Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update devstack.py for Django 4.2 (CSRF_TRUSTED_ORIGINS) #34180

Closed
3 tasks done
timmc-edx opened this issue Feb 5, 2024 · 0 comments
Closed
3 tasks done

Update devstack.py for Django 4.2 (CSRF_TRUSTED_ORIGINS) #34180

timmc-edx opened this issue Feb 5, 2024 · 0 comments
Assignees
@timmc-edx

Comments

@timmc-edx
Copy link
Contributor

timmc-edx commented Feb 5, 2024
edited
Loading

A/C:

Now that edxapp has been updated to Django 4.2, devstack.py (for both lms and cms) needs CSRF_TRUSTED_ORIGINS to list out all of the MFE origins, e.g. http://localhost:2000. Otherwise, we get errors like this one:

403 Forbidden
CSRF verification failed. Request aborted.

    Origin checking failed - http://localhost/:{your MFE / service port} does not match any trusted origins.

(This may affect other IDAs as well.)
timmc-edx added a commit that referenced this issue Feb 6, 2024
@timmc-edx
feat: Support Django 4.2 in devstack
d96b912 
With the Django 4.2 upgrade, devstack needs `CSRF_TRUSTED_ORIGINS` for MFEs
to work. This PR is probably not a complete list, but gets us started.

Ticket: #34180
@timmc-edx timmc-edx mentioned this issue Feb 6, 2024
Merged
timmc-edx added a commit that referenced this issue Feb 6, 2024
@timmc-edx
feat: Support Django 4.2 in devstack (#34192)
5e732f9 
With the Django 4.2 upgrade, devstack needs `CSRF_TRUSTED_ORIGINS` for MFEs
to work. This PR is probably not a complete list, but gets us started.

Ticket: #34180
@timmc-edx timmc-edx self-assigned this Feb 6, 2024
@timmc-edx timmc-edx moved this to In Progress in Arch-BOM Feb 6, 2024
@github-project-automation github-project-automation bot moved this from In Progress to Done in Arch-BOM Feb 6, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@timmc-edx timmc-edx

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@timmc-edx