#!/usr/bin/env python

from .base import *


CSRF_TRUSTED_ORIGINS = config('CSRF_TRUSTED_ORIGINS', default='*' , cast=Csv())

# SECURE_SSL_REDIRECT = True
# SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
# SECURE_HSTS_SECONDS  = 31536000
# SESSION_COOKIE_SECURE = True
# SESSION_EXPIRE_AT_BROWSER_CLOSE = True