From 3fe316cb75b4311fbc4c7610f140e423b30d9ff6 Mon Sep 17 00:00:00 2001
From: Casey Duncan <casey.duncan@gmail.com>
Date: Thu, 6 Jan 2011 00:11:22 -0700
Subject: remove comment, it's more or less answered

---
 docs/narr/sessions.rst | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/docs/narr/sessions.rst b/docs/narr/sessions.rst
index bd0fe69bf..842b838cd 100644
--- a/docs/narr/sessions.rst
+++ b/docs/narr/sessions.rst
@@ -340,6 +340,3 @@ obtained via ``session.new_csrf_token()`` as a hidden input field named
    if token != request.POST['csrf_token']:
        raise ValueError('CSRF token did not match')
 
-.. comment:: 
-   XXX Some advice on when a new csrf token should be generated would be
-   useful. At login time? When the form is generated?
-- 
cgit v1.2.3