mirror of
https://github.com/jazzband/django-defender.git
synced 2026-03-16 22:10:32 +00:00
69 lines
2.7 KiB
Python
69 lines
2.7 KiB
Python
from django.conf import settings
|
|
from django.utils.translation import ugettext_lazy
|
|
|
|
|
|
def get_setting(variable, default=None):
|
|
""" get the 'variable' from settings if not there use the
|
|
provided default """
|
|
return getattr(settings, variable, default)
|
|
|
|
# redis server host
|
|
DEFENDER_REDIS_URL = get_setting('DEFENDER_REDIS_URL')
|
|
|
|
MOCK_REDIS = get_setting('DEFENDER_MOCK_REDIS', False)
|
|
|
|
# see if the user has overridden the failure limit
|
|
FAILURE_LIMIT = get_setting('DEFENDER_LOGIN_FAILURE_LIMIT', 3)
|
|
|
|
# If this is True, the lockout checks to evaluate if the IP failure limit and
|
|
# the username failure limit has been reached before issuing the lockout.
|
|
LOCKOUT_BY_IP_USERNAME = get_setting(
|
|
'DEFENDER_LOCK_OUT_BY_IP_AND_USERNAME', False)
|
|
|
|
# if this is True, The users IP address will not get locked when there are too many login attempts.
|
|
DISABLE_IP_LOCKOUT = get_setting('DEFENDER_DISABLE_IP_LOCKOUT', False)
|
|
|
|
# use a specific username field to retrieve from login POST data
|
|
USERNAME_FORM_FIELD = get_setting('DEFENDER_USERNAME_FORM_FIELD', 'username')
|
|
|
|
# see if the django app is sitting behind a reverse proxy
|
|
BEHIND_REVERSE_PROXY = get_setting('DEFENDER_BEHIND_REVERSE_PROXY', False)
|
|
|
|
# the prefix for these keys in your cache.
|
|
CACHE_PREFIX = get_setting('DEFENDER_CACHE_PREFIX', 'defender')
|
|
|
|
# if the django app is behind a reverse proxy, look for the
|
|
# ip address using this HTTP header value
|
|
REVERSE_PROXY_HEADER = get_setting('DEFENDER_REVERSE_PROXY_HEADER',
|
|
'HTTP_X_FORWARDED_FOR')
|
|
|
|
try:
|
|
# how long to wait before the bad login attempt gets forgotten. in seconds.
|
|
COOLOFF_TIME = int(get_setting('DEFENDER_COOLOFF_TIME', 300)) # seconds
|
|
except ValueError: # pragma: no cover
|
|
raise Exception(
|
|
'DEFENDER_COOLOFF_TIME needs to be an integer') # pragma: no cover
|
|
|
|
LOCKOUT_TEMPLATE = get_setting('DEFENDER_LOCKOUT_TEMPLATE')
|
|
|
|
ERROR_MESSAGE = ugettext_lazy("Please enter a correct username and password. "
|
|
"Note that both fields are case-sensitive.")
|
|
|
|
# use a specific username field to retrieve from login POST data
|
|
USERNAME_FORM_FIELD = get_setting('DEFENDER_USERNAME_FORM_FIELD', 'username')
|
|
|
|
LOCKOUT_URL = get_setting('DEFENDER_LOCKOUT_URL')
|
|
|
|
USE_CELERY = get_setting('DEFENDER_USE_CELERY', False)
|
|
|
|
STORE_ACCESS_ATTEMPTS = get_setting('DEFENDER_STORE_ACCESS_ATTEMPTS', True)
|
|
|
|
# Used by the management command to decide how long to keep access attempt
|
|
# recods. Number is # of hours.
|
|
try:
|
|
ACCESS_ATTEMPT_EXPIRATION = int(get_setting(
|
|
'DEFENDER_ACCESS_ATTEMPT_EXPIRATION', 24))
|
|
except ValueError: # pragma: no cover
|
|
raise Exception(
|
|
'DEFENDER_ACCESS_ATTEMPT_EXPIRATION'
|
|
' needs to be an integer') # pragma: no cover
|