Jakach/jakach-login
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

set coockies to secure

Browse Source
This commit is contained in:
janis steiner
2026-05-15 09:59:51 +02:00
parent 6e09214182
commit 10fb66c470
1 changed files with 14 additions and 12 deletions
Download Patch File Download Diff File Expand all files Collapse all files
app-code/api/utils/security.php
+14 -12
View File
@@ -1,19 +1,25 @@
<?php <?php
function secure_cookie_options(array $overrides = []): array
{
return array_merge([
'path' => '/',
'secure' => true,
'httponly' => true,
'samesite' => 'Lax',
], $overrides);
}
function secure_session_start(): void function secure_session_start(): void
{ {
if (session_status() === PHP_SESSION_ACTIVE) { if (session_status() === PHP_SESSION_ACTIVE) {
return; return;
} }
session_set_cookie_params([ session_set_cookie_params(secure_cookie_options([
'lifetime' => 0, 'lifetime' => 0,
'path' => '/',
'domain' => '', 'domain' => '',
'secure' => true, ]));
'httponly' => true,
'samesite' => 'Lax',
]);
session_start(); session_start();
} }
@@ -242,13 +248,9 @@ function clear_rate_limit(mysqli $conn, string $bucket, string $identifier = '')
function set_secure_cookie(string $name, string $value, int $expires): void function set_secure_cookie(string $name, string $value, int $expires): void
{ {
setcookie($name, $value, [ setcookie($name, $value, secure_cookie_options([
'expires' => $expires, 'expires' => $expires,
'path' => '/', ]));
'secure' => true,
'httponly' => true,
'samesite' => 'Lax',
]);
} }
function delete_cookie(string $name): void function delete_cookie(string $name): void