PHP 4, PHP 5, PHP 7, PHP 8
session_set_cookie_params - Set the session cookie parameters

     [string|null$path = null],
     [string|null$domain = null],
     [bool|null$secure = null],
     [bool|null$httponly = null]
): bool

Alternative signature available as of PHP 7.3.0:

boolsession_set_cookie_params arraylifetime_or_options



When using the first signature, lifetime of the session cookie, defined in seconds.

When using the second signature, an associative array which may have any of the keys lifetime, path, domain, secure, httponly and samesite. The values have the same meaning as described for the parameters with the same name. The value of the samesite element should be either Lax or Strict. If any of the allowed options are not given, their default values are the same as the default values of the explicit parameters. If the samesite element is omitted, no SameSite cookie attribute is set.


Path on the domain where the cookie will work. Use a single slash ('/') for all paths on the domain.


Cookie domain, for example ''. To make cookies visible on all subdomains then the domain must be prefixed with a dot like ''.


If true cookie will only be sent over secure connections.


If set to true then PHP will attempt to send the httponly flag when setting the session cookie.

Return Values

Returns true on success or false on failure.


Version Description
8.0.0 path, domain, secure and httponly are nullable now.
7.3.0 An alternative signature supporting an lifetime_or_options array has been added. This signature supports also setting of the SameSite cookie attribute.
7.2.0 Returns true on success or false on failure. Formerly the function returned void.

Related Functions