aboutsummaryrefslogtreecommitdiffstats
path: root/include/config_default.inc.php
diff options
context:
space:
mode:
authornikrou <nikrou@piwigo.org>2006-01-18 15:16:30 +0000
committernikrou <nikrou@piwigo.org>2006-01-18 15:16:30 +0000
commit9410522e9f7d077bb4830158b6f01276a55276b3 (patch)
tree71350bab981b46a242669dd83543bae5ab08f28d /include/config_default.inc.php
parent9e1fabeaf7b27d0b03227965dce2f9214b3ac655 (diff)
bug fix 261: improve security of sessions (next to svn:1004):
- improve presentation code style - add upgrade database file git-svn-id: http://piwigo.org/svn/trunk@1007 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to '')
-rw-r--r--include/config_default.inc.php19
1 files changed, 11 insertions, 8 deletions
diff --git a/include/config_default.inc.php b/include/config_default.inc.php
index 31362a463..52fed3acc 100644
--- a/include/config_default.inc.php
+++ b/include/config_default.inc.php
@@ -264,19 +264,22 @@ $conf['use_exif_mapping'] = array(
// | sessions |
// +-----------------------------------------------------------------------+
-// specifies to use cookie to store the session id on client side
-$conf['session_use_cookies'] = 1;
+// session_use_cookies: specifies to use cookie to store
+// the session id on client side
+$conf['session_use_cookies'] = true;
-// specifies to only use cookie to store the session id on client side
-$conf['session_use_only_cookies'] = 1;
+// session_use_only_cookies: specifies to only use cookie to store
+// the session id on client side
+$conf['session_use_only_cookies'] = true;
-// do not use transparent session id support
-$conf['session_use_trans_sid'] = 0;
+// session_use_trans_sid: do not use transparent session id support
+$conf['session_use_trans_sid'] = false;
-// specifies the name of the session which is used as cookie name
+// session_name: specifies the name of the session which is used as cookie name
$conf['session_name'] = 'pwg_id';
-// comment the line below to use file handler for sessions.
+// session_save_handler: comment the line below
+// to use file handler for sessions.
$conf['session_save_handler'] = 'db';
// authorize_remembering : permits user to stay logged for a long time. It