Skip to content

Commit

Permalink
Add CSRF_TRUSTED_ORIGINS to settings.py
Browse files Browse the repository at this point in the history
  • Loading branch information
@dchiller
dchiller committed Sep 7, 2023
1 parent 7e0650b commit 5c05b2b
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions app/public/cantusdata/settings.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -167,6 +167,7 @@

SESSION_COOKIE_SECURE = is_production
CSRF_COOKIE_SECURE = is_production
CSRF_TRUSTED_ORIGINS = ["https://cantus.simssa.ca", "https://cantus.staging.simssa.ca"]

SECURE_HSTS_SECONDS = 86400
SECURE_HSTS_INCLUDE_SUBDOMAINS = is_production
Expand Down

0 comments on commit 5c05b2b

Please sign in to comment.