summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorAleksander Machniak <alec@alec.pl>2012-07-24 14:20:35 +0200
committerAleksander Machniak <alec@alec.pl>2012-07-24 14:20:35 +0200
commit0afe27901189a5416dc696eef32e2bc2e5fe3844 (patch)
tree16fc6ba9cc450b9146bc151b54237b8720c90a29
parente19fafae04c6733a3c8ccddf9a6565ef2b40dce5 (diff)
Set HttpOnly flag also for session cookie
-rw-r--r--program/include/rcube.php1
1 files changed, 1 insertions, 0 deletions
diff --git a/program/include/rcube.php b/program/include/rcube.php
index 3b1601578..a39eab15c 100644
--- a/program/include/rcube.php
+++ b/program/include/rcube.php
@@ -409,6 +409,7 @@ class rcube
ini_set('session.use_cookies', 1);
ini_set('session.use_only_cookies', 1);
ini_set('session.serialize_handler', 'php');
+ ini_set('session.cookie_httponly', 1);
// use database for storing session data
$this->session = new rcube_session($this->get_dbh(), $this->config);