=== Message

php.ini file: Set the "session.cookie_httponly" property to "true".

php files: Set the last argument of "setcookie()" function to "true".