Darren/dpaste
1
0
Fork 0
mirror of https://github.com/DarrenOfficial/dpaste.git synced 2024-11-15 16:12:51 +11:00
Code Issues Projects Releases Packages Wiki Activity

Clickjacking middleware

Browse source
This commit is contained in:
Martin Mahner 2013-05-28 23:00:41 +00:00
parent 30dd414a0f
commit 49edeecca0
2 changed files with 5 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
dpaste/settings.py
View file

@ -89,7 +89,7 @@ MIDDLEWARE_CLASSES = (
'dpaste.disable.DisableCSRF',
'django.middleware.common.CommonMiddleware',
'django.contrib.sessions.middleware.SessionMiddleware',
#'django.contrib.messages.middleware.MessageMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware',
)
TEMPLATE_CONTEXT_PROCESSORS += (

4
server/nginx.conf
View file

@ -24,6 +24,8 @@ server {
ssl_certificate /srv/dpaste.de/var/ssl/dpaste_de_unified.crt;
ssl_certificate_key /srv/dpaste.de/var/ssl/dpaste_de.key;
add_header Strict-Transport-Security max-age=31536000;
include /srv/dpaste.de/src/dpaste/server/nginx_server.conf;
}
@ -34,5 +36,7 @@ server {
ssl_certificate /srv/dpaste.de/var/ssl/dpaste_org_unified.crt;
ssl_certificate_key /srv/dpaste.de/var/ssl/dpaste_org.key;
add_header Strict-Transport-Security max-age=31536000;
include /srv/dpaste.de/src/dpaste/server/nginx_server.conf;
}