2014-08-08 16:08:46 +04:00
|
|
|
"""This is the standard development settings file.
|
|
|
|
|
|
|
|
|
|
If you need to overload settings, please do so in a local_settings.py file (it
|
|
|
|
|
won't be tracked in git).
|
|
|
|
|
|
|
|
|
|
"""
|
2014-10-01 15:44:44 +04:00
|
|
|
import os
|
2019-07-16 13:01:31 +03:00
|
|
|
from urllib.parse import urlparse
|
2014-10-01 15:44:44 +04:00
|
|
|
|
2015-12-16 11:46:10 +03:00
|
|
|
from olympia.lib.settings_base import * # noqa
|
2014-08-08 16:08:46 +04:00
|
|
|
|
2016-03-15 17:22:16 +03:00
|
|
|
WSGI_APPLICATION = 'olympia.wsgi.application'
|
|
|
|
|
|
2020-05-25 12:51:18 +03:00
|
|
|
INTERNAL_ROUTES_ALLOWED = True
|
|
|
|
|
|
2014-08-08 16:08:46 +04:00
|
|
|
DEBUG = True
|
|
|
|
|
|
|
|
|
|
# These apps are great during development.
|
|
|
|
|
INSTALLED_APPS += (
|
2015-12-16 11:46:10 +03:00
|
|
|
'olympia.landfill',
|
2019-04-16 16:42:42 +03:00
|
|
|
'debug_toolbar',
|
2014-08-08 16:08:46 +04:00
|
|
|
)
|
|
|
|
|
|
2020-05-19 17:54:15 +03:00
|
|
|
# Override logging config to enable DEBUG logs for (almost) everything.
|
|
|
|
|
LOGGING['root']['level'] = logging.DEBUG
|
|
|
|
|
for logger in list(LOGGING['loggers'].keys()):
|
|
|
|
|
if logger not in ['filtercascade', 'mohawk.util', 'post_request_task']:
|
2020-06-05 14:30:11 +03:00
|
|
|
# It is important to keep the loggers configured in `settings_base.py`
|
|
|
|
|
# so we only update the level below:
|
|
|
|
|
LOGGING['loggers'][logger]['level'] = logging.DEBUG
|
2020-03-03 21:27:34 +03:00
|
|
|
|
2020-07-27 12:47:51 +03:00
|
|
|
|
2019-10-07 16:33:49 +03:00
|
|
|
# django-debug-doolbar middleware needs to be inserted as high as possible
|
|
|
|
|
# but after GZip middleware
|
|
|
|
|
def insert_debug_toolbar_middleware(middlewares):
|
|
|
|
|
ret_middleware = list(middlewares)
|
|
|
|
|
|
|
|
|
|
for i, middleware in enumerate(ret_middleware):
|
|
|
|
|
if 'GZipMiddleware' in middleware:
|
|
|
|
|
ret_middleware.insert(
|
2022-01-27 16:17:34 +03:00
|
|
|
i + 1, 'debug_toolbar.middleware.DebugToolbarMiddleware'
|
|
|
|
|
)
|
2019-10-07 16:33:49 +03:00
|
|
|
break
|
|
|
|
|
|
|
|
|
|
return tuple(ret_middleware)
|
|
|
|
|
|
2020-03-03 21:27:34 +03:00
|
|
|
|
2019-10-07 16:33:49 +03:00
|
|
|
MIDDLEWARE = insert_debug_toolbar_middleware(MIDDLEWARE)
|
2019-04-16 16:42:42 +03:00
|
|
|
|
|
|
|
|
DEBUG_TOOLBAR_CONFIG = {
|
|
|
|
|
# Enable django-debug-toolbar locally, if DEBUG is True.
|
|
|
|
|
'SHOW_TOOLBAR_CALLBACK': lambda request: DEBUG,
|
|
|
|
|
}
|
|
|
|
|
|
2018-03-05 16:34:43 +03:00
|
|
|
FILESYSTEM_CACHE_ROOT = os.path.join(TMP_PATH, 'cache')
