richard
/
doccano
mirror of https://github.com/doccano/doccano.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1516 Commits
14 Branches
32 Tags
77 MiB
Tree: ce8ebe6ab5
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'ce8ebe6ab5'
${ noResults }
doccano/app/app/settings.py

351 lines
12 KiB
Raw Normal View History

Add django project
6 years ago
Add support for dotenv configuration file
5 years ago
Add django project
6 years ago
Update setup.py and settings.py to fix #1095
4 years ago
Remove direct import of os module This makes it more explicit that the environs module should be used to access environment variables instead of `os.environ` or `os.getenv`
5 years ago
Add django project
6 years ago
Update settings.py
6 years ago
Add support for dotenv configuration file
5 years ago
Enable non-SSL connections to the database Currently, whenever the database is changed from the default SQLite via the DATABASE_URL environment variable, the connection to the database is forced to be SSL. This is a great default for production use-cases. However, in some scenarios, users may not want to use SSL, e.g. when testing against a local MySQL or PostgreSQL database. This change enables users to explicitly request a non-SSL connection to the database by passing the `?sslmode=disable` (or similar) query argument in the DATABASE_URL environment variable. For backwards compatibility, if the `sslmode` is not set explicitly in the connection URL, the code still defaults to requiring SSL on the connection.
5 years ago
Add support for dotenv configuration file
5 years ago
Add django project
6 years ago
Remove direct import of os module This makes it more explicit that the environs module should be used to access environment variables instead of `os.environ` or `os.getenv`
5 years ago
Add django project
6 years ago
Add support for dotenv configuration file
5 years ago
Ensure .env file gets read
5 years ago
Add support for dotenv configuration file
5 years ago
Add django project
6 years ago
Add support for dotenv configuration file
5 years ago
Add django project
6 years ago
Add support for dotenv configuration file
5 years ago
Add django project
6 years ago
Env variables: We want to allow the admin to choose wether the users can signin in by themselves, or if only the admin can do it. We will later implement it in the python code Here we have to modify - docker-compose.yml : add the env ALLOW_SIGNUP Note: I am not sure if it's True or "True" Note: we could have put it inside the Dockerfile instead of docker-compose, it doesn't matter. - settings.py : Here we make the env variable available to the python app - app.json : that's for the heroku deployment. we simply describe to heroku that we have an env variable
5 years ago
Update settings.py
6 years ago
Add django project
6 years ago
Make usage of whitenoise runserver explicit
5 years ago
Add django project
6 years ago
Update models
6 years ago
Create new app and move codes
5 years ago
Update setup.py and settings.py to fix #1095
4 years ago
Add serializers
6 years ago
Enable token authorization for API calls
5 years ago
Add trailing comma in list
5 years ago
Add Github login ![Login page screenshot](https://user-images.githubusercontent.com/1086421/51767227-b681cd80-20aa-11e9-8794-c200522b63c7.png)
5 years ago
Make project model polymorphic
5 years ago
Update setup.py and settings.py to fix #1095
4 years ago
Add docker compose config to setup development environment quickly
4 years ago
Add API document generator, resolves #299, resolves #646
4 years ago
Add django project
6 years ago
Implement data import from cloud
5 years ago
Add django project
6 years ago
Make it explicit that whitenoise is being used As per http://whitenoise.evans.io/en/stable/django.html#enable-whitenoise, the whitenoise middleware should be added just after the django-security middleware.
