alex/voyage
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

chore: Update CORS and CSRF settings for demo purposes

Browse Source
This commit is contained in:
Sean Morley
2024-07-08 15:31:02 -04:00
parent 47436d43e0
commit 7bec359f26
1 changed files with 12 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

13
backend/server/demo/settings.py
View File

@@ -188,6 +188,17 @@ SWAGGER_SETTINGS = {
# For demo purposes only. Use a white list in the real world. # For demo purposes only. Use a white list in the real world.
CORS_ORIGIN_ALLOW_ALL = True CORS_ORIGIN_ALLOW_ALL = False
CORS_ALLOWED_ORIGINS = [
'http://localhost:3000',
'http://adventurelog.app',
'https://api.adventurelog.app',
]
CSRF_TRUSTED_ORIGINS = [
'https://api.adventurelog.app',
'https://adventurelog.app',
]
DEFAULT_AUTO_FIELD = 'django.db.models.AutoField' DEFAULT_AUTO_FIELD = 'django.db.models.AutoField'