o

�a��@s�dd
lZddl
mZ
ddlmZmZmZmZ
eddd�Zedd	d�Z	d
d�Z
eejdd
�dd��
Zeejdd
�dd��
Z
eej�
dd��
Zd
S)�N)
�settings�)�Error�Tags�Warning�registera
You don't appear to be using Django's built-in cross-site request forgery protection via the middleware ('django.middleware.csrf.CsrfViewMiddleware' is not in your MIDDLEWARE). Enabling the middleware is the safest approach to ensure you don't leave any holes.z
security.W003�
�idz�You have 'django.middleware.csrf.CsrfViewMiddleware' in your MIDDLEWARE, but you have not set CSRF_COOKIE_SECURE to True. Using a secure-only CSRF cookie makes it more difficult for network traffic sniffers to steal the CSRF token.z
security.W016cCs
d
tj
vS)Nz)django.middleware.csrf.CsrfViewMiddleware)r�
MIDDLEWARE�rr�B/usr/lib/python3/dist-packages/django/core/checks/security/csrf.py�_csrf_middlewares

r
T)
�deployc

Kst�}|rgSt
g
S�
N)r
�W003��app_configs�kwargs�passed_checkrrr�check_csrf_middlewares
rc

Ks"tj
p	t�p	tj}|rgStg
Sr)r�CSRF_USE_SESSIONSr
�CSRF_COOKIE_SECURE�W016rrrr�check_csrf_cookie_secure#s
��rc
	Ks�d
dlm
}
g}z|�}Wnty%


dtj}|�t|dd��

Y|Swz
t�|�
j	ddd�
W|St
yK


dtj}|�t|dd��

Y|Sw)	Nr
)
�_get_failure_viewz1The CSRF failure view '%s' could not be imported.z
security.E102r)
�reasonzIThe CSRF failure view '%s' does not take the correct number of arguments.z
security.E101)�django.middleware.csrfr�ImportErrorr�CSRF_FAILURE_VIEW�appendr�inspect�	signature�bind�	TypeError)rrr�errors�view�msgrrr�check_csrf_failure_view-s.




��
�
�
��
�r')r �django.confr�rrrrrrr
�securityrrr'rrrr�<module>
s$
�	
