Skip to content
Snippets Groups Projects
Commit e7c9d5fe authored by Lukas Reschke's avatar Lukas Reschke
Browse files

Set oc_token to httponly

parent 59404b56
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 1 addition and 1 deletion
lib/user.php
+ 1
1
View file @ e7c9d5fe
......@@ -476,7 +476,7 @@ class OC_User {
$secure_cookie = OC_Config::getValue("forcessl", false);
$expires = time() + OC_Config::getValue('remember_login_cookie_lifetime', 60*60*24*15);
setcookie("oc_username", $username, $expires, '', '', $secure_cookie);
setcookie("oc_token", $token, $expires, '', '', $secure_cookie);
setcookie("oc_token", $token, $expires, '', '', $secure_cookie, true);
setcookie("oc_remember_login", true, $expires, '', '', $secure_cookie);
}
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Please register or to comment