Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[MERGED] Security Enhancements (Session, Cookie, CSRF) & Encryption. #693

Merged
merged 3 commits into from
Sep 7, 2015
Merged

[MERGED] Security Enhancements (Session, Cookie, CSRF) & Encryption. #693

merged 3 commits into from
Sep 7, 2015

Commits on Jul 30, 2015

  1. Security Enhancements(Session, Cookie, CSRF) & Encryption. 

    - Encryption for user_id in cookie instead of plain
- Remove remember_me token from database when deleting the cookie
- Configure session cookie using setcookie()
- prevent session concurrency
- CSRF tokens(per session)
    Omar El Gabry committed Jul 30, 2015
    Configuration menu
    Copy the full SHA
    02fe607 View commit details
    Browse the repository at this point in the history

  2. Add session_id

    Omar El Gabry committed Jul 30, 2015
    Configuration menu
    Copy the full SHA
    05b283b View commit details
    Browse the repository at this point in the history

Commits on Aug 18, 2015

  1. Update Csrf.php

    @OmarElgabry
    OmarElgabry committed Aug 18, 2015
    Configuration menu
    Copy the full SHA
    2e836fb View commit details
    Browse the repository at this point in the history