summaryrefslogtreecommitdiffstats
path: root/system
diff options
context:
space:
mode:
authorAndrey Andreev <narf@bofh.bg>2012-10-18 15:14:51 +0200
committerAndrey Andreev <narf@bofh.bg>2012-10-18 15:14:51 +0200
commitcf264e0d165647f30efdef1b2d944849bebf4c72 (patch)
tree1e730989ca79ac7c34241d904263d6fd9234c171 /system
parent00ea2a9a3a6451d106ed3f083716f59e84d5f656 (diff)
Fix Session cookies not being encrypted on creation and sess_destroy() not actually deleting cookies
Diffstat (limited to 'system')
-rwxr-xr-xsystem/libraries/Session/drivers/Session_cookie.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/system/libraries/Session/drivers/Session_cookie.php b/system/libraries/Session/drivers/Session_cookie.php
index 51d94da4e..8617aec2d 100755
--- a/system/libraries/Session/drivers/Session_cookie.php
+++ b/system/libraries/Session/drivers/Session_cookie.php
@@ -308,7 +308,7 @@ class CI_Session_cookie extends CI_Session_driver {
}
// Kill the cookie
- $this->_setcookie($this->sess_cookie_name, addslashes(serialize(array())), ($this->now - 31500000),
+ $this->_setcookie($this->sess_cookie_name, '', ($this->now - 31500000),
$this->cookie_path, $this->cookie_domain, 0);
// Kill session data
@@ -664,7 +664,7 @@ class CI_Session_cookie extends CI_Session_driver {
if ($this->sess_encrypt_cookie === TRUE)
{
- $this->CI->encrypt->encode($cookie_data);
+ $cookie_data = $this->CI->encrypt->encode($cookie_data);
}
// Require message authentication