Fixed #28741 -- Removed unnecessary leading dot from cross-domain cookie examples.

2025-10-24 14:16:09 +00:00 · 2017-11-01 10:57:59 -04:00
parent cbe334918a
commit afd375fc34
4 changed files with 10 additions and 11 deletions
--- a/docs/topics/http/sessions.txt
+++ b/docs/topics/http/sessions.txt
@@ -653,7 +653,7 @@ you'll be logged in as the attacker and might inadvertently enter your
 sensitive personal data (e.g. credit card info) into the attackers account.

 Another possible attack would be if ``good.example.com`` sets its
-:setting:`SESSION_COOKIE_DOMAIN` to ``".example.com"`` which would cause
+:setting:`SESSION_COOKIE_DOMAIN` to ``"example.com"`` which would cause
 session cookies from that site to be sent to ``bad.example.com``.

 Technical details