authentik/passbook/root/settings.py

"""
Django settings for passbook project.

Generated by 'django-admin startproject' using Django 2.1.3.

For more information on this file, see
https://docs.djangoproject.com/en/2.1/topics/settings/

For the full list of settings and their values, see
https://docs.djangoproject.com/en/2.1/ref/settings/
"""

import importlib
import os
import sys

import structlog
from sentry_sdk import init as sentry_init
from sentry_sdk.integrations.celery import CeleryIntegration
from sentry_sdk.integrations.django import DjangoIntegration

from passbook import __version__
from passbook.lib.config import CONFIG
from passbook.lib.sentry import before_send

# Build paths inside the project like this: os.path.join(BASE_DIR, ...)
BASE_DIR = os.path.dirname(os.path.dirname(os.path.dirname(os.path.abspath(__file__))))
STATIC_ROOT = BASE_DIR + '/static'

# Quick-start development settings - unsuitable for production
# See https://docs.djangoproject.com/en/2.1/howto/deployment/checklist/

# SECURITY WARNING: keep the secret key used in production secret!
SECRET_KEY = CONFIG.y('secret_key',
                      "9$@r!d^1^jrn#fk#1#@ks#9&i$^s#1)_13%$rwjrhd=e8jfi_s")  # noqa Debug

DEBUG = CONFIG.y_bool('debug')
INTERNAL_IPS = ['127.0.0.1']
ALLOWED_HOSTS = ['*']
SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')

LOGIN_URL = 'passbook_core:auth-login'
# CSRF_FAILURE_VIEW = 'passbook.core.views.errors.CSRFErrorView.as_view'

# Custom user model
AUTH_USER_MODEL = 'passbook_core.User'

CSRF_COOKIE_NAME = 'passbook_csrf'
SESSION_COOKIE_NAME = 'passbook_session'
LANGUAGE_COOKIE_NAME = 'passbook_language'

AUTHENTICATION_BACKENDS = [
    'django.contrib.auth.backends.ModelBackend',
]

# Application definition

INSTALLED_APPS = [
    'django.contrib.admin',
    'django.contrib.auth',
    'django.contrib.contenttypes',
    'django.contrib.sessions',
    'django.contrib.messages',
    'django.contrib.staticfiles',
    'django.contrib.postgres',
    # 'rest_framework',
    # 'drf_yasg',
    'passbook.core.apps.PassbookCoreConfig',
    'passbook.admin.apps.PassbookAdminConfig',
    'passbook.api.apps.PassbookAPIConfig',
    'passbook.lib.apps.PassbookLibConfig',
    'passbook.audit.apps.PassbookAuditConfig',

    'passbook.sources.ldap.apps.PassbookSourceLDAPConfig',
    'passbook.sources.oauth.apps.PassbookSourceOAuthConfig',

    'passbook.providers.app_gw.apps.PassbookApplicationApplicationGatewayConfig',
    'passbook.providers.oauth.apps.PassbookProviderOAuthConfig',
    'passbook.providers.oidc.apps.PassbookProviderOIDCConfig',
    'passbook.providers.saml.apps.PassbookProviderSAMLConfig',

    'passbook.factors.otp.apps.PassbookFactorOTPConfig',
    'passbook.factors.captcha.apps.PassbookFactorCaptchaConfig',
    'passbook.factors.password.apps.PassbookFactorPasswordConfig',
    'passbook.factors.dummy.apps.PassbookFactorDummyConfig',

    'passbook.policies.expiry.apps.PassbookPolicyExpiryConfig',
    'passbook.policies.reputation.apps.PassbookPolicyReputationConfig',
    'passbook.policies.hibp.apps.PassbookPolicyHIBPConfig',
    'passbook.policies.group.apps.PassbookPoliciesGroupConfig',
    'passbook.policies.matcher.apps.PassbookPoliciesMatcherConfig',
    'passbook.policies.password.apps.PassbookPoliciesPasswordConfig',
    'passbook.policies.sso.apps.PassbookPoliciesSSOConfig',
    'passbook.policies.webhook.apps.PassbookPoliciesWebhookConfig',
]

