www-bocal/app/settings.py

"""
Django settings for the bocal project
"""

from pathlib import Path

from django.contrib.messages import constants as messages
from django.urls import reverse_lazy
from django.utils.translation import gettext_lazy as _
from loadcredential import Credentials

credentials = Credentials(env_prefix="BOCAL_")

# Build paths inside the project like this: BASE_DIR / 'subdir'.
BASE_DIR = Path(__file__).resolve().parent.parent

# WARNING: keep the secret key used in production secret!
SECRET_KEY = credentials["SECRET_KEY"]

# WARNING: don't run with debug turned on in production!
DEBUG = credentials.get_json("DEBUG", False)

ALLOWED_HOSTS = credentials.get_json("ALLOWED_HOSTS", [])

ADMINS = credentials.get_json("ADMINS", [])

SITE_ID = 1


###
# List the installed applications

INSTALLED_APPS = [
    "django.contrib.admin",
    "django.contrib.auth",
    "django.contrib.contenttypes",
    "django.contrib.sessions",
    "django.contrib.messages",
    "django.contrib.staticfiles",
    "solo",
    "markdownx",
    "django_cas_ng",
    "mainsite",
    "api",
    "bocal_auth",
]


###
# List the installed middlewares

MIDDLEWARE = [
    "django.middleware.security.SecurityMiddleware",
    "django.contrib.sessions.middleware.SessionMiddleware",
    "django.middleware.common.CommonMiddleware",
    "django.middleware.csrf.CsrfViewMiddleware",
    "django.contrib.auth.middleware.AuthenticationMiddleware",
    "django.contrib.messages.middleware.MessageMiddleware",
    "django.middleware.clickjacking.XFrameOptionsMiddleware",
    "django_cas_ng.middleware.CASMiddleware",
]


###
# The main url configuration

ROOT_URLCONF = "app.urls"


###
# Template configuration:
#   - Django Templating Language is used
#   - Application directories can be used


TEMPLATES = [
    {
        "BACKEND": "django.template.backends.django.DjangoTemplates",
        "DIRS": [],
        "APP_DIRS": True,
        "OPTIONS": {
            "context_processors": [
                "django.template.context_processors.debug",
                "django.template.context_processors.request",
                "django.contrib.auth.context_processors.auth",
                "django.contrib.messages.context_processors.messages",
                "mainsite.context_processors.sidebar_years",
            ],
        },
    },
]


###
# Database configuration
#   -> https://docs.djangoproject.com/en/4.2/ref/settings/#databases

DEFAULT_AUTO_FIELD = "django.db.models.AutoField"

DATABASES = credentials.get_json(
    "DATABASES",
    {
        "default": {
            "ENGINE": "django.db.backends.sqlite3",
            "NAME": BASE_DIR / "db.sqlite3",
        }
    },
)

CACHES = credentials.get_json(
    "CACHES",
    default={
        "default": {
            "BACKEND": "django.core.cache.backends.locmem.LocMemCache",
        },
    },
)


###
# WSGI application configuration

WSGI_APPLICATION = "app.wsgi.application"


###
# Staticfiles configuration

STATIC_ROOT = credentials["STATIC_ROOT"]
STATIC_URL = "/static/"

MEDIA_ROOT = credentials.get("MEDIA_ROOT", BASE_DIR / "media")
MEDIA_URL = "/media/"


###
# Internationalization configuration
#   -> https://docs.djangoproject.com/en/4.2/topics/i18n/

LANGUAGE_CODE = "fr-fr"
TIME_ZONE = "Europe/Paris"

USE_I18N = True
USE_L10N = True
USE_TZ = True

LANGUAGES = [
    ("fr", _("Français")),
]


###
# Authentication configuration

AUTHENTICATION_BACKENDS = [
    "django.contrib.auth.backends.ModelBackend",
    "bocal_auth.cas_backend.BOcalCASBackend",
]

CAS_ADMIN_PREFIX = "/yaes5eiS"  # we don't want CAS to take over /admin auth
CAS_EMAIL_FORMAT = "%s@clipper.ens.fr"
CAS_FORCE_CHANGE_USERNAME_CASE = "lower"
CAS_IGNORE_REFERER = True
CAS_LOGOUT_COMPLETELY = False
CAS_REDIRECT_URL = "/"
CAS_SERVER_URL = "https://cas.eleves.ens.fr/"
CAS_VERIFY_URL = "https://cas.eleves.ens.fr/"
CAS_VERSION = "CAS_2_SAML_1_0"

LOGIN_URL = "/accounts/login"
LOGIN_REDIRECT_URL = "/"


AUTH_PASSWORD_VALIDATORS = [
    {"NAME": f"django.contrib.auth.password_validation.{v}"}
    for v in [
        "UserAttributeSimilarityValidator",
        "MinimumLengthValidator",
        "CommonPasswordValidator",
        "NumericPasswordValidator",
    ]
]

RHOSTS_PATH = credentials["RHOSTS_PATH"]


###
# MarkdownX configuration

MARKDOWNX_EDITOR_RESIZABLE = False


# Development settings
if DEBUG:
    EMAIL_BACKEND = "django.core.mail.backends.console.EmailBackend"
feat(settings): Merge settings and use credentials 2024-10-23 13:16:41 +02:00			`"""`
			`Django settings for the bocal project`
			`"""`

			`from pathlib import Path`

			`from django.contrib.messages import constants as messages`
			`from django.urls import reverse_lazy`
			`from django.utils.translation import gettext_lazy as _`
			`from loadcredential import Credentials`

			`credentials = Credentials(env_prefix="BOCAL_")`

			`# Build paths inside the project like this: BASE_DIR / 'subdir'.`
			`BASE_DIR = Path(__file__).resolve().parent.parent`

