From 200eafb352f807bd70592b2ccc06745017328a85 Mon Sep 17 00:00:00 2001 From: Inverle Date: Sat, 30 Aug 2025 21:40:00 +0200 Subject: Regenerate session ID on login (#7829) Follow-up to #7762 * Regenerate session ID on login * Send only one cookie * Improvements * Delete old session file * Simplify * Make function consistent with others --- app/Controllers/userController.php | 5 +---- 1 file changed, 1 insertion(+), 4 deletions(-) (limited to 'app/Controllers/userController.php') diff --git a/app/Controllers/userController.php b/app/Controllers/userController.php index 0acdc65c7..67a97c45a 100644 --- a/app/Controllers/userController.php +++ b/app/Controllers/userController.php @@ -149,10 +149,7 @@ class FreshRSS_user_Controller extends FreshRSS_ActionController { return; } - ini_set('session.use_cookies', '1'); - Minz_Session::lock(); - Minz_Session::regenerateID(); - Minz_Session::unlock(); + Minz_Session::regenerateID('FreshRSS'); } if (FreshRSS_Context::systemConf()->force_email_validation && empty($email)) { -- cgit v1.2.3