python-tdd/src/core/settings.py

"""
Django settings for core project.

Generated by 'django-admin startproject' using Django 6.0.

For more information on this file, see
https://docs.djangoproject.com/en/6.0/topics/settings/

For the full list of settings and their values, see
https://docs.djangoproject.com/en/6.0/ref/settings/
"""

from pathlib import Path
import dj_database_url
import os
import sys
if 'test' in sys.argv:
    COMPRESS_ENABLED = False

# Build paths inside the project like this: BASE_DIR / 'subdir'.
BASE_DIR = Path(__file__).resolve().parent.parent


# Quick-start development settings - unsuitable for production
# See https://docs.djangoproject.com/en/6.0/howto/deployment/checklist/


# SECURITY WARNING: don't run with debug turned on in production!
if 'DJANGO_DEBUG_FALSE' in os.environ:
    DEBUG = False
    SECRET_KEY = os.environ['DJANGO_SECRET_KEY']
    ALLOWED_HOSTS = [host.strip() for host in os.environ['DJANGO_ALLOWED_HOST'].split(',')]
    CSRF_TRUSTED_ORIGINS = [f'https://{host.strip()}' for host in os.environ['DJANGO_ALLOWED_HOST'].split(',')]
    SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
    SESSION_COOKIE_SECURE = True
    CSRF_COOKIE_SECURE = True
    SECURE_HSTS_SECONDS = 60
    SECURE_HSTS_INCLUDE_SUBDOMAINS = True
    SECURE_HSTS_PRELOAD = True
    COMPRESS_OFFLINE = True
else:
    DEBUG = True
    # SECURITY WARNING: keep the secret key used in production secret!
    SECRET_KEY = 'django-insecure-&9b_h=qpjy=sshhnsyg98&jp7(t6*v78__y%h2l$b#_@6z$-9r'
    ALLOWED_HOSTS = []


# Application definition

INSTALLED_APPS = [
    # Django apps
    'django.contrib.admin',
    'django.contrib.auth',
    'django.contrib.contenttypes',
    'django.contrib.sessions',
    'django.contrib.messages',
    'django.contrib.staticfiles',
    # Custom apps
    'apps.dashboard',
    'apps.lyric',
    'apps.api',
    'functional_tests',
    # Depend apps
    'compressor',
    'rest_framework',
]

# if 'DJANGO_DEBUG_FALSE' not in os.environ:
#     INSTALLED_APPS += ['functional_tests']

MIDDLEWARE = [
    'django.middleware.security.SecurityMiddleware',
    'whitenoise.middleware.WhiteNoiseMiddleware',
    'django.contrib.sessions.middleware.SessionMiddleware',
    'django.middleware.common.CommonMiddleware',
    'django.middleware.csrf.CsrfViewMiddleware',
    'django.contrib.auth.middleware.AuthenticationMiddleware',
    'django.contrib.messages.middleware.MessageMiddleware',
    'django.middleware.clickjacking.XFrameOptionsMiddleware',
    'django_htmx.middleware.HtmxMiddleware',
]

ROOT_URLCONF = 'core.urls'

TEMPLATES = [
    {
        'BACKEND': 'django.template.backends.django.DjangoTemplates',
        'DIRS': [BASE_DIR / 'templates'],
        'APP_DIRS': True,
        'OPTIONS': {
            'context_processors': [
                'django.template.context_processors.request',
                'django.contrib.auth.context_processors.auth',
                'django.contrib.messages.context_processors.messages',
                'core.context_processors.user_palette',
            ],
        },
    },
]

WSGI_APPLICATION = 'core.wsgi.application'
ASGI_APPLICATION = 'core.asgi.application'


# Database
# https://docs.djangoproject.com/en/6.0/ref/settings/#databases

DATABASE_URL = os.environ.get('DATABASE_URL')
if DATABASE_URL:
    DATABASES = {'default': dj_database_url.config(conn_max_age=600)}
else:
    DATABASES = {
        'default': {
            'ENGINE': 'django.db.backends.sqlite3',
            'NAME': BASE_DIR / 'db.sqlite3',
        }
    }

