#3304: [patch] Support "httponly"-attribute in session cookie.
------------------------------------+---------------------------------------
Reporter: arvin | Owner: nobody
Status: new | Milestone:
Component: Contrib apps | Version: SVN
Resolution: | Keywords: session security
Stage: Someday/Maybe | Has_patch: 1
Needs_docs: 0 | Needs_tests: 1
Needs_better_patch: 0 |
------------------------------------+---------------------------------------
Comment (by edevil):
The support in python has been added, what's stopping django from using it
when it's available?
It's such a simple change and the security benefits are obvious...
--
Ticket URL: <http://code.djangoproject.com/ticket/3304#comment:24>
Django <http://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/django-updates?hl=en.
