jimeh/zynapse
1
0
Fork 0
mirror of https://github.com/jimeh/zynapse.git synced 2026-02-19 07:06:39 +00:00
Code Issues Packages Projects Releases Wiki Activity

ActiveSession now does it's validation to avoid session highjacking.

Browse Source
This commit is contained in:
Jim Myhrberg
2009-08-21 01:36:06 +03:00
parent 3863c11331
commit f50c5ccae7
4 changed files with 118 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

33
config/environment.php
View File

@@ -27,4 +27,37 @@ $this->mode = "web";
$enable_host_specific_configuration = true;
##
# Session settings
##
# session name
# $this->session->name = "PHPSESSID";
# session cookie_lifetime - defined in minutes
# $this->session->lifetime = 0;
# max session lifetime - defined in minutes
# $this->session->maxlifetime = 30;
# php.ini setting: session.use_only_cookies
# $this->session->use_only_cookies = false;
# php.ini setting: session.gc_probability
# $this->session->gc_probability = 1;
# php.ini setting: session.gc_divisor
# $this->session->gc_divisor = 100;
# php.ini setting: session.cache_limiter
# $this->session->cache_limiter = "nocache";
# session security features
# 0 = no extra security features
# 1 = user agent string is verified
# 2 = user agent string, and client ip address are verified
# $this->session->security = 1;
?>