[1.4.x] Fixed #23149 -- Clarified note on HTTPOnly in cookie-based session docs

Backport of e26366da44bb343e7a95d01ff0dd18b8026c2802 from master.
2025-03-14 03:10:45 +00:00 · 2014-08-02 19:01:23 +02:00 · 2014-08-02 19:01:23 +02:00 · bc03817b42
commit bc03817b42
parent 778a555342
1 changed files with 1 additions and 1 deletions
--- a/docs/topics/http/sessions.txt
+++ b/docs/topics/http/sessions.txt
@ -111,7 +111,7 @@ and the :setting:`SECRET_KEY` setting.
 .. note::

    It's recommended to leave the :setting:`SESSION_COOKIE_HTTPONLY` setting
-    ``True`` to prevent tampering of the stored data from JavaScript.
+    on ``True`` to prevent access to the stored data from JavaScript.

 .. warning::