|
|
|
|
|
|
2014-08-08 16:08:46 +04:00
|
|
|
# If you're not running on SSL you'll want this to be False.
|
|
|
|
|
SESSION_COOKIE_SECURE = False
|
|
|
|
|
SESSION_COOKIE_DOMAIN = None
|
2020-06-05 18:45:39 +03:00
|
|
|
WAFFLE_SECURE = False
|
2014-08-08 16:08:46 +04:00
|
|
|
|
2017-10-16 12:16:41 +03:00
|
|
|
CELERY_TASK_ALWAYS_EAGER = False
|
2014-08-08 16:08:46 +04:00
|
|
|
|
|
|
|
|
# Locally we typically don't run more than 1 elasticsearch node. So we set
|
|
|
|
|
# replicas to zero.
|
|
|
|
|
ES_DEFAULT_NUM_REPLICAS = 0
|
|
|
|
|
|
2015-10-30 20:21:04 +03:00
|
|
|
SITE_URL = os.environ.get('OLYMPIA_SITE_URL') or 'http://localhost:8000'
|
2018-10-17 18:52:21 +03:00
|
|
|
DOMAIN = SERVICES_DOMAIN = urlparse(SITE_URL).netloc
|
2022-02-01 22:34:44 +03:00
|
|
|
ADDONS_FRONTEND_PROXY_PORT = '7000'
|
2016-07-20 12:05:29 +03:00
|
|
|
SERVICES_URL = SITE_URL
|
2020-08-05 18:35:25 +03:00
|
|
|
INTERNAL_SITE_URL = 'http://nginx'
|
2019-06-06 13:04:06 +03:00
|
|
|
EXTERNAL_SITE_URL = SITE_URL
|
2021-10-15 12:53:13 +03:00
|
|
|
STATIC_URL = '%s/static/' % EXTERNAL_SITE_URL
|
|
|
|
|
MEDIA_URL = '%s/user-media/' % EXTERNAL_SITE_URL
|
2014-08-08 16:08:46 +04:00
|
|
|
|
2022-01-27 16:17:34 +03:00
|
|
|
CODE_MANAGER_URL = os.environ.get('CODE_MANAGER_URL') or 'http://olympia.test:5000'
|
2019-03-29 07:35:03 +03:00
|
|
|
|
2020-08-05 18:35:25 +03:00
|
|
|
ALLOWED_HOSTS = ALLOWED_HOSTS + [SERVICES_DOMAIN, 'nginx']
|
2016-11-02 18:56:10 +03:00
|
|
|
|
2015-03-07 18:22:21 +03:00
|
|
|
# Default AMO user id to use for tasks (from users.json fixture in zadmin).
|
|
|
|
|
TASK_USER_ID = 10968
|
|
|
|
|
|
2018-04-09 17:48:02 +03:00
|
|
|
ALLOW_SELF_REVIEWS = True
|
2015-09-22 14:29:46 +03:00
|
|
|
|
2015-10-08 22:45:44 +03:00
|
|
|
AES_KEYS = {
|
2015-12-28 22:08:27 +03:00
|
|
|
'api_key:secret': os.path.join(
|
2022-01-27 16:17:34 +03:00
|
|
|
ROOT, 'src', 'olympia', 'api', 'tests', 'assets', 'test-api-key.txt'
|
|
|
|
|
),
|
2015-10-08 22:45:44 +03:00
|
|
|
}
|
|
|
|
|
|
2019-01-18 18:11:31 +03:00
|
|
|
DATABASES = {
|
2019-03-18 13:57:49 +03:00
|
|
|
'default': get_db_config('DATABASES_DEFAULT_URL'),
|
2019-01-18 18:11:31 +03:00
|
|
|
}
|
|
|
|
|
|
2015-11-10 02:19:15 +03:00
|
|
|
# FxA config for local development only.
|
|
|
|
|
FXA_CONFIG = {
|
2016-04-21 23:31:31 +03:00
|
|
|
'default': {
|
2019-10-11 19:20:43 +03:00
|
|
|
'client_id': env('FXA_CLIENT_ID', default='a25796da7bc73ffa'),
|
WIP: Cleanup locustio based performance / smoke tests, add more entities (#8358)
* Port mozilla/amo-loadtest to FXA authentication and WebExtensions.