5 years ago
Add django project
6 years ago
Add Github login ![Login page screenshot](https://user-images.githubusercontent.com/1086421/51767227-b681cd80-20aa-11e9-8794-c200522b63c7.png)
5 years ago
Update setup.py and settings.py to fix #1095
4 years ago
Add docker compose config to setup development environment quickly
4 years ago
Add django project
6 years ago
Update procfile
6 years ago
Add django project
6 years ago
Allow django to load nuxt files
4 years ago
Add django project
6 years ago
Add Github login ![Login page screenshot](https://user-images.githubusercontent.com/1086421/51767227-b681cd80-20aa-11e9-8794-c200522b63c7.png)
5 years ago
Add django project
6 years ago
Make Google Analytics Tracking ID configurable
5 years ago
Small trick: we add a filter to the Django templating in order to add some class to our form inputs
5 years ago
Make Google Analytics Tracking ID configurable
5 years ago
Add django project
6 years ago
Adopt nuxt folder structure
5 years ago
Add django project
6 years ago
Allow django to load nuxt files
4 years ago
Add django project
6 years ago
Make it explicit that whitenoise is being used As per http://whitenoise.evans.io/en/stable/django.html#enable-whitenoise, the whitenoise middleware should be added just after the django-security middleware.
5 years ago
Integrate webpack and django
5 years ago
Adopt nuxt folder structure
5 years ago
Integrate webpack and django
5 years ago
Add django project
6 years ago
Add Github login ![Login page screenshot](https://user-images.githubusercontent.com/1086421/51767227-b681cd80-20aa-11e9-8794-c200522b63c7.png)
5 years ago
Add Azure Active Directory login ![Login page screenshot](https://user-images.githubusercontent.com/1086421/51774269-b17b4900-20bf-11e9-96d1-09625ffd19e4.png)
5 years ago
Add Okta support
4 years ago
Add Github login ![Login page screenshot](https://user-images.githubusercontent.com/1086421/51767227-b681cd80-20aa-11e9-8794-c200522b63c7.png)
5 years ago
Adds middlware that enables automatic login based on HTTP headers
5 years ago
Add support for dotenv configuration file
5 years ago
Add option to read user admin status from Github
5 years ago
Add django project
6 years ago
Add support for dotenv configuration file
5 years ago
Add option to read user admin status from AAD
5 years ago
Add django project
6 years ago
Add Okta support
4 years ago
Add pipeline fetch functions
4 years ago
Add Okta support
4 years ago
Add pipeline fetch functions
4 years ago
Add Okta support
4 years ago
Make social auth pipeline explicit
5 years ago
Add option to read user admin status from Github
5 years ago
Add option to read user admin status from AAD
5 years ago
Add pipeline fetch functions
4 years ago
Make social auth pipeline explicit
5 years ago
Add django project
6 years ago
Role and RoleMapping Models
5 years ago
Add django project
6 years ago
Remove direct import of os module This makes it more explicit that the environs module should be used to access environment variables instead of `os.environ` or `os.getenv`
5 years ago
Add django project
6 years ago
Add serializers
6 years ago
Add authenticated to API
6 years ago
Add serializers
6 years ago
Enable token authorization for API calls
5 years ago
Add serializers
6 years ago
Fix header and sidebar scrolling viewport
5 years ago
Update serializers
6 years ago
Support multiple formats
5 years ago
Add serializers
6 years ago
Add django project
6 years ago
Publish test results
5 years ago
Add django project
6 years ago
Change default login url
6 years ago
Update login redirect
6 years ago
Add logout view
6 years ago
Add django-heroku
6 years ago
Update setup.py and settings.py to fix #1095
4 years ago
Update settings.py to avoid assignment statement
3 years ago
Update setup.py and settings.py to fix #1095
4 years ago
Update settings.py to fix loading error of django_heroku
4 years ago
Remove IS_HEROKU flag
5 years ago
Update settings.py
6 years ago
Enable non-SSL connections to the database Currently, whenever the database is changed from the default SQLite via the DATABASE_URL environment variable, the connection to the database is forced to be SSL. This is a great default for production use-cases. However, in some scenarios, users may not want to use SSL, e.g. when testing against a local MySQL or PostgreSQL database. This change enables users to explicitly request a non-SSL connection to the database by passing the `?sslmode=disable` (or similar) query argument in the DATABASE_URL environment variable. For backwards compatibility, if the `sslmode` is not set explicitly in the connection URL, the code still defaults to requiring SSL on the connection.
