small documentation update to outline caveat with SESSION_COOKIE_DOMAIN

2013-03-18 19:18:35 -07:00 · 2013-03-18 19:18:35 -07:00 · ae8fcedbc7
parent 9d6ecc6bc6
commit ae8fcedbc7
1 changed files with 6 additions and 0 deletions
--- a/docs/ref/settings.txt
+++ b/docs/ref/settings.txt
@ -2287,6 +2287,12 @@ The domain to use for session cookies. Set this to a string such as
 ``".example.com"`` (note the leading dot!) for cross-domain cookies, or use
 ``None`` for a standard domain cookie.

+Be cautious when updating this setting on a production site. If you update
+this setting to enable cross-domain cookies on a site that previously used
+standard domain cookies, existing user cookies will be set to the old
+domain. This may result in them being unable to log in as long as these cookies
+persist.
+
 .. setting:: SESSION_COOKIE_HTTPONLY

 SESSION_COOKIE_HTTPONLY