#981: Optionally set 'secure' flag on session cookies automatically
-------------------------+--------------------------------------------------
Reporter: david | Owner: david
Type: enhancement | Status: new
Priority: normal | Milestone: 0.11.6
Component: storage | Version: 0.11.5
Severity: minor | Keywords:
Has_patch: 0 |
-------------------------+--------------------------------------------------
If {{{session_cookie_secure}}} is {{{null}}} (i.e. {{{<parameter
name="session_cookie_secure" />}}}) and {{{AgaviWebRequest}}} is used,
then {{{AgaviSessionStorage}}} should detemine the 'secure' flag value by
calling {{{AgaviWebRequest::isHttps()}}}. That way, a session created in
an HTTPs request will automatically become invalid if the user switches
back to HTTP.
--
Ticket URL: <http://trac.agavi.org/ticket/981>
Agavi <http://www.agavi.org/>
An MVC Framework for PHP5
_______________________________________________
Agavi Tickets Mailing List
[email protected]
http://lists.agavi.org/mailman/listinfo/tickets
