Use web_app_url

Author: seeker25

auth-api/src/auth_api/resources/v1/affiliation_invitation.py

@@ -123,7 +123,7 @@ def get_affiliation_invitation(affiliation_invitation_id):
 @_jwt.has_one_of_roles([Role.STAFF_CREATE_ACCOUNTS.value, Role.STAFF_MANAGE_ACCOUNTS.value, Role.PUBLIC_USER.value])
 def patch_affiliation_invitation(affiliation_invitation_id):
     """Update the affiliation invitation specified by the provided id."""
-    origin = request.environ.get("HTTP_ORIGIN", "localhost")
+    origin = request.environ.get("HTTP_ORIGIN", current_app.config.get("WEB_APP_URL"))
     request_json = request.get_json()
     try:
         affiliation_invitation = AffiliationInvitationService.find_affiliation_invitation_by_id(
@@ -166,7 +166,7 @@ def delete_affiliation_invitation(affiliation_invitation_id):
 @_jwt.requires_auth
 def accept_affiliation_invitation_token(affiliation_invitation_id, affiliation_invitation_token):
     """Check whether the passed token is valid and add affiliation from the affiliation invitation."""
-    origin = request.environ.get("HTTP_ORIGIN", "localhost")
+    origin = request.environ.get("HTTP_ORIGIN", current_app.config.get("WEB_APP_URL"))
     environment = get_request_environment()
 
     try:
@@ -196,7 +196,7 @@ def accept_affiliation_invitation_token(affiliation_invitation_id, affiliation_i
 @_jwt.requires_auth
 def patch_affiliation_invitation_authorization(affiliation_invitation_id, authorize_action):
     """Check if user is active part of the Org. Authorize/Refuse Authorization invite if he is."""
-    origin = request.environ.get("HTTP_ORIGIN", "localhost")
+    origin = request.environ.get("HTTP_ORIGIN", current_app.config.get("WEB_APP_URL"))
     env = get_request_environment()
 
     try: