github DRYTRIX/TimeTracker dev-dev-38-b0f42f5f
Development Build dev-38-b0f42f5f
on GitHub

latest releases: v5.2.2, v5.2.1, v5.2.0...
pre-release5 months ago

Development Build

**Version:** dev-38-b0f42f5f
**Commit:** b0f42f5
**Branch:** develop
**Build:** #38

### Docker Image
```
ghcr.io/DRYTRIX/TimeTracker:develop
```

### Quick Start
```bash
docker pull ghcr.io/DRYTRIX/TimeTracker:develop
docker-compose -f deployment-dev.yml up -d
```

### Changes
CSRF: add trusted origins to support reverse-proxied host/proto

Add WTF_CSRF_TRUSTED_ORIGINS to app/config.py (env-driven, comma-separated; default https://track.example.com) to allow CSRF validation when referrer/origin host matches a trusted origin behind a proxy.
Keep existing ProxyFix(x_proto=1, x_host=1, x_for=1, x_port=1) so Flask honors X-Forwarded-* headers.
Ensure forms/AJAX post to the same origin you’ve configured via WTF_CSRF_TRUSTED_ORIGINS. 

---
*This is an automated development build. Use at your own risk.*
Check out latest releases or
releases around DRYTRIX/TimeTracker dev-dev-38-b0f42f5f

Don't miss a new TimeTracker release

NewReleases is sending notifications on new releases.

Get notifications