SessionCSRF::getSingleUseToken() method

Get a CSRF Token name and value that can only be used once

Note that a single call to hasValidToken($id) or validate($id) will invalidate the single use token. So call them once and store your result if you need the result multiple times.


// basic usage
$array = $sessionCSRF->getSingleUseToken();

// usage with all arguments
$array = $sessionCSRF->getSingleUseToken($id = '');


id (optional)int, string

Optional unique ID/name for this token (of omitted one is generated automatically)

Return value


("id' => "token ID", "name" => "token name", "value" => "token value", "time" => created timestamp)

SessionCSRF methods and properties

API reference based on ProcessWire core version 3.0.236

Latest news

  • ProcessWire Weekly #523
    In the 523rd issue of ProcessWire Weekly we'll check out what's new in the core this week, share some new module related news, and more. Read on! / 18 May 2024
  • ProFields Table Field with Actions support
    This week we have some updates for the ProFields table field (FieldtypeTable). These updates are primarily focused on adding new tools for the editor to facilitate input and management of content in a table field.
    Blog / 12 April 2024
  • Subscribe to weekly ProcessWire news

“The end client and designer love the ease at which they can update the website. Training beyond how to log in wasn’t even necessary since ProcessWire’s default interface is straightforward.” —Jonathan Lahijani