REST_FRAMEWORK = {
    # Use Django's standard `django.contrib.auth` permissions,
    # or allow read-only access for unauthenticated users.
    'DEFAULT_PERMISSION_CLASSES': [
        'rest_framework.permissions.DjangoModelPermissionsOrAnonReadOnly'
    ]
}

CACHES = {
    "default": {
        "BACKEND": "django_redis.cache.RedisCache",
        "LOCATION": (f"redis://:{CONFIG.y('redis.password')}@{CONFIG.y('redis.host')}:6379"
                     f"/{CONFIG.y('redis.cache_db')}"),
        "OPTIONS": {
            "CLIENT_CLASS": "django_redis.client.DefaultClient",
        }
    }
}
DJANGO_REDIS_IGNORE_EXCEPTIONS = True
DJANGO_REDIS_LOG_IGNORED_EXCEPTIONS = True
SESSION_ENGINE = "django.contrib.sessions.backends.cache"
SESSION_CACHE_ALIAS = "default"

MIDDLEWARE = [
    'django.contrib.sessions.middleware.SessionMiddleware',
    'django.contrib.auth.middleware.AuthenticationMiddleware',
    'django.middleware.security.SecurityMiddleware',
    'django.middleware.common.CommonMiddleware',
    'django.middleware.csrf.CsrfViewMiddleware',
    'django.contrib.messages.middleware.MessageMiddleware',
    'django.middleware.clickjacking.XFrameOptionsMiddleware',
]

ROOT_URLCONF = 'passbook.root.urls'

TEMPLATES = [
    {
        'BACKEND': 'django.template.backends.django.DjangoTemplates',
        'DIRS': [],
        'APP_DIRS': True,
        'OPTIONS': {
            'context_processors': [
                'django.template.context_processors.debug',
                'django.template.context_processors.request',
                'django.contrib.auth.context_processors.auth',
                'django.contrib.messages.context_processors.messages',
            ],
        },
    },
]

WSGI_APPLICATION = 'passbook.root.wsgi.application'

# Database
# https://docs.djangoproject.com/en/2.1/ref/settings/#databases

DATABASES = {
    'default': {
        'ENGINE': 'django.db.backends.postgresql',
        'HOST': CONFIG.y('postgresql.host'),
        'NAME': CONFIG.y('postgresql.name'),
        'USER': CONFIG.y('postgresql.user'),
        'PASSWORD': CONFIG.y('postgresql.password'),
    }
}

# Password validation
# https://docs.djangoproject.com/en/2.1/ref/settings/#auth-password-validators

AUTH_PASSWORD_VALIDATORS = [
    {
        'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
    },
]


# Internationalization
# https://docs.djangoproject.com/en/2.1/topics/i18n/

LANGUAGE_CODE = 'en-us'

TIME_ZONE = 'UTC'

USE_I18N = True

USE_L10N = True

USE_TZ = True


# Celery settings
# Add a 10 minute timeout to all Celery tasks.
CELERY_TASK_SOFT_TIME_LIMIT = 600
CELERY_BEAT_SCHEDULE = {}
CELERY_CREATE_MISSING_QUEUES = True
CELERY_TASK_DEFAULT_QUEUE = 'passbook'
CELERY_BROKER_URL = (f"redis://:{CONFIG.y('redis.password')}@{CONFIG.y('redis.host')}"
                     f":6379/{CONFIG.y('redis.message_queue_db')}")
CELERY_RESULT_BACKEND = (f"redis://:{CONFIG.y('redis.password')}@{CONFIG.y('redis.host')}"
                         f":6379/{CONFIG.y('redis.message_queue_db')}")


if not DEBUG:
    sentry_init(
        dsn="https://33cdbcb23f8b436dbe0ee06847410b67@sentry.beryju.org/3",
        integrations=[
            DjangoIntegration(),
            CeleryIntegration()
        ],
        send_default_pii=True,
        before_send=before_send,
        release='passbook@%s' % __version__
    )

