DEV Community

Cover image for PHP security
Eko Priyanto
Eko Priyanto

Posted on • Edited on

PHP security

#php #security #webdev

php security header 



// Essential security headers
header("Content-Security-Policy: default-src 'self'");
header("X-Frame-Options: SAMEORIGIN");
header("X-Content-Type-Options: nosniff");
header("Strict-Transport-Security: max-age=31536000; includeSubDomains");
Enter fullscreen mode Exit fullscreen mode

Improper session handling can lead to security vulnerabilities.

essential cooie setting


// Essential session security settings
ini_set('session.cookie_httponly', 1);
ini_set('session.use_only_cookies', 1);
ini_set('session.cookie_secure', 1);
session_start([
    'cookie_lifetime' => 0,
    'cookie_samesite' => 'Lax'
]);
Enter fullscreen mode Exit fullscreen mode

Top comments (0)

Read next

reactjsguru profile image

GitHub Spotlight: Next.js Portfolio by Rohit Gour

Reactjs Guru -

morlevi23 profile image

How AI is Becoming a Game-Changer in the Fight Against Climate Change

Mor Levi -

dev-resources profile image

25+ Insanely Useful Javascript Resources You Need Right Now!

Dev Resources -

shehriyar_saleem_d2fd896a profile image

MongoDB find() vs findOne() – Key Differences & Examples

Shehriyar Saleem -