From 918c9d9dd632d346909d2429647758352d753a42 Mon Sep 17 00:00:00 2001
From: Bert JW Regeer <bertjw@regeer.org>
Date: Fri, 1 Feb 2013 17:38:11 -0700
Subject: Update documentation for include_ip

Add a note that using the include_ip functionality with IPv6 is not a
good idea due to the users network expiring IPv6 addresses quickly.

See preferred lifetime/valid lifetime for routers doing SLAAC in IPv6
for more information.
---
 pyramid/authentication.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/pyramid/authentication.py b/pyramid/authentication.py
index 4f6ed2c1d..190298f98 100644
--- a/pyramid/authentication.py
+++ b/pyramid/authentication.py
@@ -450,6 +450,10 @@ class AuthTktAuthenticationPolicy(CallbackAuthenticationPolicy):
        Default: ``False``.  Make the requesting IP address part of
        the authentication data in the cookie.  Optional.
 
+       For IPv6 this option is not recommended. It ties the authentication
+       ticket to that individual's IPv6 address. Depending on the network they
+       are on, the IPv6 address that a user is using may expire quickly.
+
     ``timeout``
 
        Default: ``None``.  Maximum number of seconds which a newly
-- 
cgit v1.2.3