From 358ae4a687729a0f8dc23e71616f90649e111231 Mon Sep 17 00:00:00 2001
From: Marissa Zhou <marissa.zhou@propylon.com>
Date: Fri, 5 Jun 2015 16:50:53 +0100
Subject: [PATCH] [1.8.x] Fixed #24796 -- Moved SecurityMiddleware in
 MIDDLEWARE_CLASSES docs.

Partial backport of 8b1f39a727be91aab40bdb37235718ed63ae1d50 from master
---
 docs/topics/http/middleware.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/topics/http/middleware.txt b/docs/topics/http/middleware.txt
index 1abcdb58fe..f6d092f7cb 100644
--- a/docs/topics/http/middleware.txt
+++ b/docs/topics/http/middleware.txt
@@ -28,6 +28,7 @@ here's the default value created by :djadmin:`django-admin startproject
 <startproject>`::
 
     MIDDLEWARE_CLASSES = (
+        'django.middleware.security.SecurityMiddleware',
         'django.contrib.sessions.middleware.SessionMiddleware',
         'django.middleware.common.CommonMiddleware',
         'django.middleware.csrf.CsrfViewMiddleware',
@@ -35,7 +36,6 @@ here's the default value created by :djadmin:`django-admin startproject
         'django.contrib.auth.middleware.SessionAuthenticationMiddleware',
         'django.contrib.messages.middleware.MessageMiddleware',
         'django.middleware.clickjacking.XFrameOptionsMiddleware',
-        'django.middleware.security.SecurityMiddleware',
     )
 
 A Django installation doesn't require any middleware —