fix secure cookie issue.

232bf01a · Taylor Otwell · ffb40346 · 232bf01a
Commit 232bf01a authored Apr 04, 2012 by Taylor Otwell
Hide whitespace changes
Inline Side-by-side

Showing with 8 additions and 0 deletions

cookie.php laravel/cookie.php +8 -0

No files found.
--- a/laravel/cookie.php
+++ b/laravel/cookie.php
@@ -68,6 +68,14 @@ class Cookie {
 			$expiration = time() + ($expiration * 60);
 		}

+		// If the secure option is set to true, yet the request is not over HTTPS
+		// we'll throw an exception to let the developer know that they are
+		// attempting to send a secure cookie over the unsecure HTTP.
+		if ($secure and ! Request::secure())
+		{
+			throw new \Exception("Attempting to set secure cookie over HTTP.");
+		}
+
 		static::$jar[$name] = compact('name', 'value', 'expiration', 'path', 'domain', 'secure');
 	}