Support for Drupal 7 is ending on 5 January 2025—it’s time to migrate to Drupal 10! Learn about the many benefits of Drupal 10 and find migration tools in our resource center.
Problem/Motivation
Currently, it is not possible to set additional options to drupalauth4ssp cookie (httponly, secure and domain).
Proposed resolution
The proposed solution is to get the options set in simplesamlphp config.php file.
Another solution would be getting the options from session_get_cookie_params(), but since we are dealing with saml cookies, maybe it is better to retrieve the configuration from simplesamlphp library. as the proposed solution says.
Remaining tasks
N/A
User interface changes
N/A
API changes
N/A
Data model changes
N/A
Comment | File | Size | Author |
---|---|---|---|
#4 | drupalauth4ssp-additional-cookie-options-2917942-4-D7.patch | 2.51 KB | sjerdo |
#2 | setting_additional_cookie_options-2917942-2.patch | 1.96 KB | rodrigoeg |
Comments
Comment #2
rodrigoeg CreditAttribution: rodrigoeg at CI&T commentedComment #3
dakku CreditAttribution: dakku as a volunteer commented++
Comment #4
sjerdoCombined the patches in this issue and #2996561: The cookie drupalauth4ssp is not being removed when the user logout, since the latter is regression of this issue.