ó i4Vdc@s0dZddlmZdefd„ƒYZdS(s° Clickjacking Protection Middleware. This module provides a middleware that implements protection against a malicious site loading resources from your site in a hidden frame. i˙˙˙˙(tsettingstXFrameOptionsMiddlewarecBs eZdZd„Zd„ZRS(sÖ Middleware that sets the X-Frame-Options HTTP header in HTTP responses. Does not set the header if it's already set or if the response contains a xframe_options_exempt value set to True. By default, sets the X-Frame-Options header to 'SAMEORIGIN', meaning the response can only be loaded on a frame within the same site. To prevent the response from being loaded in a frame in any site, set X_FRAME_OPTIONS in your project's Django settings to 'DENY'. Note: older browsers will quietly ignore this header, thus other clickjacking protection techniques should be used if protection in those browsers is required. https://en.wikipedia.org/wiki/Clickjacking#Server_and_client cCsI|jdƒdk r|St|dtƒr/|S|j||ƒ|d<|S(NsX-Frame-Optionstxframe_options_exempt(tgettNonetgetattrtFalsetget_xframe_options_value(tselftrequesttresponse((sl/var/www/html/phendo-backend/phendo_python/env/lib/python2.7/site-packages/django/middleware/clickjacking.pytprocess_responses  cCsttddƒjƒS(sE Gets the value to set for the X_FRAME_OPTIONS header. By default this uses the value from the X_FRAME_OPTIONS Django settings. If not found in settings, defaults to 'SAMEORIGIN'. This method can be overridden if needed, allowing it to vary based on the request or response. tX_FRAME_OPTIONSt SAMEORIGIN(RRtupper(RR R ((sl/var/www/html/phendo-backend/phendo_python/env/lib/python2.7/site-packages/django/middleware/clickjacking.pyR*s (t__name__t __module__t__doc__R R(((sl/var/www/html/phendo-backend/phendo_python/env/lib/python2.7/site-packages/django/middleware/clickjacking.pyR s N(Rt django.confRtobjectR(((sl/var/www/html/phendo-backend/phendo_python/env/lib/python2.7/site-packages/django/middleware/clickjacking.pyts