Home Explore Help
Sign In
SMusatov
/
GlitchTip
mirror of https://gitlab.com/glitchtip/glitchtip-backend.git
1
0
Fork 0
Files
Tree: 5b3b80dd11
Branches Tags
GlitchTip
/
glitchtip
/
settings.py

settings.py 20 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570 
  1. """
    2. 

  2. Django settings for glitchtip project.
    3. 

  3. 

  4. Generated by 'django-admin startproject' using Django 3.0rc1.
    5. 

  5. 

  6. For more information on this file, see
    7. 

  7. https://docs.djangoproject.com/en/dev/topics/settings/
    8. 

  8. 

  9. For the full list of settings and their values, see
    10. 

  10. https://docs.djangoproject.com/en/dev/ref/settings/
    11. 

  11. """
    12. 

  12. 

  13. import logging
    14. 

  14. import os
    15. 

  15. import sys
    16. 

  16. import warnings
    17. 

  17. from datetime import timedelta
    18. 

  18. 

  19. import environ
    20. 

  20. import sentry_sdk
    21. 

  21. from celery.schedules import crontab
    22. 

  22. from django.core.exceptions import ImproperlyConfigured
    23. 

  23. from sentry_sdk.integrations.django import DjangoIntegration
    24. 

  24. from whitenoise.storage import CompressedManifestStaticFilesStorage
    25. 

  25. 

  26. env = environ.Env(
    27. 

  27.     ALLOWED_HOSTS=(list, ["*"]),
    28. 

  28.     AWS_ACCESS_KEY_ID=(str, None),
    29. 

  29.     AWS_SECRET_ACCESS_KEY=(str, None),
    30. 

  30.     AWS_STORAGE_BUCKET_NAME=(str, None),
    31. 

  31.     AWS_S3_ENDPOINT_URL=(str, None),
    32. 

  32.     AWS_LOCATION=(str, ""),
    33. 

  33.     DEBUG=(bool, False),
    34. 

  34.     DEBUG_TOOLBAR=(bool, False),
    35. 

  35.     STATIC_URL=(str, "/"),
    36. 

  36.     STATICFILES_STORAGE=(str, "glitchtip.settings.NoSourceMapsStorage",),
    37. 

  37. )
    38. 

  38. path = environ.Path()
    39. 

  39. 

  40. # Build paths inside the project like this: os.path.join(BASE_DIR, ...)
    41. 

  41. BASE_DIR = os.path.dirname(os.path.dirname(os.path.abspath(__file__)))
    42. 

  42. 

  43. 

  44. # Quick-start development settings - unsuitable for production
    45. 

  45. # See https://docs.djangoproject.com/en/dev/howto/deployment/checklist/
    46. 

  46. 

  47. # SECURITY WARNING: keep the secret key used in production secret!
    48. 

  48. SECRET_KEY = env.str("SECRET_KEY", "change_me")
    49. 

  49. 

  50. # SECURITY WARNING: don't run with debug turned on in production!
    51. 

  51. DEBUG = env("DEBUG")
    52. 

  52. 

  53. # Enable only for running end to end testing. Debug must be True to use.
    54. 

  54. ENABLE_TEST_API = env.bool("ENABLE_TEST_API", False)
    55. 

  55. if DEBUG is False:
    56. 

  56.     ENABLE_TEST_API = False
    57. 

  57. 

  58. ALLOWED_HOSTS = env("ALLOWED_HOSTS")
    59. 

  59. # Necessary for kubernetes health checks
    60. 

  60. POD_IP = env.str("POD_IP", default=None)
    61. 

  61. if POD_IP:
    62. 

  62.     ALLOWED_HOSTS.append(POD_IP)
    63. 

  63. 

  64. 

  65. ENVIRONMENT = env.str("ENVIRONMENT", None)
    66. 

  66. GLITCHTIP_VERSION = env.str("GLITCHTIP_VERSION", None)
    67. 

  67. 

  68. # Used in email and DSN generation. Set to full domain such as https://glitchtip.example.com
    69. 

  69. default_url = env.str(
    70. 

  70.     "APP_URL", env.str("GLITCHTIP_DOMAIN", "http://localhost:8000")
    71. 

  71. )  # DigitalOcean App Platform uses APP_URL
    72. 

  72. GLITCHTIP_URL = env.url("GLITCHTIP_URL", default_url)
    73. 

  73. if GLITCHTIP_URL.scheme not in ["http", "https"]:
    74. 

  74.     raise ImproperlyConfigured("GLITCHTIP_DOMAIN must start with http or https")
    75. 

  75. 

  76. # Events and associated data older than this will be deleted from the database
    77. 

