968f\u673a\u7684\u4ee4\u724c\uff08token\uff09\uff0c\u4fdd\u5b58\u5728\u7528\u6237 Session\uff0c\u5e76\u63d2\u5165\u8868\u5355\u4e2d\u3002\u63d0\u4ea4\u65f6\u8fdb\u884c\u9a8c\u8bc1\u3002<\/p>\n\n\n\n \ud83d\udccc \u26a0\ufe0f \u7f3a\u70b9\uff1a\u90e8\u5206\u6d4f\u89c8\u5668\u53ef\u80fd\u4e0d\u53d1\u9001 Referer\uff0c\u6216\u88ab\u7be1\u6539\uff0c\u56e0\u6b64 \u53ea\u80fd\u4f5c\u4e3a\u8f85\u52a9<\/strong>\u3002<\/p>\n\n\n\n \u5728\u8bbe\u7f6e session cookie \u65f6\u6dfb\u52a0 \ud83d\udccc \u9002\u7528\u4e8e \u65e0 Session \u7684 REST API \/ SPA<\/strong> \u573a\u666f\u3002<\/p>\n\n\n\n \u5f88\u591a PHP \u6846\u67b6\u5df2\u7ecf\u9ed8\u8ba4\u652f\u6301\uff1a<\/p>\n\n\n\n<img src=\"http:\/\/example.com\/delete-user.php?id=123\"> <!-- \u7528\u6237\u5df2\u767b\u5f55\uff0c\u88ab\u8bf1\u5bfc\u70b9\u51fb --><\/code><\/pre>\n\n\n\n
\n\n\n\n\u9632\u5fa1 CSRF \u7684\u901a\u7528\u601d\u8def<\/h2>\n\n\n\n
\n
\n\n\n\n\u65b9\u6cd5 1\uff1a\u4f7f\u7528 CSRF Token\uff08\u6700\u63a8\u8350\uff09<\/h2>\n\n\n\n
1\ufe0f\u20e3 \u751f\u6210 CSRF Token\uff08\u4fdd\u5b58\u5230 Session\uff09<\/h3>\n\n\n\n
session_start();\n\nif (empty($_SESSION['csrf_token'])) {\n $_SESSION['csrf_token'] = bin2hex(random_bytes(32));\n}<\/code><\/pre>\n\n\n\n2\ufe0f\u20e3 \u8868\u5355\u4e2d\u63d2\u5165\u9690\u85cf\u5b57\u6bb5<\/h3>\n\n\n\n
<form method=\"POST\" action=\"update-profile.php\">\n <input type=\"hidden\" name=\"csrf_token\" value=\"<?php echo $_SESSION['csrf_token']; ?>\">\n <input type=\"text\" name=\"name\">\n <input type=\"submit\" value=\"\u66f4\u65b0\">\n<\/form><\/code><\/pre>\n\n\n\n3\ufe0f\u20e3 \u63d0\u4ea4\u540e\u9a8c\u8bc1 Token<\/h3>\n\n\n\n
session_start();\n\nif ($_SERVER['REQUEST_METHOD'] === 'POST') {\n if (!hash_equals($_SESSION['csrf_token'], $_POST['csrf_token'])) {\n die(\"\u26a0\ufe0f CSRF \u9a8c\u8bc1\u5931\u8d25\uff01\");\n }\n\n \/\/ \u5b89\u5168\u5904\u7406\u4e1a\u52a1\u903b\u8f91\n}<\/code><\/pre>\n\n\n\nhash_equals<\/code> \u53ef\u9632\u6b62\u65f6\u5e8f\u653b\u51fb\u3002<\/p>\n\n\n\n
\n\n\n\n\u65b9\u6cd5 2\uff1a\u68c0\u67e5 HTTP Referer\uff08\u8f85\u52a9\u65b9\u6cd5\uff09<\/h2>\n\n\n\n
$referer = $_SERVER['HTTP_REFERER'] ?? '';\nif (strpos($referer, 'https:\/\/yourdomain.com') !== 0) {\n die(\"\u26a0\ufe0f \u975e\u6cd5\u8bf7\u6c42\uff01\");\n}<\/code><\/pre>\n\n\n\n
\n\n\n\n\u65b9\u6cd5 3\uff1a\u8bbe\u7f6e SameSite Cookie \u5c5e\u6027\uff08\u73b0\u4ee3\u6d4f\u89c8\u5668\u652f\u6301\uff09<\/h2>\n\n\n\n
SameSite<\/code> \u9650\u5236\uff1a<\/p>\n\n\n\nsession_set_cookie_params([\n 'lifetime' => 0,\n 'path' => '\/',\n 'domain' => 'yourdomain.com',\n 'secure' => true,\n 'httponly' => true,\n 'samesite' => 'Strict' \/\/ \u6216 Lax\n]);\nsession_start();<\/code><\/pre>\n\n\n\nStrict<\/code> \u6700\u5b89\u5168\uff0c\u4f46\u53ef\u80fd\u5bfc\u81f4\u8de8\u7ad9\u8df3\u8f6c\u5931\u8d25\uff1bLax<\/code> \u8f83\u5bbd\u677e\u3002<\/p>\n\n\n\n
\n\n\n\n\u65b9\u6cd5 4\uff1a\u53cc\u91cd Cookie \u9a8c\u8bc1\u673a\u5236\uff08Double Submit Cookie\uff09<\/h2>\n\n\n\n
\n
\n\n\n\n\u65b9\u6cd5 5\uff1a\u4f7f\u7528 Web \u6846\u67b6\u5185\u5efa CSRF \u9632\u62a4<\/h2>\n\n\n\n