""" Django settings for the RisingCompute marketing site. All sensitive / environment-specific values come from a `.env` file (see `.env.example`) and are loaded via python-decouple. """ from __future__ import annotations from pathlib import Path import dj_database_url from decouple import Csv, config BASE_DIR = Path(__file__).resolve().parent.parent # --------------------------------------------------------------------------- # # Core # --------------------------------------------------------------------------- # SECRET_KEY = config("DJANGO_SECRET_KEY", default="dev-insecure-key-change-me") DEBUG = config("DJANGO_DEBUG", default=False, cast=bool) ALLOWED_HOSTS = config( "DJANGO_ALLOWED_HOSTS", default="localhost,127.0.0.1", cast=Csv(), ) INSTALLED_APPS = [ "django.contrib.admin", "django.contrib.auth", "django.contrib.contenttypes", "django.contrib.sessions", "django.contrib.messages", "django.contrib.staticfiles", # third-party "rest_framework", "corsheaders", # local "api", ] MIDDLEWARE = [ "django.middleware.security.SecurityMiddleware", "whitenoise.middleware.WhiteNoiseMiddleware", "corsheaders.middleware.CorsMiddleware", "django.contrib.sessions.middleware.SessionMiddleware", "django.middleware.common.CommonMiddleware", "django.middleware.csrf.CsrfViewMiddleware", "django.contrib.auth.middleware.AuthenticationMiddleware", "django.contrib.messages.middleware.MessageMiddleware", "django.middleware.clickjacking.XFrameOptionsMiddleware", ] ROOT_URLCONF = "risingcompute.urls" TEMPLATES = [ { "BACKEND": "django.template.backends.django.DjangoTemplates", "DIRS": [], "APP_DIRS": True, "OPTIONS": { "context_processors": [ "django.template.context_processors.debug", "django.template.context_processors.request", "django.contrib.auth.context_processors.auth", "django.contrib.messages.context_processors.messages", ], }, }, ] WSGI_APPLICATION = "risingcompute.wsgi.application" # --------------------------------------------------------------------------- # # Database (PostgreSQL via DATABASE_URL — see DATABASE_SETUP.md) # --------------------------------------------------------------------------- # DATABASES = { "default": dj_database_url.config( default=config( "DATABASE_URL", default="postgres://risingcompute:risingcompute@127.0.0.1:5432/risingcompute", ), conn_max_age=600, ), } # --------------------------------------------------------------------------- # # Auth, i18n, static # --------------------------------------------------------------------------- # AUTH_PASSWORD_VALIDATORS = [ {"NAME": "django.contrib.auth.password_validation.UserAttributeSimilarityValidator"}, {"NAME": "django.contrib.auth.password_validation.MinimumLengthValidator"}, {"NAME": "django.contrib.auth.password_validation.CommonPasswordValidator"}, {"NAME": "django.contrib.auth.password_validation.NumericPasswordValidator"}, ] LANGUAGE_CODE = "en-in" TIME_ZONE = "Asia/Kolkata" USE_I18N = True USE_TZ = True STATIC_URL = "static/" STATIC_ROOT = BASE_DIR / "staticfiles" STATICFILES_STORAGE = "whitenoise.storage.CompressedManifestStaticFilesStorage" DEFAULT_AUTO_FIELD = "django.db.models.BigAutoField" # --------------------------------------------------------------------------- # # DRF # --------------------------------------------------------------------------- # REST_FRAMEWORK = { "DEFAULT_RENDERER_CLASSES": [ "rest_framework.renderers.JSONRenderer", ], "DEFAULT_PARSER_CLASSES": [ "rest_framework.parsers.JSONParser", "rest_framework.parsers.MultiPartParser", "rest_framework.parsers.FormParser", ], "DEFAULT_THROTTLE_CLASSES": [ "rest_framework.throttling.AnonRateThrottle", ], "DEFAULT_THROTTLE_RATES": { "anon": "30/hour", "user": "120/hour", }, } # --------------------------------------------------------------------------- # # CORS — Vue dev server on :5173, production domain # --------------------------------------------------------------------------- # CORS_ALLOWED_ORIGINS = config( "CORS_ALLOWED_ORIGINS", default="http://localhost:5173,http://127.0.0.1:5173", cast=Csv(), ) CORS_ALLOW_CREDENTIALS = True # --------------------------------------------------------------------------- # # Email (form submission notifications) # --------------------------------------------------------------------------- # NOTIFY_EMAIL_TO = config("NOTIFY_EMAIL_TO", default="contact@risingcompute.in") DEFAULT_FROM_EMAIL = config( "DEFAULT_FROM_EMAIL", default="noreply@risingcompute.in" ) EMAIL_BACKEND = config( "EMAIL_BACKEND", default="django.core.mail.backends.console.EmailBackend", ) # --------------------------------------------------------------------------- # # Security hardening for production # --------------------------------------------------------------------------- # if not DEBUG: SECURE_PROXY_SSL_HEADER = ("HTTP_X_FORWARDED_PROTO", "https") SECURE_SSL_REDIRECT = True SESSION_COOKIE_SECURE = True CSRF_COOKIE_SECURE = True SECURE_HSTS_SECONDS = 60 * 60 * 24 * 30 # 30 days; raise to 1 year once stable SECURE_HSTS_INCLUDE_SUBDOMAINS = True SECURE_CONTENT_TYPE_NOSNIFF = True X_FRAME_OPTIONS = "DENY"