From 04d12df410f2218321f6175158f732e01a24f62d Mon Sep 17 00:00:00 2001
From: Ryan Boren <ryan@git.wordpress.org>
Date: Fri, 5 Sep 2008 00:10:34 +0000
Subject: [PATCH] No HTTPOnly for Safari

git-svn-id: https://develop.svn.wordpress.org/trunk@8810 602fd350-edb4-49c9-b593-d223f7449a82
---
 wp-includes/pluggable.php | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/wp-includes/pluggable.php b/wp-includes/pluggable.php
index 12cc0abadd..b6cfba8d3c 100644
--- a/wp-includes/pluggable.php
+++ b/wp-includes/pluggable.php
@@ -634,6 +634,17 @@ function wp_set_auth_cookie($user_id, $remember = false, $secure = '') {
 	do_action('set_auth_cookie', $auth_cookie, $expire, $expiration, $user_id, $scheme);
 	do_action('set_logged_in_cookie', $logged_in_cookie, $expire, $expiration, $user_id, 'logged_in');
 
+	global $is_safari;
+	// No HTTPOnly for Safari
+	if ( $is_safari ) {
+		setcookie($auth_cookie_name, $auth_cookie, $expire, PLUGINS_COOKIE_PATH, COOKIE_DOMAIN, $secure);
+		setcookie($auth_cookie_name, $auth_cookie, $expire, ADMIN_COOKIE_PATH, COOKIE_DOMAIN, $secure);
+		setcookie(LOGGED_IN_COOKIE, $logged_in_cookie, $expire, COOKIEPATH, COOKIE_DOMAIN);
+		if ( COOKIEPATH != SITECOOKIEPATH )
+			setcookie(LOGGED_IN_COOKIE, $logged_in_cookie, $expire, SITECOOKIEPATH, COOKIE_DOMAIN);
+		return;
+	}
+
 	// Set httponly if the php version is >= 5.2.0
 	if ( version_compare(phpversion(), '5.2.0', 'ge') ) {
 		setcookie($auth_cookie_name, $auth_cookie, $expire, PLUGINS_COOKIE_PATH, COOKIE_DOMAIN, $secure, true);