  77. GLITCHTIP_MAX_EVENT_LIFE_DAYS = env.int("GLITCHTIP_MAX_EVENT_LIFE_DAYS", default=90)
    78. 

  78. 

  79. # For development purposes only, prints out inbound event store json
    80. 

  80. EVENT_STORE_DEBUG = env.bool("EVENT_STORE_DEBUG", False)
    81. 

  81. # Throttle % of all transaction events. Not intended for general use. May change without warning.
    82. 

  82. THROTTLE_TRANSACTION_EVENTS = env.float("THROTTLE_TRANSACTION_EVENTS", None)
    83. 

  83. 

  84. GLITCHTIP_ENABLE_DIFS = env.bool("GLITCHTIP_ENABLE_DIFS", False)
    85. 

  85. 

  86. # GlitchTip can track GlitchTip's own errors.
    87. 

  87. # If enabling this, use a different server to avoid infinite loops.
    88. 

  88. def before_send(event, hint):
    89. 

  89.     """Don't log django.DisallowedHost errors in Sentry."""
    90. 

  90.     if "log_record" in hint:
    91. 

  91.         if hint["log_record"].name == "django.security.DisallowedHost":
    92. 

  92.             return None
    93. 

  93. 

  94.     return event
    95. 

  95. 

  96. 

  97. SENTRY_DSN = env.str("SENTRY_DSN", None)
    98. 

  98. # Optionally allow a different DSN for the frontend
    99. 

  99. SENTRY_FRONTEND_DSN = env.str("SENTRY_FRONTEND_DSN", SENTRY_DSN)
    100. 

  100. # Set traces_sample_rate to 1.0 to capture 100%. Recommended to keep this value low.
    101. 

  101. # Disabled by default
    102. 

  102. SENTRY_TRACES_SAMPLE_RATE = env.float("SENTRY_TRACES_SAMPLE_RATE", None)
    103. 

  103. if SENTRY_DSN:
    104. 

  104.     release = "glitchtip@" + GLITCHTIP_VERSION if GLITCHTIP_VERSION else None
    105. 

  105.     sentry_sdk.init(
    106. 

  106.         dsn=SENTRY_DSN,
    107. 

  107.         integrations=[DjangoIntegration()],
    108. 

  108.         before_send=before_send,
    109. 

  109.         release=release,
    110. 

  110.         environment=ENVIRONMENT,
    111. 

  111.         auto_session_tracking=False,
    112. 

  112.         traces_sample_rate=SENTRY_TRACES_SAMPLE_RATE,
    113. 

  113.     )
    114. 

  114. 

  115. 

  116. def show_toolbar(request):
    117. 

  117.     return env("DEBUG_TOOLBAR")
    118. 

  118. 

  119. 

  120. DEBUG_TOOLBAR_CONFIG = {"SHOW_TOOLBAR_CALLBACK": show_toolbar}
    121. 

  121. DEBUG_TOOLBAR_PANELS = [
    122. 

  122.     "debug_toolbar.panels.versions.VersionsPanel",
    123. 

  123.     "debug_toolbar.panels.timer.TimerPanel",
    124. 

  124.     "debug_toolbar.panels.settings.SettingsPanel",
    125. 

  125.     "debug_toolbar.panels.headers.HeadersPanel",
    126. 

  126.     "debug_toolbar.panels.request.RequestPanel",
    127. 

  127.     "debug_toolbar.panels.sql.SQLPanel",
    128. 

  128. ]
    129. 

  129. 

  130. # Application definition
    131. 

  131. 

  132. INSTALLED_APPS = [
    133. 

  133.     "django_rest_mfa.mfa_admin",
    134. 

  134.     "django.contrib.admin",
    135. 

  135.     "django.contrib.auth",
    136. 

  136.     "django.contrib.contenttypes",
    137. 

  137.     "django.contrib.sessions",
    138. 

  138.     "django.contrib.messages",
    139. 

  139.     "django.contrib.staticfiles",
    140. 

  140.     "django.contrib.sites",
    141. 

  141.     "django.contrib.postgres",
    142. 

  142.     "allauth",
    143. 

  143.     "allauth.account",
    144. 

  144.     "allauth.socialaccount",
    145. 

  145.     "allauth.socialaccount.providers.digitalocean",
    146. 

  146.     "allauth.socialaccount.providers.gitea",
    147. 

  147.     "allauth.socialaccount.providers.github",
    148. 

  148.     "allauth.socialaccount.providers.gitlab",
    149. 

  149.     "allauth.socialaccount.providers.google",
    150. 

  150.     "allauth.socialaccount.providers.microsoft",
    151. 

  151.     "allauth.socialaccount.providers.nextcloud",
    152. 

  152.     "anymail",
    153. 

