Added secure redirect exect for ocsp

fdurand · Jun 1, 2015 · 613c509 · 613c509
1 parent 3275e0d
commit 613c509
Show file tree

Hide file tree

Showing 2 changed files with 11 additions and 0 deletions.
diff --git a/README.md b/README.md
@@ -9,6 +9,7 @@ Inverse-pki requires the following:
 Django (>= 1.6)
 Django REST framework 
 Django bootstrap3
+Django secure
 
 # Install
 
@@ -53,3 +54,8 @@ sudo pip install djangorestframework
 sudo pip install django-bootstrap3
 ```
 
+## Install Django secure
+
+```
+sudo pip install django-secure
+```
diff --git a/inverse/settings.py b/inverse/settings.py
@@ -39,6 +39,7 @@
     'rest_framework',
     'rest_framework.authtoken',
     'bootstrap3',
+    'djangosecure',
     'pki',
 )
 
@@ -49,8 +50,12 @@
     'django.contrib.auth.middleware.AuthenticationMiddleware',
     'django.contrib.messages.middleware.MessageMiddleware',
     'django.middleware.clickjacking.XFrameOptionsMiddleware',
+    'djangosecure.middleware.SecurityMiddleware',
 )
 
+SECURE_SSL_REDIRECT = True
+SECURE_REDIRECT_EXEMPT = [r'^pki/ocsp/$']
+
 ROOT_URLCONF = 'inverse.urls'
 
 WSGI_APPLICATION = 'inverse.wsgi.application'