summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
Diffstat
-rw-r--r--htetc/freeside-base2.4.conf7
-rw-r--r--htetc/freeside-base2.conf7
2 files changed, 10 insertions, 4 deletions
diff --git a/htetc/freeside-base2.4.conf b/htetc/freeside-base2.4.conf
index ee716f320..dbf4013cd 100644
--- a/htetc/freeside-base2.4.conf
+++ b/htetc/freeside-base2.4.conf
@@ -20,8 +20,11 @@ PerlAddAuthzProvider user FS::AuthCookieHandler24->authz_handler
#XXX need to also work properly for installs w/o /freeside/ in path
PerlSetVar FreesideLoginScript /freeside/loginout/login.html
-#PerlSetVar FreesideSecure 1 #disables HTTP, so HTTPS only
-PerlSetVar FreesideHttpOnly 1 #limits cookie theft via JS
+#disables HTTP, so HTTPS only
+#PerlSetVar FreesideSecure 1
+
+#prevents cookie theft via JS
+PerlSetVar FreesideHttpOnly 1
<Directory %%%FREESIDE_DOCUMENT_ROOT%%%>
diff --git a/htetc/freeside-base2.conf b/htetc/freeside-base2.conf
index 6a1d2fb64..f2f4c21d0 100644
--- a/htetc/freeside-base2.conf
+++ b/htetc/freeside-base2.conf
@@ -18,8 +18,11 @@ PerlModule FS::AuthCookieHandler
#XXX need to also work properly for installs w/o /freeside/ in path
PerlSetVar FreesideLoginScript /freeside/loginout/login.html
-#PerlSetVar FreesideSecure 1 #disables HTTP, so HTTPS only
-PerlSetVar FreesideHttpOnly 1 #limits cookie theft via JS
+#disables HTTP, so HTTPS only
+#PerlSetVar FreesideSecure 1
+
+#prevents cookie theft via JS
+PerlSetVar FreesideHttpOnly 1
<Directory %%%FREESIDE_DOCUMENT_ROOT%%%>
generated by cgit v1.2.1 (git 2.18.0) at 2024-09-23 11:15:37 +0000