173 lines
6.8 KiB
Python
173 lines
6.8 KiB
Python
# ruff: noqa: E501
|
|
from .base import * # noqa: F403
|
|
from .base import DATABASES
|
|
from .base import INSTALLED_APPS
|
|
from .base import REDIS_URL
|
|
from .base import env
|
|
|
|
# GENERAL
|
|
# ------------------------------------------------------------------------------
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#secret-key
|
|
SECRET_KEY = env("DJANGO_SECRET_KEY")
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#allowed-hosts
|
|
ALLOWED_HOSTS = env.list("DJANGO_ALLOWED_HOSTS", default=["example.com"])
|
|
|
|
# DATABASES
|
|
# ------------------------------------------------------------------------------
|
|
DATABASES["default"]["CONN_MAX_AGE"] = env.int("CONN_MAX_AGE", default=60)
|
|
|
|
# CACHES
|
|
# ------------------------------------------------------------------------------
|
|
CACHES = {
|
|
"default": {
|
|
"BACKEND": "django_redis.cache.RedisCache",
|
|
"LOCATION": REDIS_URL,
|
|
"OPTIONS": {
|
|
"CLIENT_CLASS": "django_redis.client.DefaultClient",
|
|
# Mimicking memcache behavior.
|
|
# https://github.com/jazzband/django-redis#memcached-exceptions-behavior
|
|
"IGNORE_EXCEPTIONS": True,
|
|
},
|
|
},
|
|
}
|
|
|
|
# SECURITY
|
|
# ------------------------------------------------------------------------------
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#secure-proxy-ssl-header
|
|
SECURE_PROXY_SSL_HEADER = ("HTTP_X_FORWARDED_PROTO", "https")
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#secure-ssl-redirect
|
|
SECURE_SSL_REDIRECT = env.bool("DJANGO_SECURE_SSL_REDIRECT", default=True)
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#session-cookie-secure
|
|
SESSION_COOKIE_SECURE = True
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#session-cookie-name
|
|
SESSION_COOKIE_NAME = "__Secure-sessionid"
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#csrf-cookie-secure
|
|
CSRF_COOKIE_SECURE = True
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#csrf-cookie-name
|
|
CSRF_COOKIE_NAME = "__Secure-csrftoken"
|
|
# https://docs.djangoproject.com/en/dev/topics/security/#ssl-https
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#secure-hsts-seconds
|
|
# TODO: set this to 60 seconds first and then to 518400 once you prove the former works
|
|
SECURE_HSTS_SECONDS = 60
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#secure-hsts-include-subdomains
|
|
SECURE_HSTS_INCLUDE_SUBDOMAINS = env.bool(
|
|
"DJANGO_SECURE_HSTS_INCLUDE_SUBDOMAINS",
|
|
default=True,
|
|
)
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#secure-hsts-preload
|
|
SECURE_HSTS_PRELOAD = env.bool("DJANGO_SECURE_HSTS_PRELOAD", default=True)
|
|
# https://docs.djangoproject.com/en/dev/ref/middleware/#x-content-type-options-nosniff
|
|
SECURE_CONTENT_TYPE_NOSNIFF = env.bool(
|
|
"DJANGO_SECURE_CONTENT_TYPE_NOSNIFF",
|
|
default=True,
|
|
)
|
|
|
|
# STATIC & MEDIA
|
|
# ------------------------
|
|
STORAGES = {
|
|
"default": {
|
|
"BACKEND": "django.core.files.storage.FileSystemStorage",
|
|
},
|
|
"staticfiles": {
|
|
"BACKEND": "whitenoise.storage.CompressedManifestStaticFilesStorage",
|
|
},
|
|
}
|
|
|
|
# EMAIL
|
|
# ------------------------------------------------------------------------------
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#default-from-email
|
|
DEFAULT_FROM_EMAIL = env(
|
|
"DJANGO_DEFAULT_FROM_EMAIL",
|
|
default="Diários Oficiais ALEMS <noreply@example.com>",
|
|
)
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#server-email
|
|
SERVER_EMAIL = env("DJANGO_SERVER_EMAIL", default=DEFAULT_FROM_EMAIL)
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#email-subject-prefix
|
|
EMAIL_SUBJECT_PREFIX = env(
|
|
"DJANGO_EMAIL_SUBJECT_PREFIX",
|
|
default="[Diários Oficiais ALEMS] ",
|
|
)
