Opened 13 years ago

Closed 13 years ago

Last modified 13 years ago

#18045 closed Uncategorized (fixed)

1.4 Documentation incorrectly lists HTTPOnly Session cookie setting to be False

Reported by: anonymous Owned by: nobody
Component: Documentation Version: 1.4
Severity: Normal Keywords:
Cc: Triage Stage: Unreviewed
Has patch: no Needs documentation: no
Needs tests: no Patch needs improvement: no
Easy pickings: no UI/UX: no

Description

Documentation for the SESSION_COOKIE_HTTPONLY setting incorrectly lists the default to be False (changed to True by default in 1.4, according to release notes and a quick test w/o assigning a value to the setting).

https://docs.djangoproject.com/en/1.4/ref/settings/#session-cookie-httponly

Change History (2)

comment:1 by Claude Paroz, 13 years ago

Resolution: fixed
Status: newclosed

In [17862]:

(The changeset message doesn't reference this ticket)

comment:2 by Claude Paroz, 13 years ago

In [17863]:

[1.4.X] Fixed #18045 -- Corrected the documented default value of SESSION_COOKIE_HTTPONLY setting. Missing bit of r17135.

Backport of r17862 from trunk.

Note: See TracTickets for help on using tickets.
Back to Top