diff options
Diffstat (limited to 'it_session.class')
| -rw-r--r-- | it_session.class | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/it_session.class b/it_session.class index 7873869..ec8b64f 100644 --- a/it_session.class +++ b/it_session.class @@ -47,7 +47,7 @@ function it_session() * load balanced Proxies and maybe more weird stuff). * $this->address = $_SERVER['REMOTE_ADDR'] . '/' . $_SERVER['HTTP_X_FORWARDED_FOR']; */ - $this->ssl = !empty($_SERVER['HTTPS']); + $this->ssl = !empty($_SERVER['HTTPS']) && !$GLOBALS['ULTRATRUSTED']; # No SSL cookies for trusted IPs because Chrome does not overwrite SSL cookies with non-SSL ones and thus prevents login to devel after live, reported by David } |