Pass CSRF_TRUSTED_ORIGINS via environment variable

docker-compose.yml

@@ -22,6 +22,7 @@ services:
       - postgres_password
     environment:
       SECRET_KEY_FILE: /run/secrets/web_secret_key
+      CSRF_TRUSTED_ORIGINS:
       POSTGRES_HOST: postgres
       POSTGRES_PORT: 5432
       POSTGRES_DATABASE: url_shortener

example.env

@@ -1,4 +1,5 @@
 SECRET_KEY=
+CSRF_TRUSTED_ORIGINS=
 
 POSTGRES_HOST=localhost
 POSTGRES_PORT=5432

url_shortener/settings.py

@@ -31,6 +31,7 @@ SECRET_KEY = os.getenv("SECRET_KEY", "")
 DEBUG = os.getenv("DEBUG", "0") != "0"
 
 ALLOWED_HOSTS = ["*"]
+CSRF_TRUSTED_ORIGINS = os.getenv("CSRF_TRUSTED_ORIGINS", "").split(",")
 
 SECURE_PROXY_SSL_HEADER = ("HTTP_X_FORWARDED_PROTO", "https")