# Static files (CSS, JavaScript, Images)
# https://docs.djangoproject.com/en/2.1/howto/static-files/

STATIC_URL = '/static/'


structlog.configure_once(
    processors=[
        structlog.stdlib.add_log_level,
        structlog.stdlib.PositionalArgumentsFormatter(),
        structlog.processors.TimeStamper(),
        structlog.processors.StackInfoRenderer(),
        # structlog.processors.format_exc_info,
        structlog.stdlib.ProcessorFormatter.wrap_for_formatter,
    ],
    context_class=structlog.threadlocal.wrap_dict(dict),
    logger_factory=structlog.stdlib.LoggerFactory(),
    wrapper_class=structlog.stdlib.BoundLogger,
    cache_logger_on_first_use=True,
)

LOG_PRE_CHAIN = [
    # Add the log level and a timestamp to the event_dict if the log entry
    # is not from structlog.
    structlog.stdlib.add_log_level,
    structlog.processors.TimeStamper(),
]

with CONFIG.cd('log'):
    LOGGING_HANDLER_MAP = {
        'passbook': 'DEBUG',
        'django': 'WARNING',
        'celery': 'WARNING',
        'grpc': 'DEBUG',
        'oauthlib': 'DEBUG',
        'oauth2_provider': 'DEBUG',
    }
    LOGGING = {
        'version': 1,
        'disable_existing_loggers': False,
        'formatters': {
            "plain": {
                "()": structlog.stdlib.ProcessorFormatter,
                "processor": structlog.processors.JSONRenderer(),
                "foreign_pre_chain": LOG_PRE_CHAIN,
            },
            "colored": {
                "()": structlog.stdlib.ProcessorFormatter,
                "processor": structlog.dev.ConsoleRenderer(colors=DEBUG),
                "foreign_pre_chain": LOG_PRE_CHAIN,
            },
        },
        'handlers': {
            'console': {
                'level': DEBUG,
                'class': 'logging.StreamHandler',
                'formatter': "colored" if DEBUG else "plain",
            },
        },
        'loggers': {
        }
    }
    for handler_name, level in LOGGING_HANDLER_MAP.items():
        LOGGING['loggers'][handler_name] = {
            'handlers': ['console'],
            'level': level,
            'propagate': True,
        }

TEST = False
TEST_RUNNER = 'xmlrunner.extra.djangotestrunner.XMLTestRunner'
TEST_OUTPUT_VERBOSE = 2

TEST_OUTPUT_FILE_NAME = 'unittest.xml'

if any('test' in arg for arg in sys.argv):
    LOGGING = None
    TEST = True
    CELERY_TASK_ALWAYS_EAGER = True


_DISALLOWED_ITEMS = ['INSTALLED_APPS', 'MIDDLEWARE', 'AUTHENTICATION_BACKENDS']
# Load subapps's INSTALLED_APPS
for _app in INSTALLED_APPS:
    if _app.startswith('passbook'):
        if 'apps' in _app:
            _app = '.'.join(_app.split('.')[:-2])
        try:
            app_settings = importlib.import_module("%s.settings" % _app)
            INSTALLED_APPS.extend(getattr(app_settings, 'INSTALLED_APPS', []))
            MIDDLEWARE.extend(getattr(app_settings, 'MIDDLEWARE', []))
            AUTHENTICATION_BACKENDS.extend(getattr(app_settings, 'AUTHENTICATION_BACKENDS', []))
            for _attr in dir(app_settings):
                if not _attr.startswith('__') and _attr not in _DISALLOWED_ITEMS:
                    globals()[_attr] = getattr(app_settings, _attr)
        except ImportError:
            pass

if DEBUG:
    INSTALLED_APPS.append('debug_toolbar')
    MIDDLEWARE.append('debug_toolbar.middleware.DebugToolbarMiddleware')
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`"""`
			`Django settings for passbook project.`

			`Generated by 'django-admin startproject' using Django 2.1.3.`

			`For more information on this file, see`
			`https://docs.djangoproject.com/en/2.1/topics/settings/`

			`For the full list of settings and their values, see`
			`https://docs.djangoproject.com/en/2.1/ref/settings/`
			`"""`

