./www/py-django-cors-headers, Django application for handling headers required for CORS

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 4.6.0, Package name: py312-django-cors-headers-4.6.0, Maintainer: pkgsrc-users

django-cors-headers is a Django App that adds CORS (Cross-Origin Resource
Sharing) headers to responses.

Although JSON-P is useful, it is strictly limited to GET requests. CORS builds
on top of XmlHttpRequest to allow developers to make cross-domain requests,
similar to same-domain requests.


Required to run:
[devel/py-setuptools] [www/py-django2] [lang/python37]

Required to build:
[pkgtools/cwrappers]

Master sites:

Filesize: 20.47 KB

Version history: (Expand)

CVS history: (Expand)


   2023-11-14 18:40:06 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
py-django-cors-headers: updated to 4.3.1

4.3.1 (2023-11-14)
------------------

* Fixed ASGI compatibility on Python 3.12.
   2023-11-05 12:04:39 by Thomas Klausner | Files touched by this commit (1) 
Log message:
py-django-cors-headers: add missing tool dependency
   2023-10-28 21:57:26 by Thomas Klausner | Files touched by this commit (516) | Package updated
Log message:
python/wheel.mk: simplify a lot, and switch to 'installer' for installation

This follows the recommended bootstrap method (flit_core, build, installer).

However, installer installs different files than pip, so update PLISTs
for all packages using wheel.mk and bump their PKGREVISIONs.
   2023-10-16 15:07:00 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
py-django-cors-headers: updated to 4.3.0

4.3.0 (2023-10-11)

* Avoid adding the ``access-control-allow-credentials`` header to unallowed \ 
responses.
* Support Django 5.0.
   2023-08-30 15:46:13 by Adam Ciarcinski | Files touched by this commit (3) | Package updated
Log message:
py-django-cors-headers: updated to 4.2.0

4.2.0 (2023-07-10)
------------------

* Drop Python 3.7 support.

4.1.0 (2023-06-14)
------------------

* Support Python 3.12.

4.0.0 (2023-05-12)
------------------

* Add ``CORS_ALLOW_PRIVATE_NETWORK`` setting, which enables support for the \ 
Local Network Access draft specification.

* Remove three headers from the default "accept list": \ 
``accept-encoding``, ``dnt``, and ``origin``.
  These are `Forbidden header names \ 
<https://developer.mozilla.org/en-US/docs/Glossary/Forbidden_header_name>`__, \ 
which means requests JavaScript can never set them.
  Consequently, allowing them via CORS has no effect.

* Drop the ``CORS_REPLACE_HTTPS_REFERER`` setting and ``CorsPostCsrfMiddleware``.
  Since Django 1.9, the ``CSRF_TRUSTED_ORIGINS`` setting has been the preferred \ 
solution to making CSRF checks pass for CORS requests.
  The removed setting and middleware only existed as a workaround for Django \ 
versions before 1.9.

* Add async support to the middleware, reducing overhead on async views.
   2023-07-13 12:03:31 by Thomas Klausner | Files touched by this commit (45) 
Log message:
*: switch django users to py-django3
   2022-02-07 21:52:39 by Adam Ciarcinski | Files touched by this commit (2) | Package updated
Log message:
py-django-cors-headers: updated to 3.11.0

3.11.0
Drop Python 3.6 support.
   2022-01-04 21:55:40 by Thomas Klausner | Files touched by this commit (1595) 
Log message:
*: bump PKGREVISION for egg.mk users

They now have a tool dependency on py-setuptools instead of a DEPENDS