			`# WARNING: keep the secret key used in production secret!`
			`SECRET_KEY = credentials["SECRET_KEY"]`

			`# WARNING: don't run with debug turned on in production!`
			`DEBUG = credentials.get_json("DEBUG", False)`

			`ALLOWED_HOSTS = credentials.get_json("ALLOWED_HOSTS", [])`

			`ADMINS = credentials.get_json("ADMINS", [])`

			`SITE_ID = 1`


			`###`
			`# List the installed applications`

			`INSTALLED_APPS = [`
			`"django.contrib.admin",`
			`"django.contrib.auth",`
			`"django.contrib.contenttypes",`
			`"django.contrib.sessions",`
			`"django.contrib.messages",`
			`"django.contrib.staticfiles",`
			`"solo",`
			`"markdownx",`
			`"django_cas_ng",`
			`"mainsite",`
			`"api",`
			`"bocal_auth",`
			`]`


			`###`
			`# List the installed middlewares`

			`MIDDLEWARE = [`
			`"django.middleware.security.SecurityMiddleware",`
			`"django.contrib.sessions.middleware.SessionMiddleware",`
			`"django.middleware.common.CommonMiddleware",`
			`"django.middleware.csrf.CsrfViewMiddleware",`
			`"django.contrib.auth.middleware.AuthenticationMiddleware",`
			`"django.contrib.messages.middleware.MessageMiddleware",`
			`"django.middleware.clickjacking.XFrameOptionsMiddleware",`
			`"django_cas_ng.middleware.CASMiddleware",`
			`]`


			`###`
			`# The main url configuration`

			`ROOT_URLCONF = "app.urls"`


			`###`
			`# Template configuration:`
			`# - Django Templating Language is used`
			`# - Application directories can be used`


			`TEMPLATES = [`
			`{`
			`"BACKEND": "django.template.backends.django.DjangoTemplates",`
			`"DIRS": [],`
			`"APP_DIRS": True,`
			`"OPTIONS": {`
			`"context_processors": [`
			`"django.template.context_processors.debug",`
			`"django.template.context_processors.request",`
			`"django.contrib.auth.context_processors.auth",`
			`"django.contrib.messages.context_processors.messages",`
			`"mainsite.context_processors.sidebar_years",`
			`],`
			`},`
			`},`
			`]`


			`###`
			`# Database configuration`
			`# -> https://docs.djangoproject.com/en/4.2/ref/settings/#databases`

			`DEFAULT_AUTO_FIELD = "django.db.models.AutoField"`

			`DATABASES = credentials.get_json(`
			`"DATABASES",`
			`{`
			`"default": {`
			`"ENGINE": "django.db.backends.sqlite3",`
			`"NAME": BASE_DIR / "db.sqlite3",`
			`}`
			`},`
			`)`

			`CACHES = credentials.get_json(`
			`"CACHES",`
			`default={`
			`"default": {`
			`"BACKEND": "django.core.cache.backends.locmem.LocMemCache",`
			`},`
			`},`
			`)`


			`###`
			`# WSGI application configuration`

			`WSGI_APPLICATION = "app.wsgi.application"`


			`###`
			`# Staticfiles configuration`

			`STATIC_ROOT = credentials["STATIC_ROOT"]`
			`STATIC_URL = "/static/"`

			`MEDIA_ROOT = credentials.get("MEDIA_ROOT", BASE_DIR / "media")`
			`MEDIA_URL = "/media/"`


			`###`
			`# Internationalization configuration`
			`# -> https://docs.djangoproject.com/en/4.2/topics/i18n/`

			`LANGUAGE_CODE = "fr-fr"`
			`TIME_ZONE = "Europe/Paris"`

			`USE_I18N = True`
			`USE_L10N = True`
			`USE_TZ = True`

			`LANGUAGES = [`
			`("fr", _("Français")),`
			`]`


			`###`
			`# Authentication configuration`

			`AUTHENTICATION_BACKENDS = [`
			`"django.contrib.auth.backends.ModelBackend",`
			`"bocal_auth.cas_backend.BOcalCASBackend",`
			`]`

			`CAS_ADMIN_PREFIX = "/yaes5eiS" # we don't want CAS to take over /admin auth`
			`CAS_EMAIL_FORMAT = "%s@clipper.ens.fr"`
			`CAS_FORCE_CHANGE_USERNAME_CASE = "lower"`
			`CAS_IGNORE_REFERER = True`
			`CAS_LOGOUT_COMPLETELY = False`
			`CAS_REDIRECT_URL = "/"`
			`CAS_SERVER_URL = "https://cas.eleves.ens.fr/"`
			`CAS_VERIFY_URL = "https://cas.eleves.ens.fr/"`
			`CAS_VERSION = "CAS_2_SAML_1_0"`

			`LOGIN_URL = "/accounts/login"`
			`LOGIN_REDIRECT_URL = "/"`


			`AUTH_PASSWORD_VALIDATORS = [`
			`{"NAME": f"django.contrib.auth.password_validation.{v}"}`
			`for v in [`
			`"UserAttributeSimilarityValidator",`
			`"MinimumLengthValidator",`
			`"CommonPasswordValidator",`
			`"NumericPasswordValidator",`
			`]`
			`]`

			`RHOSTS_PATH = credentials["RHOSTS_PATH"]`


			`###`
			`# MarkdownX configuration`

			`MARKDOWNX_EDITOR_RESIZABLE = False`


			`# Development settings`
			`if DEBUG:`
			`EMAIL_BACKEND = "django.core.mail.backends.console.EmailBackend"`