Does your Django application have proper security headers?

By Saptak S

議題

Does your Django application have proper security headers?

AU [[ new Date( '2023-07-30 05:40:00+00:00' ).toLocaleDateString('ja', {year: 'numeric', month: '2-digit', day: '2-digit'}) ]] [[ new Date( '2023-07-30 05:40:00+00:00' ).toLocaleTimeString('zh-Hant', {hour12: false, hour: '2-digit', minute:'2-digit'}) ]] ~ [[ new Date( '2023-07-30 06:10:00+00:00' ).toLocaleTimeString('zh-Hant', {hour12: false, hour: '2-digit', minute:'2-digit'}) ]] en
加入行事曆 加入關注 加入關注 已關注

Django is one of the most popular python frameworks used to create web applications. While a lot of people focus on the Django ORM and the Django templating engine, the Django framework also comes with a neat set of middlewares and plugins that can be used to add security headers to your applications. Security headers are a very important layer of defense for your website to keep your users protected. In this talk, we are going to discuss what the different security headers do, and how can we add them to django.

講者

Saptak S

Saptak S

Saptak S. is a human rights centered web developer, focusing on usability, security, privacy and accessibility topics in web development. He works as a web development contractor. He is a contributor and maintainer of various different open source projects like The A11Y Project, OnionShare and Wagtail. He is part of the Open Source Design core team. He is also the author of the Security and Accessibility chapter of Web Almanac 2022. One can find him blogging at saptaks.blog.

Main Track 主議程軌 EQGB7L general (30mins)