Fixes "Origin checking failed - https://.. does not match any trusted origins"

etesync / server

The Etebase server (so you can run your own)

https://www.etesync.com

GNU Affero General Public License v3.0

1.48k stars 75 forks source link

Fixes "Origin checking failed - https://.. does not match any trusted origins" #183

Closed Craeckie closed 3 weeks ago

Craeckie commented 4 weeks ago

Since some recent upgrade, I'm not able to login to the admin page of etesync (/admin/login/), because the CSRF check fails.

After adding CSRF_TRUSTED_ORIGINS = ['https://my-domain.com'], it works. According to the docs, this setting is required in addition to ALLOWED_HOSTS.

Xiretza commented 4 weeks ago

I feel like there's an issue or PR about this already, but I'm on my phone right now.

Craeckie commented 4 weeks ago

I feel like there's an issue or PR about this already, but I'm on my phone right now.

I searched, but I couldn't find any

tasn commented 3 weeks ago

Thanks!