Feature Request: Custom CsrfProtection

[jelen07]

Hi, I'm looking for a solution, how to pass CSRF protection in e2e tests. ATM, we have sign in form with method:

protected function createComponentSignIn(): SignInControl
{
	$control = $this->signInControlFactory->create();

	$control->setFile(__DIR__ . '/templates/forms/signInForm.latte');

	$control->onFormCreation[] = function (Form $form) {
		if ($this->appEnv->isTest()) {
			$form->offsetUnset(Form::PROTECTOR_ID);
		}
	};

	$control->onLoggedIn[] = function () {
		if (!empty($this->backLink)) {
			$this->restoreRequest($this->backLink);
		}

		$this->redirect(':Admin:Dashboard:Dashboard:');
	};

	$control->onAuthenticationFail[] = function (AuthenticationException $e) {
		$this->notifier->error(
			$e->getCode() === IAuthenticator::FAILURE ? 'authentication_failure' : 'invalid_credentials'
		)->scheduleToastr();
	};

	return $control;
}

And I would like to remove the isTest() part:

if ($this->appEnv->isTest()) {
	$form->offsetUnset(Form::PROTECTOR_ID);
}

But the default CsrfProtection is hardcoded in Form -> https://github.com/nette/forms/blob/master/src/Forms/Form.php#L227.

It would be nice to specify custom CsrfProtection factory to add dummy token validation in tests etc. Is it something that could be implemented?

Best Regards
V.