spaceport/apiserver/apiserver/settings.py

"""
Django settings for apiserver project.

Generated by 'django-admin startproject' using Django 3.0.2.

For more information on this file, see
https://docs.djangoproject.com/en/3.0/topics/settings/

For the full list of settings and their values, see
https://docs.djangoproject.com/en/3.0/ref/settings/
"""

import os
import logging.config
logger = logging.getLogger(__name__)


from . import secrets

# Build paths inside the project like this: os.path.join(BASE_DIR, ...)
BASE_DIR = os.path.dirname(os.path.dirname(os.path.abspath(__file__)))


# Quick-start development settings - unsuitable for production
# See https://docs.djangoproject.com/en/3.0/howto/deployment/checklist/

# SECURITY WARNING: keep the secret key used in production secret!
SECRET_KEY = secrets.DJANGO_SECRET_KEY

# SECURITY WARNING: don't run with debug turned on in production!
DEBUG_ENV = os.environ.get('DEBUG', False)
DEBUG = DEBUG_ENV or False


PRODUCTION_HOST = 'my.protospace.ca'


# production hosts
ALLOWED_HOSTS = [
    'api.' + PRODUCTION_HOST,
]

if DEBUG:
    ALLOWED_HOSTS += [
        'localhost',
        '127.0.0.1',
        'spaceport-api.dns.t0.vc',
        'api.spaceport.dns.t0.vc',
        'api.my.dns.t0.vc',
        'api.my.protospace.ca',
    ]

SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')
SESSION_COOKIE_SECURE = True
CSRF_COOKIE_SECURE = True
SECURE_REFERRER_POLICY = 'same-origin'


# Application definition

INSTALLED_APPS = [
    'django.contrib.admin',
    'django.contrib.auth',
    'django.contrib.contenttypes',
    'django.contrib.sessions',
    'django.contrib.messages',
    'django.contrib.staticfiles',
    'django.contrib.sites',
    'rest_framework',
    'rest_framework.authtoken',
    'apiserver.api',
    'rest_auth',
    'allauth',
    'allauth.account',
    'allauth.socialaccount', # to support user deletion
    'rest_auth.registration',
    'simple_history',
]

MIDDLEWARE = [
    'django.middleware.security.SecurityMiddleware',
    'django.contrib.sessions.middleware.SessionMiddleware',
    'django.middleware.common.CommonMiddleware',
    'django.middleware.csrf.CsrfViewMiddleware',
    'django.contrib.auth.middleware.AuthenticationMiddleware',
    'django.contrib.messages.middleware.MessageMiddleware',
    'django.middleware.clickjacking.XFrameOptionsMiddleware',
    'simple_history.middleware.HistoryRequestMiddleware',
]

ROOT_URLCONF = 'apiserver.urls'

TEMPLATES = [
    {
        'BACKEND': 'django.template.backends.django.DjangoTemplates',
        'DIRS': [],
        'APP_DIRS': True,
        'OPTIONS': {
            'context_processors': [
                'django.template.context_processors.debug',
                'django.template.context_processors.request',
                'django.contrib.auth.context_processors.auth',
                'django.contrib.messages.context_processors.messages',
            ],
        },
    },
]

WSGI_APPLICATION = 'apiserver.wsgi.application'


# Database
# https://docs.djangoproject.com/en/3.0/ref/settings/#databases

DATABASES = {
    'default': {
        'ENGINE': 'django.db.backends.sqlite3',
        'NAME': os.path.join(BASE_DIR, 'data/db.sqlite3'),
    },
    'old_portal': {
        'ENGINE': 'django.db.backends.sqlite3',
        'NAME': os.path.join(BASE_DIR, 'old_portal.sqlite3'),
    }
}

CACHES = {
    'default': {
        'BACKEND': 'django.core.cache.backends.memcached.MemcachedCache',
        'LOCATION': '127.0.0.1:11211',
        'TIMEOUT': None,
    }
}


# Password validation
# https://docs.djangoproject.com/en/3.0/ref/settings/#auth-password-validators

AUTH_PASSWORD_VALIDATORS = [
    {
        'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
    },
]

PASSWORD_HASHERS = [
    'django.contrib.auth.hashers.Argon2PasswordHasher',
    'django.contrib.auth.hashers.PBKDF2PasswordHasher',
    'django.contrib.auth.hashers.PBKDF2SHA1PasswordHasher',
    'django.contrib.auth.hashers.BCryptSHA256PasswordHasher',
]


