0001-mics-apply-xframe_options_deny-to-views-44435.patch
src/authentic2/urls.py | ||
---|---|---|
22 | 22 |
from django.contrib.staticfiles.views import serve |
23 | 23 |
from django.views.generic.base import TemplateView |
24 | 24 |
from django.views.static import serve as media_serve |
25 |
from django.views.decorators.clickjacking import xframe_options_deny |
|
25 | 26 | |
26 |
from . import plugins, views |
|
27 |
from . import plugins, views, decorators
|
|
27 | 28 | |
28 | 29 |
admin.autodiscover() |
29 | 30 | |
... | ... | |
142 | 143 |
url(r'^__debug__/', include(debug_toolbar.urls)), |
143 | 144 |
] + urlpatterns |
144 | 145 | |
146 |
# prevent click-jacking on authentic views |
|
147 |
urlpatterns = decorators.required(xframe_options_deny, urlpatterns) |
|
148 | ||
145 | 149 |
urlpatterns = plugins.register_plugins_urls(urlpatterns) |
146 |
- |