Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Find a solution for CSRF verification failed #1206

Open
rolandgeider opened this issue Dec 15, 2022 · 1 comment
Open

Find a solution for CSRF verification failed #1206

rolandgeider opened this issue Dec 15, 2022 · 1 comment

Comments

@rolandgeider
Copy link
Member

When running this behind a reverse proxy, e.g. when using the docker compose setup we need to set the CSRF_TRUSTED_ORIGINS setting since the connection between the nginx in the docker compose and the application is not encrypted.

This can probably be solved with a better configured proxy but we first need a setup so this can be more easily reproduced, etc. etc.

See #1203

https://stackoverflow.com/questions/70679571/how-do-i-set-a-wildcard-for-csrf-trusted-origins-in-django
https://docs.djangoproject.com/en/4.1/ref/settings/#secure-proxy-ssl-header
@rolandgeider rolandgeider mentioned this issue Dec 15, 2022
Open
@brandtkeller
Copy link

As an additional datapoint - I received this today after deploying on kubernetes with an istio service mesh / ingress-gateway providing my tls termination.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@rolandgeider @brandtkeller