jeff/umap
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Better documentation for the SECRET_KEY setting

Browse source 
See https://github.com/umap-project/umap/pull/1322#issuecomment-1726300269
This commit is contained in:
David Larlet 2023-09-19 14:52:57 -04:00
parent 038a1a3c4d
commit 84c00fa5ba
No known key found for this signature in database
GPG key ID: 3E2953A359E7E7BD
1 changed files with 5 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
docs/settings.md
View file

@ -63,6 +63,11 @@ See [Django documentation for MEDIA_ROOT](https://docs.djangoproject.com/en/4.2/
Must be defined to something unique and secret.
Running uMap / Django with a known SECRET_KEY defeats many of Djangos security protections, and can lead to privilege escalation and remote code execution vulnerabilities.
See [Django documentation for SECRET_KEY](https://docs.djangoproject.com/en/4.2/ref/settings/#secret-key)
#### SITE_URL
The final URL of you instance, including the protocol: