Refactor session timeouts.

cakephp · Jun 24, 2010 · 8365109 · 8365109
1 parent 9bbaf15
commit 8365109
Showing 1 changed file with 3 additions and 19 deletions.
diff --git a/cake/libs/cake_session.php b/cake/libs/cake_session.php
@@ -460,29 +460,13 @@ function destroy() {
  */
 	function __initSession() {
 		$iniSet = function_exists('ini_set');
-
 		if ($iniSet && env('HTTPS')) {
 			ini_set('session.cookie_secure', 1);
 		}
-
-		switch ($this->security) {
-			case 'high':
-				$this->cookieLifeTime = Configure::read('Session.timeout') * Security::inactiveMins();
-				if ($iniSet) {
-					ini_set('session.referer_check', $this->host);
-				}
-			break;
-			case 'medium':
-				$this->cookieLifeTime = Configure::read('Session.timeout') * Security::inactiveMins();
-				if ($iniSet) {
-					ini_set('session.referer_check', $this->host);
-				}
-			break;
-			case 'low':
-			default:
-				$this->cookieLifeTime = Configure::read('Session.timeout') * Security::inactiveMins();
-			break;
+		if ($iniSet && ($this->security === 'high' || $this->security === 'medium')) {
+			ini_set('session.referer_check', $this->host);
 		}
+		$this->cookieLifeTime = Configure::read('Session.timeout') * Security::inactiveMins();
 
 		switch (Configure::read('Session.save')) {
 			case 'cake':