mirror of
https://gitlab.federez.net/re2o/re2o
synced 2024-05-20 09:32:29 +00:00
96 lines
2.7 KiB
Python
96 lines
2.7 KiB
Python
# Re2o est un logiciel d'administration développé initiallement au rezometz. Il
|
|
# se veut agnostique au réseau considéré, de manière à être installable en
|
|
# quelques clics.
|
|
#
|
|
# Copyright © 2017 Gabriel Détraz
|
|
# Copyright © 2017 Goulven Kermarec
|
|
# Copyright © 2017 Augustin Lemesle
|
|
#
|
|
# This program is free software; you can redistribute it and/or modify
|
|
# it under the terms of the GNU General Public License as published by
|
|
# the Free Software Foundation; either version 2 of the License, or
|
|
# (at your option) any later version.
|
|
#
|
|
# This program is distributed in the hope that it will be useful,
|
|
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
# GNU General Public License for more details.
|
|
#
|
|
# You should have received a copy of the GNU General Public License along
|
|
# with this program; if not, write to the Free Software Foundation, Inc.,
|
|
# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
|
|
|
|
from __future__ import unicode_literals
|
|
|
|
SECRET_KEY = 'SUPER_SECRET_KEY'
|
|
|
|
DB_PASSWORD = 'SUPER_SECRET_DB'
|
|
|
|
# AES key for secret key encryption
|
|
AES_KEY = 'WHAT_A_WONDERFULL_KEY'
|
|
|
|
|
|
# SECURITY WARNING: don't run with debug turned on in production!
|
|
DEBUG = False
|
|
|
|
ADMINS = [('Example', 'rezo-admin@example.org')]
|
|
|
|
SERVER_EMAIL = 'no-reply@example.org'
|
|
|
|
# Obligatoire, liste des host autorisés
|
|
ALLOWED_HOSTS = ['URL_SERVER']
|
|
|
|
DATABASES = {
|
|
'default': {
|
|
'ENGINE': 'db_engine',
|
|
'NAME': 'db_name_value',
|
|
'USER': 'db_user_value',
|
|
'PASSWORD': DB_PASSWORD,
|
|
'HOST': 'db_host_value',
|
|
},
|
|
'ldap': {
|
|
'ENGINE': 'ldapdb.backends.ldap',
|
|
'NAME': 'ldap://ldap_host_ip/',
|
|
'USER': 'ldap_dn',
|
|
# 'TLS': True,
|
|
'PASSWORD': 'SUPER_SECRET_LDAP',
|
|
}
|
|
}
|
|
|
|
# Security settings, à activer une fois https en place
|
|
SECURE_CONTENT_TYPE_NOSNIFF = False
|
|
SECURE_BROWSER_XSS_FILTER = False
|
|
SESSION_COOKIE_SECURE = False
|
|
CSRF_COOKIE_SECURE = False
|
|
CSRF_COOKIE_HTTPONLY = False
|
|
X_FRAME_OPTIONS = 'DENY'
|
|
SESSION_COOKIE_AGE = 60 * 60 * 3
|
|
|
|
LOGO_PATH = "static_files/logo.png"
|
|
|
|
EMAIL_HOST = 'MY_EMAIL_HOST'
|
|
EMAIL_PORT = MY_EMAIL_PORT
|
|
|
|
# Reglages pour la bdd ldap
|
|
LDAP = {
|
|
'base_user_dn' : 'cn=Utilisateurs,dc=example,dc=org',
|
|
'base_userservice_dn' : 'ou=service-users,dc=example,dc=org',
|
|
'base_usergroup_dn' : 'ou=posix,ou=groups,dc=example,dc=org',
|
|
'base_userservicegroup_dn' : 'ou=services,ou=groups,dc=example,dc=org',
|
|
'user_gid' : 500,
|
|
}
|
|
|
|
|
|
UID_RANGES = {
|
|
'users' : [21001,30000],
|
|
'service-users' : [20000,21000],
|
|
}
|
|
|
|
# Chaque groupe a un gid assigné, voici la place libre pour assignation
|
|
GID_RANGES = {
|
|
'posix' : [501, 600],
|
|
}
|
|
|
|
OPTIONNAL_APPS = ()
|
|
|