merged with dev

b-angelov · b-angelov · commit 2f30508e89bf · 2025-04-13T17:42:52.000+03:00
diff --git a/izpitnik/accounts/api/views.py b/izpitnik/accounts/api/views.py
@@ -21,7 +21,7 @@ def get_token(cls, user):
         token = super().get_token(user)
 
         token['is_admin'] = user.is_staff
-        token['roles'] = [role.name for role in user.groups.all()]
+        # token['roles'] = [role.name for role in user.groups.all()]
         token['is_superuser'] = user.is_superuser
 
         return token
@@ -38,9 +38,8 @@ def post(self, request, *args, **kwargs):
         samesite = False
 
         if ENV == "production":
-            pass
-            # secure = True
-            # samesite = 'Strict'
+            secure = True
+            samesite = 'Strict'
 
         if refresh:
             response.set_cookie(
diff --git a/izpitnik/settings.py b/izpitnik/settings.py
@@ -235,7 +235,7 @@
     'fixtures'
 ]
 
-if config("ENV") == "production":
+if False and config("ENV") == "production":
     CSRF_COOKIE_SECURE = True  # If using HTTPS
     SESSION_COOKIE_SECURE = True  # If using HTTPS
     SECURE_SSL_REDIRECT = True  # Force HTTPS

Original file line number	Diff line number	Diff line change
`@@ -235,7 +235,7 @@`
`235`	`235`	`'fixtures'`
`236`	`236`	`]`
`237`	`237`
`238`		`-if config("ENV") == "production":`
	`238`	`+if False and config("ENV") == "production":`
`239`	`239`	`CSRF_COOKIE_SECURE = True # If using HTTPS`
`240`	`240`	`SESSION_COOKIE_SECURE = True # If using HTTPS`
`241`	`241`	`SECURE_SSL_REDIRECT = True # Force HTTPS`