WebSVN – oidplus – Path Comparison – / – /trunk/includes/classes/OIDplusSessionHandler.class.php Rev 554 and /trunk/includes/classes/OIDplusSessionHandler.class.php Rev 555

Regard whitespace Rev 554 → Rev 555

 /trunk/includes/classes/OIDplusSessionHandler.class.php
 ,11 → 43,10
                 @ini_set('session.cookie_secure', OIDplus::isSslAvailable());
                 $path = OIDplus::webpath(null,true);
-                if (!empty($path)) {
+                if (empty($path)) $path = '/';
                         @ini_set('session.cookie_path', $path);
-                }
-                @ini_set('session.cookie_samesite', 'Lax');
+                @ini_set('session.cookie_samesite', 'Strict');
                 @ini_set('session.use_strict_mode', 1);
 ,7 → 75,7
                                 $_SESSION = array();
                                 session_destroy();
                                 session_write_close();
-                                setcookie(session_name(), "", time()-3600, ini_get('session.cookie_path')); // remove cookie, so GDPR people are happy
+                                op_setcookie(session_name(), '', time()-3600); // remove cookie, so GDPR people are happy
                         }
                 }
         }
 ,7 → 91,7
                 if ($this->simulate) return;
                 $this->sessionSafeStart();
-                setcookie(session_name(),session_id(),time()+$this->sessionLifetime, ini_get('session.cookie_path'));
+                op_setcookie(session_name(),session_id(),time()+$this->sessionLifetime);
                 $_SESSION[$name] = self::encrypt($value, $this->secret);
         }
 ,7 → 102,7
                 if (!isset($_COOKIE[session_name()])) return null; // GDPR: Only start a session when we really need one
                 $this->sessionSafeStart();
-                setcookie(session_name(),session_id(),time()+$this->sessionLifetime, ini_get('session.cookie_path'));
+                op_setcookie(session_name(),session_id(),time()+$this->sessionLifetime);
                 if (!isset($_SESSION[$name])) return null;
                 return self::decrypt($_SESSION[$name], $this->secret);
 ,12 → 112,12
                 if (!isset($_COOKIE[session_name()])) return;
                 $this->sessionSafeStart();
-                setcookie(session_name(),session_id(),time()+$this->sessionLifetime, ini_get('session.cookie_path'));
+                op_setcookie(session_name(),session_id(),time()+$this->sessionLifetime);
                 $_SESSION = array();
                 session_destroy();
                 session_write_close();
-                setcookie(session_name(), "", time()-3600, ini_get('session.cookie_path')); // remove cookie, so GDPR people are happy
+                op_setcookie(session_name(), "", time()-3600); // remove cookie, so GDPR people are happy
         }
         public function exists($name) {

Subversion Repositories oidplus

Compare Revisions

Regard whitespace Rev 554 → Rev 555