From 32e97a7fde84856c54be863bc62511226f388ef8 Mon Sep 17 00:00:00 2001
From: Joseph Cohen <joseph.cohen@dinkbit.com>
Date: Thu, 4 Jun 2015 16:43:46 -0500
Subject: [PATCH 1/2] Enable session security

---
 composer.lock      | 8 ++++----
 config/app.php     | 2 ++
 config/session.php | 2 +-
 3 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/composer.lock b/composer.lock
index 84fce3ac..e4153914 100644
--- a/composer.lock
+++ b/composer.lock
@@ -1567,12 +1567,12 @@
             "source": {
                 "type": "git",
                 "url": "https://github.com/laravel/framework.git",
-                "reference": "73ad2636ced1219d6170d4352e091a51a885feb7"
+                "reference": "c8ade4de42e8cdb83c3cbffb307a6c4f81e81994"
             },
             "dist": {
                 "type": "zip",
-                "url": "https://api.github.com/repos/laravel/framework/zipball/73ad2636ced1219d6170d4352e091a51a885feb7",
-                "reference": "73ad2636ced1219d6170d4352e091a51a885feb7",
+                "url": "https://api.github.com/repos/laravel/framework/zipball/c8ade4de42e8cdb83c3cbffb307a6c4f81e81994",
+                "reference": "c8ade4de42e8cdb83c3cbffb307a6c4f81e81994",
                 "shasum": ""
             },
             "require": {
@@ -1687,7 +1687,7 @@
                 "framework",
                 "laravel"
             ],
-            "time": "2015-06-03 21:29:40"
+            "time": "2015-06-04 21:23:09"
         },
         {
             "name": "league/commonmark",
diff --git a/config/app.php b/config/app.php
index c124bf14..e25a9691 100644
--- a/config/app.php
+++ b/config/app.php
@@ -89,6 +89,8 @@ return [
 
     'key' => env('APP_KEY', 'SomeRandomString'),
 
+    'cipher' => 'AES-128-CBC',
+
     /*
     |--------------------------------------------------------------------------
     | Logging Configuration
diff --git a/config/session.php b/config/session.php
index 5a6c35e6..40c87cba 100644
--- a/config/session.php
+++ b/config/session.php
@@ -53,7 +53,7 @@ return [
     |
     */
 
-    'encrypt' => false,
+    'encrypt' => true,
 
     /*
     |--------------------------------------------------------------------------

From d85d035ab120e7ba4cfc1902dd9c9f9fc9541c5a Mon Sep 17 00:00:00 2001
From: Joseph Cohen <joseph.cohen@dinkbit.com>
Date: Thu, 4 Jun 2015 17:09:32 -0500
Subject: [PATCH 2/2] Revert session ecryption

---
 config/session.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config/session.php b/config/session.php
index 40c87cba..5a6c35e6 100644
--- a/config/session.php
+++ b/config/session.php
@@ -53,7 +53,7 @@ return [
     |
     */
 
-    'encrypt' => true,
+    'encrypt' => false,
 
     /*
     |--------------------------------------------------------------------------