Manual:$wgCookieDomain
| Cookies: $wgCookieDomain | |
|---|---|
| Explicit domain for login cookies. |
|
| Introducido en la versión: | antes de 1.1.0 |
| Eliminado en la versión: | aún se usa |
| Valores permitidos: | (cadena) |
| Valor predeterminado: | '' |
| Otras configuraciones: Alfabéticamente | Por Función | |
Detalles
Set to an explicit domain on the login cookies, e.g. thissubdomain.mydomain.org or .mydomain.org for all your subdomains.
By default this isn't set, so php's setcookie function will just set a cookie on the current domain.
This is a bad thing if e.g. your site is available from both www.example.com and example.com, since users that log into the former will be logged out as soon as they visit the latter.
You should bump the value of $wgAuthenticationTokenVersion upon changing this config, to avoid the old cookies scoped to the root domain or a subdomain affecting the login session of users. Otherwise, they may not be able to edit or even log out until the old cookies are cleared manually.