Many broken things 2018-11-16 08:10:35 +00:00			`import importlib`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`import os`
fix coverage failing 2019-02-11 16:36:36 +00:00			`import sys`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`import structlog`
switch from raven to sentry_sdk 2019-04-04 19:48:50 +00:00			`from sentry_sdk import init as sentry_init`
			`from sentry_sdk.integrations.celery import CeleryIntegration`
			`from sentry_sdk.integrations.django import DjangoIntegration`
Fix message icons and show messages on login view 2018-11-23 08:44:22 +00:00
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`from passbook import __version__`
Many broken things 2018-11-16 08:10:35 +00:00			`from passbook.lib.config import CONFIG`
filter out connection errors for sentry 2019-04-29 17:16:49 +00:00			`from passbook.lib.sentry import before_send`
Many broken things 2018-11-16 08:10:35 +00:00
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`# Build paths inside the project like this: os.path.join(BASE_DIR, ...)`
			`BASE_DIR = os.path.dirname(os.path.dirname(os.path.dirname(os.path.abspath(__file__))))`
core: add static root 2018-12-09 21:12:41 +00:00			`STATIC_ROOT = BASE_DIR + '/static'`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
			`# Quick-start development settings - unsuitable for production`
			`# See https://docs.djangoproject.com/en/2.1/howto/deployment/checklist/`

			`# SECURITY WARNING: keep the secret key used in production secret!`
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`SECRET_KEY = CONFIG.y('secret_key',`
			`"9$@r!d^1^jrn#fk#1#@ks#9&i$^s#1)_13%$rwjrhd=e8jfi_s") # noqa Debug`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`DEBUG = CONFIG.y_bool('debug')`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`INTERNAL_IPS = ['127.0.0.1']`
add ability to have non-expiring nonces, clean up expired nonces 2019-04-04 19:49:10 +00:00			`ALLOWED_HOSTS = ['*']`
detect HTTPS from reverse proxy 2019-03-14 17:01:41 +00:00			`SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
Many broken things 2018-11-16 08:10:35 +00:00			`LOGIN_URL = 'passbook_core:auth-login'`
core: fix mfa, split up into multiple files, move factors to settings 2018-12-14 08:49:34 +00:00			`# CSRF_FAILURE_VIEW = 'passbook.core.views.errors.CSRFErrorView.as_view'`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
			`# Custom user model`
			`AUTH_USER_MODEL = 'passbook_core.User'`

core: switch to different cookie names 2018-12-09 20:06:36 +00:00			`CSRF_COOKIE_NAME = 'passbook_csrf'`
			`SESSION_COOKIE_NAME = 'passbook_session'`
			`LANGUAGE_COOKIE_NAME = 'passbook_language'`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
			`AUTHENTICATION_BACKENDS = [`
Add guardian for Application permissions 2019-04-10 16:46:33 +00:00			`'django.contrib.auth.backends.ModelBackend',`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`]`

			`# Application definition`

			`INSTALLED_APPS = [`
			`'django.contrib.admin',`
			`'django.contrib.auth',`
			`'django.contrib.contenttypes',`
			`'django.contrib.sessions',`
			`'django.contrib.messages',`
			`'django.contrib.staticfiles',`
add group administration 2019-03-08 14:49:45 +00:00			`'django.contrib.postgres',`
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`# 'rest_framework',`
			`# 'drf_yasg',`
Switch to explicit AppConfig declaration 2018-12-26 13:32:33 +00:00			`'passbook.core.apps.PassbookCoreConfig',`
			`'passbook.admin.apps.PassbookAdminConfig',`
			`'passbook.api.apps.PassbookAPIConfig',`
			`'passbook.lib.apps.PassbookLibConfig',`
*(minor): small refactor 2019-10-07 14:33:48 +00:00			`'passbook.audit.apps.PassbookAuditConfig',`

			`'passbook.sources.ldap.apps.PassbookSourceLDAPConfig',`
			`'passbook.sources.oauth.apps.PassbookSourceOAuthConfig',`

			`'passbook.providers.app_gw.apps.PassbookApplicationApplicationGatewayConfig',`
			`'passbook.providers.oauth.apps.PassbookProviderOAuthConfig',`
			`'passbook.providers.oidc.apps.PassbookProviderOIDCConfig',`
			`'passbook.providers.saml.apps.PassbookProviderSAMLConfig',`

