summaryrefslogtreecommitdiff
path: root/docs/topics/security.txt
Commit message (Expand)AuthorAgeFilesLines
* Updated OWASP Top 10 link in security topic.Grammy Jiang2022-06-161-1/+1
* Removed versionadded/changed annotations for 4.0.Carlton Gibson2022-05-171-2/+0
* Fixed #30360 -- Added support for secret key rotation.tschilling2022-02-011-1/+2
* Fixed 32956 -- Lowercased spelling of "web" and "web framework" where appropr...David Smith2021-07-291-7/+7
* Fixed #31840 -- Added support for Cross-Origin Opener Policy header.bankc2021-03-301-0/+13
* Refs #31670 -- Removed whitelist/blacklist terminology in docs and comments.David Smith2020-06-171-1/+1
* Fixed #31696 -- Updated OWASP links in docs.Hasan Ramezani2020-06-151-1/+1
* Added link to Mozilla's infosec page on web security. Mads Jensen2020-04-221-0/+3
* Fixed highlightlang deprecation warning on Sphinx 1.8+.Mariusz Felisiak2020-04-071-1/+1
* Fixed #29406 -- Added support for Referrer-Policy header.Nick Pope2019-09-091-0/+9
* Fixed #30573 -- Rephrased documentation to avoid words that minimise the invo...Tobias Kunze2019-09-061-4/+4
* Updated OWASP Top 10 link to the latest version.Vedran Karačić2018-12-271-1/+1
* Used auto-numbered lists in documentation.François Freitag2018-11-151-2/+2
* Described how querysets are protected from SQL injection in more detail.Tim Graham2017-11-011-8/+11
* Fixed #26947 -- Added an option to enable the HSTS header preload directive.Ed Morley2016-08-101-2/+3
* Fixed #20869 -- made CSRF tokens change every request by salt-encrypting themShai Berger2016-05-191-2/+2
* Refs #26464 -- Added a link to OWASP Top 10 in security topic guide.Tim Graham2016-04-091-0/+5
* Removed a reference to Django 1.3.1 in docs.Tim Graham2016-04-041-3/+3
* Fixed #26206 -- Fixed docs comments causing empty code blocks.Tim Graham2016-02-111-1/+2
* Fixed Sphinx highlight warnings in docs.Tim Graham2016-01-251-1/+2
* Removed a misleading comment about HTTPS.Alex Gaynor2015-12-211-5/+5
* Fixed #25778 -- Updated docs links to use https when available.Jon Dufresne2015-12-011-1/+1
* Fixed #25755 -- Unified spelling of "website".Agnieszka Lasyk2015-11-161-1/+1
* Added links to new security settings introduced in 1.8.David Sanders2015-09-041-7/+8
* Updated various links in docsClaude Paroz2015-08-081-1/+1
* Updated Wikipedia links to use httpsClaude Paroz2015-08-081-1/+1
* Fixed #25212 -- Documented the RawSQL expression.Tim Graham2015-08-051-1/+2
* Fixed #23561 -- Corrected a security doc example that requires an unquoted HT...Carl Meyer2014-09-261-2/+2
* Fixed some doc errors that caused syntax highlighting to fail.Tim Graham2014-08-181-1/+1
* Fixed #22504 -- Corrected domain terminology in security guide.Tim Graham2014-04-251-5/+5
* Fixed #22493 - Added warnings to raw() and extra() docs about SQL injectionMoayad Mardini2014-04-251-0/+1
* Removed PIL compatability layer per deprecation timeline.Tim Graham2014-03-211-2/+2
* Added a warning regarding risks in serving user uploaded media.Tim Graham2013-11-271-4/+46
* Added a warning regarding session security and subdomains.Tim Graham2013-10-181-0/+7
* Fixed #20330 -- Normalized spelling of "web server".Aymeric Augustin2013-04-291-4/+4
* Added a new required ALLOWED_HOSTS setting for HTTP host header validation.Carl Meyer2013-02-191-37/+30
* Removed django.contrib.markup.Aymeric Augustin2012-12-291-7/+0
* Fixed broken links, round 3. refs #19516Tim Graham2012-12-261-3/+3
* Fixed a security issue in get_host.Florian Apolloner2012-12-101-0/+25
* Formatting fix for host headers sectionDavid Fischer2012-09-061-5/+5
* Added CSRF with HTTPS/HSTS and forwarding noteDavid Fischer2012-09-061-1/+13
* Added note about Strict Transport Security (HSTS)David Fischer2012-09-061-0/+8
* Rewrote security.txt SSL docs, noting SECURE_PROXY_SSL_HEADER.Luke Plant2012-06-041-13/+10
* Added more explicit warnings about unconfigured reStructured Text usage in docs.Luke Plant2012-04-191-0/+8
* Quick edit of docs/topics/security.txt to catch some basic formatting problem...Adrian Holovaty2011-12-171-28/+27
* Added protection against spoofing of X_FORWARDED_HOST headers. A security ann...Russell Keith-Magee2011-09-101-0/+17
* Fixes #16482 -- Fixes typo in security docs. Thanks, charettes.Jannis Leidel2011-07-291-1/+1
* Grammar fixes and content tweaks to XSS section of security docs.Luke Plant2011-07-171-8/+9
* Improved warning about file uploads in docs, and added link from security ove...Luke Plant2011-07-061-1/+3
* Fixed #16248 -- Corrected a few typos in the security docs. Thanks, buddelkiste.Jannis Leidel2011-06-141-5/+5
View Lorry Controller Status