# Celery & Redis
CELERY_BROKER_URL = os.environ.get('CELERY_BROKER_URL', 'redis://localhost:6379/0')
REDIS_URL = os.environ.get('REDIS_URL')
if REDIS_URL:
    CACHES = {
        'default': {
            'BACKEND': 'django.core.cache.backends.redis.RedisCache',
            'LOCATION': REDIS_URL,
        }
    }
    SESSION_ENGINE = 'django.contrib.sessions.backends.cached_db'

# Password validation
# https://docs.djangoproject.com/en/6.0/ref/settings/#auth-password-validators

AUTH_PASSWORD_VALIDATORS = [
    {
        'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
    },
]

AUTH_USER_MODEL = "lyric.User"

AUTHENTICATION_BACKENDS = [
    "django.contrib.auth.backends.ModelBackend",
    "apps.lyric.authentication.PasswordlessAuthenticationBackend",
]


# Internationalization
# https://docs.djangoproject.com/en/6.0/topics/i18n/

LANGUAGE_CODE = 'en-us'

TIME_ZONE = 'UTC'

USE_I18N = True

USE_TZ = True


# Static files (CSS, JavaScript, Images)
# https://docs.djangoproject.com/en/6.0/howto/static-files/

STATIC_URL = 'static/'
STATIC_ROOT = BASE_DIR / 'static'
STATICFILES_DIRS = [
    BASE_DIR / 'static_src',
]
STATICFILES_FINDERS = [
    'django.contrib.staticfiles.finders.FileSystemFinder',
    'django.contrib.staticfiles.finders.AppDirectoriesFinder',
    'compressor.finders.CompressorFinder',
]
COMPRESS_PRECOMPILERS = [
    ('text/x-scss', 'django_libsass.SassCompiler'),
]

LOGGING = {
    "version": 1,
    "disable_existing_loggers": False,
    "handlers": {
        "console": {"class": "logging.StreamHandler"},
    },
    "loggers": {
        "root": {"handlers": ["console"], "level": "INFO"},
    },
}

# Mailgun API settings (for HTTP API instead of SMTP)
MAILGUN_API_KEY = os.environ.get("MAILGUN_API_KEY")
MAILGUN_DOMAIN = "howdy.earthmanrpg.com" # Your Mailgun domain
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00			`"""`
			`Django settings for core project.`

			`Generated by 'django-admin startproject' using Django 6.0.`

			`For more information on this file, see`
			`https://docs.djangoproject.com/en/6.0/topics/settings/`

			`For the full list of settings and their values, see`
			`https://docs.djangoproject.com/en/6.0/ref/settings/`
			`"""`

			`from pathlib import Path`
added coverage dependency; 99 percent test coverage (only lacking admin, currently by design); commenced postgresql db integration 2026-02-18 20:18:56 -05:00			`import dj_database_url`
themes initialized! many new partials and scss integrations across most templates; core.settings contains COMPRESS test fallback; apps.dashboard.views updated for new alerts and styling 2026-03-02 15:45:12 -05:00			`import os`
			`import sys`
			`if 'test' in sys.argv:`
			`COMPRESS_ENABLED = False`
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00
			`# Build paths inside the project like this: BASE_DIR / 'subdir'.`
			`BASE_DIR = Path(__file__).resolve().parent.parent`


			`# Quick-start development settings - unsuitable for production`
			`# See https://docs.djangoproject.com/en/6.0/howto/deployment/checklist/`


