diff --git a/controller/csrf_token_validation.rst b/controller/csrf_token_validation.rst
index 5bf60980925..25555d78cfb 100644
--- a/controller/csrf_token_validation.rst
+++ b/controller/csrf_token_validation.rst
@@ -11,6 +11,8 @@ method to check the validity of a CSRF token::
 
     public function deleteAction()
     {
+        // get the value of the $submittedToken from the request...
+
         if ($this->isCsrfTokenValid('token_id', $submittedToken)) {
             // ... do something, like deleting an object
         }