Possible Duplicate:
PHP session_set_cookie_params
I am using only HTTP (not HTTPS, SSL is not configured on my server).
Does "secure" mean that cookies will be transfered only via SSL? Or it is possible to use this parameter with HTTP too?
可以将文章内容翻译成中文,广告屏蔽插件可能会导致该功能失效(如失效,请关闭广告屏蔽插件后再试):
问题:
回答1:
It means the browser will only send the cookie when the current connection is encrypted (SSL/TLS). You only use it with an encrypted connection.
- http://php.net/manual/en/session.configuration.php#ini.session.cookie-secure
- http://us3.php.net/manual/en/function.setcookie.php#refsect1-function.setcookie-parameters
You can optionally set the HttpOnly flags as well to prevent client-side scripts from accessing cookie as well to help secure it further. So in your case set the 'secure' flag to FALSE and the the HttpOnly flag to TRUE. That is as secure as your cookie setting will get other than setting a path which you are most likely wanting as / anyways.
{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://img.manongdao.com/sparkler-677774__340.jpg', '推荐 贪生不怕死 的文章《What means “secure” parameter for session_set_cook》','https://www.manongdao.com/article-477419.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}