5 years ago
Add environment variable for conn_max_age
5 years ago
Enable non-SSL connections to the database Currently, whenever the database is changed from the default SQLite via the DATABASE_URL environment variable, the connection to the database is forced to be SSL. This is a great default for production use-cases. However, in some scenarios, users may not want to use SSL, e.g. when testing against a local MySQL or PostgreSQL database. This change enables users to explicitly request a non-SSL connection to the database by passing the `?sslmode=disable` (or similar) query argument in the DATABASE_URL environment variable. For backwards compatibility, if the `sslmode` is not set explicitly in the connection URL, the code still defaults to requiring SSL on the connection.
5 years ago
Update settings.py
6 years ago
Remove IS_HEROKU flag
5 years ago
Add support for MySQL
5 years ago
Add support for SQL Server database
5 years ago
Remove unused db_options variable
5 years ago
Add support for SQL Server database
5 years ago
Update settings.py
6 years ago
Add settings required for SSL
5 years ago
Update settings.py
6 years ago
Update setup.py and settings.py to fix #1095
4 years ago
Update settings.py
6 years ago
iss45: extract batch size to the settings
5 years ago
Make import batch size configurable via env
5 years ago
iss45: extract batch size to the settings
5 years ago
Remove Google Analytics from Azure deployment
5 years ago
Add server-side analytics via AppInsights
5 years ago
Add support for dotenv configuration file
5 years ago
Add server-side analytics via AppInsights
5 years ago
Fix #83
5 years ago
Add option to customize the AppInsights endpoint
5 years ago
Add server-side analytics via AppInsights
5 years ago
we add some lines for emailing possibilities
5 years ago
Enable configuring email backend via environment
4 years ago
Add From: email setting to awsdeploy.yml
4 years ago
Enable configuring email backend via environment
4 years ago
Add docker compose config to setup development environment quickly
4 years ago
Add CORS whitelist
4 years ago
Add docker compose config to setup development environment quickly
4 years ago
  1. """
  2. Django settings for app project.
  4. For more information on this file, see
  5. https://docs.djangoproject.com/en/2.0/topics/settings/
  7. For the full list of settings and their values, see
  8. https://docs.djangoproject.com/en/2.0/ref/settings/
  10. Any setting that is configured via an environment variable may
  11. also be set in a `.env` file in the project base directory.
  12. """
  13. import importlib.util
  14. import sys
  15. from os import path
  17. import dj_database_url
  18. from environs import Env
  19. from furl import furl
  22. # Build paths inside the project like this: path.join(BASE_DIR, ...)
  23. BASE_DIR = path.dirname(path.dirname(path.abspath(__file__)))
  25. env = Env()
  26. env.read_env(path.join(BASE_DIR, '.env'), recurse=False)
  29. # Quick-start development settings - unsuitable for production
  30. # See https://docs.djangoproject.com/en/2.0/howto/deployment/checklist/
  32. # SECURITY WARNING: keep the secret key used in production secret!
  33. SECRET_KEY = env('SECRET_KEY',
  34. 'v8sk33sy82!uw3ty=!jjv5vp7=s2phrzw(m(hrn^f7e_#1h2al')
  36. # SECURITY WARNING: don't run with debug turned on in production!
