[Tickets #6821] Re: HttpOnly cookies
bugs at horde.org
bugs at horde.org
Mon Sep 22 15:23:06 UTC 2008
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/6821
------------------------------------------------------------------------------
Ticket | 6821
Updated By | Jan Schneider <jan at horde.org>
Summary | HttpOnly cookies
Queue | Horde Base
Version | HEAD
Type | Enhancement
-State | Feedback
+State | Assigned
Priority | 1. Low
Milestone |
Patch | 1
-Owners |
+Owners | Horde Developers
------------------------------------------------------------------------------
Jan Schneider <jan at horde.org> (2008-09-22 11:23) wrote:
> Even if ini_set('session.cookie_httponly', 1) would be possible (->
> lib/core.php ?), I would discourage from doing so - there could be
> apps requiring JS-accessible Cookies not expecting such setting.
Makes sense.
More information about the bugs
mailing list