Clickjacking Protection
A snippet showing how to use clickjacking protection in Django.
# settings.py
MIDDLEWARE = [
'django.middleware.security.SecurityMiddleware',
'django.middleware.clickjacking.XFrameOptionsMiddleware',
]
X_FRAME_OPTIONS = 'DENY'
Explanation:
- Prevents site from being embedded in iframes (clickjacking).
- Category Security
- Total Views 1068
- Last Modified 16 March, 2026
- Tags #security #clickjacking #headers #middleware
Previous snippet
SQL Injection Prevention
Next snippet