use env vars

.gitignore

@@ -4,3 +4,5 @@ __pycache__/
 /db.sqlite3
 media/
 *.egg-info/
+.env
+.DS_Store

djaif/middleware.py

@@ -1,12 +1,13 @@
 from django.contrib.auth import authenticate, login
+from djaif.settings import SUPERUSER, PASSWORD
 
 
 def auto_login(get_response):
     def middleware(request):  # noqa: WPS430
 
         if not request.user.is_authenticated:
             user = authenticate(  # noqa: S106
-                username='admin', password='admin',
+                username=SUPERUSER, password=PASSWORD,
             )
             login(request, user)
 

djaif/settings.py

@@ -1,16 +1,8 @@
-"""
-Django settings for djaif project.
-
-Generated by 'django-admin startproject' using Django 3.0.5.
-
-For more information on this file, see
-https://docs.djangoproject.com/en/3.0/topics/settings/
+import os
+from dotenv import load_dotenv
 
-For the full list of settings and their values, see
-https://docs.djangoproject.com/en/3.0/ref/settings/
-"""
 
-import os
+load_dotenv()
 
 # Build paths inside the project like this: os.path.join(BASE_DIR, ...)
 BASE_DIR = os.path.dirname(os.path.dirname(os.path.abspath(__file__)))
@@ -19,11 +11,12 @@
 # Quick-start development settings - unsuitable for production
 # See https://docs.djangoproject.com/en/3.0/howto/deployment/checklist/
 
-# SECURITY WARNING: keep the secret key used in production secret!
-SECRET_KEY = 'wpw=^28n)_)+ho#&z$5u12z50ny$3f%+8ld#)q2^a+87e_$o1o'
+DJANGO_SETTINGS_MODULE = 'djaif.settings'
 
-# SECURITY WARNING: don't run with debug turned on in production!
-DEBUG = True
+SECRET_KEY = os.getenv('SECRET_KEY')
+DEBUG = os.getenv('DEBUG', 'False') == 'True'
+SUPERUSER = os.getenv('SUPERUSER', 'admin')
+PASSWORD = os.getenv('PASSWORD', 'admin')
 
 ALLOWED_HOSTS = []
 

pyproject.toml

@@ -10,6 +10,7 @@ django = "^4.0.6"
 Pillow = "^9.2.0"
 graphviz = "^0.20"
 django-extensions = "^3.2.0"
+python-dotenv = "^0.20.0"
 
 [tool.poetry.dev-dependencies]
 wemake-python-styleguide = "^0.14.0"