JeroenED/website
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

ENHANCEMENT: added security hardening

Browse Source
This commit is contained in:
Jeroen De Meerleer 2022-01-31 15:24:41 +01:00
parent 0ae17fd1d9
commit c9b109601a
Signed by: JeroenED
GPG Key ID: 28CCCB8F62BFADD6
2 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
bootstrap.php
View File

@ -1,6 +1,5 @@
<?php <?php
session_start();
require_once "vendor/autoload.php"; require_once "vendor/autoload.php";
if( ini_get('safe_mode') ){ if( ini_get('safe_mode') ){

6
lib/Framework/Kernel.php
View File

@ -100,6 +100,12 @@ class Kernel
$this->router = new Router(); $this->router = new Router();
$this->router->parseRoutes($this->getConfigDir(), 'routes.yaml'); $this->router->parseRoutes($this->getConfigDir(), 'routes.yaml');
$request = $this->parseRequest(); $request = $this->parseRequest();
if($request->isSecure()) {
ini_set('session.cookie_httponly', true);
ini_set('session.cookie_secure', true);
}
session_start();
return $this->router->route($request, $this); return $this->router->route($request, $this);
} }