17 Sep
2011
17 Sep
'11
9:16 a.m.
- cookie name (see my diff I've sent couple days ago)
- cookie path
- cookie domain (already done)
- secure flag is already done, I believe (by checking if SSL is in use)
- httponly is set hard-coded and should not be changeable, IMO
I have attached a patch to add a session_path config option.
Also I have attached a very basic patch to pass the domain, path and secure flag to the JS so the same information can be used when setting cookies on the client side. Like the cookie that stores the info for the splitter.
Phil
--- 8< --- detachments --- 8< --- The following attachments have been detached and are available for viewing. http://detached.gigo.com/rc/Kz/XhNVmfIH/js_cookies.patch http://detached.gigo.com/rc/Kz/XhNVmfIH/session_path.patch Only click these links if you trust the sender, as well as this message. --- 8< --- detachments --- 8< ---
List info: http://lists.roundcube.net/dev/ BT/aba52c80