Permalink
Browse files

Should probably not break Django's CSRF system.

  • Loading branch information...
ubernostrum committed Feb 12, 2018
1 parent 17aa5eb commit b55f8c4f60a57b4237ba35afc12e9da7d987f1bd
Showing with 1 addition and 1 deletion.
  1. +1 −1 b_list/settings.py
@@ -139,7 +139,7 @@
CSRF_COOKIE_HTTPONLY = True
SESSION_COOKIE_SECURE = not DEBUG
SESSION_COOKIE_HTTPONLY = True
REFERRER_POLICY = 'no-referrer'
REFERRER_POLICY = 'same-origin'


# CSP.

0 comments on commit b55f8c4

Please sign in to comment.