  153.     "corsheaders",
    154. 

  154.     "django_celery_results",
    155. 

  155.     "django_filters",
    156. 

  156.     "django_extensions",
    157. 

  157.     "django_rest_mfa",
    158. 

  158.     "debug_toolbar",
    159. 

  159.     "rest_framework",
    160. 

  160.     "drf_yasg",
    161. 

  161.     "dj_rest_auth",
    162. 

  162.     "dj_rest_auth.registration",
    163. 

  163.     "storages",
    164. 

  164.     "glitchtip",
    165. 

  165.     "alerts",
    166. 

  166.     "api_tokens",
    167. 

  167.     "environments",
    168. 

  168.     "files",
    169. 

  169.     "organizations_ext",
    170. 

  170.     "events",
    171. 

  171.     "issues",
    172. 

  172.     "users",
    173. 

  173.     "user_reports",
    174. 

  174.     "glitchtip.uptime",
    175. 

  175.     "performance",
    176. 

  176.     "projects",
    177. 

  177.     "teams",
    178. 

  178.     "releases",
    179. 

  179.     "difs",
    180. 

  180. ]
    181. 

  181. 

  182. # Ensure no one uses runsslserver in production
    183. 

  183. if SECRET_KEY == "change_me" and DEBUG is True:
    184. 

  184.     INSTALLED_APPS += ["sslserver"]
    185. 

  185. 

  186. MIDDLEWARE = [
    187. 

  187.     "django.middleware.security.SecurityMiddleware",
    188. 

  188.     "django.contrib.sessions.middleware.SessionMiddleware",
    189. 

  189.     "corsheaders.middleware.CorsMiddleware",
    190. 

  190.     "csp.middleware.CSPMiddleware",
    191. 

  191.     "django.middleware.clickjacking.XFrameOptionsMiddleware",
    192. 

  192.     "whitenoise.middleware.WhiteNoiseMiddleware",
    193. 

  193.     "debug_toolbar.middleware.DebugToolbarMiddleware",
    194. 

  194.     "django.middleware.common.CommonMiddleware",
    195. 

  195.     "django.middleware.csrf.CsrfViewMiddleware",
    196. 

  196.     "django.contrib.auth.middleware.AuthenticationMiddleware",
    197. 

  197.     "django.contrib.messages.middleware.MessageMiddleware",
    198. 

  198.     "django.middleware.clickjacking.XFrameOptionsMiddleware",
    199. 

  199.     "sentry.middleware.proxy.DecompressBodyMiddleware",
    200. 

  200. ]
    201. 

  201. 

  202. ROOT_URLCONF = "glitchtip.urls"
    203. 

  203. 

  204. TEMPLATES = [
    205. 

  205.     {
    206. 

  206.         "BACKEND": "django.template.backends.django.DjangoTemplates",
    207. 

  207.         "DIRS": [path("dist"), path("templates")],
    208. 

  208.         "APP_DIRS": True,
    209. 

  209.         "OPTIONS": {
    210. 

  210.             "context_processors": [
    211. 

  211.                 "django.template.context_processors.debug",
    212. 

  212.                 "django.template.context_processors.request",
    213. 

  213.                 "django.contrib.auth.context_processors.auth",
    214. 

  214.                 "django.contrib.messages.context_processors.messages",
    215. 

  215.             ],
    216. 

  216.         },
    217. 

  217.     },
    218. 

  218. ]
    219. 

  219. 

  220. WSGI_APPLICATION = "glitchtip.wsgi.application"
    221. 

  221. 

  222. CORS_ORIGIN_ALLOW_ALL = env.bool("CORS_ORIGIN_ALLOW_ALL", True)
    223. 

  223. CORS_ORIGIN_WHITELIST = env.tuple("CORS_ORIGIN_WHITELIST", str, default=())
    224. 

  224. SECURE_BROWSER_XSS_FILTER = True
    225. 

  225. CSP_DEFAULT_SRC = env.list("CSP_DEFAULT_SRC", str, ["'self'"])
    226. 

  226. CSP_STYLE_SRC = env.list(
    227. 

  227.     "CSP_STYLE_SRC", str, ["'self'", "'unsafe-inline'", "https://fonts.googleapis.com"]
    228. 

  228. )
    229. 

  229. CSP_STYLE_SRC_ELEM = env.list(
    230. 

  230.     "CSP_STYLE_SRC_ELEM",
    231. 

  231.     str,
    232. 

  232.     ["'self'", "'unsafe-inline'", "https://fonts.googleapis.com"],
    233. 

  233. )
    234. 

  234. CSP_FONT_SRC = env.list(
    235. 

  235.     "CSP_FONT_SRC", str, ["'self'", "https://fonts.gstatic.com", "data:"]
    236. 

