Added database credentials and security check for db password.

Added database credentials (user name: 'django', password: 'blank') and
security check for db password. The security check will raise an error
if the database password is 'blank' in production.
This commit is contained in:
Bernd Meyer 2014-10-03 08:04:09 -07:00
parent ce916f12e1
commit 07435921a6
2 changed files with 14 additions and 1 deletions

View File

@ -1,5 +1,18 @@
# -*- coding: utf-8 -*-
from __future__ import absolute_import
import os
from django.conf import settings
from django.core.checks import register, Error
from .local import Local # noqa
from .production import Production # noqa
@register(settings)
def dj_database_url_check(app_configs=None, **kwargs):
errors = []
password = settings.DATABASES['default'].get('PASSWORD')
config = os.environ['DJANGO_CONFIGURATION'].lower()
if password == 'blank' and config == 'production':
errors.append(Error('Change the database password for production.'))
return errors

View File

@ -112,7 +112,7 @@ class Common(Configuration):
# DATABASE CONFIGURATION
# See: https://docs.djangoproject.com/en/dev/ref/settings/#databases
DATABASES = values.DatabaseURLValue('postgres://localhost/{{cookiecutter.repo_name}}')
DATABASES = values.DatabaseURLValue('postgres://localhost/django:blank{{cookiecutter.repo_name}}')
# END DATABASE CONFIGURATION
# CACHING