  37. DEBUG = env.bool('DEBUG', True)
  39. # True if you want to allow users to be able to create an account
  40. ALLOW_SIGNUP = env.bool('ALLOW_SIGNUP', True)
  42. # ALLOWED_HOSTS = []
  45. # Application definition
  47. INSTALLED_APPS = [
  48. 'whitenoise.runserver_nostatic',
  49. 'django.contrib.admin',
  50. 'django.contrib.auth',
  51. 'django.contrib.contenttypes',
  52. 'django.contrib.sessions',
  53. 'django.contrib.messages',
  54. 'django.contrib.staticfiles',
  55. 'server.apps.ServerConfig',
  56. 'api.apps.ApiConfig',
  57. # 'widget_tweaks',
  58. 'rest_framework',
  59. 'rest_framework.authtoken',
  60. 'django_filters',
  61. 'social_django',
  62. 'polymorphic',
  63. # 'webpack_loader',
  64. 'corsheaders',
  65. 'drf_yasg'
  66. ]
  68. CLOUD_BROWSER_APACHE_LIBCLOUD_PROVIDER = env('CLOUD_BROWSER_LIBCLOUD_PROVIDER', None)
  69. CLOUD_BROWSER_APACHE_LIBCLOUD_ACCOUNT = env('CLOUD_BROWSER_LIBCLOUD_ACCOUNT', None)
  70. CLOUD_BROWSER_APACHE_LIBCLOUD_SECRET_KEY = env('CLOUD_BROWSER_LIBCLOUD_KEY', None)
  72. if CLOUD_BROWSER_APACHE_LIBCLOUD_PROVIDER:
  73. CLOUD_BROWSER_DATASTORE = 'ApacheLibcloud'
  74. CLOUD_BROWSER_OBJECT_REDIRECT_URL = '/v1/cloud-upload'
  75. INSTALLED_APPS.append('cloud_browser')
  77. MIDDLEWARE = [
  78. 'django.middleware.security.SecurityMiddleware',
  79. 'whitenoise.middleware.WhiteNoiseMiddleware',
  80. 'django.contrib.sessions.middleware.SessionMiddleware',
  81. 'django.middleware.common.CommonMiddleware',
  82. 'django.middleware.csrf.CsrfViewMiddleware',
  83. 'django.contrib.auth.middleware.AuthenticationMiddleware',
  84. 'django.contrib.messages.middleware.MessageMiddleware',
  85. 'django.middleware.clickjacking.XFrameOptionsMiddleware',
  86. 'social_django.middleware.SocialAuthExceptionMiddleware',
  87. # 'applicationinsights.django.ApplicationInsightsMiddleware',
  88. 'corsheaders.middleware.CorsMiddleware',
  89. ]
  91. ROOT_URLCONF = 'app.urls'
  93. TEMPLATES = [
  94. {
  95. 'BACKEND': 'django.template.backends.django.DjangoTemplates',
  96. 'DIRS': [path.join(BASE_DIR, 'client/dist')],
  97. 'APP_DIRS': True,
  98. 'OPTIONS': {
  99. 'context_processors': [
  100. 'django.template.context_processors.debug',
  101. 'django.template.context_processors.request',
  102. 'django.contrib.auth.context_processors.auth',
  103. 'django.contrib.messages.context_processors.messages',
  104. 'social_django.context_processors.backends',
  105. 'social_django.context_processors.login_redirect',
  106. ],
  107. 'libraries': {
  108. 'analytics': 'server.templatetags.analytics',
  109. 'utils_templating': 'authentification.templatetags.utils_templating',
  110. },
  111. },
  112. },
  113. ]
  115. # Static files (CSS, JavaScript, Images)
  116. # https://docs.djangoproject.com/en/2.0/howto/static-files/
  118. STATIC_URL = '/static/'
  119. STATIC_ROOT = path.join(BASE_DIR, 'staticfiles')
  121. STATICFILES_DIRS = [
  122. path.join(BASE_DIR, 'client/dist/static'),
  123. ]
  125. STATICFILES_STORAGE = 'whitenoise.storage.CompressedManifestStaticFilesStorage'
  127. WEBPACK_LOADER = {
