1
0
mirror of https://github.com/django/django.git synced 2024-12-23 01:25:58 +00:00

small documentation update to outline caveat with SESSION_COOKIE_DOMAIN

This commit is contained in:
Ryan West 2013-03-18 19:18:35 -07:00
parent 9d6ecc6bc6
commit ae8fcedbc7

View File

@ -2287,6 +2287,12 @@ The domain to use for session cookies. Set this to a string such as
``".example.com"`` (note the leading dot!) for cross-domain cookies, or use
``None`` for a standard domain cookie.
Be cautious when updating this setting on a production site. If you update
this setting to enable cross-domain cookies on a site that previously used
standard domain cookies, existing user cookies will be set to the old
domain. This may result in them being unable to log in as long as these cookies
persist.
.. setting:: SESSION_COOKIE_HTTPONLY
SESSION_COOKIE_HTTPONLY