From c489f8228d00a04a8f6868b863fa9305b577f57a Mon Sep 17 00:00:00 2001
From: Alexander Makarov <sam@rmcreative.ru>
Date: Thu, 9 Oct 2014 14:53:59 +0400
Subject: [PATCH] Removed unnecessary token generation. We already have it.

---
 framework/web/Request.php | 1 -
 1 file changed, 1 deletion(-)

diff --git a/framework/web/Request.php b/framework/web/Request.php
index 391c086d17..99512242be 100644
--- a/framework/web/Request.php
+++ b/framework/web/Request.php
@@ -1287,7 +1287,6 @@ class Request extends \yii\base\Request
             $config['value'] = $token;
             Yii::$app->getResponse()->getCookies()->add(new Cookie($config));
         } else {
-            $token = Yii::$app->getSecurity()->generateRandomString();
             Yii::$app->getSession()->set($this->csrfParam, $token);
         }
         return $token;