#3304: Support "httponly"-attribute in session cookie.
----------------------------+-----------------------------------------------
Reporter: arvin | Owner: adrian
Type: enhancement | Status: new
Priority: normal | Milestone: Version 1.0
Component: Core framework | Version: SVN
Severity: normal | Resolution:
Keywords: |
----------------------------+-----------------------------------------------
Comment (by arvin):
You are right that only few site use it, e.g. time.com. Maybe because
most tools
don't support it yet. PHP has it only since 5.2.0, Python doesn't have it
so far.
The cookie spec is here:[[BR]]
[http://wp.netscape.com/newsref/std/cookie_spec.html][[BR]]
[http://www.faqs.org/rfcs/rfc2109.html]
Firefox will likely have support in the far future:[[BR]]
[https://bugzilla.mozilla.org/show_bug.cgi?id=178993]
I'll attach two patches, one for python and one for django. With those it
works for me
with the development server. Since I'm new to django I might miss
something.
--
Ticket URL: <http://code.djangoproject.com/ticket/3304#comment:>
Django <http://code.djangoproject.org/>
The web framework for perfectionists with deadlines.
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups "Django
updates" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/django-updates?hl=en
-~----------~----~----~----~------~----~------~--~---
