diff options
author | xue <> | 2006-02-13 02:49:38 +0000 |
---|---|---|
committer | xue <> | 2006-02-13 02:49:38 +0000 |
commit | be788ba986406c554f0746697bd9fe97a2c0f6f2 (patch) | |
tree | a0e4c93b0e13c1b0248472e6563e35d61686927a /framework/Web/THttpResponse.php | |
parent | b63bebd6a3452b5bdb190482f033869861e2b97f (diff) |
Removed host address and user agent from cookie validation information.
Diffstat (limited to 'framework/Web/THttpResponse.php')
-rw-r--r-- | framework/Web/THttpResponse.php | 4 |
1 files changed, 1 insertions, 3 deletions
diff --git a/framework/Web/THttpResponse.php b/framework/Web/THttpResponse.php index 5fed2167..1607b9d5 100644 --- a/framework/Web/THttpResponse.php +++ b/framework/Web/THttpResponse.php @@ -352,9 +352,7 @@ class THttpResponse extends TModule implements ITextWriter $request=$this->getRequest();
if($request->getEnableCookieValidation())
{
- $sig=$request->getUserHostAddress().$request->getUserAgent();
- $data=serialize(array($sig,$cookie->getValue()));
- $value=$this->getApplication()->getSecurityManager()->hashData($data);
+ $value=$this->getApplication()->getSecurityManager()->hashData($cookie->getValue());
setcookie($cookie->getName(),$value,$cookie->getExpire(),$cookie->getPath(),$cookie->getDomain(),$cookie->getSecure());
}
else
|