Correct HttpOnly description (#419) (#429)

gregwoodio · web-flow · commit 9e38620fee7a · 2021-09-28T13:24:45.000-07:00
diff --git a/src/Microsoft.Owin/CookieOptions.cs b/src/Microsoft.Owin/CookieOptions.cs
@@ -45,7 +45,7 @@ public CookieOptions()
         /// <summary>
         /// Gets or sets a value that indicates whether a cookie is accessible by client-side script.
         /// </summary>
-        /// <returns>true if a cookie is accessible by client-side script; otherwise, false.</returns>
+        /// <returns>false if a cookie is accessible by client-side script; otherwise, true.</returns>
         public bool HttpOnly { get; set; }
 
         /// <summary>
