CSRF $#%?@!!. Also konami to django admin

2023-08-03 20:11:38 +02:00 · 2023-08-03 20:11:38 +02:00 · b838c79cdb
commit b838c79cdb
parent e8abfaf51b
2 changed files with 2 additions and 2 deletions
--- a/backend/zetikettes/zetikettes/settings.py
+++ b/backend/zetikettes/zetikettes/settings.py
@ -30,7 +30,7 @@ SECRET_KEY = 'django-insecure-64qxpe55#9wy=5@#dl0)3w7ywxh48m!f&!slp9e7v4lh@hjdct
 DEBUG = True

 ALLOWED_HOSTS = ['*']
-CSRF_TRUSTED_ORIGINS = ['https://*']
+CSRF_TRUSTED_ORIGINS = ['https://*.ponteilla.net']


 # Application definition
--- a/frontend/zetikettes.js
+++ b/frontend/zetikettes.js
@ -67,7 +67,7 @@ function konami() {
    $(document).keydown(function (e) {
        if (e.keyCode === k[n++]) {
            if (n === k.length) {
-                document.location.href = 'newtikette.html';
+                document.location.href = backend_api + 'admin';
            }
        }
        else {