diff --git a/inc/Bootstrap.php b/inc/Bootstrap.php
index 58cdd8f0e3..918defb790 100644
--- a/inc/Bootstrap.php
+++ b/inc/Bootstrap.php
@@ -456,6 +456,7 @@ public static function initConfig() {
             ini_set( 'session.name', INIT::$PHP_SESSION_NAME );
             ini_set( 'session.cookie_domain', '.' . INIT::$COOKIE_DOMAIN );
             ini_set( 'session.cookie_secure', true );
+            ini_set( 'session.cookie_httponly', true );
 
         }