How can implementing CSRF tokens or unique indexes in PHP forms help prevent duplicate database entries upon page refresh?

When a user refreshes a page after submitting a form, it can lead to duplicate database entries being created. Implementing CSRF tokens or unique indexes in PHP forms can help prevent this by ensuring that each form submission is unique and can only be processed once.

&lt;?php
session_start();

// Generate CSRF token
$token = bin2hex(random_bytes(32));
$_SESSION[&#039;csrf_token&#039;] = $token;

// Check CSRF token on form submission
if ($_SERVER[&#039;REQUEST_METHOD&#039;] === &#039;POST&#039;) {
    if (!hash_equals($_SESSION[&#039;csrf_token&#039;], $_POST[&#039;csrf_token&#039;])) {
        die(&quot;CSRF token validation failed.&quot;);
    }
    
    // Process form submission and insert data into database
}
?&gt;

&lt;form method=&quot;post&quot;&gt;
    &lt;input type=&quot;hidden&quot; name=&quot;csrf_token&quot; value=&quot;&lt;?php echo $token; ?&gt;&quot;&gt;
    &lt;!-- Other form fields --&gt;
    &lt;button type=&quot;submit&quot;&gt;Submit&lt;/button&gt;
&lt;/form&gt;

Keywords

CSRF tokens unique indexes PHP forms duplicate database entries page refresh

How can implementing CSRF tokens or unique indexes in PHP forms help prevent duplicate database entries upon page refresh?

Keywords

Related Questions