diff options
| author | Lukas Reschke <lukas@statuscode.ch> | 2012-10-16 13:53:40 +0200 |
|---|---|---|
| committer | Lukas Reschke <lukas@statuscode.ch> | 2012-10-16 13:53:40 +0200 |
| commit | e7c9d5fe54ec619793ae77829b93df4635279662 (patch) | |
| tree | 6aa458df004dfa20432e274ead8f212fd7eacac2 | |
| parent | 59404b567528e15890954775cffe61cae3fdc724 (diff) | |
| download | nextcloud-server-e7c9d5fe54ec619793ae77829b93df4635279662.tar.gz nextcloud-server-e7c9d5fe54ec619793ae77829b93df4635279662.zip | |
Set oc_token to httponly
| -rw-r--r-- | lib/user.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/lib/user.php b/lib/user.php index 11373a74014..e577002650c 100644 --- a/lib/user.php +++ b/lib/user.php @@ -476,7 +476,7 @@ class OC_User { $secure_cookie = OC_Config::getValue("forcessl", false); $expires = time() + OC_Config::getValue('remember_login_cookie_lifetime', 60*60*24*15); setcookie("oc_username", $username, $expires, '', '', $secure_cookie); - setcookie("oc_token", $token, $expires, '', '', $secure_cookie); + setcookie("oc_token", $token, $expires, '', '', $secure_cookie, true); setcookie("oc_remember_login", true, $expires, '', '', $secure_cookie); } |