mirror of https://github.com/django/django.git
Fixed #31934 -- Added note about the default of SameSite cookie flag in modern browsers.
This commit is contained in:
parent
179d9dc0c2
commit
70731fc6fe
|
@ -3241,6 +3241,11 @@ Possible values for the setting are:
|
|||
|
||||
* ``False``: disables the flag.
|
||||
|
||||
.. note::
|
||||
|
||||
Modern browsers provide a more secure default policy for the ``SameSite``
|
||||
flag and will assume ``Lax`` for cookies without an explicit value set.
|
||||
|
||||
.. versionchanged:: 3.1
|
||||
|
||||
Setting ``SESSION_COOKIE_SAMESITE = 'None'`` was allowed.
|
||||
|
|
Loading…
Reference in New Issue