diff options
| author | Andrey Andreev <narf@bofh.bg> | 2012-10-18 15:14:51 +0200 |
|---|---|---|
| committer | Andrey Andreev <narf@bofh.bg> | 2012-10-18 15:14:51 +0200 |
| commit | cf264e0d165647f30efdef1b2d944849bebf4c72 (patch) | |
| tree | 1e730989ca79ac7c34241d904263d6fd9234c171 | |
| parent | 00ea2a9a3a6451d106ed3f083716f59e84d5f656 (diff) | |
Fix Session cookies not being encrypted on creation and sess_destroy() not actually deleting cookies
| -rwxr-xr-x | system/libraries/Session/drivers/Session_cookie.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/system/libraries/Session/drivers/Session_cookie.php b/system/libraries/Session/drivers/Session_cookie.php index 51d94da4e..8617aec2d 100755 --- a/system/libraries/Session/drivers/Session_cookie.php +++ b/system/libraries/Session/drivers/Session_cookie.php @@ -308,7 +308,7 @@ class CI_Session_cookie extends CI_Session_driver { } // Kill the cookie - $this->_setcookie($this->sess_cookie_name, addslashes(serialize(array())), ($this->now - 31500000), + $this->_setcookie($this->sess_cookie_name, '', ($this->now - 31500000), $this->cookie_path, $this->cookie_domain, 0); // Kill session data @@ -664,7 +664,7 @@ class CI_Session_cookie extends CI_Session_driver { if ($this->sess_encrypt_cookie === TRUE) { - $this->CI->encrypt->encode($cookie_data); + $cookie_data = $this->CI->encrypt->encode($cookie_data); } // Require message authentication |