flo/gaehsnitz
1
0
Fork 0
Code Issues 1 Pull Requests Projects Releases Wiki Activity

configure csrf

Browse Source
This commit is contained in:
Flo Ha
2022-07-13 14:41:31 +02:00
parent e2d21f2981
commit aa32494ce6
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
gaehsnitzproject/settings.py
View File

@@ -33,6 +33,7 @@ if PRODUCTION:
SECRET_KEY = _get_env_secret_key() SECRET_KEY = _get_env_secret_key()
DEBUG = False DEBUG = False
ALLOWED_HOSTS = _get_env_allowed_hosts() ALLOWED_HOSTS = _get_env_allowed_hosts()
CSRF_TRUSTED_ORIGINS = [f"https://{host}" for host in ALLOWED_HOSTS]
STATIC_ROOT = _get_env_static_root() STATIC_ROOT = _get_env_static_root()
else: else:
SECRET_KEY = "LqKSgoFtED4IFYxf01lBi5MEI4ExSayCakwLjyuzytDJ7vuMq9" SECRET_KEY = "LqKSgoFtED4IFYxf01lBi5MEI4ExSayCakwLjyuzytDJ7vuMq9"
@@ -53,6 +54,7 @@ MIDDLEWARE = [
"django.middleware.security.SecurityMiddleware", "django.middleware.security.SecurityMiddleware",
"django.middleware.common.CommonMiddleware", "django.middleware.common.CommonMiddleware",
"django.middleware.clickjacking.XFrameOptionsMiddleware", "django.middleware.clickjacking.XFrameOptionsMiddleware",
"django.middleware.csrf.CsrfViewMiddleware",
"django.contrib.sessions.middleware.SessionMiddleware", "django.contrib.sessions.middleware.SessionMiddleware",
"django.contrib.auth.middleware.AuthenticationMiddleware", "django.contrib.auth.middleware.AuthenticationMiddleware",
"django.contrib.messages.middleware.MessageMiddleware", "django.contrib.messages.middleware.MessageMiddleware",