Skip to content

Commit

Permalink
Merge pull request #85 from CrisHigham/master
Browse files Browse the repository at this point in the history 
Move of ini-set
  • Loading branch information
@andrevanzuydam
andrevanzuydam authored Mar 5, 2024
2 parents 89c94a2 + 76517e1 commit 42bd391
Showing 1 changed file with 6 additions and 6 deletions.
12 changes: 6 additions & 6 deletions Tina4/Initialize.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -175,7 +175,12 @@
define("TINA4_TOKEN_MINUTES", 10);
}

//Initialize Secrets
// Prevents javascript XSS attacks aimed to steal the session ID
ini_set('session.cookie_httponly', 1);
// Prevent Session ID from being passed through URLs
ini_set('session.use_only_cookies', 1);

//Initialize Secrets which starts the session
(new \Tina4\Auth());

if (!defined("TINA4_ALLOW_ORIGINS")) {
Expand Down Expand Up @@ -356,9 +361,4 @@ function createCache()
$cache = null;
}

// Prevents javascript XSS attacks aimed to steal the session ID
ini_set('session.cookie_httponly', 1);
// Prevent Session ID from being passed through URLs
ini_set('session.use_only_cookies', 1);

//@todo Init Git Here

0 comments on commit 42bd391

Please sign in to comment.