			`'passbook.factors.otp.apps.PassbookFactorOTPConfig',`
			`'passbook.factors.captcha.apps.PassbookFactorCaptchaConfig',`
			`'passbook.factors.password.apps.PassbookFactorPasswordConfig',`
			`'passbook.factors.dummy.apps.PassbookFactorDummyConfig',`

			`'passbook.policies.expiry.apps.PassbookPolicyExpiryConfig',`
			`'passbook.policies.reputation.apps.PassbookPolicyReputationConfig',`
			`'passbook.policies.hibp.apps.PassbookPolicyHIBPConfig',`
			`'passbook.policies.group.apps.PassbookPoliciesGroupConfig',`
			`'passbook.policies.matcher.apps.PassbookPoliciesMatcherConfig',`
			`'passbook.policies.password.apps.PassbookPoliciesPasswordConfig',`
			`'passbook.policies.sso.apps.PassbookPoliciesSSOConfig',`
			`'passbook.policies.webhook.apps.PassbookPoliciesWebhookConfig',`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`]`

Many broken things 2018-11-16 08:10:35 +00:00			`REST_FRAMEWORK = {`
			# Use Django's standard `django.contrib.auth` permissions,
			`# or allow read-only access for unauthenticated users.`
			`'DEFAULT_PERMISSION_CLASSES': [`
			`'rest_framework.permissions.DjangoModelPermissionsOrAnonReadOnly'`
			`]`
			`}`

add redis dependency back in for caching 2019-03-21 10:08:08 +00:00			`CACHES = {`
			`"default": {`
			`"BACKEND": "django_redis.cache.RedisCache",`
root(minor): fix redis password not being loaded 2019-10-01 13:30:35 +00:00			`"LOCATION": (f"redis://:{CONFIG.y('redis.password')}@{CONFIG.y('redis.host')}:6379"`
			`f"/{CONFIG.y('redis.cache_db')}"),`
add redis dependency back in for caching 2019-03-21 10:08:08 +00:00			`"OPTIONS": {`
			`"CLIENT_CLASS": "django_redis.client.DefaultClient",`
			`}`
			`}`
			`}`
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`DJANGO_REDIS_IGNORE_EXCEPTIONS = True`
			`DJANGO_REDIS_LOG_IGNORED_EXCEPTIONS = True`
			`SESSION_ENGINE = "django.contrib.sessions.backends.cache"`
			`SESSION_CACHE_ALIAS = "default"`
add redis dependency back in for caching 2019-03-21 10:08:08 +00:00
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`MIDDLEWARE = [`
			`'django.contrib.sessions.middleware.SessionMiddleware',`
initial implementation of reverse proxy, using django-revproxy from within a middleware add new config entry "primary_domain" which is used to set the cookie domain 2019-03-20 21:42:47 +00:00			`'django.contrib.auth.middleware.AuthenticationMiddleware',`
			`'django.middleware.security.SecurityMiddleware',`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`'django.middleware.common.CommonMiddleware',`
			`'django.middleware.csrf.CsrfViewMiddleware',`
			`'django.contrib.messages.middleware.MessageMiddleware',`
			`'django.middleware.clickjacking.XFrameOptionsMiddleware',`
			`]`

Fix wrong URLConf being loaded 2019-06-25 16:11:08 +00:00			`ROOT_URLCONF = 'passbook.root.urls'`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
			`TEMPLATES = [`
			`{`
			`'BACKEND': 'django.template.backends.django.DjangoTemplates',`
			`'DIRS': [],`
			`'APP_DIRS': True,`
			`'OPTIONS': {`
			`'context_processors': [`
			`'django.template.context_processors.debug',`
			`'django.template.context_processors.request',`
			`'django.contrib.auth.context_processors.auth',`
			`'django.contrib.messages.context_processors.messages',`
			`],`
			`},`
			`},`
			`]`

config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`WSGI_APPLICATION = 'passbook.root.wsgi.application'`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
			`# Database`
			`# https://docs.djangoproject.com/en/2.1/ref/settings/#databases`

config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`DATABASES = {`
			`'default': {`
			`'ENGINE': 'django.db.backends.postgresql',`
			`'HOST': CONFIG.y('postgresql.host'),`
			`'NAME': CONFIG.y('postgresql.name'),`
			`'USER': CONFIG.y('postgresql.user'),`
			`'PASSWORD': CONFIG.y('postgresql.password'),`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`}`
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`}`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
			`# Password validation`
			`# https://docs.djangoproject.com/en/2.1/ref/settings/#auth-password-validators`

