2

3

use Illuminate\Support\Str;

3

use Illuminate\Support\Str;

4

5

return [

5

return [

6

7

/*

7

/*

8

|--------------------------------------------------------------------------

8

|--------------------------------------------------------------------------

9

| Default Session Driver

9

| Default Session Driver

10

|--------------------------------------------------------------------------

10

|--------------------------------------------------------------------------

11

|

11

|

12

| This option controls the default session "driver" that will be used on

12

| This option controls the default session "driver" that will be used on

13

| requests. By default, we will use the lightweight native driver but

13

| requests. By default, we will use the lightweight native driver but

14

| you may specify any of the other wonderful drivers provided here.

14

| you may specify any of the other wonderful drivers provided here.

15

|

15

|

19

*/

19

*/

20

21

'driver' => env('SESSION_DRIVER', 'file'),

21

'driver' => env('SESSION_DRIVER', 'file'),

22

23

/*

23

/*

24

|--------------------------------------------------------------------------

24

|--------------------------------------------------------------------------

25

| Session Lifetime

25

| Session Lifetime

26

|--------------------------------------------------------------------------

26

|--------------------------------------------------------------------------

27

|

27

|

28

| Here you may specify the number of minutes that you wish the session

28

| Here you may specify the number of minutes that you wish the session

29

| to be allowed to remain idle before it expires. If you want them

29

| to be allowed to remain idle before it expires. If you want them

30

| to immediately expire on the browser closing, set that option.

30

| to immediately expire on the browser closing, set that option.

31

|

31

|

32

*/

32

*/

33

34

'lifetime' => env('SESSION_LIFETIME', 120),

34

'lifetime' => env('SESSION_LIFETIME', 120),

35

36

'expire_on_close' => false,

36

'expire_on_close' => false,

37

38

/*

38

/*

39

|--------------------------------------------------------------------------

39

|--------------------------------------------------------------------------

40

| Session Encryption

40

| Session Encryption

41

|--------------------------------------------------------------------------

41

|--------------------------------------------------------------------------

42

|

42

|

43

| This option allows you to easily specify that all of your session data

43

| This option allows you to easily specify that all of your session data

44

| should be encrypted before it is stored. All encryption will be run

44

| should be encrypted before it is stored. All encryption will be run

45

| automatically by Laravel and you can use the Session like normal.

45

| automatically by Laravel and you can use the Session like normal.

46

|

46

|

47

*/

47

*/

48

49

'encrypt' => false,

49

'encrypt' => false,

50

51

/*

51

/*

52

|--------------------------------------------------------------------------

52

|--------------------------------------------------------------------------

53

| Session File Location

53

| Session File Location

54

|--------------------------------------------------------------------------

54

|--------------------------------------------------------------------------

55

|

55

|

56

| When using the native session driver, we need a location where session

56

| When using the native session driver, we need a location where session

57

| files may be stored. A default has been set for you but a different

57

| files may be stored. A default has been set for you but a different

58

| location may be specified. This is only needed for file sessions.

58

| location may be specified. This is only needed for file sessions.

59

|

59

|

60

*/

60

*/

61

62

'files' => storage_path('framework/sessions'),

62

'files' => storage_path('framework/sessions'),

63

64

/*

64

/*

65

|--------------------------------------------------------------------------

65

|--------------------------------------------------------------------------

66

| Session Database Connection

66

| Session Database Connection

67

|--------------------------------------------------------------------------

67

|--------------------------------------------------------------------------

68

|

68

|

69

| When using the "database" or "redis" session drivers, you may specify a

69

| When using the "database" or "redis" session drivers, you may specify a

70

| connection that should be used to manage these sessions. This should

70

| connection that should be used to manage these sessions. This should

71

| correspond to a connection in your database configuration options.

71

| correspond to a connection in your database configuration options.

72

|

72

|

73

*/

73

*/

74

75

'connection' => env('SESSION_CONNECTION', null),

75

'connection' => env('SESSION_CONNECTION', null),

76

77

/*

77

/*

78

|--------------------------------------------------------------------------

78

|--------------------------------------------------------------------------

79

| Session Database Table

79

| Session Database Table

80

|--------------------------------------------------------------------------

80

|--------------------------------------------------------------------------

81

|

81

|

82

| When using the "database" session driver, you may specify the table we

82

| When using the "database" session driver, you may specify the table we

83

| should use to manage the sessions. Of course, a sensible default is

83

| should use to manage the sessions. Of course, a sensible default is

84

| provided for you; however, you are free to change this as needed.

84

| provided for you; however, you are free to change this as needed.

