mirror of
https://github.com/django/django.git
synced 2024-12-23 01:25:58 +00:00
Improved grammar in 3.0 release notes for SECURE_CONTENT_TYPE_NOSNIFF change.
This commit is contained in:
parent
da79ee472d
commit
de1924e0e7
@ -330,9 +330,8 @@ Security
|
||||
uses frames of itself, you will need to explicitly set ``X_FRAME_OPTIONS =
|
||||
'SAMEORIGIN'`` for them to continue working.
|
||||
|
||||
* :setting:`SECURE_CONTENT_TYPE_NOSNIFF` setting now defaults to ``True``. With
|
||||
the enabled :setting:`SECURE_CONTENT_TYPE_NOSNIFF`, the
|
||||
:class:`~django.middleware.security.SecurityMiddleware` sets the
|
||||
* :setting:`SECURE_CONTENT_TYPE_NOSNIFF` now defaults to ``True``. With this
|
||||
enabled, :class:`~django.middleware.security.SecurityMiddleware` sets the
|
||||
:ref:`x-content-type-options` header on all responses that do not already
|
||||
have it.
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user