mirrors/django
1
0
Fork 0
mirror of https://github.com/django/django.git synced 2025-10-31 09:41:08 +00:00
Code Issues 32 Releases Wiki Activity

Fixed #25165 -- Removed inline JavaScript from the admin.

Browse Source 
This allows setting a Content-Security-Policy HTTP header
(refs #15727).

Special thanks to blighj, the original author of this patch.
This commit is contained in:
Thomas Grainger
2015-11-23 10:46:19 +00:00
committed by Tim Graham
parent 105028eec6
commit d638cdc42a
42 changed files with 455 additions and 275 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
docs/releases/1.10.txt
View File

@@ -39,6 +39,9 @@ Minor features
* The success message that appears after adding or editing an object now
contains a link to the object's change form.
* All inline JavaScript is removed so you can enable the
``Content-Security-Policy`` HTTP header if you wish.
:mod:`django.contrib.admindocs`
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^