85

|

85

|

86

*/

86

*/

87

88

'table' => 'sessions',

88

'table' => 'sessions',

89

90

/*

90

/*

91

|--------------------------------------------------------------------------

91

|--------------------------------------------------------------------------

92

| Session Cache Store

92

| Session Cache Store

93

|--------------------------------------------------------------------------

93

|--------------------------------------------------------------------------

96

| cache store that should be used for these sessions. This value must

96

| list a cache store that should be used for these sessions. This value

99

*/

99

*/

100

101

'store' => env('SESSION_STORE', null),

101

'store' => env('SESSION_STORE', null),

102

103

/*

103

/*

104

|--------------------------------------------------------------------------

104

|--------------------------------------------------------------------------

105

| Session Sweeping Lottery

105

| Session Sweeping Lottery

106

|--------------------------------------------------------------------------

106

|--------------------------------------------------------------------------

107

|

107

|

108

| Some session drivers must manually sweep their storage location to get

108

| Some session drivers must manually sweep their storage location to get

109

| rid of old sessions from storage. Here are the chances that it will

109

| rid of old sessions from storage. Here are the chances that it will

110

| happen on a given request. By default, the odds are 2 out of 100.

110

| happen on a given request. By default, the odds are 2 out of 100.

111

|

111

|

112

*/

112

*/

113

114

'lottery' => [2, 100],

114

'lottery' => [2, 100],

115

116

/*

116

/*

117

|--------------------------------------------------------------------------

117

|--------------------------------------------------------------------------

118

| Session Cookie Name

118

| Session Cookie Name

119

|--------------------------------------------------------------------------

119

|--------------------------------------------------------------------------

120

|

120

|

121

| Here you may change the name of the cookie used to identify a session

121

| Here you may change the name of the cookie used to identify a session

122

| instance by ID. The name specified here will get used every time a

122

| instance by ID. The name specified here will get used every time a

123

| new session cookie is created by the framework for every driver.

123

| new session cookie is created by the framework for every driver.

124

|

124

|

125

*/

125

*/

126

127

'cookie' => env(

127

'cookie' => env(

128

'SESSION_COOKIE',

128

'SESSION_COOKIE',

129

Str::slug(env('APP_NAME', 'laravel'), '_').'_session'

129

Str::slug(env('APP_NAME', 'laravel'), '_').'_session'

130

),

130

),

131

132

/*

132

/*

133

|--------------------------------------------------------------------------

133

|--------------------------------------------------------------------------

134

| Session Cookie Path

134

| Session Cookie Path

135

|--------------------------------------------------------------------------

135

|--------------------------------------------------------------------------

136

|

136

|

137

| The session cookie path determines the path for which the cookie will

137

| The session cookie path determines the path for which the cookie will

138

| be regarded as available. Typically, this will be the root path of

138

| be regarded as available. Typically, this will be the root path of

139

| your application but you are free to change this when necessary.

139

| your application but you are free to change this when necessary.

140

|

140

|

141

*/

141

*/

142

143

'path' => '/',

143

'path' => '/',

144

145

/*

145

/*

146

|--------------------------------------------------------------------------

146

|--------------------------------------------------------------------------

147

| Session Cookie Domain

147

| Session Cookie Domain

148

|--------------------------------------------------------------------------

148

|--------------------------------------------------------------------------

149

|

149

|

150

| Here you may change the domain of the cookie used to identify a session

150

| Here you may change the domain of the cookie used to identify a session

151

| in your application. This will determine which domains the cookie is

151

| in your application. This will determine which domains the cookie is

152

| available to in your application. A sensible default has been set.

152

| available to in your application. A sensible default has been set.

153

|

153

|

154

*/

154

*/

155

156

'domain' => env('SESSION_DOMAIN', null),

156

'domain' => env('SESSION_DOMAIN', null),

157

158

/*

158

/*

159

|--------------------------------------------------------------------------

159

|--------------------------------------------------------------------------

160

| HTTPS Only Cookies

160

| HTTPS Only Cookies

161

|--------------------------------------------------------------------------

161

|--------------------------------------------------------------------------

162

|

162

|

163

| By setting this option to true, session cookies will only be sent back

163

| By setting this option to true, session cookies will only be sent back

164

| to the server if the browser has a HTTPS connection. This will keep

164

| to the server if the browser has a HTTPS connection. This will keep

165

| the cookie from being sent to you if it can not be done securely.

165

| the cookie from being sent to you if it can not be done securely.

