From 08adfeff964657250d521e72a98edc2b85d11949 Mon Sep 17 00:00:00 2001
From: Dmitry Verkhoturov <paskal.07@gmail.com>
Date: Sat, 10 Aug 2024 10:50:43 +0000
Subject: [PATCH] add secure and httponly session cookie settings for php

---
 config/php/90-php.ini | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/config/php/90-php.ini b/config/php/90-php.ini
index 60c8255..d029a2f 100644
--- a/config/php/90-php.ini
+++ b/config/php/90-php.ini
@@ -14,6 +14,8 @@ max_execution_time = 60
 post_max_size = 1024M
 memory_limit = 1536M
 upload_max_filesize = 1024M
+session.cookie_secure = On
+session.cookie_httponly = On
 session.use_trans_sid = 0
 session.gc_maxlifetime = 10800
 session.cookie_lifetime = 14400