don't crash when there isn't a secret key

FRC-1721 · Jan 11, 2025 · c654ae3 · c654ae3
1 parent 4a090c5
commit c654ae3
Show file tree

Hide file tree

Showing 3 changed files with 8 additions and 3 deletions.
diff --git a/battery/settings.py b/battery/settings.py
@@ -22,7 +22,10 @@
 # See https://docs.djangoproject.com/en/5.1/howto/deployment/checklist/
 
 # SECURITY WARNING: keep the secret key used in production secret!
-SECRET_KEY = os.environ.get("SECRET_KEY")
+SECRET_KEY = os.environ.get("SECRET_KEY", "asdf")
+BAD_KEY = False
+if SECRET_KEY == "asdf":
+    BAD_KEY = True
 
 # SECURITY WARNING: don't run with debug turned on in production!
 DEBUG = False

diff --git a/log/templates/index.html b/log/templates/index.html
@@ -16,7 +16,8 @@
     </form>
     {% else %} You are not logged in
     <a href="{% url 'login' %}"><button>Log In</button></a>
-    {% endif %}
+    {% endif %} {% if bad_key %} Security Token not found on server! Not
+    recommended to log in. {% endif %}
     <hr />
 
     <form method="post">

diff --git a/log/views.py b/log/views.py
@@ -2,6 +2,7 @@
 from django.http import HttpResponse, HttpResponseRedirect
 from .models import Entry
 from .forms import EntryForm
+from battery.settings import BAD_KEY
 
 # Create your views here.
 
@@ -32,4 +33,4 @@ def index(request):
 
     entries = Entry.objects.all()
     form = EntryForm()
-    return render(request, 'index.html', {'entries': entries,"form": form})
+    return render(request, 'index.html', {'entries': entries, 'form': form, 'bad_key': BAD_KEY})