166

|

166

|

167

*/

167

*/

168

169

'secure' => env('SESSION_SECURE_COOKIE', false),

169

'secure' => env('SESSION_SECURE_COOKIE', false),

170

171

/*

171

/*

172

|--------------------------------------------------------------------------

172

|--------------------------------------------------------------------------

173

| HTTP Access Only

173

| HTTP Access Only

174

|--------------------------------------------------------------------------

174

|--------------------------------------------------------------------------

175

|

175

|

176

| Setting this value to true will prevent JavaScript from accessing the

176

| Setting this value to true will prevent JavaScript from accessing the

177

| value of the cookie and the cookie will only be accessible through

177

| value of the cookie and the cookie will only be accessible through

178

| the HTTP protocol. You are free to modify this option if needed.

178

| the HTTP protocol. You are free to modify this option if needed.

179

|

179

|

180

*/

180

*/

181

182

'http_only' => true,

182

'http_only' => true,

183

184

/*

184

/*

185

|--------------------------------------------------------------------------

185

|--------------------------------------------------------------------------

186

| Same-Site Cookies

186

| Same-Site Cookies

187

|--------------------------------------------------------------------------

187

|--------------------------------------------------------------------------

188

|

188

|

189

| This option determines how your cookies behave when cross-site requests

189

| This option determines how your cookies behave when cross-site requests

190

| take place, and can be used to mitigate CSRF attacks. By default, we

190

| take place, and can be used to mitigate CSRF attacks. By default, we

191

| do not enable this as other CSRF protection services are in place.

191

| do not enable this as other CSRF protection services are in place.

192

|

192

|

193

| Supported: "lax", "strict"

193

| Supported: "lax", "strict"

