dani/django-ram
1
0
Fork 0
mirror of https://github.com/daniviga/django-ram.git synced 2026-02-03 17:40:39 +01:00
Code Issues Packages Projects Releases Wiki Activity

Cookies hardening

Browse Source
This commit is contained in:
Daniele Viganò
2026-01-15 10:02:57 +01:00
parent a254786ddc
commit 167a0593de
1 changed files with 6 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
ram/ram/settings.py
View File

@@ -109,6 +109,12 @@ DEFAULT_AUTO_FIELD = "django.db.models.BigAutoField"
MEDIA_URL = "media/" MEDIA_URL = "media/"
MEDIA_ROOT = STORAGE_DIR / "media" MEDIA_ROOT = STORAGE_DIR / "media"
# cookies hardening
SESSION_COOKIE_SECURE = True
SESSION_COOKIE_HTTPONLY = True
CSRF_COOKIE_SECURE = True
CSRF_COOKIE_HTTPONLY = True
# django-ram REST API settings # django-ram REST API settings
REST_ENABLED = False # Set to True to enable the REST API REST_ENABLED = False # Set to True to enable the REST API
REST_FRAMEWORK = { REST_FRAMEWORK = {