id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
33363	Don’t load GIS static assets from external servers	Konrad Mohrfeldt	nobody	"Hi,

I’ve noticed that the `django.contrib.gis` module, specifically:

* [https://github.com/django/django/blob/main/django/contrib/gis/forms/widgets.py#L84 forms/widgets.py line 84]
* [https://github.com/django/django/blob/main/django/contrib/gis/forms/widgets.py#L89 forms/widgets.py line 89]
* and [https://github.com/django/django/blob/main/django/contrib/gis/admin/options.py#L64 admin/options.py line 64]

loads JavaScript and CSS files from Cloudflare CDN servers. I find this very irritating and though [https://docs.djangoproject.com/en/4.0/ref/contrib/gis/forms-api/#django.contrib.gis.forms.widgets.OpenLayersWidget the documentation mentions] that I’m free to override these assets myself I don’t think it’s a good default for privacy nor service reliability to use third party servers. I’ve noticed this myself because my project’s Content-Security-Policy blocks cross origin hosts.

As far as I can see the sources are all released under the BSD license and can probably be shipped along with Django. Is there any reason this hasn’t been done and would you care for pull requests that include these libraries as part of the static assets shipped with the `django.contrib.gis` module? 

Thank you for your time,

Konrad"	Cleanup/optimization	closed	GIS	4.0	Normal	wontfix		Claude Paroz	Unreviewed	0	0	0	0	0	0