Just enough detail to unblock you.
The TLDR Tech
  • Home
  • Django
  • About
  • Author
  • Consult
Subscribe
Rahul Jaisinghani

Rahul Jaisinghani

Django Security middleware

Django Security middleware

What is middleware? Middleware is a program that acts as a bridge between two services/programs. Middleware should be like a plugin in any Framework. Middleware in  Django Middleware is a framework of hooks into Django’s request/response processing. Django supports both Custom and Built-in Middleware. This blog is
Rahul Jaisinghani Mar 18, 2023
Beware of Cross-site scripting (XSS) in Django Templates

Beware of Cross-site scripting (XSS) in Django Templates

1. Django Templates support Automatic HTML escaping. 2. Caveates in Django Templates leading to Cross-site scripting (XSS). 2.1 Safe Filter, 2.2 Unquoted Payload, 2.3 autoescape off 2.4 Variable in script tag
Rahul Jaisinghani May 1, 2022
How to protect your cookie from getting accessed by malicious client scripts using HttpOnly

How to protect your cookie from getting accessed by malicious client scripts using HttpOnly

A cookie can be accessed through javascript if it does not have the HttpOnly header set. An attacker who managed to perform XSS or run a client-side script is able to access the cookie if it does not have the HttpOnly flag set. Cookie with HttpOnly flag set is inaccessible
Rahul Jaisinghani Dec 27, 2021
How to implement and test your Content Security Policy (CSP)

How to implement and test your Content Security Policy (CSP)

> Never let browser blindly trust any source of the content received from the server. Allowing all data sources by a web application can lead to execution of malicious scripts. Hence it is important to add a additional defence layer to mitigate and detect XSS, clickjacking and other code injection attacks
Rahul Jaisinghani Dec 26, 2021

Subscribe to The TLDR Tech

Don't miss out on the latest news. Sign up now to get access to the library of members-only articles.
The TLDR Tech © 2023. Powered by Ghost