			`# SECURITY WARNING: don't run with debug turned on in production!`
			`if 'DJANGO_DEBUG_FALSE' in os.environ:`
			`DEBUG = False`
			`SECRET_KEY = os.environ['DJANGO_SECRET_KEY']`
			`ALLOWED_HOSTS = [host.strip() for host in os.environ['DJANGO_ALLOWED_HOST'].split(',')]`
added CSRF_TRUSTED_ORIGINS to core.settings, now that https added 2026-02-18 23:32:43 -05:00			`CSRF_TRUSTED_ORIGINS = [f'https://{host.strip()}' for host in os.environ['DJANGO_ALLOWED_HOST'].split(',')]`
added staging & prod https support to core.settings 2026-02-20 13:33:11 -05:00			`SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')`
			`SESSION_COOKIE_SECURE = True`
			`CSRF_COOKIE_SECURE = True`
			`SECURE_HSTS_SECONDS = 60`
			`SECURE_HSTS_INCLUDE_SUBDOMAINS = True`
			`SECURE_HSTS_PRELOAD = True`
small compress fixes to help serve scss on staging server and avoid persistent 500 errors 2026-03-02 16:02:47 -05:00			`COMPRESS_OFFLINE = True`
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00			`else:`
			`DEBUG = True`
			`# SECURITY WARNING: keep the secret key used in production secret!`
			`SECRET_KEY = 'django-insecure-&9b_h=qpjy=sshhnsyg98&jp7(t6*v78__y%h2l$b#_@6z$-9r'`
			`ALLOWED_HOSTS = []`


			`# Application definition`

			`INSTALLED_APPS = [`
			`# Django apps`
reenabled admin area; outfitted apps.lyric.models w. AbstractBaseUser instead of custom user class; many other fns & several models updated to accomodate, such as set_unusable_password() method to base user model; reset staging db to prepare for refreshed lyric migrations to accomodate for retrofitted pw field 2026-02-19 20:31:29 -05:00			`'django.contrib.admin',`
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00			`'django.contrib.auth',`
			`'django.contrib.contenttypes',`
			`'django.contrib.sessions',`
			`'django.contrib.messages',`
			`'django.contrib.staticfiles',`
			`# Custom apps`
			`'apps.dashboard',`
custom user model that maintains id as pk 2026-01-30 15:04:47 -05:00			`'apps.lyric',`
commenced DRF efforts w. package installation, creation of apps.api, w. UTs & ITs to ensure core efficacy; core.settings & .urls changed to accomodate 2026-02-20 16:37:48 -05:00			`'apps.api',`
new functional_tests.container_commands file discerns local from server containers; .base calls now calls reset_database() therefrom; .test_my_lists also discerns test server location for different session keys; functional_tests restored as app in core.settings 2026-02-03 22:14:55 -05:00			`'functional_tests',`
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00			`# Depend apps`
new FT test_theme for theme switcher functionality; theme-switcher content added to home.html, several dashboard views & urls, all appropriate ITs & UTs; lyric user model saves theme (migrations run); django-compressor and django-libsass libraries added to dependencies 2026-03-02 13:57:03 -05:00			`'compressor',`
commenced DRF efforts w. package installation, creation of apps.api, w. UTs & ITs to ensure core efficacy; core.settings & .urls changed to accomodate 2026-02-20 16:37:48 -05:00			`'rest_framework',`
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00			`]`

new functional_tests.container_commands file discerns local from server containers; .base calls now calls reset_database() therefrom; .test_my_lists also discerns test server location for different session keys; functional_tests restored as app in core.settings 2026-02-03 22:14:55 -05:00			`# if 'DJANGO_DEBUG_FALSE' not in os.environ:`
			`# INSTALLED_APPS += ['functional_tests']`
added functional_tests to installed apps in core.settings (but only when debug is true); created management dir to contain new django cmds & listed in .dockerignore; created management.create_session cmd; recreated container.db.sqlite3; tweaked test_server setup in functional_tests.base; added test_server failsafe to magic link login testing in .test_login 2026-02-03 14:54:37 -05:00
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00			`MIDDLEWARE = [`
			`'django.middleware.security.SecurityMiddleware',`
nginx compatibility added to serve static files on server; whitenoise installed to catch static file serving in local docker container, also added to core.settings middleware; console logs & print statements removed from dashboard.js & functional_tests.container_commands; ansible playbook and nginx config file support nginx w.in deployment workflow 2026-02-08 17:55:09 -05:00			`'whitenoise.middleware.WhiteNoiseMiddleware',`
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00			`'django.contrib.sessions.middleware.SessionMiddleware',`
			`'django.middleware.common.CommonMiddleware',`
			`'django.middleware.csrf.CsrfViewMiddleware',`
			`'django.contrib.auth.middleware.AuthenticationMiddleware',`
			`'django.contrib.messages.middleware.MessageMiddleware',`
			`'django.middleware.clickjacking.XFrameOptionsMiddleware',`
added locally hosted htmx dependency; updated base.html template & req's files accordingly; wrote new FT (failing) in test_dashboard that calls for this lib 2026-03-04 15:13:16 -05:00			`'django_htmx.middleware.HtmxMiddleware',`
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00			`]`

