From 31dcaf49a0ed6bda13a6d556412b6993a9bd41ba Mon Sep 17 00:00:00 2001
From: Preston Holmes <preston@ptone.com>
Date: Wed, 17 Oct 2012 14:53:21 -0700
Subject: [PATCH] Fixed an error in cookie documentation

---
 docs/ref/request-response.txt | 6 +-----
 docs/topics/http/sessions.txt | 3 +++
 2 files changed, 4 insertions(+), 5 deletions(-)

diff --git a/docs/ref/request-response.txt b/docs/ref/request-response.txt
index 90872a6feb..0a337eba42 100644
--- a/docs/ref/request-response.txt
+++ b/docs/ref/request-response.txt
@@ -651,11 +651,7 @@ Methods
     Returns ``True`` or ``False`` based on a case-insensitive check for a
     header with the given name.
 
-.. method:: HttpResponse.set_cookie(key, value='', max_age=None, expires=None, path='/', domain=None, secure=None, httponly=True)
-
-    .. versionchanged:: 1.4
-
-    The default value for httponly was changed from ``False`` to ``True``.
+.. method:: HttpResponse.set_cookie(key, value='', max_age=None, expires=None, path='/', domain=None, secure=None, httponly=False)
 
     Sets a cookie. The parameters are the same as in the :class:`Cookie.Morsel`
     object in the Python standard library.
diff --git a/docs/topics/http/sessions.txt b/docs/topics/http/sessions.txt
index 1f55293413..15f9f7feba 100644
--- a/docs/topics/http/sessions.txt
+++ b/docs/topics/http/sessions.txt
@@ -524,6 +524,9 @@ consistently by all browsers. However, when it is honored, it can be a
 useful way to mitigate the risk of client side script accessing the
 protected cookie data.
 
+.. versionchanged:: 1.4
+    The default value of the setting was changed from ``False`` to ``True``.
+
 .. _HTTPOnly: https://www.owasp.org/index.php/HTTPOnly
 
 SESSION_COOKIE_NAME