Toggled secure cookies and csrf settings for debug

ContriHUB · Oct 4, 2023 · 6e56569 · 6e56569
1 parent d545bde
commit 6e56569
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/contrihub/settings.py b/contrihub/settings.py
@@ -116,6 +116,12 @@
 if not DEBUG:
     SECURE_SSL_REDIRECT = True
     SECURE_PROXY_SSL_HEADER = ("HTTP_X_FORWARDED_PROTO", "https")
+    SESSION_COOKIE_SECURE = True
+    CSRF_COOKIE_SECURE = True
+else:
+    SECURE_SSL_REDIRECT = False
+    SESSION_COOKIE_SECURE = False
+    CSRF_COOKIE_SECURE = False
 
 # Internationalization
 # https://docs.djangoproject.com/en/3.2/topics/i18n/