Skip to content

Commit

Permalink
Merge branch '6179-improve-session-security' into 'develop'
Browse files Browse the repository at this point in the history 
Resolve "Improve session security"

Closes #6179

See merge request ispconfig/ispconfig3!1488
  • Loading branch information
Marius Burkard committed Jun 8, 2021
2 parents 3ecd395 + cabf603 commit 36cdb85
Showing 1 changed file with 3 additions and 0 deletions.
3 changes: 3 additions & 0 deletions interface/lib/app.inc.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -126,6 +126,9 @@ public function initialize_session() {
array($this->session, 'destroy'),
array($this->session, 'gc'));

ini_set('session.cookie_httponly', true);
@ini_set('session.cookie_samesite', 'Lax');

session_start();

//* Initialize session variables
Expand Down

0 comments on commit 36cdb85

Please sign in to comment.