Django/django
11
0
Fork 0
Code Pull Requests Projects Releases Activity

[3.0.x] Improved grammar in 3.0 release notes for SECURE_CONTENT_TYPE_NOSNIFF change.

Browse Source 
Backport of de1924e0e7499535f05298c46d9983fd1640d4b4 from master
This commit is contained in:
Adam Johnson 2020-02-05 11:46:14 +00:00 committed by Mariusz Felisiak
parent 0bf1330fe4
commit 9b36348665
1 changed files with 2 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
docs/releases/3.0.txt
View File

@ -330,9 +330,8 @@ Security
uses frames of itself, you will need to explicitly set ``X_FRAME_OPTIONS = uses frames of itself, you will need to explicitly set ``X_FRAME_OPTIONS =
'SAMEORIGIN'`` for them to continue working. 'SAMEORIGIN'`` for them to continue working.
* :setting:`SECURE_CONTENT_TYPE_NOSNIFF` setting now defaults to ``True``. With * :setting:`SECURE_CONTENT_TYPE_NOSNIFF` now defaults to ``True``. With this
the enabled :setting:`SECURE_CONTENT_TYPE_NOSNIFF`, the enabled, :class:`~django.middleware.security.SecurityMiddleware` sets the
:class:`~django.middleware.security.SecurityMiddleware` sets the
:ref:`x-content-type-options` header on all responses that do not already :ref:`x-content-type-options` header on all responses that do not already
have it. have it.