  128. 'DEFAULT': {
  129. 'CACHE': not DEBUG,
  130. 'BUNDLE_DIR_NAME': 'bundle/',
  131. 'STATS_FILE': path.join(BASE_DIR, 'server', 'static', 'webpack-stats.json'),
  132. 'POLL_INTERVAL': 0.1,
  133. 'TIMEOUT': None,
  134. 'IGNORE': [r'.*\.hot-update.js', r'.+\.map']
  135. }
  136. }
  138. WSGI_APPLICATION = 'app.wsgi.application'
  140. AUTHENTICATION_BACKENDS = [
  141. 'social_core.backends.github.GithubOAuth2',
  142. 'social_core.backends.azuread_tenant.AzureADTenantOAuth2',
  143. 'social_core.backends.okta.OktaOAuth2',
  144. 'social_core.backends.okta_openidconnect.OktaOpenIdConnect',
  145. 'django.contrib.auth.backends.ModelBackend',
  146. ]
  148. HEADER_AUTH_USER_NAME = env('HEADER_AUTH_USER_NAME', '')
  149. HEADER_AUTH_USER_GROUPS = env('HEADER_AUTH_USER_GROUPS', '')
  150. HEADER_AUTH_ADMIN_GROUP_NAME = env('HEADER_AUTH_ADMIN_GROUP_NAME', '')
  151. HEADER_AUTH_GROUPS_SEPERATOR = env('HEADER_AUTH_GROUPS_SEPERATOR', default=',')
  153. if HEADER_AUTH_USER_NAME and HEADER_AUTH_USER_GROUPS and HEADER_AUTH_ADMIN_GROUP_NAME:
  154. MIDDLEWARE.append('server.middleware.HeaderAuthMiddleware')
  155. AUTHENTICATION_BACKENDS.append('django.contrib.auth.backends.RemoteUserBackend')
  157. SOCIAL_AUTH_GITHUB_KEY = env('OAUTH_GITHUB_KEY', None)
  158. SOCIAL_AUTH_GITHUB_SECRET = env('OAUTH_GITHUB_SECRET', None)
  159. GITHUB_ADMIN_ORG_NAME = env('GITHUB_ADMIN_ORG_NAME', None)
  160. GITHUB_ADMIN_TEAM_NAME = env('GITHUB_ADMIN_TEAM_NAME', None)
  162. if GITHUB_ADMIN_ORG_NAME and GITHUB_ADMIN_TEAM_NAME:
  163. SOCIAL_AUTH_GITHUB_SCOPE = ['read:org']
  165. SOCIAL_AUTH_AZUREAD_TENANT_OAUTH2_KEY = env('OAUTH_AAD_KEY', None)
  166. SOCIAL_AUTH_AZUREAD_TENANT_OAUTH2_SECRET = env('OAUTH_AAD_SECRET', None)
  167. SOCIAL_AUTH_AZUREAD_TENANT_OAUTH2_TENANT_ID = env('OAUTH_AAD_TENANT', None)
  168. AZUREAD_ADMIN_GROUP_ID = env('AZUREAD_ADMIN_GROUP_ID', None)
  170. if AZUREAD_ADMIN_GROUP_ID:
  171. SOCIAL_AUTH_AZUREAD_TENANT_OAUTH2_RESOURCE = 'https://graph.microsoft.com/'
  172. SOCIAL_AUTH_AZUREAD_TENANT_OAUTH2_SCOPE = ['Directory.Read.All']
  174. SOCIAL_AUTH_OKTA_OAUTH2_KEY = env('OAUTH_OKTA_OAUTH2_KEY', None)
  175. SOCIAL_AUTH_OKTA_OAUTH2_SECRET = env('OAUTH_OKTA_OAUTH2_SECRET', None)
  176. SOCIAL_AUTH_OKTA_OAUTH2_API_URL = env('OAUTH_OKTA_OAUTH2_API_URL', None)
  177. OKTA_OAUTH2_ADMIN_GROUP_NAME = env('OKTA_OAUTH2_ADMIN_GROUP_NAME', None)
  179. if SOCIAL_AUTH_OKTA_OAUTH2_API_URL:
  180. SOCIAL_AUTH_OKTA_OAUTH2_SCOPE = ["groups"]
  182. SOCIAL_AUTH_OKTA_OPENIDCONNECT_KEY = env('OAUTH_OKTA_OPENIDCONNECT_KEY', None)
  183. SOCIAL_AUTH_OKTA_OPENIDCONNECT_SECRET = env('OAUTH_OKTA_OPENIDCONNECT_SECRET', None)
  184. SOCIAL_AUTH_OKTA_OPENIDCONNECT_API_URL = env('OAUTH_OKTA_OPENIDCONNECT_API_URL', None)
  185. OKTA_OPENIDCONNECT_ADMIN_GROUP_NAME = env('OKTA_OPENIDCONNECT_ADMIN_GROUP_NAME', None)
  187. if SOCIAL_AUTH_OKTA_OPENIDCONNECT_API_URL:
  188. SOCIAL_AUTH_OKTA_OPENIDCONNECT_SCOPE = ["groups"]
  190. SOCIAL_AUTH_PIPELINE = [
  191. 'social_core.pipeline.social_auth.social_details',
  192. 'social_core.pipeline.social_auth.social_uid',
