phzhik/kwork-poizonstore
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

* Store keys in env variables

Browse Source 
* Cleanup
This commit is contained in:
Phil Zhitnikov 2024-04-27 19:54:30 +04:00
parent f2b506645b
commit bfff884603
4 changed files with 40 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

20
.env
View File

@ -1 +1,19 @@
APP_HOME=/var/www/phzhik-poizonstore/ APP_HOME=/var/www/poizonstore-stage
# === Keys ===
# Django
SECRET_KEY=""
# Telegram bot
TG_BOT_TOKEN=""
# External API settings
CDEK_CLIENT_ID=""
CDEK_CLIENT_SECRET=""
POIZON_TOKEN=""
CURRENCY_GETGEOIP_API_KEY=""
# Let's Encrypt
LETSENCRYPT_EMAIL="phzhitnikov@gmail.com"
ALLOWED_HOSTS=.crm-poizonstore.ru,127.0.0.1,localhost,45.84.227.72

1
.gitignore vendored
View File

@ -7,6 +7,7 @@ media/**/*
assets/**/* assets/**/*
env env
*.env
.idea .idea
.DS_Store .DS_Store
db.sqlite3 db.sqlite3

0
source3.jpeg → _docs/source3.jpeg
View File

Side by Side Swipe Overlay

Before

Width:  |  Height:  |  Size: 59 KiB

After

Width:  |  Height:  |  Size: 59 KiB

26
poizonstore/settings.py
View File

@ -13,33 +13,47 @@ import os
from pathlib import Path from pathlib import Path
import sentry_sdk import sentry_sdk
from django.core.exceptions import ImproperlyConfigured
# Build paths inside the project like this: BASE_DIR / 'subdir'. # Build paths inside the project like this: BASE_DIR / 'subdir'.
BASE_DIR = Path(__file__).resolve().parent.parent BASE_DIR = Path(__file__).resolve().parent.parent
def get_secret(setting):
"""Get the secret variable or return explicit exception."""
try:
return os.environ[setting]
except KeyError:
error_msg = f'Set the {setting} environment variable'
raise ImproperlyConfigured(error_msg)
# Quick-start development settings - unsuitable for production # Quick-start development settings - unsuitable for production
# See https://docs.djangoproject.com/en/4.2/howto/deployment/checklist/ # See https://docs.djangoproject.com/en/4.2/howto/deployment/checklist/
# SECURITY WARNING: keep the secret key used in production secret! # SECURITY WARNING: keep the secret key used in production secret!
SECRET_KEY = 'django-insecure-e&9j(^9z7p7qs-@d)vftjz4%xqu0#3mmn@+$wzwh!%-dwjecm-' SECRET_KEY = get_secret("SECRET_KEY")
# External API settings # External API settings
CDEK_CLIENT_ID = 'wZWtjnWtkX7Fin2tvDdUE6eqYz1t1GND' CDEK_CLIENT_ID = get_secret("CDEK_CLIENT_ID")
CDEK_CLIENT_SECRET = 'lc2gmrmK5s1Kk6FhZbNqpQCaATQRlsOy' CDEK_CLIENT_SECRET = get_secret("CDEK_CLIENT_SECRET")
POIZON_TOKEN = 'IRwNgBxb8YQ' POIZON_TOKEN = get_secret("POIZON_TOKEN")
CURRENCY_GETGEOIP_API_KEY = 'b8ab1ad89adbb1559cb8ccfea7ee03e9123986b7' CURRENCY_GETGEOIP_API_KEY = get_secret("CURRENCY_GETGEOIP_API_KEY")
EXTERNAL_API_TIMEOUT_SEC = 60 EXTERNAL_API_TIMEOUT_SEC = 60
# Telegram bot
TG_BOT_TOKEN = get_secret("TG_BOT_TOKEN")
# SECURITY WARNING: don't run with debug turned on in production! # SECURITY WARNING: don't run with debug turned on in production!
DEBUG = bool(int(os.environ.get("DJANGO_DEBUG") or 0)) DEBUG = bool(int(os.environ.get("DJANGO_DEBUG") or 0))
DISABLE_PERMISSIONS = False DISABLE_PERMISSIONS = False
DISABLE_CORS = True DISABLE_CORS = True
ALLOWED_HOSTS = ["crm-poizonstore.ru", "127.0.0.1", "localhost", "45.84.227.72"] ALLOWED_HOSTS = get_secret('ALLOWED_HOSTS').split(',')
INTERNAL_IPS = ["127.0.0.1", 'localhost'] INTERNAL_IPS = ["127.0.0.1", 'localhost']