From bc03817b42900c24643aaa086cbbf41d96c08dde Mon Sep 17 00:00:00 2001 From: Erik Romijn Date: Sat, 2 Aug 2014 19:01:23 +0200 Subject: [1.4.x] Fixed #23149 -- Clarified note on HTTPOnly in cookie-based session docs Backport of e26366da44bb343e7a95d01ff0dd18b8026c2802 from master. --- docs/topics/http/sessions.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) (limited to 'docs') diff --git a/docs/topics/http/sessions.txt b/docs/topics/http/sessions.txt index 47bb7bb3c3..bb9d73af97 100644 --- a/docs/topics/http/sessions.txt +++ b/docs/topics/http/sessions.txt @@ -111,7 +111,7 @@ and the :setting:`SECRET_KEY` setting. .. note:: It's recommended to leave the :setting:`SESSION_COOKIE_HTTPONLY` setting - ``True`` to prevent tampering of the stored data from JavaScript. + on ``True`` to prevent access to the stored data from JavaScript. .. warning:: -- cgit v1.3