  236. )
    237. 

  237. # Redoc requires blob
    238. 

  238. CSP_WORKER_SRC = env.list("CSP_WORKER_SRC", str, ["'self'", "blob:"])
    239. 

  239. # GlitchTip can record it's own errors
    240. 

  240. CSP_CONNECT_SRC = env.list(
    241. 

  241.     "CSP_CONNECT_SRC", str, ["'self'", "https://*.glitchtip.com"]
    242. 

  242. )
    243. 

  243. # Needed for Analytics and Stripe for SaaS use cases. Both are disabled by default.
    244. 

  244. CSP_SCRIPT_SRC = env.list(
    245. 

  245.     "CSP_SCRIPT_SRC",
    246. 

  246.     str,
    247. 

  247.     ["'self'", "https://*.glitchtip.com", "https://js.stripe.com"],
    248. 

  248. )
    249. 

  249. CSP_IMG_SRC = env.list("CSP_IMG_SRC", str, ["'self'"])
    250. 

  250. CSP_FRAME_SRC = env.list("CSP_FRAME_SRC", str, ["'self'", "https://js.stripe.com"])
    251. 

  251. # Consider tracking CSP reports with GlitchTip itself
    252. 

  252. CSP_REPORT_URI = env.tuple("CSP_REPORT_URI", str, None)
    253. 

  253. CSP_REPORT_ONLY = env.bool("CSP_REPORT_ONLY", False)
    254. 

  254. SECURE_HSTS_SECONDS = env.int("SECURE_HSTS_SECONDS", 0)
    255. 

  255. SECURE_HSTS_PRELOAD = env.bool("SECURE_HSTS_PRELOAD", False)
    256. 

  256. SECURE_HSTS_INCLUDE_SUBDOMAINS = env.bool("SECURE_HSTS_INCLUDE_SUBDOMAINS", False)
    257. 

  257. SESSION_COOKIE_SECURE = env.bool("SESSION_COOKIE_SECURE", False)
    258. 

  258. SESSION_COOKIE_SAMESITE = env.str("SESSION_COOKIE_SAMESITE", "Lax")
    259. 

  259. 

  260. DEFAULT_FROM_EMAIL = env.str("DEFAULT_FROM_EMAIL", "webmaster@localhost")
    261. 

  261. ANYMAIL = {
    262. 

  262.     "MAILGUN_API_KEY": env.str("MAILGUN_API_KEY", None),
    263. 

  263.     "MAILGUN_SENDER_DOMAIN": env.str("MAILGUN_SENDER_DOMAIN", None),
    264. 

  264.     "MAILGUN_API_URL": env.str("MAILGUN_API_URL", "https://api.mailgun.net/v3"),
    265. 

  265. }
    266. 

  266. 

  267. ACCOUNT_EMAIL_SUBJECT_PREFIX = ""
    268. 

  268. 

  269. # Database
    270. 

  270. # https://docs.djangoproject.com/en/dev/ref/settings/#databases
    271. 

  271. 

  272. DATABASES = {
    273. 

  273.     "default": env.db(default="postgres://postgres:postgres@postgres:5432/postgres")
    274. 

  274. }
    275. 

  275. DEFAULT_AUTO_FIELD = "django.db.models.AutoField"
    276. 

  276. 

  277. # We need to support both url and broken out host to support helm redis chart
    278. 

  278. REDIS_HOST = env.str("REDIS_HOST", None)
    279. 

  279. if REDIS_HOST:
    280. 

  280.     REDIS_PORT = env.str("REDIS_PORT", "6379")
    281. 

  281.     REDIS_DATABASE = env.str("REDIS_DATABASE", "0")
    282. 

  282.     REDIS_PASSWORD = env.str("REDIS_PASSWORD", None)
    283. 

  283.     if REDIS_PASSWORD:
    284. 

  284.         REDIS_URL = (
    285. 

  285.             f"redis://:{REDIS_PASSWORD}@{REDIS_HOST}:{REDIS_PORT}/{REDIS_DATABASE}"
    286. 

  286.         )
    287. 

  287.     else:
    288. 

  288.         REDIS_URL = f"redis://{REDIS_HOST}:{REDIS_PORT}/{REDIS_DATABASE}"
    289. 

  289. else:
    290. 

  290.     REDIS_URL = env.str("REDIS_URL", "redis://redis:6379/0")
    291. 

  291. CELERY_BROKER_URL = REDIS_URL
    292. 

  292. CELERY_BROKER_TRANSPORT_OPTIONS = {
    293. 

  293.     "fanout_prefix": True,
    294. 

  294.     "fanout_patterns": True,
    295. 

