Mariusz Felisiak
|
1299bc33e1
|
Refs #33526 -- Made CSRF_COOKIE_SECURE/SESSION_COOKIE_SECURE/SESSION_COOKIE_HTTPONLY don't pass on truthy values.
|
2022-02-21 07:54:47 +01:00 |
|
Mariusz Felisiak
|
7119f40c98
|
Refs #33476 -- Refactored code to strictly match 88 characters line length.
|
2022-02-07 20:37:05 +01:00 |
django-bot
|
9c19aff7c7
|
Refs #33476 -- Reformatted code with Black.
|
2022-02-07 20:37:05 +01:00 |
Hasan Ramezani
|
ba3fb2e4d0
|
Refs #32311 -- Fixed CSRF_FAILURE_VIEW system check errors code.
|
2021-01-12 11:22:13 +01:00 |
|
Hasan Ramezani
|
64331419c8
|
Fixed #32311 -- Added system check for CSRF_FAILURE_VIEW setting.
|
2021-01-12 09:44:36 +01:00 |
Tim Graham
|
d334f46b7a
|
Refs #26601 -- Removed support for old-style middleware using settings.MIDDLEWARE_CLASSES.
|
2017-01-17 20:52:04 -05:00 |
|
Tim Graham
|
c27104a9c7
|
Fixed #27611 -- Doc'd that CSRF_COOKIE_HTTPONLY setting offers no security.
|
2016-12-19 17:56:58 -05:00 |
Raphael Michel
|
33e86b3488
|
Refs #16859 -- Disabled CSRF_COOKIE_* checks when using CSRF_USE_SESSIONS.
|
2016-12-17 09:59:48 -05:00 |
Florian Apolloner
|
9baf692a58
|
Fixed #26601 -- Improved middleware per DEP 0005.
Thanks Tim Graham for polishing the patch, updating the tests, and
writing documentation. Thanks Carl Meyer for shepherding the DEP.
|
2016-05-17 07:22:22 -04:00 |
|
Tim Graham
|
0ed7d15563
|
Sorted imports with isort; refs #23860.
|
2015-02-06 08:16:28 -05:00 |
|
Tim Graham
|
52ef6a4726
|
Fixed #17101 -- Integrated django-secure and added check --deploy option
Thanks Carl Meyer for django-secure and for reviewing.
Thanks also to Zach Borboa, Erik Romijn, Collin Anderson, and
Jorge Carleitao for reviews.
|
2014-09-12 15:05:23 -04:00 |