Security - Regenerate the session id on login (#7840)

2026-04-10 22:08:56 +00:00
parent bc1cfd66ea
commit 0376f09cac
1 changed files with 1 additions and 1 deletions
@@ -611,7 +611,7 @@ class authentication {
 		}

 		//regenerate the session on login
-		//session_regenerate_id(true);
+		session_regenerate_id(true);

 		//add the username to the session - username session could be set so check_auth uses an authorized session variable instead
 		$_SESSION['username'] = $_SESSION['user']["username"];