application/config/cookie.php

   1 <?php defined('SYSPATH') OR die('No direct access allowed.');
   2 /**
   3  * @package  Core
   4  *
   5  * Domain, to restrict the cookie to a specific website domain. For security,
   6  * you are encouraged to set this option. An empty setting allows the cookie
   7  * to be read by any website domain.
   8  */
   9 $config['domain'] = '';
  10
  11 /**
  12  * Restrict cookies to a specific path, typically the installation directory.
  13  */
  14 $config['path'] = '/';
  15
  16 /**
  17  * Lifetime of the cookie. A setting of 0 makes the cookie active until the
  18  * users browser is closed or the cookie is deleted.
  19  */
  20 $config['expire'] = 0;
  21
  22 /**
  23  * Set to true, to only allow logging in through HTTPS, or false to allow
  24  * logging in through HTTP.
  25  */
  26 $config['secure'] = true;
  27
  28 /**
  29  * Enable this option to disable the cookie from being accessed when using a
  30  * secure protocol. This option is only available in PHP 5.2 and above.
  31  */
  32 $config['httponly'] = true;