altf4arnold/datatracker
1
0
Fork 0
Code Issues Pull requests Actions 2 Packages Projects Releases Wiki Activity

chore: Keep default CSRF_TRUSTED_ORIGINS when in debug mode (#5827)

Browse source
This commit is contained in:
Jennifer Richards 2023-06-15 11:04:43 -03:00 committed by GitHub
parent 01e2d8b2bf
commit 6f361f9574
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
ietf/settings.py
View file

@ -1295,6 +1295,6 @@ if SERVER_MODE != 'production':
# Cannot have this set to True if we're using http: from the dev-server:
CSRF_COOKIE_SECURE = False
CSRF_COOKIE_SAMESITE = 'Lax'
CSRF_TRUSTED_ORIGINS = ['http://localhost:8000']
CSRF_TRUSTED_ORIGINS += ['http://localhost:8000']
SESSION_COOKIE_SECURE = False
SESSION_COOKIE_SAMESITE = 'Lax'