[dba] Disable cookies and update sessid for PHPSession

script-solution / Boardsolution

An open-source discussion board written in PHP.

GNU General Public License v2.0

6 stars 0 forks source link

Closed hrniels closed 11 years ago

hrniels commented 11 years ago

That means, in the constructor:

@ini_set('session.use_trans_sid',0);
@ini_set('session.use_cookies',0);
@ini_set('session.use_only_cookies',0);

And in update_user:

session_id($user->get_session_id());

hrniels commented 11 years ago

hm...it does also work without that change (i.e. if session.use_trans_sid is enabled).