  193. 'social_core.pipeline.social_auth.auth_allowed',
  194. 'social_core.pipeline.social_auth.social_user',
  195. 'social_core.pipeline.user.get_username',
  196. 'social_core.pipeline.user.create_user',
  197. 'social_core.pipeline.social_auth.associate_user',
  198. 'social_core.pipeline.social_auth.load_extra_data',
  199. 'social_core.pipeline.user.user_details',
  200. 'server.social_auth.fetch_github_permissions',
  201. 'server.social_auth.fetch_azuread_permissions',
  202. 'server.social_auth.fetch_okta_oauth2_permissions',
  203. 'server.social_auth.fetch_okta_openidconnect_permissions',
  204. ]
  206. ROLE_PROJECT_ADMIN = env('ROLE_PROJECT_ADMIN', 'project_admin')
  207. ROLE_ANNOTATOR = env('ROLE_ANNOTATOR', 'annotator')
  208. ROLE_ANNOTATION_APPROVER = env('ROLE_ANNOTATION_APPROVER', 'annotation_approver')
  210. # Database
  211. # https://docs.djangoproject.com/en/2.0/ref/settings/#databases
  213. DATABASES = {
  214. 'default': {
  215. 'ENGINE': 'django.db.backends.sqlite3',
  216. 'NAME': path.join(BASE_DIR, 'db.sqlite3'),
  217. }
  218. }
  221. # Password validation
  222. # https://docs.djangoproject.com/en/2.0/ref/settings/#auth-password-validators
  224. AUTH_PASSWORD_VALIDATORS = [
  225. {
  226. 'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
  227. },
  228. {
  229. 'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
  230. },
  231. {
  232. 'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
  233. },
  234. {
  235. 'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
  236. },
  237. ]
  239. REST_FRAMEWORK = {
  240. # Use Django's standard `django.contrib.auth` permissions,
  241. # or allow read-only access for unauthenticated users.
  242. 'DEFAULT_PERMISSION_CLASSES': [
  243. 'rest_framework.permissions.DjangoModelPermissionsOrAnonReadOnly',
  244. 'rest_framework.permissions.IsAuthenticated',
  245. ],
  246. 'DEFAULT_AUTHENTICATION_CLASSES': (
  247. 'rest_framework.authentication.SessionAuthentication',
  248. 'rest_framework.authentication.TokenAuthentication',
  249. ),
  250. 'DEFAULT_PAGINATION_CLASS': 'rest_framework.pagination.LimitOffsetPagination',
  251. 'PAGE_SIZE': env.int('DOCCANO_PAGE_SIZE', default=5),
  252. 'DEFAULT_FILTER_BACKENDS': ('django_filters.rest_framework.DjangoFilterBackend',),
  253. 'SEARCH_PARAM': 'q',
  254. 'DEFAULT_RENDERER_CLASSES': (
  255. 'rest_framework.renderers.JSONRenderer',
  256. 'rest_framework.renderers.BrowsableAPIRenderer',
  257. 'rest_framework_xml.renderers.XMLRenderer'
  258. )
  259. }
  261. # Internationalization
  262. # https://docs.djangoproject.com/en/2.0/topics/i18n/
  264. LANGUAGE_CODE = 'en-us'
  266. TIME_ZONE = 'UTC'
  268. USE_I18N = True
  270. USE_L10N = True
  272. USE_TZ = True
  274. TEST_RUNNER = 'xmlrunner.extra.djangotestrunner.XMLTestRunner'
  275. TEST_OUTPUT_DIR = path.join(BASE_DIR, 'junitxml')
  277. LOGIN_URL = '/login/'
  278. LOGIN_REDIRECT_URL = '/projects/'
  279. LOGOUT_REDIRECT_URL = '/'
  281. # dynamic import to avoid installing psycopg2 on pip installation.
