From c3490e8a816910e3d5b2a41a672b1865b58546ed Mon Sep 17 00:00:00 2001
From: Michal Kunc <michkunc@gmail.com>
Date: Tue, 17 Jan 2023 22:30:11 +0100
Subject: [PATCH] Add support for some security settings

---
 movieclub/settings.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/movieclub/settings.py b/movieclub/settings.py
index dd73b87..c794e2d 100644
--- a/movieclub/settings.py
+++ b/movieclub/settings.py
@@ -18,6 +18,10 @@ environ.Env.read_env(os.path.join(BASE_DIR, '.env'))
 
 # SECURITY WARNING: keep the secret key used in production secret!
 SECRET_KEY = env("SECRET_KEY")
+SESSION_COOKIE_SECURE = env.bool("SESSION_COOKIE_SECURE", False)
+CSRF_COOKIE_SAMESITE = env("CSRF_COOKIE_SAMESITE", default="Lax")
+CSRF_COOKIE_SECURE = env.bool("CSRF_COOKIE_SECURE", False)
+SECURE_PROXY_SSL_HEADER = env.tuple("SECURE_PROXY_SSL_HEADER", None)
 
 # SECURITY WARNING: don't run with debug turned on in production!
 DEBUG = env('DEBUG')