Vulnerability mitigation - revert secure cookies by default

2021-06-01 10:52:51 -04:00
parent 0a39b60eee
commit c2fb21c570
19 changed files with 106 additions and 99 deletions
--- a/reports.php
+++ b/reports.php
@@ -23,7 +23,7 @@
    ini_set('session.use_only_cookies', '1');
    ini_set('session.cookie_secure', '1');
    ini_set('session.cookie_httponly', '1');
-    ini_set('session.cookie_samesite', 'Strict');
+    ini_set('session.cookie_samesite', 'Lax');
    session_save_path('.tmp');                                                  // TEMP
    session_start();                                                            // START
    require_once __DIR__ . '/autoload.php';                                     // AUTOLOAD
@@ -128,19 +128,19 @@
                    </div>
                    <div class="form-group row">
                        <div class='col-sm'>
-                            <div class="input-group date" id="datetimepicker-1" data-target-input="#datetimepicker-1">
-                                <div class="input-group-text " data-target=".datetimepicker-1" data-toggle="datetimepicker">
+                            <div class="input-group date" id="datetimepicker-1" data-bs-target-input="#datetimepicker-1">
+                                <div class="input-group-text " data-bs-target=".datetimepicker-1" data-bs-toggle="datetimepicker">
                                    <div class="input-group-text "><i class="fa fa-calendar"></i>&nbsp <?php echo $transLang['START']; ?></div>
                                </div>
-                                <input name="starttime" type="text" class="datetimepicker-input form-control datetimepicker-1" id="datetimepicker-1" data-target=".datetimepicker-1" autocomplete="new-password" required />
+                                <input name="starttime" type="text" class="datetimepicker-input form-control datetimepicker-1" id="datetimepicker-1" data-bs-target=".datetimepicker-1" autocomplete="new-password" required />
                            </div>
                        </div>
                        <div class='col-sm'>
-                            <div class="input-group date" id="datetimepicker-2" data-target-input="#datetimepicker-2">
-                                <div class="input-group-text" data-target=".datetimepicker-2" data-toggle="datetimepicker">
+                            <div class="input-group date" id="datetimepicker-2" data-bs-target-input="#datetimepicker-2">
+                                <div class="input-group-text" data-bs-target=".datetimepicker-2" data-bs-toggle="datetimepicker">
                                    <div class="input-group-text"><i class="fa fa-calendar"></i>&nbsp <?php echo $transLang['END']; ?></div>
                                </div>
-                                <input name="endtime" type="text" class="datetimepicker-input form-control datetimepicker-2" id="datetimepicker-2" data-target=".datetimepicker-2" autocomplete="new-password" required />
+                                <input name="endtime" type="text" class="datetimepicker-input form-control datetimepicker-2" id="datetimepicker-2" data-bs-target=".datetimepicker-2" autocomplete="new-password" required />
                            </div>
                        </div>
                        <script type="text/javascript">