1
0
Fork 0
spejstore-new/spejstore/settings.py

279 lines
8.9 KiB
Python
Raw Permalink Normal View History

2016-09-29 20:20:10 +00:00
import os
2023-07-11 13:34:35 +00:00
def env(name, default=None):
2023-07-11 13:34:35 +00:00
return os.getenv("SPEJSTORE_" + name, default)
2016-09-29 20:20:10 +00:00
# Build paths inside the project like this: os.path.join(BASE_DIR, ...)
BASE_DIR = os.path.dirname(os.path.dirname(os.path.abspath(__file__)))
2023-07-11 13:34:35 +00:00
STATIC_ROOT = os.path.join(BASE_DIR, "build_static")
PROD = os.getenv("SPEJSTORE_ENV") == "prod"
2016-09-29 20:20:10 +00:00
# Quick-start development settings - unsuitable for production
# See https://docs.djangoproject.com/en/1.10/howto/deployment/checklist/
# SECURITY WARNING: keep the secret key used in production secret!
2023-07-11 13:34:35 +00:00
SECRET_KEY = env("SECRET_KEY", "#hjthi7_udsyt*9eeyb&nwgw5x=%pk_lnz3+u2tg9@=w3p1m*k")
2016-09-29 20:20:10 +00:00
# SECURITY WARNING: don't run with debug turned on in production!
2024-08-27 20:55:16 +00:00
DEBUG = True
2016-09-29 20:20:10 +00:00
2023-07-11 13:34:35 +00:00
ALLOWED_HOSTS = env(
"ALLOWED_HOSTS",
"devinventory,inventory.waw.hackerspace.pl,inventory.hackerspace.pl,i,inventory"
+ (",127.0.0.1,locahost,*" if not PROD else ""),
2023-07-11 13:34:35 +00:00
).split(",")
LOGIN_REDIRECT_URL = "/admin/"
2016-09-29 20:20:10 +00:00
2024-01-14 20:46:54 +00:00
CSRF_TRUSTED_ORIGINS = env("HOST", "https://inventory.hackerspace.pl").split(",")
2024-01-14 14:12:07 +00:00
2016-09-29 20:20:10 +00:00
# Application definition
INSTALLED_APPS = [
2023-07-11 13:34:35 +00:00
"django.contrib.admin",
"django.contrib.auth",
"django.contrib.contenttypes",
"django.contrib.sessions",
"django.contrib.messages",
"django.contrib.staticfiles",
"django.contrib.postgres",
"storages", # django-storages s3boto support
2023-07-11 13:34:35 +00:00
"social_django",
"tree",
"django_select2",
"rest_framework",
"rest_framework.authtoken",
"django_markdown2",
"storage",
"django_admin_hstore_widget",
2016-09-29 20:20:10 +00:00
]
MIDDLEWARE = [
2023-07-11 13:34:35 +00:00
"django.middleware.security.SecurityMiddleware",
"whitenoise.middleware.WhiteNoiseMiddleware",
"django.middleware.cache.UpdateCacheMiddleware",
"django.middleware.gzip.GZipMiddleware",
2023-07-11 13:34:35 +00:00
"django.contrib.sessions.middleware.SessionMiddleware",
"django.middleware.common.CommonMiddleware",
"django.middleware.csrf.CsrfViewMiddleware",
"django.contrib.auth.middleware.AuthenticationMiddleware",
2023-09-09 14:31:49 +00:00
"storage.middleware.is_authorized_or_in_lan_middleware",
2023-07-11 13:34:35 +00:00
"django.middleware.clickjacking.XFrameOptionsMiddleware",
"django.contrib.messages.middleware.MessageMiddleware",
2023-07-11 13:34:35 +00:00
"social_django.middleware.SocialAuthExceptionMiddleware",
2023-08-18 11:44:34 +00:00
"django.middleware.cache.FetchFromCacheMiddleware",
2016-09-29 20:20:10 +00:00
]
2023-07-11 13:34:35 +00:00
ROOT_URLCONF = "spejstore.urls"
2016-09-29 20:20:10 +00:00
TEMPLATES = [
{
2023-07-11 13:34:35 +00:00
