AS1024/itflow
1
0
Fork 0
mirror of https://github.com/itflow-org/itflow synced 2026-03-01 11:24:52 +00:00
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #258 from wrongecho/cookies

Browse Source 
Secure Cookies
This commit is contained in:
Johnny
2022-01-09 12:56:30 -05:00
committed by GitHub
parent c4d2334759 25b58c21c8
commit e1da5adbfa
3 changed files with 13 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
check_login.php
View File

@@ -1,7 +1,13 @@
<?php <?php
if(!isset($_SESSION)){ if(!isset($_SESSION)){
session_start(); // HTTP Only cookies
ini_set("session.cookie_httponly", True);
if($config_https_only){
// Tell client to only send cookie(s) over HTTPS
ini_set("session.cookie_secure", True);
}
session_start();
} }
//Check to see if setup is enabled //Check to see if setup is enabled

5
login.php
View File

@@ -19,6 +19,11 @@ $user_agent = "$os - $browser";
// HTTP Only cookies // HTTP Only cookies
ini_set("session.cookie_httponly", True); ini_set("session.cookie_httponly", True);
// Tell client to only send cookie(s) over HTTPS
if($config_https_only){
ini_set("session.cookie_secure", True);
}
session_start(); session_start();
if(isset($_POST['login'])){ if(isset($_POST['login'])){

1
setup.php
View File

@@ -351,6 +351,7 @@ if(isset($_POST['add_database'])){
$new_config[] = "\$mysqli = mysqli_connect(\$dbhost, \$dbusername, \$dbpassword, \$database) or die('Database Connection Failed');\n"; $new_config[] = "\$mysqli = mysqli_connect(\$dbhost, \$dbusername, \$dbpassword, \$database) or die('Database Connection Failed');\n";
$new_config[] = "\$config_app_name = 'ITFlow';\n"; $new_config[] = "\$config_app_name = 'ITFlow';\n";
$new_config[] = sprintf("\$config_base_url = '%s';\n", addslashes($config_base_url)); $new_config[] = sprintf("\$config_base_url = '%s';\n", addslashes($config_base_url));
$new_config[] = "\$config_https_only = TRUE;\n";
file_put_contents("config.php", $new_config); file_put_contents("config.php", $new_config);