Features:
1) Add 'origin' and 'referer' headers to the allowed headers list in settings. Fixes: 1) Correct order of existing headers for better readability and maintainability. Extra: 1) General cleanup in `evibes/settings/base.py`.
This commit is contained in:
parent
6d8d4def5b
commit
3a5fa3c72b
1 changed files with 10 additions and 10 deletions
|
|
@ -71,23 +71,23 @@ CORS_ALLOW_HEADERS = (
|
||||||
"accept",
|
"accept",
|
||||||
"accept-encoding",
|
"accept-encoding",
|
||||||
"accept-language",
|
"accept-language",
|
||||||
"content-type",
|
|
||||||
"connection",
|
|
||||||
"user-agent",
|
|
||||||
"authorization",
|
"authorization",
|
||||||
"host",
|
|
||||||
"x-csrftoken",
|
|
||||||
"x-requested-with",
|
|
||||||
"x-evibes-vibes_auth",
|
|
||||||
"baggage",
|
"baggage",
|
||||||
"sentry-trace",
|
"connection",
|
||||||
|
"content-type",
|
||||||
"dnt",
|
"dnt",
|
||||||
|
"host",
|
||||||
|
"origin",
|
||||||
|
"referer",
|
||||||
"sec-fetch-dest",
|
"sec-fetch-dest",
|
||||||
"sec-fetch-mode",
|
"sec-fetch-mode",
|
||||||
"sec-fetch-site",
|
"sec-fetch-site",
|
||||||
"sec-gpc",
|
"sec-gpc",
|
||||||
"origin",
|
"sentry-trace",
|
||||||
"referer",
|
"user-agent",
|
||||||
|
"x-csrftoken",
|
||||||
|
"x-evibes-auth",
|
||||||
|
"x-requested-with",
|
||||||
)
|
)
|
||||||
|
|
||||||
USE_X_FORWARDED_HOST = True
|
USE_X_FORWARDED_HOST = True
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue