{
$cgi->send_cookie(-name => 'Bugzilla_login',
-value => $user->id,
+ -httponly => 1,
-expires => 'Fri, 01-Jan-2038 00:00:00 GMT');
$cgi->send_cookie(-name => 'Bugzilla_logincookie',
-value => $login_cookie,
+ -httponly => 1,
-expires => 'Fri, 01-Jan-2038 00:00:00 GMT');
-
}
else {
$cgi->send_cookie(-name => 'Bugzilla_login',
- -value => $user->id);
+ -value => $user->id,
+ -httponly => 1);
$cgi->send_cookie(-name => 'Bugzilla_logincookie',
- -value => $login_cookie);
+ -value => $login_cookie,
+ -httponly => 1);
}
}
module => 'CGI',
# Perl 5.10 requires CGI 3.33 due to a taint issue when
# uploading attachments, see bug 416382.
- version => (vers_cmp($perl_ver, '5.10') > -1) ? '3.33' : '2.93'
+ # Require CGI 3.21 for -httponly support, see bug 368502.
+ version => (vers_cmp($perl_ver, '5.10') > -1) ? '3.33' : '3.21'
},
{
package => 'TimeDate',
[% INCLUDE req_table reqs = REQUIRED_MODULES
new = []
updated = ['Template-Toolkit', 'Email-MIME',
- 'Email-MIME-Modifier'] %]
+ 'Email-MIME-Modifier', 'CGI'] %]
<h3><a name="v32_req_optional_mod"></a>Optional Perl Modules</h3>
projects / thirdparty / bugzilla.git / commitdiff