  282. name = 'django_heroku'
  283. spec = importlib.util.find_spec(name)
  284. if spec is not None:
  285. module = importlib.util.module_from_spec(spec)
  286. sys.modules[name] = module
  287. spec.loader.exec_module(module)
  288. module.settings(locals(), test_runner=False)
  290. # Change 'default' database configuration with $DATABASE_URL.
  291. DATABASES['default'].update(dj_database_url.config(
  292. env='DATABASE_URL',
  293. conn_max_age=env.int('DATABASE_CONN_MAX_AGE', 500),
  294. ssl_require='sslmode' not in furl(env('DATABASE_URL', '')).args,
  295. ))
  297. # work-around for dj-database-url: explicitly disable ssl for sqlite
  298. if DATABASES['default'].get('ENGINE') == 'django.db.backends.sqlite3':
  299. DATABASES['default'].get('OPTIONS', {}).pop('sslmode', None)
  301. # work-around for dj-database-url: patch ssl for mysql
  302. if DATABASES['default'].get('ENGINE') == 'django.db.backends.mysql':
  303. DATABASES['default'].get('OPTIONS', {}).pop('sslmode', None)
  304. if env('MYSQL_SSL_CA', None):
  305. DATABASES['default'].setdefault('OPTIONS', {})\
  306. .setdefault('ssl', {}).setdefault('ca', env('MYSQL_SSL_CA', None))
  308. # default to a sensible modern driver for Azure SQL
  309. if DATABASES['default'].get('ENGINE') == 'sql_server.pyodbc':
  310. DATABASES['default'].setdefault('OPTIONS', {})\
  311. .setdefault('driver', 'ODBC Driver 17 for SQL Server')
  313. # Honor the 'X-Forwarded-Proto' header for request.is_secure()
  314. SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
  315. SESSION_COOKIE_SECURE = env.bool('SESSION_COOKIE_SECURE', False)
  316. CSRF_COOKIE_SECURE = env.bool('CSRF_COOKIE_SECURE', False)
  317. CSRF_TRUSTED_ORIGINS = env.list('CSRF_TRUSTED_ORIGINS', [])
  319. # Allow all host headers
  320. ALLOWED_HOSTS = ['*']
  322. # Size of the batch for creating documents
  323. # on the import phase
  324. IMPORT_BATCH_SIZE = env.int('IMPORT_BATCH_SIZE', 500)
  326. GOOGLE_TRACKING_ID = env('GOOGLE_TRACKING_ID', 'UA-125643874-2').strip()
  328. AZURE_APPINSIGHTS_IKEY = env('AZURE_APPINSIGHTS_IKEY', None)
  329. APPLICATION_INSIGHTS = {
  330. 'ikey': AZURE_APPINSIGHTS_IKEY if AZURE_APPINSIGHTS_IKEY else None,
  331. 'endpoint': env('AZURE_APPINSIGHTS_ENDPOINT', None),
  332. }
  334. # necessary for email verification of new accounts
  335. EMAIL_USE_TLS = env.bool('EMAIL_USE_TLS', False)
  336. EMAIL_HOST = env('EMAIL_HOST', None)
  337. EMAIL_HOST_USER = env('EMAIL_HOST_USER', None)
  338. EMAIL_HOST_PASSWORD = env('EMAIL_HOST_PASSWORD', None)
  339. EMAIL_PORT = env.int('EMAIL_PORT', 587)
  340. DEFAULT_FROM_EMAIL = env('DEFAULT_FROM_EMAIL', 'webmaster@localhost')
  342. if not EMAIL_HOST:
  343. EMAIL_BACKEND = 'django.core.mail.backends.console.EmailBackend'
  346. if DEBUG:
  347. CORS_ORIGIN_WHITELIST = (
  348. 'http://127.0.0.1:3000',
  349. 'http://0.0.0.0:3000',
  350. 'http://localhost:3000'
  351. )