diff options
| author | Ed Morley <emorley@mozilla.com> | 2016-07-26 13:05:27 +0100 |
|---|---|---|
| committer | Tim Graham <timograham@gmail.com> | 2016-08-10 20:31:01 -0400 |
| commit | 7399fee6c3bb7eded1ecf5855d71520db299d79d (patch) | |
| tree | 8f767de16e2a46eea82aaffd1c83506c94a67baa /docs/ref | |
| parent | 3c2447dd13e495d57700ca8447896acd85044444 (diff) | |
Refs #26947 -- Added a deployment system check for SECURE_HSTS_PRELOAD.
Diffstat (limited to 'docs/ref')
| -rw-r--r-- | docs/ref/checks.txt | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/docs/ref/checks.txt b/docs/ref/checks.txt index 5eed9f0aed..e0c24eb07d 100644 --- a/docs/ref/checks.txt +++ b/docs/ref/checks.txt @@ -596,6 +596,9 @@ The following checks are run if you use the :option:`check --deploy` option: for your site to serve other parts of itself in a frame, you should change it to ``'DENY'``. * **security.W020**: :setting:`ALLOWED_HOSTS` must not be empty in deployment. +* **security.W021**: You have not set the + :setting:`SECURE_HSTS_PRELOAD` setting to ``True``. Without this, your site + cannot be submitted to the browser preload list. Sites ----- |
