mirror of
https://github.com/silverstripe/silverstripe-framework
synced 2024-10-22 14:05:37 +02:00
c6b1d4aa6b
Session is not initialized by the time we need to use the setting in DB::connect(). Cookie values get initialized automatically for each request. Tightened name format validation to ensure it can only be used for temporary databases, rather than switching the browser session to a different production database. Encrypting token for secure cookie usage. Added dev/generatesecuretoken to generate this token. Not storing in YML config directly because of web access issues.
12 lines
450 B
Markdown
12 lines
450 B
Markdown
# 3.0.4
|
|
|
|
## Overview
|
|
|
|
* Changed `dev/tests/setdb` and `dev/tests/startsession` from session to cookie storage.
|
|
|
|
## Upgrading
|
|
|
|
* If you are using `dev/tests/setdb` and `dev/tests/startsession`,
|
|
you'll need to configure a secure token in order to encrypt the cookie value:
|
|
Simply run `sake dev/generatesecuretoken` and add the resulting code to your `mysite/_config.php`.
|
|
Note that this functionality now requires the PHP `mcrypt` extension. |