			`ROOT_URLCONF = 'core.urls'`

			`TEMPLATES = [`
			`{`
			`'BACKEND': 'django.template.backends.django.DjangoTemplates',`
			`'DIRS': [BASE_DIR / 'templates'],`
			`'APP_DIRS': True,`
			`'OPTIONS': {`
			`'context_processors': [`
			`'django.template.context_processors.request',`
			`'django.contrib.auth.context_processors.auth',`
			`'django.contrib.messages.context_processors.messages',`
'theme_switcher,' 'theme-picker' & 'theme' renamed everywhere to simply 'palette'; new urls & views & their corresponding ITs ensure applet menu checkbox functionality 2026-03-05 14:45:55 -05:00			`'core.context_processors.user_palette',`
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00			`],`
			`},`
			`},`
			`]`

			`WSGI_APPLICATION = 'core.wsgi.application'`
			`ASGI_APPLICATION = 'core.asgi.application'`


			`# Database`
			`# https://docs.djangoproject.com/en/6.0/ref/settings/#databases`

added coverage dependency; 99 percent test coverage (only lacking admin, currently by design); commenced postgresql db integration 2026-02-18 20:18:56 -05:00			`DATABASE_URL = os.environ.get('DATABASE_URL')`
			`if DATABASE_URL:`
			`DATABASES = {'default': dj_database_url.config(conn_max_age=600)}`
			`else:`
			`DATABASES = {`
			`'default': {`
			`'ENGINE': 'django.db.backends.sqlite3',`
			`'NAME': BASE_DIR / 'db.sqlite3',`
			`}`
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00			`}`

enabled redis alongside celery, but waiting on true caching functionality—flash messages will behave better w. cache_page after they rely on htmx library, not current full-page reload 2026-02-21 23:13:23 -05:00			`# Celery & Redis`
offloaded some apps.lyric.views responsibilities to new Celery depend fn in .tasks; core.celery created for celery config; CELERY_BROKER_URL added to .settings & throughout project; some lyric view IT responsibility now accordingly covered by task UT domain 2026-02-21 21:35:15 -05:00			`CELERY_BROKER_URL = os.environ.get('CELERY_BROKER_URL', 'redis://localhost:6379/0')`
enabled redis alongside celery, but waiting on true caching functionality—flash messages will behave better w. cache_page after they rely on htmx library, not current full-page reload 2026-02-21 23:13:23 -05:00			`REDIS_URL = os.environ.get('REDIS_URL')`
			`if REDIS_URL:`
			`CACHES = {`
			`'default': {`
			`'BACKEND': 'django.core.cache.backends.redis.RedisCache',`
			`'LOCATION': REDIS_URL,`
			`}`
			`}`
			`SESSION_ENGINE = 'django.contrib.sessions.backends.cached_db'`
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00
			`# Password validation`
			`# https://docs.djangoproject.com/en/6.0/ref/settings/#auth-password-validators`

