From 72994ff4763c5cb22ef68bf959c90fefb5473a69 Mon Sep 17 00:00:00 2001
From: mcuiza <marcelo.cuiza@processmaker.com>
Date: Thu, 23 Jun 2016 15:14:15 -0400
Subject: [PATCH] HOR-1284: Security Issue - Session Cookie Without Secure Flag

.
---
 workflow/public_html/sysGeneric.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/workflow/public_html/sysGeneric.php b/workflow/public_html/sysGeneric.php
index bb494a214..e5c1e3fec 100755
--- a/workflow/public_html/sysGeneric.php
+++ b/workflow/public_html/sysGeneric.php
@@ -897,7 +897,7 @@ if (! defined( 'EXECUTE_BY_CRON' )) {
             if (PHP_VERSION < 5.2) {
                 setcookie(session_name(), session_id(), time() + $timelife, '/', '; HttpOnly');
             } else {
-                setcookie(session_name(), session_id(), time() + $timelife, '/', null, false, true);
+                setcookie(session_name(), session_id(), time() + $timelife, '/', null, G::is_https(), true);
             }
         }
         $RBAC->initRBAC();
@@ -974,7 +974,7 @@ if (! defined( 'EXECUTE_BY_CRON' )) {
                         if (PHP_VERSION < 5.2) {
                             setcookie(session_name(), session_id(), time() + $timelife, '/', '; HttpOnly');
                         } else {
-                            setcookie(session_name(), session_id(), time() + $timelife, '/', null, false, true);
+                            setcookie(session_name(), session_id(), time() + $timelife, '/', null, G::is_https(), true);
                         }
                     }
                     $RBAC->initRBAC();