			`AUTH_PASSWORD_VALIDATORS = [`
			`{`
			`'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',`
			`},`
			`{`
			`'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',`
			`},`
			`{`
			`'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',`
			`},`
			`{`
			`'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',`
			`},`
			`]`


			`# Internationalization`
			`# https://docs.djangoproject.com/en/2.1/topics/i18n/`

			`LANGUAGE_CODE = 'en-us'`

			`TIME_ZONE = 'UTC'`

			`USE_I18N = True`

			`USE_L10N = True`

			`USE_TZ = True`

core: switch role evaluating to celery worker 2018-11-27 15:23:29 +00:00
			`# Celery settings`
			`# Add a 10 minute timeout to all Celery tasks.`
			`CELERY_TASK_SOFT_TIME_LIMIT = 600`
			`CELERY_BEAT_SCHEDULE = {}`
			`CELERY_CREATE_MISSING_QUEUES = True`
			`CELERY_TASK_DEFAULT_QUEUE = 'passbook'`
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`CELERY_BROKER_URL = (f"redis://:{CONFIG.y('redis.password')}@{CONFIG.y('redis.host')}"`
			`f":6379/{CONFIG.y('redis.message_queue_db')}")`
			`CELERY_RESULT_BACKEND = (f"redis://:{CONFIG.y('redis.password')}@{CONFIG.y('redis.host')}"`
			`f":6379/{CONFIG.y('redis.message_queue_db')}")`
add sentry configuration 2019-03-03 19:48:31 +00:00
only enable sentry when not DEBUG 2019-04-11 13:30:42 +00:00
			`if not DEBUG:`
			`sentry_init(`
root: migrate to new sentry instance 2019-07-03 15:35:54 +00:00			`dsn="https://33cdbcb23f8b436dbe0ee06847410b67@sentry.beryju.org/3",`
only enable sentry when not DEBUG 2019-04-11 13:30:42 +00:00			`integrations=[`
			`DjangoIntegration(),`
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`CeleryIntegration()`
only enable sentry when not DEBUG 2019-04-11 13:30:42 +00:00			`],`
			`send_default_pii=True,`
filter out connection errors for sentry 2019-04-29 17:16:49 +00:00			`before_send=before_send,`
root: fix sentry sending wrong release 2019-07-05 14:00:01 +00:00			`release='passbook@%s' % __version__`
only enable sentry when not DEBUG 2019-04-11 13:30:42 +00:00			`)`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
			`# Static files (CSS, JavaScript, Images)`
			`# https://docs.djangoproject.com/en/2.1/howto/static-files/`

			`STATIC_URL = '/static/'`

config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00
			`structlog.configure_once(`
			`processors=[`
			`structlog.stdlib.add_log_level,`
			`structlog.stdlib.PositionalArgumentsFormatter(),`
			`structlog.processors.TimeStamper(),`
			`structlog.processors.StackInfoRenderer(),`
			`# structlog.processors.format_exc_info,`
			`structlog.stdlib.ProcessorFormatter.wrap_for_formatter,`
			`],`
			`context_class=structlog.threadlocal.wrap_dict(dict),`
			`logger_factory=structlog.stdlib.LoggerFactory(),`
			`wrapper_class=structlog.stdlib.BoundLogger,`
			`cache_logger_on_first_use=True,`
			`)`

