Details
-
Task
-
Status: Open
-
Minor
-
Resolution: Unresolved
-
None
-
None
-
None
Description
As per original request:
http://www.modpython.org/pipermail/mod_python/2006-December/022803.html
and subsequent discussion, investigate whether sessions should be able to be created such that the underlying cookie is using either the 'httponly' or 'secure' cookie attributes.
Note that the thread in the mailing list archive doesn't join together properly so you need to look for the similar subject lines in the thread index.
At the end of the discussion it wasn't completely clear how things would behave if these attributes were used and thus what the outcome would be so it wasn't pursued further.