fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-04-02 01:52:10 +09:00
Code Issues Projects Releases Packages Wiki Activity

Enable secure session and cookies by default if installed or upgraded in an HTTPS site

Browse source
This commit is contained in:
Kijin Sung 2026-02-26 01:25:36 +09:00
parent 7ce40653d7
commit d0d1505367
2 changed files with 9 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

2
common/framework/parsers/ConfigParser.php
View file

@ -184,6 +184,8 @@ class ConfigParser
if (isset($db_info->use_ssl) && in_array($db_info->use_ssl, ['always', 'optional']))
{
$config['url']['ssl'] = 'always';
$config['session']['use_ssl'] = true;
$config['session']['use_ssl_cookies'] = true;
}
else
{

7
modules/install/install.controller.php
View file

@ -204,6 +204,13 @@ class installController extends install
// Set the default umask.
$config['file']['umask'] = Rhymix\Framework\Storage::recommendUmask();
// Set default security settings.
if ($config['url']['ssl'] === 'always')
{
$config['session']['use_ssl'] = true;
$config['session']['use_ssl_cookies'] = true;
}
// Load the new configuration.
Rhymix\Framework\Config::setAll($config);
Context::loadDBInfo($config);