Use HttpOnly session cookies

This commit is contained in:
Pierre Rudloff 2017-07-03 10:35:28 +02:00
parent 59e5df4aa6
commit b4f0cf7a38

View file

@ -40,6 +40,7 @@ class LocaleManager
{
$session_factory = new \Aura\Session\SessionFactory();
$session = $session_factory->newInstance($cookies);
$session->setCookieParams(['httponly' => true]);
$this->sessionSegment = $session->getSegment('Alltube\LocaleManager');
$cookieLocale = $this->sessionSegment->get('locale');
if (isset($cookieLocale)) {