Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
I have a Django app hosted in the cloud (Heroku if that makes a difference though I can’t see how) and am looking to move all static content to AWS (images, CSS etc).
Is it secure to have Django’s Admin media (ie the media/ css/ and js/ folders) hosted on a publicly accessible site?
I don’t see any reason why it wouldn’t be.
After all, when you login to the admin panel, the links to the css and js are always public. Meaning at that point they are just like any other static resource and they don’t require to be logged in order to view them. So you can store them whenever you want and as long as they will remain read-only to the public (which it is in AWS), there should not be any security risk.