Is it possible to have the cookies in "http_only" and "secure" mode? #7
Comments
|
You can use `set_modifier` to set a function that modifies the cookie
arbitrarily. Otherwise you can always define an AfterMiddleware which rewrites
the response header.
…On Sat, Mar 18, 2017 at 08:25:50AM -0700, Bruno Bigras wrote:
"http_only" so it's not available to javascript and
"secure" so it's https only.
--
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
#7
|
|
Is it normal that "httponly" and "set_cookie_modifier" are not available with the redis backend? |
|
It's a missing feature. Patches welcome. :) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
"http_only" so it's not available to javascript(sorry I just saw 51711cf) and"secure" so it's https only.
The text was updated successfully, but these errors were encountered: