DEV Community

Cover image for PHP security
Eko Priyanto
Eko Priyanto

Posted on • Edited on

PHP security

#php #security #webdev

php security header 



// Essential security headers
header("Content-Security-Policy: default-src 'self'");
header("X-Frame-Options: SAMEORIGIN");
header("X-Content-Type-Options: nosniff");
header("Strict-Transport-Security: max-age=31536000; includeSubDomains");
Enter fullscreen mode Exit fullscreen mode

Improper session handling can lead to security vulnerabilities.

essential cooie setting


// Essential session security settings
ini_set('session.cookie_httponly', 1);
ini_set('session.use_only_cookies', 1);
ini_set('session.cookie_secure', 1);
session_start([
    'cookie_lifetime' => 0,
    'cookie_samesite' => 'Lax'
]);
Enter fullscreen mode Exit fullscreen mode

Top comments (0)

Read next

rakhee profile image

System Design: Optimizing Video Streaming Performance and User Experience

Rakhi Singh -

simplr_sh profile image

Understanding JavaScript Primitive Types

Simplr -

hanzla-baig profile image

🌟 🔥 Meet Qwen: Your Ultimate AI Companion for Every Need 🚀

Hanzla Baig -

sohan26 profile image

Safeguarding Your Data When Using DeepSeek R1 In RAG Pipelines - Part 1

Sohan -