I'm sure by now everyone's seem the total freak out over the uk cookie law. (http://blog.silktide.com/2011/05/cookie-law-makes-most-uk- websites-illegal-what-you-need-to-know/) Since django with the sessions middleware installed automatically sets a cookie, I believe this violates the law? Since I have to deal with UK users, I need to be able to prevent them from receiving cookies until they log in. How does one do this? The problem is while the csrf cookie is allowed under the law (i think, it's vague) it's meaningless without being tied to the session cookie? Perhaps this makes the session cookie ok too? Anyone have any idea?
-- You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/django-users?hl=en.
