diff options
author | Aleksander Machniak <alec@alec.pl> | 2012-07-24 14:20:35 +0200 |
---|---|---|
committer | Aleksander Machniak <alec@alec.pl> | 2012-07-24 14:20:35 +0200 |
commit | 0afe27901189a5416dc696eef32e2bc2e5fe3844 (patch) | |
tree | 16fc6ba9cc450b9146bc151b54237b8720c90a29 /program/include/rcube.php | |
parent | e19fafae04c6733a3c8ccddf9a6565ef2b40dce5 (diff) |
Set HttpOnly flag also for session cookie
Diffstat (limited to 'program/include/rcube.php')
-rw-r--r-- | program/include/rcube.php | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/program/include/rcube.php b/program/include/rcube.php index 3b1601578..a39eab15c 100644 --- a/program/include/rcube.php +++ b/program/include/rcube.php @@ -409,6 +409,7 @@ class rcube ini_set('session.use_cookies', 1); ini_set('session.use_only_cookies', 1); ini_set('session.serialize_handler', 'php'); + ini_set('session.cookie_httponly', 1); // use database for storing session data $this->session = new rcube_session($this->get_dbh(), $this->config); |