Remove CSRF Token handling, implement CORS Headers.

[changeling]

Replaced CSRF Handling with CORS Headers.

You may want to play around with:

CORS_ORIGIN_WHITELIST = [
    'http://localhost:3000',
    'https://localhost:3000',
    'http://127.0.0.1:3000',
    'https://127.0.0.1:3000',
    ]

[SpookOrSpooky]

Quick question, following up from the issue where I couldn't find the appropriate cors site-packages, it seems that even corsheaders is absent from the site-packages. Uninstalling and re-installing leads to no addition or removal (even though it marks those files as added or removed). Any ideas?

[changeling]

Usually when I run into that, it comes back to the correct virtual environment not being active. Check that out and see if it helps. Assuming you're definitely in the correct venv, pip install the package without the --user flag. Are you by any chance using VSCode? If so, make sure you've selected the venv as the interpreter in VS Code.

[SpookOrSpooky]

So I've been trying without the user flag or VSCode. I'm using PyCharm for the install terminal, and it seems to be installing all the dependencies correctly but not the main package! I've tried downloading it manually, but I'm a little inexperienced in that department and I'm unaware of what I should be putting where from the downloaded .tar

[changeling]

Have you tried just using it within Django, to see if it's in your path somewhere not apparent?

[changeling]

Curious if you worked this out.