Closed dpoirier closed 9 years ago
dpoirier
commented
9 years ago I've removed the setting that doesn't yet exist, and the unneeded template context processors.
Let's look at security upgrades in a followup, I'm not sure right now what the best defaults are.
mlavin
commented
9 years ago On dependency I missed in the first review. I think a follow up for the security settings is a good idea.
dpoirier
commented
9 years ago I upgraded all the packages. Also bumped the Margarita version as I ran into a problem testing that was fixed in a more recent Margarita.
mlavin
commented
9 years ago :+1:
There are probably so updates we could/should make to the deploy settings related to the security middleware checks such as ensuring the CSRF and session cookie are secure. Do you think we should handle that here or in a follow up?