From 4c7e6bd3c9297c08f955a9d9fa29dbd12619669f Mon Sep 17 00:00:00 2001
From: pedro <git2021@cas.cat>
Date: Fri, 3 Nov 2023 10:11:30 +0100
Subject: [PATCH] idhub: add CSRF_TRUSTED_ORIGINS env var

---
 .env.example                  | 2 ++
 docker-compose_idhub-temp.yml | 1 +
 2 files changed, 3 insertions(+)

diff --git a/.env.example b/.env.example
index d37b879..d07ea4a 100644
--- a/.env.example
+++ b/.env.example
@@ -10,3 +10,5 @@
 # specially useful if you want to deploy in a specific domain
 #MUSICIAN_API_BASE_URL='https://orchestra.example.org'
 #MUSICIAN_ALLOWED_HOSTS='musician.example.org'
+# adapt to your domain in a production/reverse proxy env
+IDHUB_CSRF_TRUSTED_ORIGINS='https://idhub.example.org'
diff --git a/docker-compose_idhub-temp.yml b/docker-compose_idhub-temp.yml
index cc2b837..a9011e7 100644
--- a/docker-compose_idhub-temp.yml
+++ b/docker-compose_idhub-temp.yml
@@ -14,5 +14,6 @@ services:
       - DJANGO_SUPERUSER_PASSWORD=${IDHUB_PASSWD}
       - DJANGO_SUPERUSER_EMAIL=${IDHUB_EMAIL}
       - DEPLOYMENT=${IDHUB_DEPLOYMENT}
+      - CSRF_TRUSTED_ORIGINS=${IDHUB_CSRF_TRUSTED_ORIGINS}
     ports:
       - 7000:7000