All notable changes to this project will be documented in this file. The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- A warning regarding possible browser rejection of insecure cookies with
SameSite=None. See note 3.
- Existing
Set-Cookieheaders are removed from the response and replaced by their encrypted counterparts (@RealOrangeOne in #6). - A ghost bug (one that didn't affect anything due to downstream behavior).
- Exposed encryption, decryption, and utility functions to better support subclass customization.
SecureCSRFMiddlewareto the newsecurecookies.extrasmodule to patch new and existing tooling to support secure cookies.
- Better diagram support in documentation.
- Replaced Poetry with PDM for dependency and package management.
- Support for Python 3.7.
- Starlette dependency from
^0.20.0to>=0.6.1.
- Starlette middleware for encrypting and decrypting cookies.
- Ability to filter cookies on which to behave.
- Ability to overwrite cookie attributes through the middleware.
- Complete documentation.
- 100% passing test coverage.