This is the first part of many to improve our load-tests and allow them
to be run regularly as part of a regression test suite.
This commit primarily ports the existing tests over to our repository,
updates them to use FxA authentication and uses a WebExtension for the
upload test.
This only implements the baseline for more work to come in #7744 but
it's important to have authentication and the basic infrastructure
working correctly.
It's also still using the legacy add-on detail and listing pages,
that'll obviously change - or be only true for SeaMonkey and Thunderbird
related tests since we still have to support them (very low priority though)
It also adds a first step of a summary report that links to new-relic.
That'll need a bit more tooling and testing but it worked quite well in
first tests.
Refs #7744
Next steps:
* Implement most of the read-only tests from #7744
* Check what needs auth in #7744, implement it properly
* Implement database and cache query logging
* Implement a unified merged test-report that uses the database and
cache query logging and merges it with locust logs (using our new
unique request id)
* Fix makefile, show dummy-usage for now.
* Delete generate-summary script for now
* Pin and cleanup dependencies
* Reverse all urls
* Use passed in account for login
* split things up
* Use gevent for waiting, some cleanups, add first version of Dockerfile, running script, disable developer stuff for now
* Add browsing collections and browsing categories
* Add loads more variation, add support for thunderbird, seamonkey, multiple languages
* Decrease size of docker images for local testing
* Get installation and docker image mostly to work, docs, cleanups
* Allow fxa environment variables be overwritten
* Hit legacy site of every variation
* More explicit theme testing
* Add browsing for app-versions and various rss feeds
* More variation in rss feeds, add featured and search tools
* Add a few more response.success() calls
* Test user profile pages, warn for empty collection pages
* More docs
* Add review browsing
2018-05-30 17:46:16 +03:00
|
|
|
'client_secret': env(
|
|
|
|
|
'FXA_CLIENT_SECRET',
|
2022-01-27 16:17:34 +03:00
|
|
|
default='4828af02f60a12738a79c7121b06d42b481f112dce1831440902a8412d2770c5',
|
|
|
|
|
),
|
2019-10-11 19:20:43 +03:00
|
|
|
# fxa redirects to http://olympia.test/api/auth/authenticate-callback/
|
2016-04-21 23:31:31 +03:00
|
|
|
},
|
2018-04-09 17:48:02 +03:00
|
|
|
'amo': {
|
WIP: Cleanup locustio based performance / smoke tests, add more entities (#8358)
* Port mozilla/amo-loadtest to FXA authentication and WebExtensions.
This is the first part of many to improve our load-tests and allow them
to be run regularly as part of a regression test suite.
This commit primarily ports the existing tests over to our repository,
updates them to use FxA authentication and uses a WebExtension for the
upload test.
This only implements the baseline for more work to come in #7744 but
it's important to have authentication and the basic infrastructure
working correctly.
It's also still using the legacy add-on detail and listing pages,
that'll obviously change - or be only true for SeaMonkey and Thunderbird
related tests since we still have to support them (very low priority though)
It also adds a first step of a summary report that links to new-relic.
That'll need a bit more tooling and testing but it worked quite well in
first tests.
Refs #7744
Next steps:
* Implement most of the read-only tests from #7744
* Check what needs auth in #7744, implement it properly
* Implement database and cache query logging
* Implement a unified merged test-report that uses the database and
cache query logging and merges it with locust logs (using our new
unique request id)
* Fix makefile, show dummy-usage for now.
