About Using HTTPS
For the best security, all websites should be running under HTTPS. You can do that with Let's Encrypt.
For projects with HTTPS also set these Django project settings to disable session and CSRF cookie access from JavaScript:
SESSION_COOKIE_SECURE = True
SESSION_COOKIE_HTTPONLY = True
CSRF_COOKIE_SECURE = True
CSRF_COOKIE_HTTPONLY = True
Tips and Tricks Security Django 6.x Django 5.2 Django 4.2 SSL
Django/Python Consulting
If you have a specific Django challenge or integration you'd like to solve, I'd be happy to help. Book a free 30-minute call to discuss your project, see if we're a good fit, and explore the best approach for your needs. After the call, you'll receive a tailored cost estimate based on what we discuss.
Also by me
Django Messaging
For Django-based social platforms.
Django Paddle Subscriptions
For Django-based SaaS projects.
Django GDPR Cookie Consent
For Django websites that use cookies.