Branch: refs/heads/master Home: https://github.com/django/django Commit: 720888a14699a80a6cd07d32514b9dcd5b1005fb https://github.com/django/django/commit/720888a14699a80a6cd07d32514b9dcd5b1005fb Author: Aymeric Augustin <aymeric.augus...@m4x.org> Date: 2013-02-07 (Thu, 07 Feb 2013)
Changed paths: M django/conf/global_settings.py M django/middleware/csrf.py M docs/ref/contrib/csrf.txt M docs/ref/settings.txt M docs/releases/1.6.txt M tests/regressiontests/csrf_tests/tests.py Log Message: ----------- Fixed #15808 -- Added optional HttpOnly flag to the CSRF Cookie. Thanks Samuel Lavitt for the report and Sascha Peilicke for the patch. -- You received this message because you are subscribed to the Google Groups "Django updates" group. To unsubscribe from this group and stop receiving emails from it, send an email to django-updates+unsubscr...@googlegroups.com. To post to this group, send email to django-updates@googlegroups.com. For more options, visit https://groups.google.com/groups/opt_out.