diff options
| author | Jacob Walls <jacobtylerwalls@gmail.com> | 2026-03-31 15:43:18 -0400 |
|---|---|---|
| committer | Jacob Walls <jacobtylerwalls@gmail.com> | 2026-04-02 09:19:07 -0400 |
| commit | 2ee757ee502d5663f932dc5c35175c39af4640ce (patch) | |
| tree | d540419df5cd17f7ccb22b84213cc64682758970 /docs/ref | |
| parent | a32c7075cf634aee1f4f3deecd27f194097ec0c2 (diff) | |
Fixed #36862 -- Doc'd the need for a proxy when deploying RemoteUserMiddleware under ASGI.
We have a flood of nuisance security reports describing ASGI deployments
using RemoteUserMiddleware without a fronting proxy, which is not
realistic.
Diffstat (limited to 'docs/ref')
| -rw-r--r-- | docs/ref/middleware.txt | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/docs/ref/middleware.txt b/docs/ref/middleware.txt index a9638cf36e..692001ddf8 100644 --- a/docs/ref/middleware.txt +++ b/docs/ref/middleware.txt @@ -582,7 +582,7 @@ Customize the login URL or field name for authenticated views with the Middleware for utilizing web server provided authentication when enabled only on the login page. See :ref:`persistent-remote-user-middleware-howto` - for usage details. + for usage details, including security considerations. CSRF protection middleware -------------------------- |