# Internationalization
# https://docs.djangoproject.com/en/3.0/topics/i18n/

LANGUAGE_CODE = 'en-us'

TIME_ZONE = 'UTC'

USE_I18N = True

USE_L10N = True

USE_TZ = True


# Static files (CSS, JavaScript, Images)
# https://docs.djangoproject.com/en/3.0/howto/static-files/

if DEBUG:
    STATIC_URL = '/static/'
else:
    STATIC_URL = 'https://static.{}/'.format(PRODUCTION_HOST)
    STATIC_ROOT = os.path.join(BASE_DIR, 'data/static')


DEFAULT_RENDERER_CLASSES = (
    'rest_framework.renderers.JSONRenderer',
)

if DEBUG:
    DEFAULT_RENDERER_CLASSES += (
        'rest_framework.renderers.BrowsableAPIRenderer',
    )

DEFAULT_AUTHENTICATION_CLASSES = (
        'rest_framework.authentication.TokenAuthentication',
    )

if DEBUG:
    DEFAULT_AUTHENTICATION_CLASSES += (
	    'rest_framework.authentication.SessionAuthentication',
	)

REST_FRAMEWORK = {
    'DEFAULT_PAGINATION_CLASS': 'rest_framework.pagination.PageNumberPagination',
    'PAGE_SIZE': 300,
    'DEFAULT_RENDERER_CLASSES': DEFAULT_RENDERER_CLASSES,
    'DEFAULT_AUTHENTICATION_CLASSES': DEFAULT_AUTHENTICATION_CLASSES,
}

#DEFAULT_LOGGING = None
LOGGING = {
    'version': 1,
    'disable_existing_loggers': False,
    'formatters': {
        'medium': {
            'format': '[%(asctime)s] [%(process)d] [%(levelname)7s] %(message)s'
        },
    },
    'filters': {
        'ignore_stats': {
            '()': 'apiserver.filters.IgnoreStats',
        },
    },
    'handlers': {
        'console': {
            'level': 'DEBUG',
            'filters': ['ignore_stats'],
            'class': 'logging.StreamHandler',
            'formatter': 'medium'
        },
    },
    'loggers': {
        'gunicorn': {
            'handlers': ['console'],
            'level': 'DEBUG',
            'propagate': False,
        },
        '': {
            'handlers': ['console'],
            'level': 'DEBUG',
            'propagate': True,
        },
    },
    'root': {
        'level': 'INFO',
        'handlers': ['console'],
    },
}
logging.config.dictConfig(LOGGING)

SITE_ID = 1
ACCOUNT_EMAIL_REQUIRED = True
ACCOUNT_EMAIL_VERIFICATION = 'none'
ACCOUNT_USERNAME_MIN_LENGTH = 3
ACCOUNT_AUTHENTICATION_METHOD = 'username'
OLD_PASSWORD_FIELD_ENABLED = True
LOGOUT_ON_PASSWORD_CHANGE = False
ACCOUNT_PRESERVE_USERNAME_CASING = False

if DEBUG: logger.info('Debug mode ON')
logger.info('Test logging for each thread')

#import logging_tree
#logging_tree.printout()
Set up boilerplate django-rest-framework 2020-01-06 21:58:38 +00:00			`"""`
			`Django settings for apiserver project.`

			`Generated by 'django-admin startproject' using Django 3.0.2.`

			`For more information on this file, see`
			`https://docs.djangoproject.com/en/3.0/topics/settings/`

			`For the full list of settings and their values, see`
			`https://docs.djangoproject.com/en/3.0/ref/settings/`
			`"""`

			`import os`
Set up proper logging 2020-03-08 00:36:16 +00:00			`import logging.config`
			`logger = logging.getLogger(__name__)`

Set up boilerplate django-rest-framework 2020-01-06 21:58:38 +00:00
Move Django secret key to secrets.py 2020-02-02 04:42:46 +00:00			`from . import secrets`

Set up boilerplate django-rest-framework 2020-01-06 21:58:38 +00:00			`# Build paths inside the project like this: os.path.join(BASE_DIR, ...)`
			`BASE_DIR = os.path.dirname(os.path.dirname(os.path.abspath(__file__)))`


