• 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
COOKIE name restricted?... CI_Input::_clean_input_keys

#1
[eluser]Ajaxboy[/eluser]
the page just dies "Disallowed Key Characters"

so as part of my general security procedures I encrypt cookie names that store user_id (and the id itself) for the session for security purposes.., but CI wont allow to name cookies with any special characters and not even in the cookie content!!! - with the sanitation.. , so.. maybe it should allowed special characters in cookies?, are there are risks I am not aware of for allowing them?, and won't let me get past this point, isn't this a bit intrusive?.. (please note that I am not using the CI_Session to store any data, It just a simple cookie that I am setting on my own class

#2
[eluser]Ajaxboy[/eluser]
or maybe you guys should add a setting in config that allows for it...

#3
[eluser]Ajaxboy[/eluser]
guess for the time being, I will just comment out that section of the code in

system/core/Input.php line 510


Digg   Delicious   Reddit   Facebook   Twitter   StumbleUpon  


  Theme © 2014 iAndrew  
Powered By MyBB, © 2002-2020 MyBB Group.