Porting to Python 3 Philosophy Porting tips Coding guidelines Security in Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection humanize messages postgres redirects sessions sites sitemaps syndication webdesign Other add-ons Cross Site Request Forgery protection How to use it Rejected requests How it works Caching Testing Limitations and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization

Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection SSL/HTTPS Host header validation Referrer policy Cross-origin flatpages gis humanize messages postgres redirects sessions sites sitemaps syndication Other add-ons Cross Site Request Forgery protection How it works Limitations Utilities Settings Frequently Asked Questions and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization

packages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 676 6.6 Cross Site Request Forgery protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . mechanisms: • Security overview • Disclosed security issues in Django • Clickjacking protection • Cross Site Request Forgery protection • Cryptographic signing • Security Middleware 1.10 Internationalization we’re creating a POST form (which can have the effect of modifying data), we need to worry about Cross Site Request Forgeries. Thankfully, you don’t have to worry too hard, because Django comes with a

view Paginator objects InvalidPage exceptions Page objects Security in Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection flatpages gis humanize messages postgres redirects sessions sites sitemaps syndication Other add-ons Cross Site Request Forgery protection How to use it Rejected requests How it works Caching Testing Limitations and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization

view Paginator objects InvalidPage exceptions Page objects Security in Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection flatpages gis humanize messages postgres redirects sessions sites sitemaps syndication Other add-ons Cross Site Request Forgery protection How to use it Rejected requests How it works Caching Testing Limitations and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization

Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection SSL/HTTPS Host header validation Referrer policy Cross-origin flatpages gis humanize messages postgres redirects sessions sites sitemaps syndication Other add-ons Cross Site Request Forgery protection How it works Limitations Utilities Settings Frequently Asked Questions and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization

Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection SSL/HTTPS Host header validation Referrer policy Cross-origin flatpages gis humanize messages postgres redirects sessions sites sitemaps syndication Other add-ons Cross Site Request Forgery protection How to use it Rejected requests How it works Caching Testing Limitations and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization

. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 782 6.6 Cross Site Request Forgery protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . mechanisms: • Security overview • Disclosed security issues in Django • Clickjacking protection • Cross Site Request Forgery protection • Cryptographic signing • Security Middleware 1.7. Forms 3 Django we’re creating a POST form (which can have the effect of modifying data), we need to worry about Cross Site Request Forgeries. Thankfully, you don’t have to worry too hard, because Django comes with a

packages . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 698 6.6 Cross Site Request Forgery protection . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . mechanisms: • Security overview • Disclosed security issues in Django • Clickjacking protection • Cross Site Request Forgery protection • Cryptographic signing • Security Middleware 1.7. Forms 3 Django we’re creating a POST form (which can have the effect of modifying data), we need to worry about Cross Site Request Forgeries. Thankfully, you don’t have to worry too hard, because Django comes with a

Porting to Python 3 Philosophy Porting tips Coding guidelines Security in Django Cross site scripting (XSS) protection Cross site request forgery (CSRF) protection SQL injection protection Clickjacking protection flatpages gis humanize messages postgres redirects sessions sites sitemaps syndication Other add-ons Cross Site Request Forgery protection How to use it Rejected requests How it works Caching Testing Limitations and mechanisms: Security overview Disclosed security issues in Django Clickjacking protection Cross Site Request Forgery protection Cryptographic signing Security Middleware Internationalization