From 03e5670c25c8e33cf7f85e94d024d2094af27154 Mon Sep 17 00:00:00 2001
From: HP Bruna <hp@brunabruna.nl>
Date: Wed, 7 Nov 2018 21:54:52 +0100
Subject: [PATCH] CSRF in header

CSRF header is needed for a POST request in the Django REST framework.
---
 {{cookiecutter.project_slug}}/compose/production/caddy/Caddyfile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/{{cookiecutter.project_slug}}/compose/production/caddy/Caddyfile b/{{cookiecutter.project_slug}}/compose/production/caddy/Caddyfile
index c2bf241c..323e4392 100644
--- a/{{cookiecutter.project_slug}}/compose/production/caddy/Caddyfile
+++ b/{{cookiecutter.project_slug}}/compose/production/caddy/Caddyfile
@@ -7,6 +7,7 @@ www.{% raw %}{$DOMAIN_NAME}{% endraw %} {
         header_upstream Host {host}
         header_upstream X-Real-IP {remote}
         header_upstream X-Forwarded-Proto {scheme}
+        header_upstream X-CSRFToken {~csrftoken}
     }
     log stdout
     errors stdout