Commit c7c1ee82 authored by Gabriel Detraz's avatar Gabriel Detraz

Desactivation des réglages de sécurité HTTPS par défault

parent 2070d384
...@@ -53,12 +53,12 @@ DATABASES = { ...@@ -53,12 +53,12 @@ DATABASES = {
} }
} }
# Security settings # Security settings, à activer une fois https en place
SECURE_CONTENT_TYPE_NOSNIFF = True SECURE_CONTENT_TYPE_NOSNIFF = False
SECURE_BROWSER_XSS_FILTER = True SECURE_BROWSER_XSS_FILTER = False
SESSION_COOKIE_SECURE = True SESSION_COOKIE_SECURE = False
CSRF_COOKIE_SECURE = True CSRF_COOKIE_SECURE = False
CSRF_COOKIE_HTTPONLY = True CSRF_COOKIE_HTTPONLY = False
X_FRAME_OPTIONS = 'DENY' X_FRAME_OPTIONS = 'DENY'
SESSION_COOKIE_AGE = 60 * 60 * 3 SESSION_COOKIE_AGE = 60 * 60 * 3
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment