settings.py changed to prod settings

2025-08-06 01:43:23 -04:00
parent dc859f15f2
commit 1fee71370a
3 changed files with 19 additions and 3 deletions
@@ -26,9 +26,9 @@ load_dotenv()
 SECRET_KEY = os.getenv('DJANGO_KEY')

 # SECURITY WARNING: don't run with debug turned on in production!
-DEBUG = True
+DEBUG = False

-ALLOWED_HOSTS = []
+ALLOWED_HOSTS = ['localhost']


 # Application definition
@@ -130,3 +130,19 @@ STATICFILES_DIRS = [
 # https://docs.djangoproject.com/en/5.2/ref/settings/#default-auto-field

 DEFAULT_AUTO_FIELD = 'django.db.models.BigAutoField'
+
+
+
+# Security settings for production
+SECURE_SSL_REDIRECT = True
+SECURE_BROWSER_XSS_FILTER = True
+SECURE_CONTENT_TYPE_NOSNIFF = True
+CSRF_COOKIE_SECURE = True
+SESSION_COOKIE_SECURE = True
+
+
+REST_FRAMEWORK = {
+    'DEFAULT_RENDERER_CLASSES': [
+        'rest_framework.renderers.JSONRenderer',
+    ],
+}
@@ -2,7 +2,6 @@ from django.urls import path
 from .views import Doxme, home, robots


-
 urlpatterns = [
    path('home/', home),
    path('robots.txt/', robots),