* Delete generate-summary script for now
* Pin and cleanup dependencies
* Reverse all urls
* Use passed in account for login
* split things up
* Use gevent for waiting, some cleanups, add first version of Dockerfile, running script, disable developer stuff for now
* Add browsing collections and browsing categories
* Add loads more variation, add support for thunderbird, seamonkey, multiple languages
* Decrease size of docker images for local testing
* Get installation and docker image mostly to work, docs, cleanups
* Allow fxa environment variables be overwritten
* Hit legacy site of every variation
* More explicit theme testing
* Add browsing for app-versions and various rss feeds
* More variation in rss feeds, add featured and search tools
* Add a few more response.success() calls
* Test user profile pages, warn for empty collection pages
* More docs
* Add review browsing
2018-05-30 17:46:16 +03:00
|
|
|
'client_id': env('FXA_CLIENT_ID', default='0f95f6474c24c1dc'),
|
|
|
|
|
'client_secret': env(
|
|
|
|
|
'FXA_CLIENT_SECRET',
|
2022-01-27 16:17:34 +03:00
|
|
|
default='ca45e503a1b4ec9e2a3d4855d79849e098da18b7dfe42b6bc76dfed420fc1d38',
|
|
|
|
|
),
|
2019-10-11 19:20:43 +03:00
|
|
|
# fxa redirects to http://localhost:3000/fxa-authenticate
|
2016-04-21 23:31:31 +03:00
|
|
|
},
|
2017-02-17 19:08:30 +03:00
|
|
|
'local': {
|
2019-10-11 19:20:43 +03:00
|
|
|
'client_id': env('FXA_CLIENT_ID', default='4dce1adfa7901c08'),
|
WIP: Cleanup locustio based performance / smoke tests, add more entities (#8358)
* Port mozilla/amo-loadtest to FXA authentication and WebExtensions.
This is the first part of many to improve our load-tests and allow them
to be run regularly as part of a regression test suite.
This commit primarily ports the existing tests over to our repository,
updates them to use FxA authentication and uses a WebExtension for the
upload test.
This only implements the baseline for more work to come in #7744 but
it's important to have authentication and the basic infrastructure
working correctly.
It's also still using the legacy add-on detail and listing pages,
that'll obviously change - or be only true for SeaMonkey and Thunderbird
related tests since we still have to support them (very low priority though)
It also adds a first step of a summary report that links to new-relic.
That'll need a bit more tooling and testing but it worked quite well in
first tests.
Refs #7744
Next steps:
* Implement most of the read-only tests from #7744
* Check what needs auth in #7744, implement it properly
* Implement database and cache query logging
* Implement a unified merged test-report that uses the database and
cache query logging and merges it with locust logs (using our new
unique request id)
* Fix makefile, show dummy-usage for now.
* Delete generate-summary script for now
* Pin and cleanup dependencies
* Reverse all urls
* Use passed in account for login
* split things up
* Use gevent for waiting, some cleanups, add first version of Dockerfile, running script, disable developer stuff for now
* Add browsing collections and browsing categories
* Add loads more variation, add support for thunderbird, seamonkey, multiple languages
* Decrease size of docker images for local testing
* Get installation and docker image mostly to work, docs, cleanups
* Allow fxa environment variables be overwritten
* Hit legacy site of every variation
* More explicit theme testing
* Add browsing for app-versions and various rss feeds
* More variation in rss feeds, add featured and search tools
* Add a few more response.success() calls
* Test user profile pages, warn for empty collection pages
* More docs
* Add review browsing
2018-05-30 17:46:16 +03:00
|
|
|
'client_secret': env(
|
|
|
|
|
'FXA_CLIENT_SECRET',
|
2022-01-27 16:17:34 +03:00
|
|
|
default='d7d5f1148a35b12c067fb9eafafc29d35165a90f5d8b0032f1fcd37468ae49fe',
|
|
|
|
|
),
|
|
|
|
|
# fxa redirects to http://localhost:3000/api/auth/authenticate-callback/?config=local # noqa
|
2017-02-17 19:08:30 +03:00
|
|
|
},
|
2016-04-20 01:24:45 +03:00
|
|
|
}
|
2019-10-08 13:47:24 +03:00
|
|
|
FXA_CONTENT_HOST = 'https://stable.dev.lcip.org'
|
|
|
|
|
FXA_OAUTH_HOST = 'https://oauth-stable.dev.lcip.org/v1'
|
|
|
|
|
FXA_PROFILE_HOST = 'https://stable.dev.lcip.org/profile/v1'
|
2019-10-11 19:20:43 +03:00
|
|
|
ALLOWED_FXA_CONFIGS = ['default', 'amo', 'local']
