Cookies httponly |
[eluser]Dregond Rahl[/eluser]
http://www.php.net/setcookie I personally think it would be a good idea to integrate it for Ci and Ci sessions, so at least if the sever runs on PHP 5+ and if the user is using a decent browser, their cookies will be more safer. I recently modified the cookie_helper to support it, its a pretty simple change. What are your views on httponly ?
[eluser]dmyers[/eluser]
I personally use my own session lib which I added httponly support to. Of course I didn't do version checking because I am 99.9% sure any new installs will be php 5 but, I think it's a great feature. I certainly think CI should add support for this with PHP version checking |
Welcome Guest, Not a member yet? Register Sign In |