			`# Quick-start development settings - unsuitable for production`
			`# See https://docs.djangoproject.com/en/3.0/howto/deployment/checklist/`

			`# SECURITY WARNING: keep the secret key used in production secret!`
Move Django secret key to secrets.py 2020-02-02 04:42:46 +00:00			`SECRET_KEY = secrets.DJANGO_SECRET_KEY`
Set up boilerplate django-rest-framework 2020-01-06 21:58:38 +00:00
			`# SECURITY WARNING: don't run with debug turned on in production!`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`DEBUG_ENV = os.environ.get('DEBUG', False)`
			`DEBUG = DEBUG_ENV or False`
Set up boilerplate django-rest-framework 2020-01-06 21:58:38 +00:00
Define static directory for Django admin site 2020-02-06 09:14:50 +00:00
Add my.protospace.ca to allowed hosts 2020-02-14 22:39:44 +00:00			`PRODUCTION_HOST = 'my.protospace.ca'`
Define static directory for Django admin site 2020-02-06 09:14:50 +00:00

Configure basic django settings 2020-01-06 22:10:39 +00:00			`# production hosts`
Add prod domains to ALLOWED_HOSTS 2020-02-02 03:56:56 +00:00			`ALLOWED_HOSTS = [`
Define static directory for Django admin site 2020-02-06 09:14:50 +00:00			`'api.' + PRODUCTION_HOST,`
Add prod domains to ALLOWED_HOSTS 2020-02-02 03:56:56 +00:00			`]`
Set up boilerplate django-rest-framework 2020-01-06 21:58:38 +00:00
Configure basic django settings 2020-01-06 22:10:39 +00:00			`if DEBUG:`
			`ALLOWED_HOSTS += [`
Move DB and whitelist localhost 2020-01-16 23:15:37 +00:00			`'localhost',`
			`'127.0.0.1',`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`'spaceport-api.dns.t0.vc',`
Move api and static urls to subdomains 2020-01-11 07:09:24 +00:00			`'api.spaceport.dns.t0.vc',`
Move PayPal out of sandbox in API, add hosts 2020-02-13 22:51:57 +00:00			`'api.my.dns.t0.vc',`
Add my.protospace.ca to allowed hosts 2020-02-14 22:39:44 +00:00			`'api.my.protospace.ca',`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`]`

Misc fixes 2020-01-21 05:00:45 +00:00			`SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')`
Force secure cookies 2020-02-21 22:46:26 +00:00			`SESSION_COOKIE_SECURE = True`
			`CSRF_COOKIE_SECURE = True`
Set same-origin referrer policy 2020-05-07 04:12:48 +00:00			`SECURE_REFERRER_POLICY = 'same-origin'`
Misc fixes 2020-01-21 05:00:45 +00:00
Set up boilerplate django-rest-framework 2020-01-06 21:58:38 +00:00
			`# Application definition`

			`INSTALLED_APPS = [`
			`'django.contrib.admin',`
			`'django.contrib.auth',`
			`'django.contrib.contenttypes',`
			`'django.contrib.sessions',`
			`'django.contrib.messages',`
			`'django.contrib.staticfiles',`
Add django-allauth for registrations 2020-01-07 08:23:06 +00:00			`'django.contrib.sites',`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`'rest_framework',`
Enable browsable API login 2020-01-06 23:05:19 +00:00			`'rest_framework.authtoken',`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`'apiserver.api',`
Add django-rest-auth 2020-01-06 23:14:41 +00:00			`'rest_auth',`
Add django-allauth for registrations 2020-01-07 08:23:06 +00:00			`'allauth',`
			`'allauth.account',`
Complete login, sign up, and member details 2020-01-08 23:43:59 +00:00			`'allauth.socialaccount', # to support user deletion`
Add django-allauth for registrations 2020-01-07 08:23:06 +00:00			`'rest_auth.registration',`
Add historical records to every model for auditing 2020-02-05 00:00:33 +00:00			`'simple_history',`
Set up boilerplate django-rest-framework 2020-01-06 21:58:38 +00:00			`]`

