AS1024
/
itflow
mirror of https://github.com/itflow-org/itflow
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

http/https encryption cookie

This commit is contained in:
Marcus Hill 2022-01-11 19:44:21 +00:00
parent fccae5dedb
commit 2742410e4b
1 changed files with 7 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
functions.php
View File

@ -368,7 +368,13 @@ function generateUserSessionKey($site_encryption_master_key){
$_SESSION['user_encryption_session_iv'] = $user_encryption_session_iv;
//Give the user "their" key as a cookie
setcookie("user_encryption_session_key", $user_encryption_session_key, 0, "/", "", "true", "true");
if($config_https_only){
setcookie("user_encryption_session_key", $user_encryption_session_key, 0, "/", "", "true", "true");
}
else {
// No secure flag
setcookie("user_encryption_session_key", $user_encryption_session_key, 0, "/", "", "false", "true");
}
}
//Decrypts an encrypted password (website/asset login), returns it as a string