dynamically determine CSRF trusted origins

2022-10-16 16:42:32 +02:00
parent 318707a44d
commit 49a8d3e984
1 changed files with 1 additions and 1 deletions
--- a/financeproject/settings.py
+++ b/financeproject/settings.py
@@ -36,8 +36,8 @@ if PRODUCTION:
    SECRET_KEY = _get_env_secret_key()
    DEBUG = False
    ALLOWED_HOSTS = _get_env_allowed_hosts()
    CSRF_TRUSTED_ORIGINS = [f"https://{host}" for host in ALLOWED_HOSTS]
    STATIC_ROOT = _get_env_static_root()
    CSRF_TRUSTED_ORIGINS = ["https://finance.schokobier.de", ]
 else:
    SECRET_KEY = "QetNMYdSKo3kefmltcEeAu52HbyZBxXsROiYesIEwYwnX0rCuv"
    DEBUG = True