COOKIE
AUDIT.
System-Level Session Management // No Marketing Trackers
Active_System_Payload
XSRF-TOKEN
Duration
2 Hours
Purpose
Cross-Site Request Forgery Protection
chatgrid_session
Duration
Session_End
Purpose
Identifies session instance across requests
remember_web_*
Duration
5 Years
Purpose
Persistent login if 'Remember Me' is toggled
Encryption_Log
All Laravel cookies are encrypted and signed using the OpenSSL AES-256-CBC protocol. They cannot be read or tampered with by client-side scripts.
// session.php config
'encrypt' => true,
'http_only' => true,
'same_site' => 'lax'
GDPR_Notice
Since we only use "Strictly Necessary" cookies for framework stability and security, no explicit cookie consent banner is required under EU law.