[TYPO3-core] RFC #15334: Feature: Allow separate cookie domain for FE and BE
François Suter
fsu-lists at cobweb.ch
Sat Aug 28 16:30:55 CEST 2010
Hi,
> Problem:
> Some clients run the TYPO3 BE under a different domain name for security
> reasons. This causes problems with cookie domains as it is currently
> possible to set a single one only, used by both FE and BE. The current
> workaround would be to avoid defining a cookie domain, but this is not
> secure.
>
> Solution:
> The attached patch introduces a separate cookie domain for the BE. If it
> is left blank, the "main" cookie domain is used for both FE and BE (i.e.
> the current behavior is unchanged).
Committed attached v3 to trunk in revision 8714
v3 was adapted to match the recent changes in t3lib/config_default.php
and takes advantage of the new possible to hyperlink between
configuration options. The patch also includes a small initialization
cleanup in the already modified method. I have also added an entry to
NEWS.txt to described the new feature.
NOTE: I had forgotten 2 possible hyperlinks between the new
configuration variables, which were added in revision 8715
Cheers
--
Francois Suter
Cobweb Development Sarl - http://www.cobweb.ch
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: 15334_v3.diff
URL: <http://lists.typo3.org/pipermail/typo3-team-core/attachments/20100828/06612f54/attachment.txt>
More information about the TYPO3-team-core
mailing list