  295. }
    296. 

  296. CELERY_RESULT_BACKEND = "django-db"
    297. 

  297. CELERY_CACHE_BACKEND = "django-cache"
    298. 

  298. CELERY_BEAT_SCHEDULE = {
    299. 

  299.     "send-alert-notifications": {
    300. 

  300.         "task": "alerts.tasks.process_alerts",
    301. 

  301.         "schedule": 60,
    302. 

  302.     },
    303. 

  303.     "cleanup-old-events": {
    304. 

  304.         "task": "issues.tasks.cleanup_old_events",
    305. 

  305.         "schedule": crontab(hour=6, minute=1),
    306. 

  306.     },
    307. 

  307.     "cleanup-old-transaction-events": {
    308. 

  308.         "task": "performance.tasks.cleanup_old_transaction_events",
    309. 

  309.         "schedule": crontab(hour=6, minute=10),
    310. 

  310.     },
    311. 

  311.     "cleanup-old-monitor-checks": {
    312. 

  312.         "task": "glitchtip.uptime.tasks.cleanup_old_monitor_checks",
    313. 

  313.         "schedule": crontab(hour=6, minute=20),
    314. 

  314.     },
    315. 

  315.     "uptime-dispatch-checks": {
    316. 

  316.         "task": "glitchtip.uptime.tasks.dispatch_checks",
    317. 

  317.         "schedule": timedelta(seconds=30),
    318. 

  318.     },
    319. 

  319. }
    320. 

  320. CACHES = {"default": {"BACKEND": "redis_cache.RedisCache", "LOCATION": REDIS_URL}}
    321. 

  321. 

  322. # Password validation
    323. 

  323. # https://docs.djangoproject.com/en/dev/ref/settings/#auth-password-validators
    324. 

  324. 

  325. AUTH_PASSWORD_VALIDATORS = [
    326. 

  326.     {
    327. 

  327.         "NAME": "django.contrib.auth.password_validation.UserAttributeSimilarityValidator",
    328. 

  328.     },
    329. 

  329.     {"NAME": "django.contrib.auth.password_validation.MinimumLengthValidator",},
    330. 

  330.     {"NAME": "django.contrib.auth.password_validation.CommonPasswordValidator",},
    331. 

  331.     {"NAME": "django.contrib.auth.password_validation.NumericPasswordValidator",},
    332. 

  332. ]
    333. 

  333. 

  334. 

  335. # Internationalization
    336. 

  336. # https://docs.djangoproject.com/en/dev/topics/i18n/
    337. 

  337. 

  338. LANGUAGE_CODE = "en-us"
    339. 

  339. 

  340. TIME_ZONE = "UTC"
    341. 

  341. 

  342. USE_I18N = True
    343. 

  343. 

  344. USE_L10N = True
    345. 

  345. 

  346. USE_TZ = True
    347. 

  347. 

  348. SITE_ID = 1
    349. 

  349. 

  350. # Static files (CSS, JavaScript, Images)
    351. 

  351. # https://docs.djangoproject.com/en/dev/howto/static-files/
    352. 

  352. STATIC_URL = "/static/"
    353. 

  353. 

  354. 

  355. AWS_ACCESS_KEY_ID = env("AWS_ACCESS_KEY_ID")
    356. 

  356. AWS_SECRET_ACCESS_KEY = env("AWS_SECRET_ACCESS_KEY")
    357. 

  357. AWS_STORAGE_BUCKET_NAME = env("AWS_STORAGE_BUCKET_NAME")
    358. 

  358. AWS_S3_ENDPOINT_URL = env("AWS_S3_ENDPOINT_URL")
    359. 

  359. AWS_LOCATION = env("AWS_LOCATION")
    360. 

  360. 

  361. if AWS_S3_ENDPOINT_URL:
    362. 

  362.     MEDIA_URL = env.str(
    363. 

  363.         "MEDIA_URL", "https://%s/%s/" % (AWS_S3_ENDPOINT_URL, AWS_LOCATION)
    364. 

  364.     )
    365. 

  365.     DEFAULT_FILE_STORAGE = "storages.backends.s3boto3.S3Boto3Storage"
    366. 

  366. else:
    367. 

  367.     MEDIA_URL = "media/"
    368. 

  368. MEDIA_ROOT = env.str("MEDIA_ROOT", "")
    369. 

  369. 

  370. STATICFILES_DIRS = [
    371. 

  371.     "assets",
    372. 

  372.     "dist",
    373. 

  373. ]
    374. 

  374. STATIC_ROOT = path("static/")
    375. 

  375. STATICFILES_STORAGE = env("STATICFILES_STORAGE")
    376. 

  376. EMAIL_BACKEND = env.str(
    377. 

  377.     "EMAIL_BACKEND", default="django.core.mail.backends.smtp.EmailBackend"
    378. 

