ó ®â0_c@s©ddlmZddlmZmZmZddlmZedddƒZeddd ƒZ d „Z eej d e ƒd „ƒZ eej d e ƒd „ƒZdS(iÿÿÿÿ(tsettingsi(tTagstWarningtregister(tpatch_middleware_messagesYou don't appear to be using Django's built-in cross-site request forgery protection via the middleware ('django.middleware.csrf.CsrfViewMiddleware' is not in your MIDDLEWARE). Enabling the middleware is the safest approach to ensure you don't leave any holes.tids security.W003sçYou have 'django.middleware.csrf.CsrfViewMiddleware' in your MIDDLEWARE, but you have not set CSRF_COOKIE_SECURE to True. Using a secure-only CSRF cookie makes it more difficult for network traffic sniffers to steal the CSRF token.s security.W016cCs%dtjkp$tjo$dtjkS(Ns)django.middleware.csrf.CsrfViewMiddleware(RtMIDDLEWARE_CLASSESt MIDDLEWARE(((sB/tmp/pip-unpacked-wheel-BAJOf3/django/core/checks/security/csrf.pyt_csrf_middlewarestdeploycKs tƒ}|rgSttƒgS(N(RRtW003(t app_configstkwargst passed_check((sB/tmp/pip-unpacked-wheel-BAJOf3/django/core/checks/security/csrf.pytcheck_csrf_middlewares cKs3tjptƒ ptj}|r&gSttƒgS(N(RtCSRF_USE_SESSIONSRtCSRF_COOKIE_SECURERtW016(R R R ((sB/tmp/pip-unpacked-wheel-BAJOf3/django/core/checks/security/csrf.pytcheck_csrf_cookie_secure#s   N(t django.confRtRRRtutilsRR RRtsecuritytTrueRR(((sB/tmp/pip-unpacked-wheel-BAJOf3/django/core/checks/security/csrf.pyts