X-Git-Url: http://git.freeside.biz/gitweb/?a=blobdiff_plain;ds=sidebyside;f=htetc%2Ffreeside-base2.conf;h=7ea26d3814fc41391b3c9444fb50ccdb204ac1f4;hb=a7a22257d456394125eed32f8261c75a7f393ec2;hp=309279dfa3c3a791602dc8200f63956ccc9a01db;hpb=4314d9e0da1486cead65bc75ee0ab4351d49555e;p=freeside.git
diff --git a/htetc/freeside-base2.conf b/htetc/freeside-base2.conf
index 309279dfa..7ea26d381 100644
--- a/htetc/freeside-base2.conf
+++ b/htetc/freeside-base2.conf
@@ -18,7 +18,10 @@ PerlModule FS::AuthCookieHandler
#XXX need to also work properly for installs w/o /freeside/ in path
PerlSetVar FreesideLoginScript /freeside/loginout/login.html
-#PerlSetVar FreesideEverSecure 1
+#disables HTTP, so HTTPS only
+#PerlSetVar FreesideSecure 1
+
+#prevents cookie theft via JS
PerlSetVar FreesideHttpOnly 1
@@ -63,6 +66,12 @@ PerlSetVar FreesideHttpOnly 1
Satisfy any
+
+ Satisfy any
+ SetHandler perl-script
+ PerlHandler HTML::Mason
+
+
Satisfy any
SetHandler perl-script