""" Django settings for ljg project. Generated by 'django-admin startproject' using Django 4.2.4. For more information on this file, see https://docs.djangoproject.com/en/4.2/topics/settings/ For the full list of settings and their values, see https://docs.djangoproject.com/en/4.2/ref/settings/ """ from pathlib import Path from sys import argv import environ env = environ.Env() # Build paths inside the project like this: BASE_DIR / 'subdir'. BASE_DIR = Path(__file__).resolve().parent.parent environ.Env.read_env(BASE_DIR / ".env") # Quick-start development settings - unsuitable for production # See https://docs.djangoproject.com/en/4.2/howto/deployment/checklist/ # SECURITY WARNING: keep the secret key used in production secret! SECRET_KEY = env("SECRET_KEY") # SECURITY WARNING: don't run with debug turned on in production! DEBUG = env.bool("DEBUG", False) ALLOWED_HOSTS = [] if DEBUG else env.list("ALLOWED_HOSTS") # Application definition INSTALLED_APPS = [ "django.contrib.admin", "django.contrib.auth", "django.contrib.contenttypes", "django.contrib.sessions", "django.contrib.messages", "django.contrib.staticfiles", "mozilla_django_oidc", "ljg.core", "ljg.ip", "ljg.redirect", ] MIDDLEWARE = [ "django.middleware.security.SecurityMiddleware", "ljg.ip.middleware.RedirectMiddleware", "django.contrib.sessions.middleware.SessionMiddleware", "django.middleware.common.CommonMiddleware", "django.middleware.csrf.CsrfViewMiddleware", "django.contrib.auth.middleware.AuthenticationMiddleware", "django.contrib.messages.middleware.MessageMiddleware", "django.middleware.clickjacking.XFrameOptionsMiddleware", "mozilla_django_oidc.middleware.SessionRefresh", ] ROOT_URLCONF = "ljg.urls" TEMPLATES = [ { "BACKEND": "django.template.backends.django.DjangoTemplates", "DIRS": [], "APP_DIRS": True, "OPTIONS": { "context_processors": [ "django.template.context_processors.debug", "django.template.context_processors.i18n", "django.template.context_processors.request", "django.contrib.auth.context_processors.auth", "django.contrib.messages.context_processors.messages", "ljg.core.context_processors.app", ], }, }, ] WSGI_APPLICATION = "ljg.wsgi.application" # Database # https://docs.djangoproject.com/en/4.2/ref/settings/#databases DATABASES = { "default": env.db_url(default=f"sqlite:///{BASE_DIR / 'db.sqlite3'}"), } # Password validation # https://docs.djangoproject.com/en/4.2/ref/settings/#auth-password-validators AUTH_PASSWORD_VALIDATORS = [ { "NAME": "django.contrib.auth.password_validation.UserAttributeSimilarityValidator", }, { "NAME": "django.contrib.auth.password_validation.MinimumLengthValidator", }, { "NAME": "django.contrib.auth.password_validation.CommonPasswordValidator", }, { "NAME": "django.contrib.auth.password_validation.NumericPasswordValidator", }, ] # Internationalization # https://docs.djangoproject.com/en/4.2/topics/i18n/ LANGUAGE_CODE = "en-us" TIME_ZONE = "Europe/Berlin" USE_I18N = True USE_TZ = True # Static files (CSS, JavaScript, Images) # https://docs.djangoproject.com/en/4.2/howto/static-files/ STATIC_ROOT = env.path("STATIC_DIR", default=BASE_DIR / "static") STATIC_URL = "static/" # Default primary key field type # https://docs.djangoproject.com/en/4.2/ref/settings/#default-auto-field DEFAULT_AUTO_FIELD = "django.db.models.BigAutoField" APP_TITLE = env.str("APP_TITLE", "ljg.sh") AUTHENTICATION_BACKENDS = ( "django.contrib.auth.backends.ModelBackend", "ljg.core.auth.OIDCAuthenticationBackend", ) LOGIN_URL = "oidc_authentication_init" LOGIN_REDIRECT_URL = "/" LOGOUT_REDIRECT_URL = "/" OIDC_OP_AUTHORIZATION_ENDPOINT = env.str("OIDC_OP_AUTHORIZATION_ENDPOINT", "") OIDC_OP_JWKS_ENDPOINT = env.str("OIDC_OP_JWKS_ENDPOINT", "") OIDC_OP_TOKEN_ENDPOINT = env.str("OIDC_OP_TOKEN_ENDPOINT", "") OIDC_OP_USER_ENDPOINT = env.str("OIDC_OP_USER_ENDPOINT", "") OIDC_RP_CLIENT_ID = env.str("OIDC_RP_CLIENT_ID", "") OIDC_RP_CLIENT_SECRET = env.str("OIDC_RP_CLIENT_SECRET", "") OIDC_RP_SIGN_ALGO = env.str("OIDC_RP_SIGN_ALGO", "RS256") IP_REDIRECT_HOST = { "both": env.str("IP_REDIRECT_HOST_BOTH", ""), "ipv4": env.str("IP_REDIRECT_HOST_IPV4", ""), "ipv6": env.str("IP_REDIRECT_HOST_IPV6", ""), }