for better protection against CSRF attacks ]); } else { setcookie($key, $value, [ "expires" => time() + (86400 * 90),