X-Content-Type-Options header Error: nosniff

Question

X-Content-Type-Options header Error: nosniff

Closed this issue 2 years ago · 2 comments

Customer asked to stop sending the X-Content-Type-Options header or any other non-compliant headers in the AS2 MDN.
See this link : https://www.ibm.com/support/pages/node/294385
Can we disable this param when sending the MDN reciept.
Thanks,

Answer 1 · 2023-01-10T14:36:26.000Z

@AvatarBhola : this is a django setting. You should put in your settings.py following:
SECURE_CONTENT_TYPE_NOSNIFF = False

Also see: https://docs.djangoproject.com/en/3.2/ref/settings/#secure-content-type-nosniff
As of version 3 of django, the default changed to "True".

Answer 2 · 2023-01-12T14:36:43.000Z

Thank you! this resolved this part of the issue.