|
2015-10-08 22:45:44 +03:00
|
|
|
|
2020-10-12 20:19:50 +03:00
|
|
|
# When USE_FAKE_FXA_AUTH and settings.DEBUG are both True, we serve a fake
|
|
|
|
|
# authentication page, bypassing FxA. To disable this behavior, set
|
|
|
|
|
# USE_FAKE_FXA = False in your local settings.
|
|
|
|
|
USE_FAKE_FXA_AUTH = True
|
|
|
|
|
|
2016-01-11 20:30:32 +03:00
|
|
|
# CSP report endpoint which returns a 204 from addons-nginx in local dev.
|
|
|
|
|
CSP_REPORT_URI = '/csp-report'
|
2019-07-18 18:52:11 +03:00
|
|
|
RESTRICTED_DOWNLOAD_CSP['REPORT_URI'] = CSP_REPORT_URI
|
2016-01-11 20:30:32 +03:00
|
|
|
|
2021-10-15 12:53:13 +03:00
|
|
|
# Set CSP like we do for dev/stage/prod, but also allow GA over http + www subdomain
|
|
|
|
|
# for local development.
|
2016-01-12 00:00:25 +03:00
|
|
|
HTTP_GA_SRC = 'http://www.google-analytics.com'
|
2021-10-15 12:53:13 +03:00
|
|
|
|
|
|
|
|
CSP_CONNECT_SRC += (SITE_URL,)
|
|
|
|
|
CSP_FONT_SRC += (STATIC_URL,)
|
|
|
|
|
CSP_IMG_SRC += (MEDIA_URL, STATIC_URL, HTTP_GA_SRC)
|
|
|
|
|
CSP_SCRIPT_SRC += (STATIC_URL, HTTP_GA_SRC)
|
|
|
|
|
CSP_STYLE_SRC += (STATIC_URL,)
|
2016-01-12 00:00:25 +03:00
|
|
|
|
2016-08-10 23:04:57 +03:00
|
|
|
# Auth token required to authorize inbound email.
|
2016-10-04 13:53:58 +03:00
|
|
|
INBOUND_EMAIL_SECRET_KEY = 'totally-unsecure-secret-string'
|
|
|
|
|
# Validation key we need to send in POST response.
|
|
|
|
|
INBOUND_EMAIL_VALIDATION_KEY = 'totally-unsecure-validation-string'
|
2016-08-10 23:04:57 +03:00
|
|
|
|
2019-08-29 13:21:20 +03:00
|
|
|
# Sectools
|
|
|
|
|
CUSTOMS_API_URL = 'http://customs:10101/'
|
|
|
|
|
CUSTOMS_API_KEY = 'customssecret'
|
|
|
|
|
|
2020-07-27 12:47:51 +03:00
|
|
|
REMOTE_SETTINGS_IS_TEST_SERVER = True
|
2020-03-03 21:27:34 +03:00
|
|
|
|
2014-08-08 16:08:46 +04:00
|
|
|
# If you have settings you want to overload, put them in a local_settings.py.
|
|
|
|
|
try:
|
|
|
|
|
from local_settings import * # noqa
|
2019-03-04 18:01:00 +03:00
|
|
|
except ImportError:
|
2018-06-03 14:37:40 +03:00
|
|
|
import warnings
|
|
|
|
|
import traceback
|
|
|
|
|
|
2022-01-27 16:17:34 +03:00
|
|
|
warnings.warn(
|
|
|
|
|
'Could not import local_settings module. {}'.format(traceback.format_exc())
|
|
|
|
|
)
|
2021-04-13 13:04:48 +03:00
|
|
|
|
|
|
|
|
SITEMAP_DEBUG_AVAILABLE = True
|
