archive/pillar
0
0
Fork 0
Code Issues 42 Pull Requests Projects Releases Wiki Activity

Take default crappy secret key from config.py

Browse Source 
This forces anyone installing Pillar to actually generate a proper secret.
This commit is contained in:
Sybren A. Stüvel
2017-05-18 13:07:09 +02:00
parent 4ad82a1eb3
commit e4f221ab13
3 changed files with 8 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
pillar/__init__.py
View File

@@ -80,6 +80,9 @@ class PillarServer(Eve):
# self.settings = self.config['EVE_SETTINGS_PATH'] # self.settings = self.config['EVE_SETTINGS_PATH']
self.load_config() self.load_config()
if not self.config.get('SECRET_KEY'):
raise ConfigurationMissingError('SECRET_KEY configuration key is missing')
# Configure authentication # Configure authentication
self.login_manager = auth.config_login_manager(self) self.login_manager = auth.config_login_manager(self)
self.oauth_blender_id = auth.config_oauth_login(self) self.oauth_blender_id = auth.config_oauth_login(self)

4
pillar/config.py
View File

@@ -18,7 +18,9 @@ PORT = 5000
HOST = '0.0.0.0' HOST = '0.0.0.0'
DEBUG = False DEBUG = False
SECRET_KEY = '123' # Flask and CSRF secret key; generate local one with:
# python3 -c 'import secrets; print(secrets.token_urlsafe(128))'
SECRET_KEY = ''
# Authentication settings # Authentication settings
BLENDER_ID_ENDPOINT = 'http://blender_id:8000/' BLENDER_ID_ENDPOINT = 'http://blender_id:8000/'

2
pillar/tests/config_testing.py
View File

@@ -14,3 +14,5 @@ GCLOUD_APP_CREDENTIALS = 'invalid-file-because-gcloud-storage-should-be-mocked-i
STORAGE_BACKEND = 'local' STORAGE_BACKEND = 'local'
EXTERNAL_SUBSCRIPTIONS_MANAGEMENT_SERVER = "http://store.localhost/api" EXTERNAL_SUBSCRIPTIONS_MANAGEMENT_SERVER = "http://store.localhost/api"
SECRET_KEY = '12345'