- Patch #458704 by markus_petrux, tic2000: don't automatically remove 'www.'...

- Patch #458704 by markus_petrux, tic2000: don't automatically remove 'www.' from admin-set cookie domains.

- Patch #458704 by markus_petrux, tic2000: don't automatically remove 'www.'...
- Patch #458704 by markus_petrux, tic2000: don't automatically remove 'www.' from admin-set cookie domains.
de393370 · Dries · 545ef5b0 · de393370
Commit de393370 authored Mar 24, 2010 by Dries
--- a/includes/bootstrap.inc
+++ b/includes/bootstrap.inc
@@ -598,15 +598,15 @@ function drupal_settings_initialize() {
    // in drupal_settings_initialize().
    if (!empty($_SERVER['HTTP_HOST'])) {
      $cookie_domain = $_SERVER['HTTP_HOST'];
+      // Strip leading periods, www., and port numbers from cookie domain.
+      $cookie_domain = ltrim($cookie_domain, '.');
+      if (strpos($cookie_domain, 'www.') === 0) {
+        $cookie_domain = substr($cookie_domain, 4);
+      }
+      $cookie_domain = explode(':', $cookie_domain);
+      $cookie_domain = '.' . $cookie_domain[0];
    }
  }
-  // Strip leading periods, www., and port numbers from cookie domain.
-  $cookie_domain = ltrim($cookie_domain, '.');
-  if (strpos($cookie_domain, 'www.') === 0) {
-    $cookie_domain = substr($cookie_domain, 4);
-  }
-  $cookie_domain = explode(':', $cookie_domain);
-  $cookie_domain = '.' . $cookie_domain[0];
  // Per RFC 2109, cookie domains must contain at least one dot other than the
  // first. For hosts such as 'localhost' or IP Addresses we don't set a cookie domain.
  if (count(explode('.', $cookie_domain)) > 2 && !is_numeric(str_replace('.', '', $cookie_domain))) {