1
0
mirror of https://github.com/django/django.git synced 2025-10-24 14:16:09 +00:00

[1.7.x] Fixed #23149 -- Clarified note on HTTPOnly in cookie-based session docs

Backport of e26366da44 from master.
This commit is contained in:
Erik Romijn
2014-08-02 18:57:34 +02:00
parent 2ff2809c73
commit a4eb590958

View File

@@ -124,7 +124,7 @@ and the :setting:`SECRET_KEY` setting.
.. note::
It's recommended to leave the :setting:`SESSION_COOKIE_HTTPONLY` setting
``True`` to prevent tampering of the stored data from JavaScript.
on ``True`` to prevent access to the stored data from JavaScript.
.. warning::