Optionally access mod cookie in JavaScript

This commit is contained in:
ctrlcctrlv 2013-08-18 01:44:36 +00:00 committed by Michael Foster
parent 45bfd2a095
commit 47dec49465
2 changed files with 4 additions and 1 deletions

View File

@ -1070,6 +1070,9 @@
// Replace ?/config with a simple text editor for editing inc/instance-config.php.
$config['mod']['config_editor_php'] = false;
// Whether or not you can access the mod cookie in JavaScript. Most users should not need to change this.
$config['mod']['cookie_httponly'] = true;
/*
* ====================
* Mod permissions

View File

@ -72,7 +72,7 @@ function setCookies() {
$mod['hash'][0] . // password
':' .
$mod['hash'][1], // salt
time() + $config['cookies']['expire'], $config['cookies']['jail'] ? $config['cookies']['path'] : '/', null, false, true);
time() + $config['cookies']['expire'], $config['cookies']['jail'] ? $config['cookies']['path'] : '/', null, false, $config['mod']['cookie_httponly']);
}
function destroyCookies() {