Don't enable secure cookies when they won't work (#9971)

* Ignore session.cookie_secure errors They happen if the session is already started. * Don't allow secure cookies to be enabled when not accessing via https * Completely remove the setting
2024-10-07 16:52:45 +00:00 · 2019-03-17 16:25:59 -05:00
parent cd1015992c
commit 1cfe4ea5fd
3 changed files with 0 additions and 14 deletions
--- a/LibreNMS/Config.php
+++ b/LibreNMS/Config.php
@@ -442,10 +442,6 @@ class Config
            self::set('email_from', '"' . self::get('project_name') . '" <' . self::get('email_user') . '@' . php_uname('n') . '>');
        }

-        if (self::get('secure_cookies')) {
-            ini_set('session.cookie_secure', 1);
-        }
-
        // If we're on SSL, let's properly detect it
        if (isset($_SERVER['HTTPS'])) {
            self::set('base_url', preg_replace('/^http:/', 'https:', self::get('base_url')));