gaugendre/python-blog
Archived
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Add some secure settings

Browse source
This commit is contained in:
Gabriel Augendre 2020-08-21 13:40:02 +02:00
parent 02f64aef12
commit d53d4f9823
1 changed files with 4 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
blog/settings.py
View file

@ -53,6 +53,10 @@ HOSTS = os.getenv("HOSTS")
if HOSTS: if HOSTS:
ALLOWED_HOSTS.extend(HOSTS.split(";")) ALLOWED_HOSTS.extend(HOSTS.split(";"))
SECURE_PROXY_SSL_HEADER = ("HTTP_X_FORWARDED_PROTO", "https")
SESSION_COOKIE_SECURE = not DEBUG
CSRF_COOKIE_SECURE = not DEBUG
# Application definition # Application definition