mirror of
https://github.com/django/django.git
synced 2025-07-24 05:36:15 +00:00
d63241ebc7
This initial work adds a pair of settings to configure specific CSP directives for enforcing or reporting policy violations, a new `django.middleware.csp.ContentSecurityPolicyMiddleware` to apply the appropriate headers to responses, and a context processor to support CSP nonces in templates for safely inlining assets. Relevant documentation has been added for the 6.0 release notes, security overview, a new how-to page, and a dedicated reference section. Thanks to the multiple reviewers for their precise and valuable feedback. Co-authored-by: Natalia <124304+nessita@users.noreply.github.com> |
||
|---|---|---|
| .. | ||
| archives | ||
| eggs | ||
| files | ||
| test_module | ||
| traversal_archives | ||
| __init__.py | ||
| deconstructible_classes.py | ||
| models.py | ||
| test_archive.py | ||
| test_autoreload.py | ||
| test_choices.py | ||
| test_connection.py | ||
| test_crypto.py | ||
| test_csp.py | ||
| test_datastructures.py | ||
| test_dateformat.py | ||
| test_dateparse.py | ||
| test_deconstruct.py | ||
| test_decorators.py | ||
| test_duration.py | ||
| test_encoding.py | ||
| test_feedgenerator.py | ||
| test_functional.py | ||
| test_hashable.py | ||
| test_html.py | ||
| test_http.py | ||
| test_inspect.py | ||
| test_ipv6.py | ||
| test_lazyobject.py | ||
| test_lorem_ipsum.py | ||
| test_module_loading.py | ||
| test_no_submodule.py | ||
| test_numberformat.py | ||
| test_os_utils.py | ||
| test_regex_helper.py | ||
| test_safestring.py | ||
| test_simplelazyobject.py | ||
| test_termcolors.py | ||
| test_text.py | ||
| test_timesince.py | ||
| test_timezone.py | ||
| test_tree.py | ||
| utils.py | ||