From cb38ddae1f4fdae6f4dc99a5d1f7fd8dc8c732c6 Mon Sep 17 00:00:00 2001
From: Ekaropolus <git@hadox.org>
Date: Thu, 15 May 2025 00:45:19 -0600
Subject: [PATCH] =?UTF-8?q?=F0=9F=94=90=20Fix=20CSRF=20error=20in=20produc?=
 =?UTF-8?q?tion?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 polisplexity/settings.py | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/polisplexity/settings.py b/polisplexity/settings.py
index 732d18f..073ae2e 100644
--- a/polisplexity/settings.py
+++ b/polisplexity/settings.py
@@ -123,3 +123,11 @@ NEO4J_PASSWORD = os.getenv("NEO4J_PASSWORD")
 
 # OpenAI
 OPENAI_API_KEY = os.getenv("OPENAI_API_KEY")
+
+# CSRF protection for production
+CSRF_TRUSTED_ORIGINS = [
+    "https://app.polisplexity.tech",
+]
+
+# Support for secure reverse proxy (e.g., Nginx or Hostinger HTTPS proxy)
+SECURE_PROXY_SSL_HEADER = ("HTTP_X_FORWARDED_PROTO", "https")