  378. )
    379. 

  379. if os.getenv("EMAIL_URL"):
    380. 

  380.     EMAIL_CONFIG = env.email_url("EMAIL_URL")
    381. 

  381.     vars().update(EMAIL_CONFIG)
    382. 

  382. 

  383. AUTH_USER_MODEL = "users.User"
    384. 

  384. ACCOUNT_AUTHENTICATION_METHOD = "email"
    385. 

  385. ACCOUNT_EMAIL_REQUIRED = True
    386. 

  386. ACCOUNT_USERNAME_REQUIRED = False
    387. 

  387. ACCOUNT_USER_MODEL_USERNAME_FIELD = None
    388. 

  388. ACCOUNT_ADAPTER = "glitchtip.social.MFAAccountAdapter"
    389. 

  389. INVITATION_BACKEND = "organizations_ext.invitation_backend.InvitationBackend"
    390. 

  390. SOCIALACCOUNT_PROVIDERS = {}
    391. 

  391. GITLAB_URL = env.url("SOCIALACCOUNT_PROVIDERS_gitlab_GITLAB_URL", None)
    392. 

  392. if GITLAB_URL:
    393. 

  393.     SOCIALACCOUNT_PROVIDERS["gitlab"] = {"GITLAB_URL": GITLAB_URL.geturl()}
    394. 

  394. GITEA_URL = env.url("SOCIALACCOUNT_PROVIDERS_gitea_GITEA_URL", None)
    395. 

  395. if GITEA_URL:
    396. 

  396.     SOCIALACCOUNT_PROVIDERS["gittea"] = {"GITEA_URL": GITEA_URL.geturl()}
    397. 

  397. NEXTCLOUD_URL = env.url("SOCIALACCOUNT_PROVIDERS_nextcloud_SERVER", None)
    398. 

  398. if NEXTCLOUD_URL:
    399. 

  399.     SOCIALACCOUNT_PROVIDERS["nextcloud"] = {"SERVER": NEXTCLOUD_URL.geturl()}
    400. 

  400. 

  401. OLD_PASSWORD_FIELD_ENABLED = True
    402. 

  402. LOGOUT_ON_PASSWORD_CHANGE = False
    403. 

  403. 

  404. REST_AUTH_SERIALIZERS = {
    405. 

  405.     "USER_DETAILS_SERIALIZER": "users.serializers.UserSerializer",
    406. 

  406.     "TOKEN_SERIALIZER": "users.serializers.NoopTokenSerializer",
    407. 

  407.     "PASSWORD_RESET_SERIALIZER": "users.serializers.PasswordSetResetSerializer",
    408. 

  408. }
    409. 

  409. REST_AUTH_REGISTER_SERIALIZERS = {
    410. 

  410.     "REGISTER_SERIALIZER": "users.serializers.RegisterSerializer",
    411. 

  411. }
    412. 

  412. REST_AUTH_TOKEN_MODEL = None
    413. 

  413. REST_AUTH_TOKEN_CREATOR = "users.utils.noop_token_creator"
    414. 

  414. 

  415. # By default (False) only the first user, superuser, or organization owners may register
    416. 

  416. # and create an organization. Other users must be invited. Intended for private instances
    417. 

  417. ENABLE_OPEN_USER_REGISTRATION = env.bool("ENABLE_OPEN_USER_REGISTRATION", False)
    418. 

  418. 

  419. AUTHENTICATION_BACKENDS = (
    420. 

  420.     # Needed to login by username in Django admin, regardless of `allauth`
    421. 

  421.     "django.contrib.auth.backends.ModelBackend",
    422. 

  422.     # `allauth` specific authentication methods, such as login by e-mail
    423. 

  423.     "allauth.account.auth_backends.AuthenticationBackend",
    424. 

  424. )
    425. 

  425. 

  426. DEFAULT_RENDERER_CLASSES = ("rest_framework.renderers.JSONRenderer",)
    427. 

  427. if DEBUG:
    428. 

  428.     DEFAULT_RENDERER_CLASSES = DEFAULT_RENDERER_CLASSES + (
    429. 

  429.         "rest_framework.renderers.BrowsableAPIRenderer",
    430. 

  430.     )
    431. 

  431. 

  432. REST_FRAMEWORK = {
    433. 

  433.     "DEFAULT_PERMISSION_CLASSES": ["rest_framework.permissions.IsAuthenticated"],
    434. 

  434.     "DEFAULT_PAGINATION_CLASS": "glitchtip.pagination.LinkHeaderPagination",
    435. 

  435.     "PAGE_SIZE": 50,
    436. 

