検索

advanced help
phrase: max: clip:
target: order:
Results of 21 - 30 of about 94 for header (0.047 sec.)
Django 3.2.2 release notes — Django 4.0.6 ドキュメント 7510
" + tagname + " "); } }); $("div.highlight\\-html\\+django span.nf").each(function(i, elem) { va ... security issue and a bug in 3.2.1. CVE-2021-32052: Header injection possibility since URLValidator accepted ... h newlines in HTTP response, you could suffer from header injection attacks. Django itself wasn't vulnerable ... because HttpResponse prohibits newlines in HTTP headers. Moreover, the URLField form field which uses URL ... ). 目次 Django 3.2.2 release notes CVE-2021-32052: Header injection possibility since URLValidator accepted ...
https://man.plustar.jp/django/releases/3.2.2.html - [similar]
Django 1.1.4 リリースノート — Django 4.0.6 ドキュメント 7457
" + tagname + " "); } }); $("div.highlight\\-html\\+django span.nf").each(function(i, elem) { va ... basis: Many AJAX toolkits add an X-Requested-With header when using XMLHttpRequest. Browsers have strict sa ... e context of a browser, the only way that a custom header of this nature can be added is with XMLHttpRequest ... ed to be AJAX on the basis of the X-Requested-With header. The Ruby on Rails web framework had a similar exe ... which can allow an attacker to provide custom HTTP headers on a request to any website. This can allow a for ...
https://man.plustar.jp/django/releases/1.1.4.html - [similar]
クロスサイトリクエストフォージェリ (CSRF) 対策 — Django 4.0.6 ドキュメント 7404
" + tagname + " "); } }); $("div.highlight\\-html\\+django span.nf").each(function(i, elem) { va ... に CSRF トークンの値を設定することができます ( CSRF_HEADER_NAME 設定でヘッダー名が指定できます)。多くの JavaS ... the AJAX request ¶ Finally, you'll need to set the header on your AJAX request. Using the fetch() API: const ... st = new Request ( /* URL */ , { method : 'POST' , headers : { 'X-CSRFToken' : csrftoken }, mode : 'same-ori ... iddleware . CsrfViewMiddleware verifies the Origin header , if provided by the browser, against the current ...
https://man.plustar.jp/django/ref/csrf.html - [similar]
django.middleware.clickjacking — Django 4.0.6 ドキュメント 7351
" + tagname + " "); } }); $("div.highlight\\-html\\+django span.nf").each(function(i, elem) { va ... iddlewareMixin ): """ Set the X-Frame-Options HTTP header in HTTP responses. Do not set the header if it's a ... e set to True. By default, set the X-Frame-Options header to 'SAMEORIGIN', meaning the response can only be ... ions_exempt" , False ): return response response . headers [ "X-Frame-Options" ] = self . get_xframe_options ... : """ Get the value to set for the X_FRAME_OPTIONS header. Use the value from the X_FRAME_OPTIONS setting, o ...
https://man.plustar.jp/django/_modules/django/middleware/clickjacking.html - [similar]
Django 4.0 release notes — Django 4.0.6 ドキュメント 7246
" + tagname + " "); } }); $("div.highlight\\-html\\+django span.nf").each(function(i, elem) { va ... ¶ The admin/base.html template now has a new block header which contains the admin site header. The new Mode ... ly. CSRF ¶ CSRF protection now consults the Origin header, if present. To facilitate this, some changes to t ... Middleware now adds the Cross-Origin Opener Policy header with a value of 'same-origin' to prevent cross-ori ... ng the same browsing context. You can prevent this header from being added by setting the SECURE_CROSS_ORIGI ...
https://man.plustar.jp/django/releases/4.0.html - [similar]
Django's cache framework — Django 4.0.6 ドキュメント 7206
" + tagname + " "); } }); $("div.highlight\\-html\\+django span.nf").each(function(i, elem) { va ... ntrol but to which you can provide hints (via HTTP headers) about which parts of your site should be cached, ... es with status 200, where the request and response headers allow. Responses to requests for the same URL wit ... a HEAD request is answered with the same response headers as the corresponding GET request; in which case i ... ly, UpdateCacheMiddleware automatically sets a few headers in each HttpResponse which affect downstream cach ...
https://man.plustar.jp/django/topics/cache.html - [similar]
条件付きビュー — Django 4.0.6 ドキュメント 7153
" + tagname + " "); } }); $("div.highlight\\-html\\+django span.nf").each(function(i, elem) { va ... 条件付きビュー ¶ HTTP clients can send a number of headers to tell the server about copies of a resource tha ... he client has already retrieved. However, the same headers can be used for all HTTP methods ( POST , PUT , D ... sends back from a view, it might provide two HTTP headers: the ETag header and the Last-Modified header. Th ... ese headers are optional on HTTP responses. They can be set b ...
https://man.plustar.jp/django/topics/conditional-view-processing.html - [similar]
Django 3.1 release notes — Django 4.0.6 ドキュメント 6995
" + tagname + " "); } }); $("div.highlight\\-html\\+django span.nf").each(function(i, elem) { va ... es in the no-cache directive for the Cache-Control header, according to RFC 7234#section-5.2.2.2 . delete() ... ubdomains of localhost are now allowed in the Host header, e.g. static.localhost . HttpResponse.set_cookie() ... s the given MIME type according to the Accept HTTP header. セキュリティ ¶ The SECURE_REFERRER_POLICY setting ... gured, SecurityMiddleware sets the Referrer Policy header to same-origin on all responses that do not alread ...
https://man.plustar.jp/django/releases/3.1.html - [similar]
Django 1.2.5 release notes — Django 4.0.6 ドキュメント 6691
" + tagname + " "); } }); $("div.highlight\\-html\\+django span.nf").each(function(i, elem) { va ... basis: Many AJAX toolkits add an X-Requested-With header when using XMLHttpRequest. Browsers have strict sa ... e context of a browser, the only way that a custom header of this nature can be added is with XMLHttpRequest ... ed to be AJAX on the basis of the X-Requested-With header. The Ruby on Rails web framework had a similar exe ... which can allow an attacker to provide custom HTTP headers on a request to any website. This can allow a for ...
https://man.plustar.jp/django/releases/1.2.5.html - [similar]
Django 1.4.21 release notes — Django 4.0.6 ドキュメント 6639
" + tagname + " "); } }); $("div.highlight\\-html\\+django span.nf").each(function(i, elem) { va ... is present in their backend and correct it if so. Header injection possibility since validators accept newl ... use values with newlines in HTTP response or email headers, you can suffer from header injection attacks. Dj ... jango.core.mail prohibit newlines in HTTP and SMTP headers, respectively. While the validators have been fix ... al-of-service possibility by filling session store Header injection possibility since validators accept newl ...
https://man.plustar.jp/django/releases/1.4.21.html - [similar]
PREV 1 2 3 4 5 6 7 8 9 10 NEXT