Searched hist:f5c6743cf7fd971197b6ff56c658bd2457cbb02f (Results 1 – 5 of 5) sorted by relevance
| /dokuwiki/lib/plugins/config/lang/en/ |
| H A D | lang.php | f5c6743cf7fd971197b6ff56c658bd2457cbb02f Fri Sep 12 22:49:22 UTC 2008 Andreas Gohr <andi@splitbrain.org> more cookie security FS#1490
This patch adds the httponly option to the PHP session cookies and DokuWiki's
auth cookie when supported by the PHP version.
It also adds a new config option 'securecookie' which is enabled by default.
It makes sure the browser will not sent a cookie set via HTTPS over a
non-secured connection. This option has to be disabled for wikis that only
protect the login with SSL but not the whole wiki.
darcs-hash:20080912224922-7ad00-d5275147ba9d17a9f6defa8a51ca720da74ba8a0.gz
|
| /dokuwiki/lib/plugins/config/settings/ |
| H A D | config.metadata.php | f5c6743cf7fd971197b6ff56c658bd2457cbb02f Fri Sep 12 22:49:22 UTC 2008 Andreas Gohr <andi@splitbrain.org> more cookie security FS#1490
This patch adds the httponly option to the PHP session cookies and DokuWiki's
auth cookie when supported by the PHP version.
It also adds a new config option 'securecookie' which is enabled by default.
It makes sure the browser will not sent a cookie set via HTTPS over a
non-secured connection. This option has to be disabled for wikis that only
protect the login with SSL but not the whole wiki.
darcs-hash:20080912224922-7ad00-d5275147ba9d17a9f6defa8a51ca720da74ba8a0.gz
|
| /dokuwiki/conf/ |
| H A D | dokuwiki.php | f5c6743cf7fd971197b6ff56c658bd2457cbb02f Fri Sep 12 22:49:22 UTC 2008 Andreas Gohr <andi@splitbrain.org> more cookie security FS#1490
This patch adds the httponly option to the PHP session cookies and DokuWiki's
auth cookie when supported by the PHP version.
It also adds a new config option 'securecookie' which is enabled by default.
It makes sure the browser will not sent a cookie set via HTTPS over a
non-secured connection. This option has to be disabled for wikis that only
protect the login with SSL but not the whole wiki.
darcs-hash:20080912224922-7ad00-d5275147ba9d17a9f6defa8a51ca720da74ba8a0.gz
|
| /dokuwiki/inc/ |
| H A D | init.php | f5c6743cf7fd971197b6ff56c658bd2457cbb02f Fri Sep 12 22:49:22 UTC 2008 Andreas Gohr <andi@splitbrain.org> more cookie security FS#1490
This patch adds the httponly option to the PHP session cookies and DokuWiki's
auth cookie when supported by the PHP version.
It also adds a new config option 'securecookie' which is enabled by default.
It makes sure the browser will not sent a cookie set via HTTPS over a
non-secured connection. This option has to be disabled for wikis that only
protect the login with SSL but not the whole wiki.
darcs-hash:20080912224922-7ad00-d5275147ba9d17a9f6defa8a51ca720da74ba8a0.gz
|
| H A D | auth.php | f5c6743cf7fd971197b6ff56c658bd2457cbb02f Fri Sep 12 22:49:22 UTC 2008 Andreas Gohr <andi@splitbrain.org> more cookie security FS#1490
This patch adds the httponly option to the PHP session cookies and DokuWiki's
auth cookie when supported by the PHP version.
It also adds a new config option 'securecookie' which is enabled by default.
It makes sure the browser will not sent a cookie set via HTTPS over a
non-secured connection. This option has to be disabled for wikis that only
protect the login with SSL but not the whole wiki.
darcs-hash:20080912224922-7ad00-d5275147ba9d17a9f6defa8a51ca720da74ba8a0.gz
|