From e98a577708c69216e527fa9f2d83175a7b66327e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Joakim=20Hells=C3=A9n?= <tlovinator@gmail.com>
Date: Fri, 23 Feb 2024 16:04:54 +0100
Subject: [PATCH] Add our domain to CSRF_TRUSTED_ORIGINS

---
 feedvault/settings.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/feedvault/settings.py b/feedvault/settings.py
index 98fac62..c4b784a 100644
--- a/feedvault/settings.py
+++ b/feedvault/settings.py
@@ -108,6 +108,7 @@ ADMINS: list[tuple[str, str]] = [("Joakim Hellsén", "django@feedvault.se")]
 # .feedvault.se will match *.feedvault.se and feedvault.se
 ALLOWED_HOSTS: list[str] = [".feedvault.se", ".localhost", "127.0.0.1"]
 CSRF_COOKIE_DOMAIN = ".feedvault.se"
+CSRF_TRUSTED_ORIGINS: list[str] = ["https://feedvault.se", "https://www.feedvault.se"]
 
 # The time zone that Django will use to display datetimes in templates and to interpret datetimes entered in forms
 TIME_ZONE = "Europe/Stockholm"