#33180: Debug 500 HTML broken with strict Content-Security-Policy (CSP)
--------------------------------------+------------------------------------
Reporter: Adam Johnson | Owner: Jordan
Type: Cleanup/optimization | Status: assigned
Component: Error reporting | Version: dev
Severity: Normal | Resolution:
Keywords: | Triage Stage: Accepted
Has patch: 0 | Needs documentation: 0
Needs tests: 0 | Patch needs improvement: 0
Easy pickings: 0 | UI/UX: 0
--------------------------------------+------------------------------------
Comment (by Rob Hudson):
With the recent addition of CSP and the CSP view decorators, the debug
views are now being decorated to not have a CSP applied. This only
prevents the built-in CSP support from adding a header, not removing a
header that already exists by other means.
--
Ticket URL: <https://code.djangoproject.com/ticket/33180#comment:11>
Django <https://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to django-updates+unsubscr...@googlegroups.com.
To view this discussion visit
https://groups.google.com/d/msgid/django-updates/01070199018c80fb-67770a45-ab1c-48c5-a5b9-ed4645d9a478-000000%40eu-central-1.amazonses.com.