			`MIDDLEWARE = [`
			`'django.middleware.security.SecurityMiddleware',`
			`'django.contrib.sessions.middleware.SessionMiddleware',`
			`'django.middleware.common.CommonMiddleware',`
			`'django.middleware.csrf.CsrfViewMiddleware',`
			`'django.contrib.auth.middleware.AuthenticationMiddleware',`
			`'django.contrib.messages.middleware.MessageMiddleware',`
			`'django.middleware.clickjacking.XFrameOptionsMiddleware',`
Add historical records to every model for auditing 2020-02-05 00:00:33 +00:00			`'simple_history.middleware.HistoryRequestMiddleware',`
Set up boilerplate django-rest-framework 2020-01-06 21:58:38 +00:00			`]`

			`ROOT_URLCONF = 'apiserver.urls'`

			`TEMPLATES = [`
			`{`
			`'BACKEND': 'django.template.backends.django.DjangoTemplates',`
			`'DIRS': [],`
			`'APP_DIRS': True,`
			`'OPTIONS': {`
			`'context_processors': [`
			`'django.template.context_processors.debug',`
			`'django.template.context_processors.request',`
			`'django.contrib.auth.context_processors.auth',`
			`'django.contrib.messages.context_processors.messages',`
			`],`
			`},`
			`},`
			`]`

			`WSGI_APPLICATION = 'apiserver.wsgi.application'`


			`# Database`
			`# https://docs.djangoproject.com/en/3.0/ref/settings/#databases`

			`DATABASES = {`
			`'default': {`
			`'ENGINE': 'django.db.backends.sqlite3',`
Move DB and whitelist localhost 2020-01-16 23:15:37 +00:00			`'NAME': os.path.join(BASE_DIR, 'data/db.sqlite3'),`
Complete login, sign up, and member details 2020-01-08 23:43:59 +00:00			`},`
			`'old_portal': {`
			`'ENGINE': 'django.db.backends.sqlite3',`
			`'NAME': os.path.join(BASE_DIR, 'old_portal.sqlite3'),`
Set up boilerplate django-rest-framework 2020-01-06 21:58:38 +00:00			`}`
			`}`

Move caching to memcached 2020-02-07 09:06:02 +00:00			`CACHES = {`
			`'default': {`
			`'BACKEND': 'django.core.cache.backends.memcached.MemcachedCache',`
			`'LOCATION': '127.0.0.1:11211',`
			`'TIMEOUT': None,`
			`}`
			`}`

Set up boilerplate django-rest-framework 2020-01-06 21:58:38 +00:00
			`# Password validation`
			`# https://docs.djangoproject.com/en/3.0/ref/settings/#auth-password-validators`

			`AUTH_PASSWORD_VALIDATORS = [`
			`{`
			`'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',`
			`},`
			`{`
			`'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',`
			`},`
			`{`
			`'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',`
			`},`
			`{`
			`'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',`
			`},`
			`]`

Upgrade password hashing to Argon2 2020-01-07 08:04:18 +00:00			`PASSWORD_HASHERS = [`
			`'django.contrib.auth.hashers.Argon2PasswordHasher',`
			`'django.contrib.auth.hashers.PBKDF2PasswordHasher',`
			`'django.contrib.auth.hashers.PBKDF2SHA1PasswordHasher',`
			`'django.contrib.auth.hashers.BCryptSHA256PasswordHasher',`
			`]`


Set up boilerplate django-rest-framework 2020-01-06 21:58:38 +00:00
			`# Internationalization`
			`# https://docs.djangoproject.com/en/3.0/topics/i18n/`

			`LANGUAGE_CODE = 'en-us'`

			`TIME_ZONE = 'UTC'`

			`USE_I18N = True`

			`USE_L10N = True`

			`USE_TZ = True`


			`# Static files (CSS, JavaScript, Images)`
			`# https://docs.djangoproject.com/en/3.0/howto/static-files/`

Define static directory for Django admin site 2020-02-06 09:14:50 +00:00			`if DEBUG:`
			`STATIC_URL = '/static/'`
			`else:`
			`STATIC_URL = 'https://static.{}/'.format(PRODUCTION_HOST)`
			`STATIC_ROOT = os.path.join(BASE_DIR, 'data/static')`

Configure basic django settings 2020-01-06 22:10:39 +00:00
			`DEFAULT_RENDERER_CLASSES = (`
			`'rest_framework.renderers.JSONRenderer',`
			`)`

