ATTUNE-HEART-THERAPY/alternative-backend-service
6
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat: update CORS and CSRF trusted origins for improved security

Browse Source
This commit is contained in:
saani 2025-12-05 12:52:52 +00:00
parent ee8239aa1f
commit 4017ceac51
1 changed files with 5 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
booking_system/settings.py
View File

@ -15,14 +15,17 @@ DEBUG = os.getenv('DEBUG', 'False').lower() == 'true'
ALLOWED_HOSTS = os.getenv('ALLOWED_HOSTS', '*').split(',') ALLOWED_HOSTS = os.getenv('ALLOWED_HOSTS', '*').split(',')
CORS_ALLOWED_ORIGINS = [ CORS_ALLOWED_ORIGINS = [
'https://attunehearttherapy.com' 'https://attunehearttherapy.com',
'https://www.attunehearttherapy.com',
'https://api.attunehearttherapy.com',
] ]
CORS_ALLOW_CREDENTIALS = True CORS_ALLOW_CREDENTIALS = True
CSRF_TRUSTED_ORIGINS = [ CSRF_TRUSTED_ORIGINS = [
'https://api.attunehearttherapy.com', 'https://api.attunehearttherapy.com',
'https://attunehearttherapy.com' 'https://attunehearttherapy.com',
'https://www.attunehearttherapy.com',
] ]
INSTALLED_APPS = [ INSTALLED_APPS = [