From dcb59db86c3463425e1bbc1a85ce45adabdb374a Mon Sep 17 00:00:00 2001
From: Matthias Kestenholz <mk@feinheit.ch>
Date: Mon, 15 Nov 2021 18:20:10 +0100
Subject: [PATCH] Add a big warning regarding the security implications of
 changing SHOW_TOOLBAR_CALLBACK

---
 docs/configuration.rst | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/docs/configuration.rst b/docs/configuration.rst
index 96758d89c..7219c8167 100644
--- a/docs/configuration.rst
+++ b/docs/configuration.rst
@@ -123,6 +123,12 @@ Toolbar options
   the callback. This allows reusing the callback to verify access to panel
   views requested via AJAX.
 
+  .. warning::
+
+     Please note that the debug toolbar isn't hardened for use in production
+     environments or on public servers. You should be aware of the implications
+     to the security of your servers when using your own callback.
+
 Panel options
 ~~~~~~~~~~~~~