			`if DEBUG:`
			`DEFAULT_RENDERER_CLASSES += (`
			`'rest_framework.renderers.BrowsableAPIRenderer',`
			`)`

Enable browsable API login 2020-01-06 23:05:19 +00:00			`DEFAULT_AUTHENTICATION_CLASSES = (`
			`'rest_framework.authentication.TokenAuthentication',`
			`)`

			`if DEBUG:`
			`DEFAULT_AUTHENTICATION_CLASSES += (`
			`'rest_framework.authentication.SessionAuthentication',`
			`)`

Configure basic django settings 2020-01-06 22:10:39 +00:00			`REST_FRAMEWORK = {`
			`'DEFAULT_PAGINATION_CLASS': 'rest_framework.pagination.PageNumberPagination',`
Categorize PayPal membership tx, increase page size, sort tx by new 2020-02-22 05:21:33 +00:00			`'PAGE_SIZE': 300,`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`'DEFAULT_RENDERER_CLASSES': DEFAULT_RENDERER_CLASSES,`
Enable browsable API login 2020-01-06 23:05:19 +00:00			`'DEFAULT_AUTHENTICATION_CLASSES': DEFAULT_AUTHENTICATION_CLASSES,`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`}`

Set up proper logging 2020-03-08 00:36:16 +00:00			`#DEFAULT_LOGGING = None`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`LOGGING = {`
			`'version': 1,`
Set up proper logging 2020-03-08 00:36:16 +00:00			`'disable_existing_loggers': False,`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`'formatters': {`
			`'medium': {`
Set up proper logging 2020-03-08 00:36:16 +00:00			`'format': '[%(asctime)s] [%(process)d] [%(levelname)7s] %(message)s'`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`},`
Set up proper logging 2020-03-08 00:36:16 +00:00			`},`
			`'filters': {`
			`'ignore_stats': {`
			`'()': 'apiserver.filters.IgnoreStats',`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`},`
			`},`
			`'handlers': {`
			`'console': {`
Set up proper logging 2020-03-08 00:36:16 +00:00			`'level': 'DEBUG',`
			`'filters': ['ignore_stats'],`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`'class': 'logging.StreamHandler',`
			`'formatter': 'medium'`
			`},`
			`},`
			`'loggers': {`
			`'gunicorn': {`
			`'handlers': ['console'],`
Set up proper logging 2020-03-08 00:36:16 +00:00			`'level': 'DEBUG',`
			`'propagate': False,`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`},`
			`'': {`
			`'handlers': ['console'],`
Set up proper logging 2020-03-08 00:36:16 +00:00			`'level': 'DEBUG',`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`'propagate': True,`
			`},`
Set up proper logging 2020-03-08 00:36:16 +00:00			`},`
			`'root': {`
			`'level': 'INFO',`
			`'handlers': ['console'],`
			`},`
Configure basic django settings 2020-01-06 22:10:39 +00:00			`}`
Set up proper logging 2020-03-08 00:36:16 +00:00			`logging.config.dictConfig(LOGGING)`
Add django-allauth for registrations 2020-01-07 08:23:06 +00:00
			`SITE_ID = 1`
Complete login, sign up, and member details 2020-01-08 23:43:59 +00:00			`ACCOUNT_EMAIL_REQUIRED = True`
			`ACCOUNT_EMAIL_VERIFICATION = 'none'`
			`ACCOUNT_USERNAME_MIN_LENGTH = 3`
Import old transactions and link to members 2020-01-09 05:21:18 +00:00			`ACCOUNT_AUTHENTICATION_METHOD = 'username'`
Add change password form to webclient 2020-01-12 08:54:32 +00:00			`OLD_PASSWORD_FIELD_ENABLED = True`
			`LOGOUT_ON_PASSWORD_CHANGE = False`
Make member_id int, ignore username case 2020-01-21 23:46:44 +00:00			`ACCOUNT_PRESERVE_USERNAME_CASING = False`
Set up proper logging 2020-03-08 00:36:16 +00:00
Convert print statements to logger calls 2020-03-08 01:07:09 +00:00			`if DEBUG: logger.info('Debug mode ON')`
Set up proper logging 2020-03-08 00:36:16 +00:00			`logger.info('Test logging for each thread')`

			`#import logging_tree`
			`#logging_tree.printout()`