From 6de24d973b17e563a414f820b57d1f9912050bf2 Mon Sep 17 00:00:00 2001 From: Lebaud Antoine Date: Wed, 27 Mar 2024 12:02:57 +0100 Subject: [PATCH] =?UTF-8?q?=F0=9F=94=87(helm)=20silence=20some=20Django=20?= =?UTF-8?q?system=20checks?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Django logs some security warnings we can ignored when deploying over K8s. Inspired by fun project, I added the Django setting SILENCED_SYSTEM_CHECKS, and silenced the two that were logging a lot of warning. --- src/backend/people/settings.py | 1 + src/helm/env.d/staging/values.desk.yaml.gotmpl | 1 + 2 files changed, 2 insertions(+) diff --git a/src/backend/people/settings.py b/src/backend/people/settings.py index 90a3174..6b156e6 100755 --- a/src/backend/people/settings.py +++ b/src/backend/people/settings.py @@ -71,6 +71,7 @@ class Base(Configuration): # Security ALLOWED_HOSTS = values.ListValue([]) SECRET_KEY = values.Value(None) + SILENCED_SYSTEM_CHECKS = values.ListValue([]) # Application definition ROOT_URLCONF = "people.urls" diff --git a/src/helm/env.d/staging/values.desk.yaml.gotmpl b/src/helm/env.d/staging/values.desk.yaml.gotmpl index e671055..be64752 100644 --- a/src/helm/env.d/staging/values.desk.yaml.gotmpl +++ b/src/helm/env.d/staging/values.desk.yaml.gotmpl @@ -17,6 +17,7 @@ backend: DJANGO_EMAIL_HOST: "snap-mail.numerique.gouv.fr" DJANGO_EMAIL_PORT: 465 DJANGO_EMAIL_USE_SSL: True + DJANGO_SILENCED_SYSTEM_CHECKS: security.W008,security.W004 OIDC_OP_JWKS_ENDPOINT: https://fca.integ01.dev-agentconnect.fr/api/v2/jwks OIDC_OP_AUTHORIZATION_ENDPOINT: https://fca.integ01.dev-agentconnect.fr/api/v2/authorize OIDC_OP_TOKEN_ENDPOINT: https://fca.integ01.dev-agentconnect.fr/api/v2/token