From 6f361f95741979e73fd1d665fb80a891332c7286 Mon Sep 17 00:00:00 2001
From: Jennifer Richards <jennifer@staff.ietf.org>
Date: Thu, 15 Jun 2023 11:04:43 -0300
Subject: [PATCH] chore: Keep default CSRF_TRUSTED_ORIGINS when in debug mode
 (#5827)

---
 ietf/settings.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/ietf/settings.py b/ietf/settings.py
index 9f6284003..15ded9662 100644
--- a/ietf/settings.py
+++ b/ietf/settings.py
@@ -1295,6 +1295,6 @@ if SERVER_MODE != 'production':
     # Cannot have this set to True if we're using http: from the dev-server:
     CSRF_COOKIE_SECURE = False
     CSRF_COOKIE_SAMESITE = 'Lax'
-    CSRF_TRUSTED_ORIGINS = ['http://localhost:8000']
+    CSRF_TRUSTED_ORIGINS += ['http://localhost:8000']
     SESSION_COOKIE_SECURE = False
     SESSION_COOKIE_SAMESITE = 'Lax'