			`LOG_PRE_CHAIN = [`
			`# Add the log level and a timestamp to the event_dict if the log entry`
			`# is not from structlog.`
			`structlog.stdlib.add_log_level,`
			`structlog.processors.TimeStamper(),`
			`]`

add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`with CONFIG.cd('log'):`
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`LOGGING_HANDLER_MAP = {`
			`'passbook': 'DEBUG',`
			`'django': 'WARNING',`
			`'celery': 'WARNING',`
			`'grpc': 'DEBUG',`
			`'oauthlib': 'DEBUG',`
			`'oauth2_provider': 'DEBUG',`
			`}`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`LOGGING = {`
			`'version': 1,`
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`'disable_existing_loggers': False,`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`'formatters': {`
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`"plain": {`
			`"()": structlog.stdlib.ProcessorFormatter,`
			`"processor": structlog.processors.JSONRenderer(),`
			`"foreign_pre_chain": LOG_PRE_CHAIN,`
			`},`
			`"colored": {`
			`"()": structlog.stdlib.ProcessorFormatter,`
			`"processor": structlog.dev.ConsoleRenderer(colors=DEBUG),`
			`"foreign_pre_chain": LOG_PRE_CHAIN,`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`},`
			`},`
			`'handlers': {`
			`'console': {`
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`'level': DEBUG,`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`'class': 'logging.StreamHandler',`
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`'formatter': "colored" if DEBUG else "plain",`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00			`},`
			`},`
			`'loggers': {`
			`}`
			`}`
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00			`for handler_name, level in LOGGING_HANDLER_MAP.items():`
			`LOGGING['loggers'][handler_name] = {`
			`'handlers': ['console'],`
			`'level': level,`
			`'propagate': True,`
			`}`
add working oauth and ldap client 2018-11-11 12:41:48 +00:00
fix coverage failing 2019-02-11 16:36:36 +00:00			`TEST = False`
			`TEST_RUNNER = 'xmlrunner.extra.djangotestrunner.XMLTestRunner'`
			`TEST_OUTPUT_VERBOSE = 2`

			`TEST_OUTPUT_FILE_NAME = 'unittest.xml'`

			`if any('test' in arg for arg in sys.argv):`
			`LOGGING = None`
			`TEST = True`
enable always_eager when unittesting 2019-02-26 13:24:50 +00:00			`CELERY_TASK_ALWAYS_EAGER = True`
fix coverage failing 2019-02-11 16:36:36 +00:00
config(minor): CONFIG.get -> CONFIG.y 2019-09-30 16:04:04 +00:00
Fix some settings not being overwritten 2018-11-24 21:27:02 +00:00			`_DISALLOWED_ITEMS = ['INSTALLED_APPS', 'MIDDLEWARE', 'AUTHENTICATION_BACKENDS']`
Many broken things 2018-11-16 08:10:35 +00:00			`# Load subapps's INSTALLED_APPS`
			`for _app in INSTALLED_APPS:`
*(minor): small refactor 2019-10-07 14:33:48 +00:00			`if _app.startswith('passbook'):`
Many broken things 2018-11-16 08:10:35 +00:00			`if 'apps' in _app:`
			`_app = '.'.join(_app.split('.')[:-2])`
			`try:`
			`app_settings = importlib.import_module("%s.settings" % _app)`
			`INSTALLED_APPS.extend(getattr(app_settings, 'INSTALLED_APPS', []))`
			`MIDDLEWARE.extend(getattr(app_settings, 'MIDDLEWARE', []))`
			`AUTHENTICATION_BACKENDS.extend(getattr(app_settings, 'AUTHENTICATION_BACKENDS', []))`
Fix some settings not being overwritten 2018-11-24 21:27:02 +00:00			`for _attr in dir(app_settings):`
			`if not _attr.startswith('__') and _attr not in _DISALLOWED_ITEMS:`
			`globals()[_attr] = getattr(app_settings, _attr)`
Many broken things 2018-11-16 08:10:35 +00:00			`except ImportError:`
			`pass`
Fix some settings not being overwritten 2018-11-24 21:27:02 +00:00
			`if DEBUG:`
			`INSTALLED_APPS.append('debug_toolbar')`
			`MIDDLEWARE.append('debug_toolbar.middleware.DebugToolbarMiddleware')`