mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-07-12 07:45:11 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
django/docs/howto
History
Exact
Rob Hudson d63241ebc7 Fixed #15727 -- Added Content Security Policy (CSP) support. 
This initial work adds a pair of settings to configure specific CSP
directives for enforcing or reporting policy violations, a new
`django.middleware.csp.ContentSecurityPolicyMiddleware` to apply the
appropriate headers to responses, and a context processor to support CSP
nonces in templates for safely inlining assets.

Relevant documentation has been added for the 6.0 release notes,
security overview, a new how-to page, and a dedicated reference section.

Thanks to the multiple reviewers for their precise and valuable feedback.

Co-authored-by: Natalia <124304+nessita@users.noreply.github.com>
2025-06-27 15:57:02 -03:00
..
_images Optimized docs images. 2022-02-25 13:40:13 +01:00
deployment Updated Hypercorn links in docs/howto/deployment/asgi/hypercorn.txt. 2024-10-21 18:31:39 -03:00
static-files Fixed a typo in docs/howto/static-files/deployment.txt. 2024-11-14 09:46:34 +01:00
auth-remote-user.txt Fixed #36200 -- Clarified MIDDLEWARE setting updates when using a custom RemoteUserMiddleware. 2025-02-20 16:12:28 +01:00
csp.txt Fixed #15727 -- Added Content Security Policy (CSP) support. 2025-06-27 15:57:02 -03:00
csrf.txt Applied Black's 2024 stable style. 2024-01-26 12:45:07 +01:00
custom-file-storage.txt Fixed typos in docstrings and docs. 2024-03-07 06:01:01 +01:00
custom-lookups.txt Applied Black's 2024 stable style. 2024-01-26 12:45:07 +01:00
custom-management-commands.txt Fixed #35515 -- Added automatic model imports to shell management command. 2025-01-09 13:00:29 -03:00
custom-model-fields.txt Fixed #36311 -- Unified spelling of "hardcode" and its variants in docs. 2025-04-15 14:48:55 -03:00
custom-shell.txt Fixed #36252 -- Handled duplicate automatic imports in the shell command. 2025-03-17 16:29:28 -03:00
custom-template-backend.txt Used :pypi: role in docs where appropriate. 2024-08-05 10:35:50 -03:00
custom-template-tags.txt Replaced '' with * for consistent emphasis styling in docs/howto/custom-template-tags.txt. 2025-04-15 14:48:55 -03:00
delete-app.txt Fixed #34309 -- Doc'd how to fully delete an app. 2023-07-11 10:48:01 +02:00
error-reporting.txt Fixed #35646 -- Extended SafeExceptionReporterFilter.hidden_settings to treat AUTH as a sensitive match. 2024-08-01 15:02:00 -03:00
index.txt Fixed #15727 -- Added Content Security Policy (CSP) support. 2025-06-27 15:57:02 -03:00
initial-data.txt Fixed #36311 -- Unified spelling of "hardcode" and its variants in docs. 2025-04-15 14:48:55 -03:00
legacy-databases.txt Fixed #34140 -- Reformatted code blocks in docs with blacken-docs. 2023-03-01 13:03:56 +01:00
logging.txt Fixed #34140 -- Reformatted code blocks in docs with blacken-docs. 2023-03-01 13:03:56 +01:00
outputting-csv.txt Fixed #36311 -- Unified spelling of "hardcode" and its variants in docs. 2025-04-15 14:48:55 -03:00
outputting-pdf.txt Refs #25778 -- Updated some links and references to HTTPS. 2023-11-29 11:21:22 +01:00
overriding-templates.txt Fixed example indentation in howto/overriding-templates.txt. 2024-10-22 13:07:19 +02:00
upgrade-version.txt Updated various links to HTTPS and new locations. 2022-03-29 07:46:08 +02:00
windows.txt Refs #34900 -- Doc'd Python 3.13 compatibility. 2024-10-09 09:27:33 +02:00
writing-migrations.txt Fixed #34140 -- Reformatted code blocks in docs with blacken-docs. 2023-03-01 13:03:56 +01:00