Comments (7)
SECRET_KEY = "@(9b9jslgg41u1u=mr)-2*-n2x0vef0zsy39*z@sz18&tvow18"
The secret key should be randomly generated for each install of pyshelf, This is probably something we will have to handle during the setup phase, probably by generating one into the config.json, and referencing it
DEBUG = TEMPLATE_DEBUG = True
if DEBUG is True:
from pudb.remote import set_trace
ALLOWED_HOSTS = CONFIG.allowed_hosts
The django test server requires the debug setting to be true in order to correctly reference static files.https://docs.djangoproject.com/en/3.0/howto/static-files/, in an attempt to make the project more accessible to new users I have chosen to leave the debug setting to true that they may easily host the frontend. The README should be updated to reflect this to users so they may toggle it off during their install.
My thoughts are that if they dont know how to setup a web server, and have been warned against using the testserver and still choose to then security isnt a concern for them.
from pyshelf.
DEBUG = TEMPLATE_DEBUG = True if DEBUG is True: from pudb.remote import set_trace ALLOWED_HOSTS = CONFIG.allowed_hosts
The django test server requires the debug setting to be true in order to correctly reference static files.https://docs.djangoproject.com/en/3.0/howto/static-files/, in an attempt to make the project more accessible to new users I have chosen to leave the debug setting to true that they may easily host the frontend. The README should be updated to reflect this to users so they may toggle it off during their install.
My thoughts are that if they dont know how to setup a web server, and have been warned against using the testserver and still choose to then security isnt a concern for them.
I see, I stumbled on this, because we git pull
the repository into the docker image and therefor the docker runs in debug mode instead of production mode. In order to circumvent this, we should have a way to pull or download a release version.
from pyshelf.
Sounds like were gonna need to set that in config sooner then later
from pyshelf.
As an alternative to using debug settings, Whitenoise supports serving static files for Django in production.
from pyshelf.
As an alternative to using debug settings, Whitenoise supports serving static files for Django in production.
This looks promising.
from pyshelf.
Django secret keys now generate on a per-install basis 0fc3d44
from pyshelf.
As of version 0.6.0 this is no longer an issue.
from pyshelf.
Related Issues (20)
- Binary image display in template HOT 2
- [Feature] ebook friendly ui HOT 2
- Installation Options
- Incorrect Website HOT 3
- Linux Install importBooks Issue HOT 3
- Add ability to import books from frontend HOT 6
- Add ability to directly E-mail Mobi files to Kindle E-mail addresses
- Allow user defined config variables as docker environment variables
- Add Support for Other Architectures HOT 1
- Value too long for type character results in failure during import books HOT 6
- Website is down HOT 1
- Dynamically display books in html HOT 2
- Import books times out when executed from web ui HOT 1
- sqlite support ? HOT 1
- Features - link pyshelf to pyshelf HOT 2
- Calibre support
- Add user HOT 1
- Features - github support HOT 3
- Features - attached ressources HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from pyshelf.