id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
26783	SessionMiddleware does not correctly delete an empty session cookie when SESSION_COOKIE_PATH is set	Jon Dufresne	nobody	"`SessionMiddleware` is not passing the `SESSION_COOKIE_PATH` to `response.delete_cookie()` `path` argument. Browsers will not delete the cookie if the path does not match. This fact is acknowledged in [https://docs.djangoproject.com/en/dev/ref/request-response/#django.http.HttpResponse.delete_cookie Django's documentation].

> Due to the way cookies work, path and domain should be the same values you used in set_cookie() – otherwise the cookie may not be deleted.

Link to bug in code:

https://github.com/django/django/blob/9baf692/django/contrib/sessions/middleware.py#L38"	Bug	closed	contrib.sessions	dev	Normal	fixed			Ready for checkin	1	0	0	0	0	0