the-djmaze
commented
2 years ago Replace line 513 https://github.com/RainLoop/rainloop-webmail/blob/master/rainloop/v/0.0.0/app/libraries/RainLoop/Utils.php#L513 With
\setcookie($sName, $sValue, array(
'expires' => $iExpire,
'path' => $sPath,
'domain' => $sDomain,
'secure' => isset($_SERVER['HTTPS']) || static::$CookieDefaultSecure,
'httponly' => $bHttpOnly,
'samesite' => 'Strict'
));
Hi and thanks for RainLoop.
I'd like to add this feature request: The 'SetCookie' function in Utils.php to set the 'SameSite' cookie. I've seen that the [labs] section in the applicactions.ini file allows to enable the 'Secure' cookie, so it would be good, security wise, to also have the 'SameSite' cookie set.
Thanks again.