Clickjacking Protection

A snippet showing how to use clickjacking protection in Django.


# settings.py

MIDDLEWARE = [
    'django.middleware.security.SecurityMiddleware',
    'django.middleware.clickjacking.XFrameOptionsMiddleware',
]

X_FRAME_OPTIONS = 'DENY'
      
Explanation:
  • Prevents site from being embedded in iframes (clickjacking).
  • Category Security
  • Total Views 1069
  • Last Modified 16 March, 2026
  • Tags #security #clickjacking #headers #middleware
Never miss a story on Django.wiki

Subscribe for fresh tutorials, snippets, and updates.

By subscribing you agree to our Privacy Policy.