v1.1.1

Added

• A warning regarding possible browser rejection of insecure cookies with SameSite=None. See note 3.

Fixed

• Existing Set-Cookie headers are removed from the response and replaced by their encrypted counterparts (@RealOrangeOne in #6).
• A ghost bug (one that didn't affect anything due to downstream behavior).

v1.1.0

Added

• Exposed encryption, decryption, and utility functions to better support subclass customization.
• SecureCSRFMiddleware to the new securecookies.extras module to patch new and existing tooling to support secure cookies.

Changed

• Better diagram support in documentation.
• Replaced Poetry with PDM for dependency and package management.

v1.0.2

Fixed

• Support for Python 3.7.

v1.0.1

Changed

• Starlette dependency from ^0.20.0 to >=0.6.1.

v1.0.0

Initial release.

Added

• Starlette middleware for encrypting and decrypting cookies.
• Ability to filter cookies on which to behave.
• Ability to overwrite cookie attributes through the middleware.
• Complete documentation.
• 100% passing test coverage.