Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Browse files

Upgrade django-secure. Enable additional security measures.

  • Loading branch information...
commit 761c5f3b7f43dd2eb56747f77f34fc48c45f7173 1 parent e0ef4f5
@aaugustin aaugustin authored
Showing with 5 additions and 1 deletion.
  1. +1 −1  deploy-requirements.txt
  2. +4 −0 django_www/common_settings.py
View
2  deploy-requirements.txt
@@ -7,7 +7,7 @@ django-haystack == 1.1.0
django-push == 0.4
# django-registration doesn't have a release compatible with Django 1.5 yet
-e hg+https://bitbucket.org/jscott1971/django-registration@b963cb9#egg=django-registration
-django-secure == 0.1.0
+django-secure == 0.1.2
docutils >= 0.6, < 0.7
feedparser==5.1.1
Jinja2 >= 2.4, < 2.5
View
4 django_www/common_settings.py
@@ -139,4 +139,8 @@
### django-secure settings
+SECURE_BROWSER_XSS_FILTER = True
+
+SECURE_CONTENT_TYPE_NOSNIFF = True
+
SECURE_HSTS_SECONDS = 600
Please sign in to comment.
Something went wrong with that request. Please try again.