summaryrefslogtreecommitdiff
path: root/docs/ref
diff options
context:
space:
mode:
authorJacob Walls <jacobtylerwalls@gmail.com>2026-03-31 15:43:18 -0400
committerJacob Walls <jacobtylerwalls@gmail.com>2026-04-02 09:19:07 -0400
commit2ee757ee502d5663f932dc5c35175c39af4640ce (patch)
treed540419df5cd17f7ccb22b84213cc64682758970 /docs/ref
parenta32c7075cf634aee1f4f3deecd27f194097ec0c2 (diff)
Fixed #36862 -- Doc'd the need for a proxy when deploying RemoteUserMiddleware under ASGI.
We have a flood of nuisance security reports describing ASGI deployments using RemoteUserMiddleware without a fronting proxy, which is not realistic.
Diffstat (limited to 'docs/ref')
-rw-r--r--docs/ref/middleware.txt2
1 files changed, 1 insertions, 1 deletions
diff --git a/docs/ref/middleware.txt b/docs/ref/middleware.txt
index a9638cf36e..692001ddf8 100644
--- a/docs/ref/middleware.txt
+++ b/docs/ref/middleware.txt
@@ -582,7 +582,7 @@ Customize the login URL or field name for authenticated views with the
Middleware for utilizing web server provided authentication when enabled
only on the login page. See :ref:`persistent-remote-user-middleware-howto`
- for usage details.
+ for usage details, including security considerations.
CSRF protection middleware
--------------------------