config: add CSRF trusted origins for production domains #37

Merged

Saani merged 1 commits from feature/meetings into main

2025-11-25 18:28:53 +00:00

Author	SHA1	Message	Date
saani	4f07d854e1	config: add CSRF trusted origins for production domains Add CSRF_TRUSTED_ORIGINS setting to whitelist the production domains (attunehearttherapy.com and its api subdomain) for CSRF verification. This ensures secure cross-origin POST requests from the frontend. Also add documentation comment for CORS configuration section.	2025-11-25 18:27:57 +00:00

Author

SHA1

Message

Date

saani

4f07d854e1

config: add CSRF trusted origins for production domains

Add CSRF_TRUSTED_ORIGINS setting to whitelist the production domains
(attunehearttherapy.com and its api subdomain) for CSRF verification.
This ensures secure cross-origin POST requests from the frontend.

Also add documentation comment for CORS configuration section.

2025-11-25 18:27:57 +00:00

config: add CSRF trusted origins for production domains #37

1 Commits