"BACKEND": "django.template.backends.django.DjangoTemplates",
"DIRS": ["templates/"],
"APP_DIRS": True,
"OPTIONS": {
"context_processors": [
"django.template.context_processors.debug",
"django.template.context_processors.request",
"django.contrib.auth.context_processors.auth",
"django.contrib.messages.context_processors.messages",
"social_django.context_processors.backends",
"social_django.context_processors.login_redirect",
2016-09-29 20:20:10 +00:00
],
},
},
]
2023-07-11 13:34:35 +00:00
WSGI_APPLICATION = "spejstore.wsgi.application"
2016-09-29 20:20:10 +00:00
2023-08-18 13:13:35 +00:00
# Logging
LOGGING = {
"version": 1,
"disable_existing_loggers": False,
"handlers": {
"console": {
"class": "logging.StreamHandler",
},
},
"root": {
"handlers": ["console"],
"level": "INFO",
},
}
2016-09-29 20:20:10 +00:00
# Database
# https://docs.djangoproject.com/en/1.10/ref/settings/#databases
DATABASES = {
2023-07-11 13:34:35 +00:00
"default": {
"ENGINE": env("DB_ENGINE", "django.db.backends.postgresql_psycopg2"),
"NAME": env("DB_NAME", "postgres"),
"USER": env("DB_USER", "postgres"),
"PASSWORD": env("DB_PASSWORD", None),
"HOST": env("DB_HOST", "127.0.0.1"),
2023-07-11 13:34:35 +00:00
"PORT": env("DB_PORT", 5432),
2016-09-29 20:20:10 +00:00
}
}
# Password validation
# https://docs.djangoproject.com/en/1.10/ref/settings/#auth-password-validators
AUTH_PASSWORD_VALIDATORS = [
{
2023-07-11 13:34:35 +00:00
"NAME": "django.contrib.auth.password_validation.UserAttributeSimilarityValidator",
2016-09-29 20:20:10 +00:00
},
{
2023-07-11 13:34:35 +00:00
"NAME": "django.contrib.auth.password_validation.MinimumLengthValidator",
2016-09-29 20:20:10 +00:00
},
{
2023-07-11 13:34:35 +00:00
"NAME": "django.contrib.auth.password_validation.CommonPasswordValidator",
2016-09-29 20:20:10 +00:00
},
{
2023-07-11 13:34:35 +00:00
"NAME": "django.contrib.auth.password_validation.NumericPasswordValidator",
2016-09-29 20:20:10 +00:00
},
]
2024-08-27 20:55:16 +00:00
SOCIAL_AUTH_OIDC_OIDC_ENDPOINT = 'http://sso.lokal.hswro.org/' # endpoint without /.well-known/openid-configuration
SOCIAL_AUTH_OIDC_KEY = env("CLIENT_ID")
SOCIAL_AUTH_OIDC_SECRET = env("SECRET")
2018-09-26 20:20:36 +00:00
2017-02-28 23:16:10 +00:00
AUTHENTICATION_BACKENDS = (
2024-08-27 20:55:16 +00:00
# env('LOGIN_BACKEND', 'auth.backend.HSWawOAuth2'),
'auth.backend.HSWawOAuth2',
# 'social_core.backends.open_id_connect.OpenIdConnectAuth',
'django.contrib.auth.backends.ModelBackend',
2017-02-28 23:16:10 +00:00
)
2018-10-10 17:56:43 +00:00
SOCIAL_AUTH_PIPELINE = (
2023-07-11 13:34:35 +00:00
"social_core.pipeline.social_auth.social_details",
"social_core.pipeline.social_auth.social_uid",
"social_core.pipeline.social_auth.social_user",
"social_core.pipeline.user.get_username",
"social_core.pipeline.social_auth.associate_by_email",
"auth.pipeline.associate_by_personal_email",
"social_core.pipeline.user.create_user",
"social_core.pipeline.social_auth.associate_user",
"social_core.pipeline.social_auth.load_extra_data",
"social_core.pipeline.user.user_details",
"auth.pipeline.staff_me_up",
2018-10-10 19:33:16 +00:00
)
