Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming HttpOnly Cookie
HttpOnly Cookie
  • El Forum
    Unregistered
  •  
#1
09-06-2010, 01:54 PM

[eluser]dazed[/eluser]
Hi Guys,

Another tricky one for you guys.

I have completely built an application using the CodeIgniter session library using the database back end.

My problem is that now the application has gone through security review it has been noted that the ci_session cookie will need HttpOnly flag.

Now in PHP you use the command
Code:
session.cookie_httponly
and I have found OBSession uses
Code:
$config['sess_http_only'] = TRUE;
now is there a way or any suggestions on how to hack the session library for me to be able to add HttpOnly to my Cookie?

Cheers

Dazed


Messages In This Thread
HttpOnly Cookie - by El Forum - 09-06-2010, 01:54 PM
HttpOnly Cookie - by El Forum - 09-06-2010, 03:42 PM
HttpOnly Cookie - by El Forum - 09-07-2010, 03:02 AM
HttpOnly Cookie - by El Forum - 01-14-2013, 03:14 AM
HttpOnly Cookie - by El Forum - 04-12-2014, 12:12 AM
HttpOnly Cookie - by El Forum - 04-12-2014, 05:31 AM
HttpOnly Cookie - by El Forum - 04-12-2014, 05:08 PM



Theme © iAndrew 2016 - Forum software by © MyBB