From a65cc3292153e5c73d6bfe20d5f604a6ab69c76b Mon Sep 17 00:00:00 2001
From: samerton <samerton@users.noreply.github.com>
Date: Mon, 25 Oct 2021 11:06:57 +0100
Subject: [PATCH] Make session cookie httpOnly

---
 index.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/index.php b/index.php
index 75e63b2e58..f381721965 100644
--- a/index.php
+++ b/index.php
@@ -43,6 +43,7 @@
     ini_set('session.cookie_secure', 'On');
 }
 
+ini_set('session.cookie_httponly', 1);
 ini_set('open_basedir', ROOT_PATH . PATH_SEPARATOR  . $tmp_dir . PATH_SEPARATOR . '/proc/stat');
 
 // Get the directory the user is trying to access