forked from MozillaFoundation/foundation.mozilla.org
-
Notifications
You must be signed in to change notification settings - Fork 0
/
env.default
39 lines (34 loc) · 1.2 KB
/
env.default
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
# Build system environment:
PULSE_API_DOMAIN=network-pulse-api-production.herokuapp.com
PULSE_DOMAIN=www.mozillapulse.org
# Always add a protocol (ex: https://) in front of the NETWORK_SITE_URL, including for localhost
NETWORK_SITE_URL=https://foundation.mozilla.org
TARGET_DOMAIN=foundation.mozilla.org
SHOW_TAKEOVER=false
# network-api environment:
DEBUG=True
DJANGO_SECRET_KEY=secret
USE_S3=False
CORS_WHITELIST=*
CORS_REGEX_WHITELIST=
XSS_PROTECTION=True
CONTENT_TYPE_NO_SNIFF=True
SET_HSTS=False
SSL_REDIRECT=False
X_FRAME_OPTIONS=DENY
ALLOWED_HOSTS=localhost,127.0.0.1
ASSET_DOMAIN=network.mofoprod.net
SOCIAL_AUTH_GOOGLE_OAUTH2_KEY=
SOCIAL_AUTH_GOOGLE_OAUTH2_SECRET=
SOCIAL_AUTH_LOGIN_REDIRECT_URL=http://localhost:5000/soc/complete/google-oauth2/
LOAD_FIXTURE=False
# CSP config
CSP_DEFAULT_SRC="'none'"
CSP_SCRIPT_SRC='self' 'unsafe-inline' cdn.optimizely.com https://www.google-analytics.com/analytics.js
CSP_STYLE_SRC='self' 'unsafe-inline' code.cdn.mozilla.net fonts.googleapis.com
CSP_IMG_SRC=* data:
CSP_FONT_SRC='self' fonts.gstatic.com fonts.googleapis.com code.cdn.mozilla.net
CSP_CONNECT_SRC=*
CSP_MEDIA_SRC="'self'"
CSP_CHILD_SRC="'self'"
CSP_FORM_ACTION='self' https://www.mozilla.org/en-US/newsletter/