Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection SSL/HTTPS Host header validation Referrer policy Cross-origin flatpages gis humanize messages postgres redirects sessions sites sitemaps syndication Other add-ons Cross Site Request Forgery protection How it works Limitations Utilities Settings Frequently Asked Questions and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization

Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection SSL/HTTPS Host header validation Referrer policy Cross-origin flatpages gis humanize messages postgres redirects sessions sites sitemaps syndication Other add-ons Cross Site Request Forgery protection How it works Limitations Utilities Settings Frequently Asked Questions and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization

Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection SSL/HTTPS Host header validation Referrer policy Cross-origin flatpages gis humanize messages postgres redirects sessions sites sitemaps syndication Other add-ons Cross Site Request Forgery protection How to use it Rejected requests How it works Caching Testing Limitations and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization

. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 782 6.6 Cross Site Request Forgery protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . mechanisms: • Security overview • Disclosed security issues in Django • Clickjacking protection • Cross Site Request Forgery protection • Cryptographic signing • Security Middleware 1.7. Forms 3 Django we’re creating a POST form (which can have the effect of modifying data), we need to worry about Cross Site Request Forgeries. Thankfully, you don’t have to worry too hard, because Django comes with a

Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection SSL/HTTPS Host header validation Referrer policy Cross-origin flatpages gis humanize messages postgres redirects sessions sites sitemaps syndication Other add-ons Cross Site Request Forgery protection How it works Limitations Utilities Settings Frequently Asked Questions and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization

Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection SSL/HTTPS Host header validation Referrer policy Cross-origin flatpages gis humanize messages postgres redirects sessions sites sitemaps syndication Other add-ons Cross Site Request Forgery protection How it works Limitations Utilities Settings Frequently Asked Questions and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization

Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection SSL/HTTPS Host header validation Referrer policy Cross-origin flatpages gis humanize messages postgres redirects sessions sites sitemaps syndication Other add-ons Cross Site Request Forgery protection How it works Limitations Utilities Settings Frequently Asked Questions and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization

packages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 992 6.6 Cross Site Request Forgery protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1375 mechanisms: • Security overview • Disclosed security issues in Django • Clickjacking protection • Cross Site Request Forgery protection • Cryptographic signing • Security Middleware 1.11 Internationalization we’re creating a POST form (which can have the effect of modifying data), we need to worry about Cross Site Request Forgeries. Thankfully, you don’t have to worry too hard, because Django comes with a

packages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1001 6.6 Cross Site Request Forgery protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1386 mechanisms: • Security overview • Disclosed security issues in Django • Clickjacking protection • Cross Site Request Forgery protection • Cryptographic signing • Security Middleware 1.11 Internationalization we’re creating a POST form (which can have the effect of modifying data), we need to worry about Cross Site Request Forgeries. Thankfully, you don’t have to worry too hard, because Django comes with a

packages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 999 6.6 Cross Site Request Forgery protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1384 mechanisms: • Security overview • Disclosed security issues in Django • Clickjacking protection • Cross Site Request Forgery protection • Cryptographic signing • Security Middleware 1.11 Internationalization we’re creating a POST form (which can have the effect of modifying data), we need to worry about Cross Site Request Forgeries. Thankfully, you don’t have to worry too hard, because Django comes with a