From cdd49a2c68e54e1889bea0539d6cf2a29dd98ef3 Mon Sep 17 00:00:00 2001 From: Michal Kunc Date: Tue, 17 Jan 2023 22:37:37 +0100 Subject: [PATCH] Add CSRF_TRUSTED_ORIGINS setting --- movieclub/settings.py | 1 + 1 file changed, 1 insertion(+) diff --git a/movieclub/settings.py b/movieclub/settings.py index 39fdb60..6a7fcc8 100644 --- a/movieclub/settings.py +++ b/movieclub/settings.py @@ -21,6 +21,7 @@ SECRET_KEY = env("SECRET_KEY") SESSION_COOKIE_SECURE = env.bool("SESSION_COOKIE_SECURE", False) CSRF_COOKIE_SAMESITE = env("CSRF_COOKIE_SAMESITE", default="Lax") CSRF_COOKIE_SECURE = env.bool("CSRF_COOKIE_SECURE", False) +CSRF_TRUSTED_ORIGINS = env.list("CSRF_TRUSTED_ORIGINS", []) SECURE_PROXY_SSL_HEADER = env.tuple("SECURE_PROXY_SSL_HEADER", None) USE_X_FORWARDED_HOST = env.bool("USE_X_FORWARDED_HOST", False)