  436.     "ORDERING_PARAM": "sort",
    437. 

  437.     "DEFAULT_FILTER_BACKENDS": ("django_filters.rest_framework.DjangoFilterBackend",),
    438. 

  438.     "DEFAULT_RENDERER_CLASSES": DEFAULT_RENDERER_CLASSES,
    439. 

  439.     "DEFAULT_AUTHENTICATION_CLASSES": [
    440. 

  440.         "rest_framework.authentication.SessionAuthentication",
    441. 

  441.         "glitchtip.authentication.BearerTokenAuthentication",
    442. 

  442.     ],
    443. 

  443.     "DEFAULT_THROTTLE_RATES": {"anon": "100/minute"},
    444. 

  444. }
    445. 

  445. 

  446. DRF_YASG_EXCLUDE_VIEWS = [
    447. 

  447.     "users.views.SocialAccountDisconnectView",
    448. 

  448. ]
    449. 

  449. SWAGGER_SETTINGS = {
    450. 

  450.     "DEFAULT_AUTO_SCHEMA_CLASS": "glitchtip.yasg.SquadSwaggerAutoSchema",
    451. 

  451. }
    452. 

  452. 

  453. 

  454. LOGGING_HANDLER_CLASS = env.str("DJANGO_LOGGING_HANDLER_CLASS", "logging.StreamHandler")
    455. 

  455. LOGGING = {
    456. 

  456.     "version": 1,
    457. 

  457.     "disable_existing_loggers": False,
    458. 

  458.     "handlers": {
    459. 

  459.         "null": {"class": "logging.NullHandler",},
    460. 

  460.         "console": {"class": LOGGING_HANDLER_CLASS,},
    461. 

  461.     },
    462. 

  462.     "loggers": {
    463. 

  463.         "django.security.DisallowedHost": {"handlers": ["null"], "propagate": False,},
    464. 

  464.     },
    465. 

  465.     "root": {"handlers": ["console"]},
    466. 

  466. }
    467. 

  467. 

  468. if LOGGING_HANDLER_CLASS is not logging.StreamHandler:
    469. 

  469.     from celery.signals import after_setup_logger, after_setup_task_logger
    470. 

  470. 

  471.     @after_setup_logger.connect
    472. 

  472.     @after_setup_task_logger.connect
    473. 

  473.     def setup_celery_logging(logger, **kwargs):
    474. 

  474.         from django.utils.module_loading import import_string
    475. 

  475. 

  476.         handler = import_string(LOGGING_HANDLER_CLASS)
    477. 

  477. 

  478.         for h in logger.handlers:
    479. 

  479.             logger.removeHandler(h)
    480. 

  480.         logger.addHandler(handler())
    481. 

  481. 

  482. 

  483. def organization_request_callback(request):
    484. 

  484.     """ Gets an organization instance from the id passed through ``request``"""
    485. 

  485.     user = request.user
    486. 

  486.     if user:
    487. 

  487.         return user.organizations_ext_organization.filter(
    488. 

  488.             owner__organization_user__user=user
    489. 

  489.         ).first()
    490. 

  490. 

  491. 

  492. # Set to track activity with Plausible
    493. 

  493. PLAUSIBLE_URL = env.str("PLAUSIBLE_URL", default=None)
    494. 

  494. PLAUSIBLE_DOMAIN = env.str("PLAUSIBLE_DOMAIN", default=None)
    495. 

  495. 

  496. # Set to chatwoot website token to enable live help widget. Assumes app.chatwoot.com.
    497. 

  497. CHATWOOT_WEBSITE_TOKEN = env.str("CHATWOOT_WEBSITE_TOKEN", None)
    498. 

  498. 

  499. # Is running unit test
    500. 

  500. TESTING = len(sys.argv) > 1 and sys.argv[1] == "test"
    501. 

  501. 

  502. # See https://liberapay.com/GlitchTip/donate - suggested self-host donation is $5/month/user.
    503. 

  503. # Support plans available. Email info@burkesoftware.com for more info.
    504. 

  504. I_PAID_FOR_GLITCHTIP = env.bool("I_PAID_FOR_GLITCHTIP", False)
    505. 

  505. 

  506. # Max events per month for free tier
    507. 

