发表新帖
发表新帖

How do you set up use HttpOnly cookies in PHP

后端 未结
关注
10 1804
终归单人心
终归单人心 2020-12-04 07:09

How can I set the cookies in my PHP apps as HttpOnly cookies?

10条回答
  • 醉梦人生
    醉梦人生 (楼主)
    2020-12-04 07:34

    Note that PHP session cookies don't use httponly by default.

    To do that:

    $sess_name = session_name();
if (session_start()) {
    setcookie($sess_name, session_id(), null, '/', null, null, true);
}

    A couple of items of note here:

    • You have to call session_name() before session_start()
    • This also sets the default path to '/', which is necessary for Opera but which PHP session cookies don't do by default either.

    0 讨论(0)
 看不清?
提交回复
热议问题