From 5577115008990536a767359fdf549ec1b13d9a56 Mon Sep 17 00:00:00 2001
From: Piero Toffanin <pt@masseranolabs.com>
Date: Fri, 12 Jul 2019 23:03:01 -0400
Subject: [PATCH] Make CORS settings relaxed again (broken due to Django 2.1
 update)

---
 requirements.txt   | 2 +-
 webodm/settings.py | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/requirements.txt b/requirements.txt
index 9647dbd1..2a3f0ab4 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -10,7 +10,7 @@ django-appconf==1.0.2
 django-codemirror2==0.2
 django-colorfield==0.1.15
 django-compressor==2.2
-django-cors-headers==2.2.0
+django-cors-headers==3.0.2
 django-filter==2.0.0
 django-guardian==1.4.9
 django-imagekit==4.0.1
diff --git a/webodm/settings.py b/webodm/settings.py
index 20d8d87e..00c29dc4 100644
--- a/webodm/settings.py
+++ b/webodm/settings.py
@@ -250,6 +250,7 @@ LOGIN_URL = '/login/'
 # CORS (very relaxed settings, users might want to change this in production)
 CORS_ORIGIN_ALLOW_ALL = True
 CORS_ALLOW_CREDENTIALS = True
+SESSION_COOKIE_SAMESITE = None
 
 # File uploads
 MEDIA_ROOT = os.path.join(BASE_DIR, 'app', 'media')