			`AUTH_PASSWORD_VALIDATORS = [`
			`{`
			`'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',`
			`},`
			`{`
			`'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',`
			`},`
			`{`
			`'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',`
			`},`
			`{`
			`'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',`
			`},`
			`]`

custom user model that maintains id as pk 2026-01-30 15:04:47 -05:00			`AUTH_USER_MODEL = "lyric.User"`

auth backend defined in core.settings 2026-01-30 19:35:45 -05:00			`AUTHENTICATION_BACKENDS = [`
reenabled admin area; outfitted apps.lyric.models w. AbstractBaseUser instead of custom user class; many other fns & several models updated to accomodate, such as set_unusable_password() method to base user model; reset staging db to prepare for refreshed lyric migrations to accomodate for retrofitted pw field 2026-02-19 20:31:29 -05:00			`"django.contrib.auth.backends.ModelBackend",`
auth backend defined in core.settings 2026-01-30 19:35:45 -05:00			`"apps.lyric.authentication.PasswordlessAuthenticationBackend",`
			`]`

manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00
			`# Internationalization`
			`# https://docs.djangoproject.com/en/6.0/topics/i18n/`

			`LANGUAGE_CODE = 'en-us'`

			`TIME_ZONE = 'UTC'`

			`USE_I18N = True`

			`USE_TZ = True`


			`# Static files (CSS, JavaScript, Images)`
			`# https://docs.djangoproject.com/en/6.0/howto/static-files/`

			`STATIC_URL = 'static/'`
			`STATIC_ROOT = BASE_DIR / 'static'`
created new dir for STATICFILES_DIRS in core.settings; all Jasmine test files transferred to new dir src/static_src/; new FT test_jasmine executes Jasmine test runner as part of CI pipeline & base FT has dobules MAX_WAIT to 10s; some cleanup of unused imports in text_simple_list_creation 2026-02-11 14:42:38 -05:00			`STATICFILES_DIRS = [`
			`BASE_DIR / 'static_src',`
			`]`
new FT test_theme for theme switcher functionality; theme-switcher content added to home.html, several dashboard views & urls, all appropriate ITs & UTs; lyric user model saves theme (migrations run); django-compressor and django-libsass libraries added to dependencies 2026-03-02 13:57:03 -05:00			`STATICFILES_FINDERS = [`
			`'django.contrib.staticfiles.finders.FileSystemFinder',`
			`'django.contrib.staticfiles.finders.AppDirectoriesFinder',`
			`'compressor.finders.CompressorFinder',`
			`]`
			`COMPRESS_PRECOMPILERS = [`
			`('text/x-scss', 'django_libsass.SassCompiler'),`
			`]`
manage.py changed to lf; FTs tweaked to accomodate WSL2 ansible deployment 2026-01-13 20:58:05 -05:00
			`LOGGING = {`
			`"version": 1,`
			`"disable_existing_loggers": False,`
			`"handlers": {`
			`"console": {"class": "logging.StreamHandler"},`
			`},`
			`"loggers": {`
			`"root": {"handlers": ["console"], "level": "INFO"},`
			`},`
			`}`
core/base.html & settings.py updated for email-based login & logout 2026-02-01 16:19:07 -05:00
after many diversions and forlorn pivot from copilot to claude, new infra/ structure contains group_vars and ansible vaults; requests added to dev and prod dependencies; apps.lyric.views and core .settings both abandon django's send_mail(); instead incorporate requests to target Mailgun's HTTP API (DigitalOcean's SMTP blocker thwarted previous magic login link email attempts, but this issue has been resol ved with this commit) 2026-02-07 18:58:17 -05:00			`# Mailgun API settings (for HTTP API instead of SMTP)`
			`MAILGUN_API_KEY = os.environ.get("MAILGUN_API_KEY")`
moved adman magic link to howdy.earthmanrpg.com, in anticipation of having to mirror the prod server location; staging server preserved, along w. gitea & woodpecker, on earthmanrpg.me 2026-02-18 23:04:21 -05:00			`MAILGUN_DOMAIN = "howdy.earthmanrpg.com" # Your Mailgun domain`