From c2c1daab7921cb34f0f4687f420a548601e83c4f Mon Sep 17 00:00:00 2001
From: Gabriel Detraz <detraz@crans.org>
Date: Sun, 21 Jan 2018 16:45:11 +0000
Subject: [PATCH] =?UTF-8?q?Desactivation=20des=20r=C3=A9glages=20de=20s?=
 =?UTF-8?q?=C3=A9curit=C3=A9=20HTTPS=20par=20d=C3=A9fault?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 re2o/settings_local.example.py | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/re2o/settings_local.example.py b/re2o/settings_local.example.py
index 967386bb..107fd18f 100644
--- a/re2o/settings_local.example.py
+++ b/re2o/settings_local.example.py
@@ -53,12 +53,12 @@ DATABASES = {
      }
 }
 
-# Security settings
-SECURE_CONTENT_TYPE_NOSNIFF = True
-SECURE_BROWSER_XSS_FILTER = True
-SESSION_COOKIE_SECURE = True
-CSRF_COOKIE_SECURE = True
-CSRF_COOKIE_HTTPONLY = True
+# Security settings, à activer une fois https en place
+SECURE_CONTENT_TYPE_NOSNIFF = False
+SECURE_BROWSER_XSS_FILTER = False
+SESSION_COOKIE_SECURE = False
+CSRF_COOKIE_SECURE = False
+CSRF_COOKIE_HTTPONLY = False
 X_FRAME_OPTIONS = 'DENY'
 SESSION_COOKIE_AGE = 60 * 60 * 3