Improved grammar in 3.0 release notes for SECURE_CONTENT_TYPE_NOSNIFF change.

This commit is contained in:
Adam Johnson 2020-02-05 11:46:14 +00:00 committed by GitHub
parent da79ee472d
commit de1924e0e7
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 3 deletions

View File

@ -330,9 +330,8 @@ Security
uses frames of itself, you will need to explicitly set ``X_FRAME_OPTIONS = uses frames of itself, you will need to explicitly set ``X_FRAME_OPTIONS =
'SAMEORIGIN'`` for them to continue working. 'SAMEORIGIN'`` for them to continue working.
* :setting:`SECURE_CONTENT_TYPE_NOSNIFF` setting now defaults to ``True``. With * :setting:`SECURE_CONTENT_TYPE_NOSNIFF` now defaults to ``True``. With this
the enabled :setting:`SECURE_CONTENT_TYPE_NOSNIFF`, the enabled, :class:`~django.middleware.security.SecurityMiddleware` sets the
:class:`~django.middleware.security.SecurityMiddleware` sets the
:ref:`x-content-type-options` header on all responses that do not already :ref:`x-content-type-options` header on all responses that do not already
have it. have it.