194

|

194

|

195

*/

195

*/

196

197

'same_site' => null,

197

'same_site' => null,

198

1	<?php	=	1	<?php
2			2
3	use Illuminate\Support\Str;		3	use Illuminate\Support\Str;
4			4
5	return [		5	return [
6			6
7	/*		7	/*
8	\|--------------------------------------------------------------------------		8	\|--------------------------------------------------------------------------
9	\| Default Session Driver		9	\| Default Session Driver
10	\|--------------------------------------------------------------------------		10	\|--------------------------------------------------------------------------
11	\|		11	\|
12	\| This option controls the default session "driver" that will be used on		12	\| This option controls the default session "driver" that will be used on
13	\| requests. By default, we will use the lightweight native driver but		13	\| requests. By default, we will use the lightweight native driver but
14	\| you may specify any of the other wonderful drivers provided here.		14	\| you may specify any of the other wonderful drivers provided here.
15	\|		15	\|
16	\| Supported: "file", "cookie", "database", "apc",		16	\| Supported: "file", "cookie", "database", "apc",
17	\| "memcached", "redis", "array"	<>	17	\| "memcached", "redis", "dynamodb", "array"
18	\|	=	18	\|
19	*/		19	*/
20			20
21	'driver' => env('SESSION_DRIVER', 'file'),		21	'driver' => env('SESSION_DRIVER', 'file'),
22			22
23	/*		23	/*
24	\|--------------------------------------------------------------------------		24	\|--------------------------------------------------------------------------
25	\| Session Lifetime		25	\| Session Lifetime
26	\|--------------------------------------------------------------------------		26	\|--------------------------------------------------------------------------
27	\|		27	\|
28	\| Here you may specify the number of minutes that you wish the session		28	\| Here you may specify the number of minutes that you wish the session
29	\| to be allowed to remain idle before it expires. If you want them		29	\| to be allowed to remain idle before it expires. If you want them
30	\| to immediately expire on the browser closing, set that option.		30	\| to immediately expire on the browser closing, set that option.
31	\|		31	\|
32	*/		32	*/
33			33
34	'lifetime' => env('SESSION_LIFETIME', 120),		34	'lifetime' => env('SESSION_LIFETIME', 120),
35			35
36	'expire_on_close' => false,		36	'expire_on_close' => false,
37			37
38	/*		38	/*
39	\|--------------------------------------------------------------------------		39	\|--------------------------------------------------------------------------
40	\| Session Encryption		40	\| Session Encryption
41	\|--------------------------------------------------------------------------		41	\|--------------------------------------------------------------------------
42	\|		42	\|
43	\| This option allows you to easily specify that all of your session data		43	\| This option allows you to easily specify that all of your session data
44	\| should be encrypted before it is stored. All encryption will be run		44	\| should be encrypted before it is stored. All encryption will be run
45	\| automatically by Laravel and you can use the Session like normal.		45	\| automatically by Laravel and you can use the Session like normal.
46	\|		46	\|
47	*/		47	*/
48			48
49	'encrypt' => false,		49	'encrypt' => false,
50			50
51	/*		51	/*
52	\|--------------------------------------------------------------------------		52	\|--------------------------------------------------------------------------
53	\| Session File Location		53	\| Session File Location
54	\|--------------------------------------------------------------------------		54	\|--------------------------------------------------------------------------
55	\|		55	\|
56	\| When using the native session driver, we need a location where session		56	\| When using the native session driver, we need a location where session
57	\| files may be stored. A default has been set for you but a different		57	\| files may be stored. A default has been set for you but a different
58	\| location may be specified. This is only needed for file sessions.		58	\| location may be specified. This is only needed for file sessions.
59	\|		59	\|
60	*/		60	*/
61			61
62	'files' => storage_path('framework/sessions'),		62	'files' => storage_path('framework/sessions'),
63			63
64	/*		64	/*
65	\|--------------------------------------------------------------------------		65	\|--------------------------------------------------------------------------
66	\| Session Database Connection		66	\| Session Database Connection
67	\|--------------------------------------------------------------------------		67	\|--------------------------------------------------------------------------
68	\|		68	\|
69	\| When using the "database" or "redis" session drivers, you may specify a		69	\| When using the "database" or "redis" session drivers, you may specify a
70	\| connection that should be used to manage these sessions. This should		70	\| connection that should be used to manage these sessions. This should
71	\| correspond to a connection in your database configuration options.		71	\| correspond to a connection in your database configuration options.
72	\|		72	\|
73	*/		73	*/
74			74
75	'connection' => env('SESSION_CONNECTION', null),		75	'connection' => env('SESSION_CONNECTION', null),
76			76
77	/*		77	/*
78	\|--------------------------------------------------------------------------		78	\|--------------------------------------------------------------------------
79	\| Session Database Table		79	\| Session Database Table
80	\|--------------------------------------------------------------------------		80	\|--------------------------------------------------------------------------
81	\|		81	\|
82	\| When using the "database" session driver, you may specify the table we		82	\| When using the "database" session driver, you may specify the table we
83	\| should use to manage the sessions. Of course, a sensible default is		83	\| should use to manage the sessions. Of course, a sensible default is
84	\| provided for you; however, you are free to change this as needed.		84	\| provided for you; however, you are free to change this as needed.
85	\|		85	\|
86	*/		86	*/
87			87
88	'table' => 'sessions',		88	'table' => 'sessions',
89			89
90	/*		90	/*
91	\|--------------------------------------------------------------------------		91	\|--------------------------------------------------------------------------
92	\| Session Cache Store		92	\| Session Cache Store
93	\|--------------------------------------------------------------------------		93	\|--------------------------------------------------------------------------
94	\|		94	\|
95	\| When using the "apc" or "memcached" session drivers, you may specify a	<>	95	\| When using the "apc", "memcached", or "dynamodb" session drivers you may
96	\| cache store that should be used for these sessions. This value must		96	\| list a cache store that should be used for these sessions. This value
97	\| correspond with one of the application's configured cache stores.		97	\| must match with one of the application's configured cache "stores".
98	\|	=	98	\|
99	*/		99	*/