  507. BILLING_FREE_TIER_EVENTS = env.int("BILLING_FREE_TIER_EVENTS", 1000)
    508. 

  508. DJSTRIPE_SUBSCRIBER_MODEL = "organizations_ext.Organization"
    509. 

  509. DJSTRIPE_SUBSCRIBER_MODEL_REQUEST_CALLBACK = organization_request_callback
    510. 

  510. DJSTRIPE_USE_NATIVE_JSONFIELD = True
    511. 

  511. DJSTRIPE_FOREIGN_KEY_TO_FIELD = "djstripe_id"
    512. 

  512. STRIPE_AUTOMATIC_TAX = env.bool("STRIPE_AUTOMATIC_TAX", False)
    513. 

  513. BILLING_ENABLED = False
    514. 

  514. STRIPE_LIVE_MODE = env.bool("STRIPE_LIVE_MODE", False)
    515. 

  515. if env.str("STRIPE_TEST_PUBLIC_KEY", None) or env.str("STRIPE_LIVE_PUBLIC_KEY", None):
    516. 

  516.     BILLING_ENABLED = True
    517. 

  517.     I_PAID_FOR_GLITCHTIP = True
    518. 

  518.     INSTALLED_APPS.append("djstripe")
    519. 

  519.     INSTALLED_APPS.append("djstripe_ext")
    520. 

  520.     STRIPE_TEST_PUBLIC_KEY = env.str("STRIPE_TEST_PUBLIC_KEY", None)
    521. 

  521.     STRIPE_TEST_SECRET_KEY = env.str("STRIPE_TEST_SECRET_KEY", None)
    522. 

  522.     STRIPE_LIVE_PUBLIC_KEY = env.str("STRIPE_LIVE_PUBLIC_KEY", None)
    523. 

  523.     STRIPE_LIVE_SECRET_KEY = env.str("STRIPE_LIVE_SECRET_KEY", None)
    524. 

  524.     DJSTRIPE_WEBHOOK_SECRET = env.str("DJSTRIPE_WEBHOOK_SECRET", None)
    525. 

  525.     CELERY_BEAT_SCHEDULE["set-organization-throttle"] = {
    526. 

  526.         "task": "organizations_ext.tasks.set_organization_throttle",
    527. 

  527.         "schedule": crontab(hour=7, minute=1),
    528. 

  528.     }
    529. 

  529.     CELERY_BEAT_SCHEDULE["warn-organization-throttle"] = {
    530. 

  530.         "task": "djstripe_ext.tasks.warn_organization_throttle",
    531. 

  531.         "schedule": crontab(minute=30),
    532. 

  532.     }
    533. 

  533. elif TESTING:
    534. 

  534.     # Must run tests with djstripe enabled
    535. 

  535.     BILLING_ENABLED = True
    536. 

  536.     INSTALLED_APPS.append("djstripe")
    537. 

  537.     INSTALLED_APPS.append("djstripe_ext")
    538. 

  538.     STRIPE_TEST_PUBLIC_KEY = "fake"
    539. 

  539.     STRIPE_TEST_SECRET_KEY = "sk_test_fake"  # nosec
    540. 

  540.     DJSTRIPE_WEBHOOK_SECRET = "whsec_fake"  # nosec
    541. 

  541.     logging.disable(logging.WARNING)
    542. 

  542. 

  543. CELERY_TASK_ALWAYS_EAGER = env.bool("CELERY_TASK_ALWAYS_EAGER", False)
    544. 

  544. if TESTING:
    545. 

  545.     CELERY_TASK_ALWAYS_EAGER = True
    546. 

  546.     STATICFILES_STORAGE = None
    547. 

  547.     # https://github.com/evansd/whitenoise/issues/215
    548. 

  548.     warnings.filterwarnings(
    549. 

  549.         "ignore", message="No directory at", module="whitenoise.base"
    550. 

  550.     )
    551. 

  551. if CELERY_TASK_ALWAYS_EAGER:
    552. 

  552.     CACHES = {"default": {"BACKEND": "django.core.cache.backends.locmem.LocMemCache",}}
    553. 

  553. 

  554. MFA_SERVER_NAME = "GlitchTip"
    555. 

  555. FIDO_SERVER_ID = GLITCHTIP_URL.hostname
    556. 

  556. 

  557. # Workaround for error encountered at build time (source: https://github.com/axnsan12/drf-yasg/issues/761#issuecomment-1014530805)
    558. 

  558. class NoSourceMapsStorage(CompressedManifestStaticFilesStorage):
    559. 

  559.     patterns = (
    560. 

  560.         (
    561. 

  561.             "*.css",
    562. 

  562.             (
    563. 

  563.                 "(?P<matched>url\\(['\"]{0,1}\\s*(?P<url>.*?)[\"']{0,1}\\))",
    564. 

  564.                 (
    565. 

  565.                     "(?P<matched>@import\\s*[\"']\\s*(?P<url>.*?)[\"'])",
    566. 

  566.                     '@import url("%(url)s")',
    567. 

  567.                 ),
    568. 

  568.             ),
    569. 

  569.         ),
    570. 

  570.     )
    571.