security: actually use SECRET_KEY env variable. You will get logged out.

2026-03-27 20:01:18 +01:00 · 2025-01-16 09:23:18 -03:00
parent 3dcee4dbf2
commit 97c6b13d57
1 changed files with 1 additions and 1 deletions
--- a/app/WYGIWYH/settings.py
+++ b/app/WYGIWYH/settings.py
@@ -26,7 +26,7 @@ ROOT_DIR = Path(__file__).resolve().parent.parent.parent
 # See https://docs.djangoproject.com/en/5.1/howto/deployment/checklist/

 # SECURITY WARNING: keep the secret key used in production secret!
-SECRET_KEY = "django-insecure-##6^&g49xwn7s67xc&33vf&=*4ibqfzn#xa*p-1sy8ag+zjjb9"
+SECRET_KEY = os.getenv("SECRET_KEY", "")

 # SECURITY WARNING: don't run with debug turned on in production!
 DEBUG = os.getenv("DEBUG", "false").lower() == "true"