From 00f5d2d110712af84fae2c5f9183a2ea48ce0a4a Mon Sep 17 00:00:00 2001 From: Ben Lomax Date: Wed, 26 Apr 2023 07:08:33 +0100 Subject: Refs #31949 -- Made @xframe_options_(deny/sameorigin/exempt) decorators to work with async functions. --- docs/ref/clickjacking.txt | 10 ++++++++++ 1 file changed, 10 insertions(+) (limited to 'docs/ref') diff --git a/docs/ref/clickjacking.txt b/docs/ref/clickjacking.txt index f9bec591a7..3a81bdbdb0 100644 --- a/docs/ref/clickjacking.txt +++ b/docs/ref/clickjacking.txt @@ -90,6 +90,11 @@ that tells the middleware not to set the header:: iframe, you may need to modify the :setting:`CSRF_COOKIE_SAMESITE` or :setting:`SESSION_COOKIE_SAMESITE` settings. +.. versionchanged:: 5.0 + + Support for wrapping asynchronous view functions was added to the + ``@xframe_options_exempt`` decorator. + Setting ``X-Frame-Options`` per view ------------------------------------ @@ -113,6 +118,11 @@ decorators:: Note that you can use the decorators in conjunction with the middleware. Use of a decorator overrides the middleware. +.. versionchanged:: 5.0 + + Support for wrapping asynchronous view functions was added to the + ``@xframe_options_deny`` and ``@xframe_options_sameorigin`` decorators. + Limitations =========== -- cgit v1.3