diff options
| author | Andrey Andreev <narf@devilix.net> | 2022-01-08 16:02:48 +0100 |
|---|---|---|
| committer | Andrey Andreev <narf@devilix.net> | 2022-01-08 16:03:17 +0100 |
| commit | 2d4ddf57cc64f37a76e53403bc1442a54cc01897 (patch) | |
| tree | 4bad2be272b3f55be45bb693885bc7e5cedd0ef7 | |
| parent | 52d04d27b6e172093d7d9f70c6e77846b6742742 (diff) | |
[ci skip] Attempt to hack SameSite into session_set_cookie_params() pre-PHP7.3
| -rw-r--r-- | system/libraries/Session/Session.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/system/libraries/Session/Session.php b/system/libraries/Session/Session.php index 9d4561616..8d3ba2857 100644 --- a/system/libraries/Session/Session.php +++ b/system/libraries/Session/Session.php @@ -336,7 +336,7 @@ class CI_Session { { session_set_cookie_params( $params['cookie_lifetime'], - $params['cookie_path'], + $params['cookie_path'].'; SameSite='.$params['cookie_samesite'], $params['cookie_domain'], $params['cookie_secure'], TRUE // HttpOnly; Yes, this is intentional and not configurable for security reasons |