id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
15060	csrftoken cookie not being sent over SSL	Burhan Khalid	nobody	"SESSION_COOKIE_SECURE setting is not being used for the csrftoken, causing it to be sent over HTTP. I believe this is the reason why I keep getting 'Looks like your browser isn't configured to accept cookies. Please enable cookies, reload this page, and try again.' errors when trying to login on the django admin.

Test environment:

glassfishv3
jython 2.5.2.rc2
django-jython 1.1.2 (against Oracle backend)
django 1.2.3
Windows

Note: no other servers are being used, glassfish is exclusively for django use (so no PHP mhash problems)."		closed	Core (Other)	1.2		worksforme	csrf ssl https		Unreviewed	0	0	0	0	0	0