Added csrf trusted origins setting

2025-12-19 00:28:47 +00:00 · 2025-12-19 00:28:47 +00:00 · 321ca3bf6a
commit 321ca3bf6a
parent 3763b2a3d3
3 changed files with 3 additions and 0 deletions
--- a/config/pycache/init.cpython-313.pyc
+++ b/config/pycache/init.cpython-313.pyc
--- a/config/pycache/settings.cpython-313.pyc
+++ b/config/pycache/settings.cpython-313.pyc
--- a/config/settings.py
+++ b/config/settings.py
@ -170,5 +170,8 @@ if origins:=os.getenv('DJANGO_CORS_ALLOWED_ORIGINS'):
    CORS_ALLOWED_ORIGINS = origins.split(',')
 CORS_ALLOW_CREDENTIALS = True

+if trusted_origins:=os.getenv('DJANGO_CSRF_TRUSTED_ORIGINS'):
+    CSRF_TRUSTED_ORIGINS = [origin.strip() for origin in trusted_origins.split(',')]
+
 if DEBUG:
    SECURE_CROSS_ORIGIN_OPENER_POLICY = None