2017-02-28 23:16:10 +00:00
2024-01-14 22:56:26 +00:00
# Determines the storage type for Django static files and media.
FILE_STORAGE_TYPE = env("FILE_STORAGE_TYPE", "filesystem")
# Make sure we check for correct file storage type
if not (FILE_STORAGE_TYPE == "filesystem" or FILE_STORAGE_TYPE == "s3"):
raise Exception("SPEJSTORE_FILE_STORAGE_TYPE must be 'filesystem' or 's3' ")
2024-01-14 22:56:26 +00:00
if FILE_STORAGE_TYPE == "filesystem":
STORAGES = {
"default": {
"BACKEND": "django.core.files.storage.FileSystemStorage",
},
"staticfiles": {
"BACKEND": "whitenoise.storage.CompressedManifestStaticFilesStorage",
},
}
2024-01-19 21:31:39 +00:00
# Static files (CSS, JavaScript, Images)
# https://docs.djangoproject.com/en/1.10/howto/static-files/
STATIC_URL = "/static/"
STATICFILES_DIRS = [os.path.join(BASE_DIR, "static")]
MEDIA_URL = "/media/"
MEDIA_ROOT = env("MEDIA_ROOT", os.path.join(BASE_DIR, "media"))
2024-01-14 22:56:26 +00:00
elif FILE_STORAGE_TYPE == "s3":
S3_BUCKET_NAME = env("S3_BUCKET_NAME", "inventory")
S3_ENDPOINT_URL = env("S3_ENDPOINT_URL", "https://object.ceph-eu.hswaw.net")
S3_DOMAIN_NAME = env("S3_DOMAIN_NAME", "object.ceph-eu.hswaw.net")
S3_ACCESS_KEY = env("S3_ACCESS_KEY", "")
S3_SECRET_KEY = env("S3_SECRET_KEY", "=")
2024-01-19 21:31:39 +00:00
2024-01-14 22:56:26 +00:00
S3_STATIC_LOCATION = "static"
S3_MEDIA_LOCATION = "media"
2024-01-19 21:31:39 +00:00
2024-01-14 22:56:26 +00:00
STORAGES = {
"default": {
"BACKEND": "storages.backends.s3.S3Storage",
"OPTIONS": {
"access_key": S3_ACCESS_KEY,
"secret_key": S3_SECRET_KEY,
"endpoint_url": S3_ENDPOINT_URL,
"bucket_name": S3_BUCKET_NAME,
"default_acl": "public-read",
"location": S3_MEDIA_LOCATION,
"custom_domain": f"{S3_DOMAIN_NAME}/{S3_BUCKET_NAME}",
"file_overwrite": False,
},
},
"staticfiles": {
"BACKEND": "storages.backends.s3.S3Storage",
"OPTIONS": {
"access_key": S3_ACCESS_KEY,
"secret_key": S3_SECRET_KEY,
"endpoint_url": S3_ENDPOINT_URL,
"bucket_name": S3_BUCKET_NAME,
"default_acl": "public-read",
"location": S3_STATIC_LOCATION,
"custom_domain": f"{S3_DOMAIN_NAME}/{S3_BUCKET_NAME}",
},
},
}
2024-01-19 21:31:39 +00:00
bucket_domain_name = f"{S3_ENDPOINT_URL}/{S3_BUCKET_NAME}"
STATIC_URL = f"{bucket_domain_name}/{S3_STATIC_LOCATION}/"
STATICFILES_DIRS = [os.path.join(BASE_DIR, "static")]
MEDIA_URL = "/media/"
STATIC_URL = f"{bucket_domain_name}/{S3_MEDIA_LOCATION}/"
MEDIA_ROOT = env("MEDIA_ROOT", os.path.join(BASE_DIR, "media"))
2023-08-25 19:50:53 +00:00
2016-09-29 20:20:10 +00:00
# Internationalization
# https://docs.djangoproject.com/en/1.10/topics/i18n/
2023-07-11 13:34:35 +00:00
LANGUAGE_CODE = "en-us"
TIME_ZONE = "UTC"
2016-09-29 20:20:10 +00:00
USE_I18N = True
USE_L10N = True
USE_TZ = True
2017-03-06 15:50:55 +00:00
REQUIRE_AUTH = env("REQUIRE_AUTH", "true")
if REQUIRE_AUTH == "true":
REQUIRE_AUTH = True
elif REQUIRE_AUTH == "false":
REQUIRE_AUTH = False
2017-03-06 15:50:55 +00:00
# REST Framework
REST_FRAMEWORK = {
# Use Django's standard `django.contrib.auth` permissions,
# or allow read-only access for unauthenticated users.
2023-07-11 13:34:35 +00:00
"DEFAULT_PERMISSION_CLASSES": [
"rest_framework.permissions.IsAuthenticatedOrReadOnly"
if REQUIRE_AUTH
else "rest_framework.permissions.IsAuthenticated",
2023-07-11 13:34:35 +00:00
],
"DEFAULT_AUTHENTICATION_CLASSES": [
"storage.authentication.LanAuthentication",
"rest_framework.authentication.BasicAuthentication",
"rest_framework.authentication.TokenAuthentication",
2019-02-02 12:21:15 +00:00
],
2017-03-06 15:50:55 +00:00
}
2017-05-28 20:00:54 +00:00
2024-08-27 20:55:16 +00:00
SOCIAL_AUTH_HSWRO_KEY = env("CLIENT_ID")
SOCIAL_AUTH_HSWRO_SECRET = env("SECRET")
#SOCIAL_AUTH_REDIRECT_IS_HTTPS = env("OAUTH_REDIRECT_IS_HTTPS", "true") == "true"
SOCIAL_AUTH_REDIRECT_IS_HTTPS = False
2018-10-10 17:56:43 +00:00
2023-07-13 19:01:17 +00:00
SOCIAL_AUTH_JSONFIELD_ENABLED = True
2018-10-10 17:56:43 +00:00
2023-07-11 13:34:35 +00:00
LABEL_API = env("LABEL_API", "http://label.waw.hackerspace.pl:4567")
2023-07-13 19:01:41 +00:00
LOGIN_URL = "/admin/login/"
2023-09-09 17:26:36 +00:00
# Local LAN address space
LAN_ALLOWED_ADDRESS_SPACE = env("LAN_ALLOWED_ADDRESS_SPACE", "")