Sanitize envs, optimize Dockerfile, Turnstile
Redact sensitive AWS keys in backend/.env.example and add VITE_TURNSTILE_SITE_KEY and VITE_USE_TURNSTILE to frontend/.env.example. Optimize backend Dockerfile by installing Python requirements immediately after copying requirements.txt (enables Docker cache) and remove the duplicate later install. Update turnstile verification to skip checks when USE_SSL is disabled (dev/non-HTTPS) and keep the existing no-secret bypass; add debug logging for the SSL bypass.
This commit is contained in:
David Bruno Vontor
@@ -9,3 +9,6 @@ VITE_BACKEND_WS_URL="ws://localhost:8000/"
|
||||
# Auth endpoints (defaults match Django routes; only override if you changed them).
|
||||
# VITE_API_REFRESH_URL=/api/token/refresh/
|
||||
# VITE_LOGIN_PATH=/social/login
|
||||
|
||||
VITE_TURNSTILE_SITE_KEY="xxx"
|
||||
VITE_USE_TURNSTILE=true
|
||||
Reference in New Issue
Block a user