django x-frame-options allowall 1

django x-frame-options allowall

X_FRAME_OPTIONS = 'ALLOWALL'

Here is what the above code is Doing:
1. We’re setting the SECRET_KEY variable to a random string of characters.
2. We’re setting the DEBUG variable to True.
3. We’re setting the ALLOWED_HOSTS variable to a list containing the string ‘localhost’.
4. We’re setting the CORS_ORIGIN_ALLOW_ALL variable to True.
5. We’re setting the CORS_ALLOW_CREDENTIALS variable to True.
6. We’re setting the CORS_ALLOW_METHODS variable to a list containing the strings ‘DELETE’, ‘GET’, ‘OPTIONS’, ‘PATCH’, ‘POST’, and ‘PUT’.
7. We’re setting the CORS_ALLOW_HEADERS variable to a list containing the strings ‘accept’, ‘accept-encoding’, ‘authorization’, ‘content-type’, ‘dnt’, ‘origin’, ‘user-agent’, ‘x-csrftoken’, and ‘x-requested-with’.
8. We’re setting the CORS_EXPOSE_HEADERS variable to a list containing the string ‘content-disposition’.
9. We’re setting the X_FRAME_OPTIONS variable to the string ‘ALLOWALL’.

Similar Posts