Fixed docs to refer to HSTS includeSubdomains as a directive.

The spec refers to it as a 'directive' rather than a 'tag': https://tools.ietf.org/html/rfc6797#section-6.1.2

Fixed docs to refer to HSTS includeSubdomains as a directive.
The spec refers to it as a 'directive' rather than a 'tag': https://tools.ietf.org/html/rfc6797#section-6.1.2
8c3bc5cd · Ed Morley · Tim Graham · 004ba05b · 8c3bc5cd · 8c3bc5cd
Kaydet (Commit) 8c3bc5cd authored Tem 28, 2016 tarafından Ed Morley Kaydeden (comit) Tim Graham Agu 09, 2016
Show whitespace changes
Inline Side-by-side

Showing with 5 additions and 5 deletions

middleware.txt docs/ref/middleware.txt +2 -2

settings.txt docs/ref/settings.txt +1 -1

test_security.py tests/middleware/test_security.py +2 -2

No files found.
--- a/docs/ref/middleware.txt
+++ b/docs/ref/middleware.txt
@@ -255,8 +255,8 @@ so that infrequent visitors will be protected (31536000 seconds, i.e. 1 year,
 is common).
 Additionally, if you set the :setting:`SECURE_HSTS_INCLUDE_SUBDOMAINS` setting
-to ``True``, ``SecurityMiddleware`` will add the ``includeSubDomains`` tag to
+to ``True``, ``SecurityMiddleware`` will add the ``includeSubDomains`` directive
-the ``Strict-Transport-Security`` header. This is recommended (assuming all
+to the ``Strict-Transport-Security`` header. This is recommended (assuming all
 subdomains are served exclusively using HTTPS), otherwise your site may still
 be vulnerable via an insecure connection to a subdomain.

--- a/docs/ref/settings.txt
+++ b/docs/ref/settings.txt
@@ -2053,7 +2053,7 @@ already have it.
 Default: ``False``
 If ``True``, the :class:`~django.middleware.security.SecurityMiddleware` adds
-the ``includeSubDomains`` tag to the :ref:`http-strict-transport-security`
+the ``includeSubDomains`` directive to the :ref:`http-strict-transport-security`
 header. It has no effect unless :setting:`SECURE_HSTS_SECONDS` is set to a
 non-zero value.

--- a/tests/middleware/test_security.py
+++ b/tests/middleware/test_security.py
@@ -83,7 +83,7 @@ class SecurityMiddlewareTest(SimpleTestCase):
        """
        With HSTS_SECONDS non-zero and HSTS_INCLUDE_SUBDOMAINS
        True, the middleware adds a "strict-transport-security" header with the
-        "includeSubDomains" tag to the response.
+        "includeSubDomains" directive to the response.
        """
        response = self.process_response(secure=True)
        self.assertEqual(response["strict-transport-security"], "max-age=600; includeSubDomains")
@@ -94,7 +94,7 @@ class SecurityMiddlewareTest(SimpleTestCase):
        """
        With HSTS_SECONDS non-zero and HSTS_INCLUDE_SUBDOMAINS
        False, the middleware adds a "strict-transport-security" header without
-        the "includeSubDomains" tag to the response.
+        the "includeSubDomains" directive to the response.
        """
        response = self.process_response(secure=True)
        self.assertEqual(response["strict-transport-security"], "max-age=600")