[Security] add missing Clear-Site-Data directives

alamirault · web-flow · commit 0a68b7d9f292 · 2025-11-23T19:51:52.000+01:00
diff --git a/reference/configuration/security.rst b/reference/configuration/security.rst
@@ -373,7 +373,8 @@ The ``Clear-Site-Data`` HTTP header clears browsing data (cookies, storage, cach
 associated with the requesting website. It allows web developers to have more
 control over the data stored by a client browser for their origins.
 
-Allowed values are ``cache``, ``cookies``, ``storage`` and ``executionContexts``.
+Allowed values are ``cache``, ``cookies``, ``storage``, ``clientHints``, ``executionContexts``,
+``prefetchCache`` and ``prerenderCache``.
 It's also possible to use ``*`` as a wildcard for all directives:
 
 .. configuration-block::
@@ -405,6 +406,9 @@ It's also possible to use ``*`` as a wildcard for all directives:
                 ->logout()
                     ->clearSiteData(['cookies', 'storage']);
         };
+.. versionadded:: 8.1
+    The ``clientHints``, ``prefetchCache`` and ``prerenderCache`` options were
+    introduced in Symfony 8.1.
 
 invalidate_session
 ..................
