CSRFGenerateToken

Last update:

May 18, 2026

Description

Provides a random token and stores it in the session. You can also provide a specific key to store in the session.

Returns

Token

Syntax

CSRFGenerateToken([key] [,forceNew])

History

ColdFusion 10: Added this function.

Parameters

Parameter	Required\Optional	Description
key	optional	A random token is generated based on the key provided. This key is stored in the session.
forceNew	optional	If set to true, a new token is generated every time the method is called. If false, in case a token exists for the key, the same key is returned.

Usage

Use this function to create a random token and store it in the session.

Example

<cfset csrfToken=CSRFGenerateToken() /> 

<cfform method="post" action="sayHello.cfm"> 

<cfinput name="userName" type="text" > 

<cfinput name="token" value="#csrfToken#" type="hidden" > 

<cfinput name="submit" value="Say Hello!!" type="submit" > 

</cfform>

Was this page helpful?

We're glad. Tell us how this page helped.

Found the answer to my problem Understood the instructions Liked the feature

Other suggestions

We're sorry. Can you tell us what didn't work for you?

Didn't find the answer to my problem Couldn't understand the instructions Didn't like the feature

Other suggestions

Thank you for your feedback. Your response will help improve this page.

Was this helpful?

We are sorry the content didn't meet your needs.

Share additional feedback to help us improve.

0/255 | Character limit exceeded.

Thank you so much for sharing your feedback!