|
|
ACCOUNT_EMAIL_SUBJECT_PREFIX = EMAIL_SUBJECT_PREFIX
|
|
|
|
# ADMIN
|
|
# ------------------------------------------------------------------------------
|
|
# Django Admin URL regex.
|
|
ADMIN_URL = env("DJANGO_ADMIN_URL")
|
|
|
|
# Anymail
|
|
# ------------------------------------------------------------------------------
|
|
# https://anymail.readthedocs.io/en/stable/installation/#installing-anymail
|
|
INSTALLED_APPS += ["anymail"]
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#email-backend
|
|
# https://anymail.readthedocs.io/en/stable/installation/#anymail-settings-reference
|
|
# https://anymail.readthedocs.io/en/stable/esps
|
|
EMAIL_BACKEND = "django.core.mail.backends.smtp.EmailBackend"
|
|
ANYMAIL = {}
|
|
|
|
# django-compressor
|
|
# ------------------------------------------------------------------------------
|
|
# https://django-compressor.readthedocs.io/en/latest/settings/#django.conf.settings.COMPRESS_ENABLED
|
|
COMPRESS_ENABLED = env.bool("COMPRESS_ENABLED", default=True)
|
|
# https://django-compressor.readthedocs.io/en/latest/settings/#django.conf.settings.COMPRESS_STORAGE
|
|
COMPRESS_STORAGE = "compressor.storage.GzipCompressorFileStorage"
|
|
# https://django-compressor.readthedocs.io/en/latest/settings/#django.conf.settings.COMPRESS_URL
|
|
COMPRESS_URL = STATIC_URL # noqa: F405
|
|
# https://django-compressor.readthedocs.io/en/latest/settings/#django.conf.settings.COMPRESS_OFFLINE
|
|
COMPRESS_OFFLINE = True # Offline compression is required when using Whitenoise
|
|
# https://django-compressor.readthedocs.io/en/latest/settings/#django.conf.settings.COMPRESS_FILTERS
|
|
COMPRESS_FILTERS = {
|
|
"css": [
|
|
"compressor.filters.css_default.CssAbsoluteFilter",
|
|
"compressor.filters.cssmin.rCSSMinFilter",
|
|
],
|
|
"js": ["compressor.filters.jsmin.JSMinFilter"],
|
|
}
|
|
|
|
# LOGGING
|
|
# ------------------------------------------------------------------------------
|
|
# https://docs.djangoproject.com/en/dev/ref/settings/#logging
|
|
# See https://docs.djangoproject.com/en/dev/topics/logging for
|
|
# more details on how to customize your logging configuration.
|
|
# A sample logging configuration. The only tangible logging
|
|
# performed by this configuration is to send an email to
|
|
# the site admins on every HTTP 500 error when DEBUG=False.
|
|
LOGGING = {
|
|
"version": 1,
|
|
"disable_existing_loggers": False,
|
|
"filters": {"require_debug_false": {"()": "django.utils.log.RequireDebugFalse"}},
|
|
"formatters": {
|
|
"verbose": {
|
|
"format": "%(levelname)s %(asctime)s %(module)s %(process)d %(thread)d %(message)s",
|
|
},
|
|
},
|
|
"handlers": {
|
|
"mail_admins": {
|
|
"level": "ERROR",
|
|
"filters": ["require_debug_false"],
|
|
"class": "django.utils.log.AdminEmailHandler",
|
|
},
|
|
"console": {
|
|
"level": "DEBUG",
|
|
"class": "logging.StreamHandler",
|
|
"formatter": "verbose",
|
|
},
|
|
},
|
|
"root": {"level": "INFO", "handlers": ["console"]},
|
|
"loggers": {
|
|
"django.request": {
|
|
"handlers": ["mail_admins"],
|
|
"level": "ERROR",
|
|
"propagate": True,
|
|
},
|
|
"django.security.DisallowedHost": {
|
|
"level": "ERROR",
|
|
"handlers": ["console", "mail_admins"],
|
|
"propagate": True,
|
|
},
|
|
},
|
|
}
|
|
|
|
|
|
# Your stuff...
|
|
# ------------------------------------------------------------------------------
|