100			100
101	'store' => env('SESSION_STORE', null),		101	'store' => env('SESSION_STORE', null),
102			102
103	/*		103	/*
104	\|--------------------------------------------------------------------------		104	\|--------------------------------------------------------------------------
105	\| Session Sweeping Lottery		105	\| Session Sweeping Lottery
106	\|--------------------------------------------------------------------------		106	\|--------------------------------------------------------------------------
107	\|		107	\|
108	\| Some session drivers must manually sweep their storage location to get		108	\| Some session drivers must manually sweep their storage location to get
109	\| rid of old sessions from storage. Here are the chances that it will		109	\| rid of old sessions from storage. Here are the chances that it will
110	\| happen on a given request. By default, the odds are 2 out of 100.		110	\| happen on a given request. By default, the odds are 2 out of 100.
111	\|		111	\|
112	*/		112	*/
113			113
114	'lottery' => [2, 100],		114	'lottery' => [2, 100],
115			115
116	/*		116	/*
117	\|--------------------------------------------------------------------------		117	\|--------------------------------------------------------------------------
118	\| Session Cookie Name		118	\| Session Cookie Name
119	\|--------------------------------------------------------------------------		119	\|--------------------------------------------------------------------------
120	\|		120	\|
121	\| Here you may change the name of the cookie used to identify a session		121	\| Here you may change the name of the cookie used to identify a session
122	\| instance by ID. The name specified here will get used every time a		122	\| instance by ID. The name specified here will get used every time a
123	\| new session cookie is created by the framework for every driver.		123	\| new session cookie is created by the framework for every driver.
124	\|		124	\|
125	*/		125	*/
126			126
127	'cookie' => env(		127	'cookie' => env(
128	'SESSION_COOKIE',		128	'SESSION_COOKIE',
129	Str::slug(env('APP_NAME', 'laravel'), '_').'_session'		129	Str::slug(env('APP_NAME', 'laravel'), '_').'_session'
130	),		130	),
131			131
132	/*		132	/*
133	\|--------------------------------------------------------------------------		133	\|--------------------------------------------------------------------------
134	\| Session Cookie Path		134	\| Session Cookie Path
135	\|--------------------------------------------------------------------------		135	\|--------------------------------------------------------------------------
136	\|		136	\|
137	\| The session cookie path determines the path for which the cookie will		137	\| The session cookie path determines the path for which the cookie will
138	\| be regarded as available. Typically, this will be the root path of		138	\| be regarded as available. Typically, this will be the root path of
139	\| your application but you are free to change this when necessary.		139	\| your application but you are free to change this when necessary.
140	\|		140	\|
141	*/		141	*/
142			142
143	'path' => '/',		143	'path' => '/',
144			144
145	/*		145	/*
146	\|--------------------------------------------------------------------------		146	\|--------------------------------------------------------------------------
147	\| Session Cookie Domain		147	\| Session Cookie Domain
148	\|--------------------------------------------------------------------------		148	\|--------------------------------------------------------------------------
149	\|		149	\|
150	\| Here you may change the domain of the cookie used to identify a session		150	\| Here you may change the domain of the cookie used to identify a session
151	\| in your application. This will determine which domains the cookie is		151	\| in your application. This will determine which domains the cookie is
152	\| available to in your application. A sensible default has been set.		152	\| available to in your application. A sensible default has been set.
153	\|		153	\|
154	*/		154	*/
155			155
156	'domain' => env('SESSION_DOMAIN', null),		156	'domain' => env('SESSION_DOMAIN', null),
157			157
158	/*		158	/*
159	\|--------------------------------------------------------------------------		159	\|--------------------------------------------------------------------------
160	\| HTTPS Only Cookies		160	\| HTTPS Only Cookies
161	\|--------------------------------------------------------------------------		161	\|--------------------------------------------------------------------------
162	\|		162	\|
163	\| By setting this option to true, session cookies will only be sent back		163	\| By setting this option to true, session cookies will only be sent back
164	\| to the server if the browser has a HTTPS connection. This will keep		164	\| to the server if the browser has a HTTPS connection. This will keep
165	\| the cookie from being sent to you if it can not be done securely.		165	\| the cookie from being sent to you if it can not be done securely.
166	\|		166	\|
167	*/		167	*/
168			168
169	'secure' => env('SESSION_SECURE_COOKIE', false),		169	'secure' => env('SESSION_SECURE_COOKIE', false),
170			170
171	/*		171	/*
172	\|--------------------------------------------------------------------------		172	\|--------------------------------------------------------------------------
173	\| HTTP Access Only		173	\| HTTP Access Only
174	\|--------------------------------------------------------------------------		174	\|--------------------------------------------------------------------------
175	\|		175	\|
176	\| Setting this value to true will prevent JavaScript from accessing the		176	\| Setting this value to true will prevent JavaScript from accessing the
177	\| value of the cookie and the cookie will only be accessible through		177	\| value of the cookie and the cookie will only be accessible through
178	\| the HTTP protocol. You are free to modify this option if needed.		178	\| the HTTP protocol. You are free to modify this option if needed.
179	\|		179	\|
180	*/		180	*/
181			181
182	'http_only' => true,		182	'http_only' => true,
183			183
184	/*		184	/*
185	\|--------------------------------------------------------------------------		185	\|--------------------------------------------------------------------------
186	\| Same-Site Cookies		186	\| Same-Site Cookies
187	\|--------------------------------------------------------------------------		187	\|--------------------------------------------------------------------------
188	\|		188	\|
189	\| This option determines how your cookies behave when cross-site requests		189	\| This option determines how your cookies behave when cross-site requests
190	\| take place, and can be used to mitigate CSRF attacks. By default, we		190	\| take place, and can be used to mitigate CSRF attacks. By default, we
191	\| do not enable this as other CSRF protection services are in place.		191	\| do not enable this as other CSRF protection services are in place.
192	\|		192	\|
193	\| Supported: "lax", "strict"		193	\| Supported: "lax", "strict"
194	\|		194	\|
195	*/		195	*/
196			196
197	'same_site' => null,		197	'same_site' => null,
198			198
199	];		199	];