nsinnovations/fusionpbx
2
0
Fork 0
mirror of https://github.com/fusionpbx/fusionpbx.git synced 2025-12-30 00:53:50 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add HttpOnly, Secure, and Samesite session settings to config.conf (#7547)

Browse Source 
* Add HttpOnly, Secure, and Samesite session settings to config.conf

* Update upgrade_menu.php

* Update upgrade.php

* Update upgrade.php

* Update install.php
This commit is contained in:
Alex
2025-10-03 15:06:47 -07:00
committed by GitHub
parent f97e08d418
commit e53199fd28
4 changed files with 19 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
resources/require.php
View File

@@ -91,9 +91,9 @@
//start the session if not using the command line
global $no_session;
if (!defined('STDIN') && empty($no_session)) {
ini_set('session.cookie_httponly', 'true');
ini_set('session.cookie_secure', 'true');
ini_set('session.cookie_samesite', 'Lax');
ini_set('session.cookie_httponly', !isset($conf['session.cookie_httponly']) ? 'true' : (!empty($config->get('session.cookie_httponly')) ? 'true' : 'false'));
ini_set('session.cookie_secure', !isset($conf['session.cookie_secure']) ? 'true' : (!empty($config->get('session.cookie_secure')) ? 'true' : 'false'));
ini_set('session.cookie_samesite', $config->get('session.cookie_samesite', 'Lax'));
session_start();
}