From e78b2b28a9d1423f8f844081610ac5b35de3a661 Mon Sep 17 00:00:00 2001
From: unknown <silentislp@gmail.com>
Date: Mon, 16 Sep 2019 20:28:20 +0200
Subject: [PATCH] fix cookies and at same time add better secure for cookies

---
 class/UserManager.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/class/UserManager.php b/class/UserManager.php
index 12f601d..d85214c 100644
--- a/class/UserManager.php
+++ b/class/UserManager.php
@@ -26,7 +26,7 @@ class UserManager
 			if ($user = Db::loadOne ('SELECT * FROM users WHERE LOWER(username)=LOWER(?)', array ($username))) {
 				if ($user['password'] == UserManager::getHashPassword($password)) {
 					if (isset($rememberMe) && $rememberMe == 'true') {
-						setcookie ("rememberMe", $this->setEncryptedCookie($user['username']), time () + (30 * 24 * 60 * 60 * 1000), "/");
+						setcookie ("rememberMe", $this->setEncryptedCookie($user['username']), time () + (30 * 24 * 60 * 60 * 1000), "/", $_SERVER['HTTP_HOST'], 1);
 					}
 					$_SESSION['user']['id'] = $user['user_id'];
 					$page = "./index.php";
@@ -62,7 +62,7 @@ class UserManager
 	}
 
 	public function logout () {
-		setcookie ("rememberMe","", time() - (30 * 24 * 60 * 60 * 1000), "/");
+		setcookie ("rememberMe","", time() - (30 * 24 * 60 * 60 * 1000), "/", $_SERVER['HTTP_HOST'], 1);
 		unset($_SESSION['user']);
 		session_destroy();
 	}