-
Notifications
You must be signed in to change notification settings - Fork 157
Expand file tree
/
Copy pathenv.default
More file actions
109 lines (90 loc) · 4.86 KB
/
env.default
File metadata and controls
109 lines (90 loc) · 4.86 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
# Pulse endpoints. If you need to do local integration testing between the foundation
# site and the pulse services, use the internal docker host syntax, e.g:
#
# PULSE_API_DOMAIN=http://host.docker.internal:8080
#
# Note that for this to work, host.docker.internal should have a loopback entry in
# your etc/hosts file. Docker Desktop should have added this when it got installed,
# but if the line is not there, you'll need to manually add it.
#
PULSE_API_DOMAIN=https://network-pulse-api-production.herokuapp.com
# Always add a protocol (ex: https://) in front of the URL, including for localhost
WAGTAILADMIN_BASE_URL=http://localhost:8000
DOMAIN_REDIRECT_MIDDLEWARE_ENABLED=False
TARGET_DOMAINS=foundation.mozilla.org
# foundation_cms environment:
ALLOWED_HOSTS=*
# APP_ENVIRONMENT is used to prepend [S] or [RA] to page tab title & change favicon color,
# choices are "Review" and "Staging" and are set in Heroku.
APP_ENVIRONMENT=
ASSET_DOMAIN=network.mofoprod.net
CONTENT_TYPE_NO_SNIFF=True
CORS_ALLOWED_ORIGINS=*
CORS_ALLOWED_ORIGIN_REGEXES=
DATABASE_URL=postgresql://foundation@postgres:5432/wagtail
DEBUG=True
DEBUG_TOOLBAR_ENABLED=False
VSCODE_DEBUGGER=False
DJANGO_SECRET_KEY=secret
LOAD_FIXTURE=False
SET_HSTS=False
SOCIAL_AUTH_LOGIN_REDIRECT_URL=http://localhost:5000/soc/complete/google-oauth2/
SOCIAL_AUTH_AUTH0_DOMAIN=
SOCIAL_AUTH_AUTH0_KEY=
SOCIAL_AUTH_AUTH0_SECRET=
SSL_REDIRECT=False
USE_S3=False
X_FRAME_OPTIONS=DENY
XSS_PROTECTION=True
XROBOTSTAG_ENABLED=False
# Basket config:
# See the Basket client docs https://basket-client.readthedocs.io/en/latest/install.html
BASKET_URL=https://basket-dev.allizom.org
# CSP config
CSP_CHILD_SRC=" 'self' https://www.youtube.com https://www.youtube-nocookie.com "
CSP_CONNECT_SRC=" * "
CSP_DEFAULT_SRC=" 'none' "
CSP_FONT_SRC=" 'self' data: https://code.cdn.mozilla.net https://*.fundraiseup.com https://stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/ https://*.stripe.com "
CSP_FRAME_ANCESTORS=" 'self' "
CSP_FRAME_SRC=" 'self' https://www.youtube.com https://comments.mozillafoundation.org/ https://airtable.com https://docs.google.com/ https://platform.twitter.com https://public.zenkit.com https://calendar.google.com https://www.youtube-nocookie.com https://form.typeform.com https://js.tito.io https://datawrapper.dwcdn.net https://www.google.com/recaptcha/ https://pay.google.com https://*.paypal.com https://*.fundraiseup.com https://*.stripe.com https://player.simplecast.com https://player.vimeo.com"
CSP_IMG_SRC=" * data: blob: https://*.fundraiseup.com https://ucarecdn.com https://pay.google.com https://*.paypalobjects.com "
CSP_MEDIA_SRC=" 'self' data: https://s3.amazonaws.com/mofo-assets/foundation/video/ https://player.vimeo.com/ https://download-video-ak.vimeocdn.com "
CSP_SCRIPT_SRC=" 'self' 'unsafe-inline' https://www.google-analytics.com/analytics.js http://*.shpg.org/ https://comments.mozillafoundation.org/ https://airtable.com https://platform.twitter.com https://cdn.syndication.twimg.com https://embed.typeform.com https://js.tito.io https://js-plugins.tito.io/gtm.js https://tagmanager.google.com https://*.googletagmanager.com https://*.fundraiseup.com https://mozillafoundation.tfaforms.net https://www.google.com/recaptcha/ https://www.gstatic.com/recaptcha/ 'unsafe-eval' https://*.stripe.com https://m.stripe.network https://*.paypal.com https://*.paypalobjects.com https://pay.google.com https://cdn.cookielaw.org "
CSP_STYLE_SRC=" 'self' 'unsafe-inline' https://code.cdn.mozilla.net https://platform.twitter.com https://js.tito.io https://tagmanager.google.com https://mozillafoundation.tfaforms.net https://stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css "
CSP_INCLUDE_NONCE_IN=script-src
# Security config
SECURE_CROSS_ORIGIN_OPENER_POLICY=same-origin-allow-popups
SECURE_REFERRER_POLICY=strict-origin-when-cross-origin
# Petition test campaign id for Salesforce Sandbox
PETITION_TEST_CAMPAIGN_ID=7017i000000bIgTAAU
# Localization
LOCAL_PATH_TO_L10N_REPO=
# REVIEW APPS SLACK BOT
GITHUB_TOKEN=
SLACK_WEBHOOK_RA=
# BUYER'S GUIDE Configuration
PNI_STATS_DB_URL=
# Sentry
SENTRY_DSN=
HEROKU_RELEASE_VERSION=
SENTRY_ENVIRONMENT=
# CDN configuration
STATIC_HOST=
# WAGTAIL NOTIFICATION CONFIG
WAGTAIL_NOTIFICATION_EMAIL=
WAGTAIL_NOTIFICATION_EMAIL_PASSWORD=
WAGTAILADMIN_NOTIFICATION_INCLUDE_SUPERUSERS=
# These are used when copying the PROD DB to the STAGING site DB
PROD_HOSTNAMES=
STAGING_HOSTNAMES=
# Flag to select whether we would like to use Basket or CaMo for newsletter signups.
# Choices are "BASKET" / "CAMO"
NEWSLETTER_SIGNUP_METHOD=
# Endpoints for subscribing/unsubscribing users to our newsletters
CAMO_NEWSLETTER_ENDPOINT=
CAMO_ENDPOINT_KEY=
SUCCESSFUL_UNSUBSCRIBE_REDIRECT_URL=
# MOZFEST SCHEDULE URL
MOZFEST_SCHEDULE_URL=https://schedule.mozillafestival.org/plaza
# Temporary: comma-separated page IDs shown as related content on search no-results page. E.g., 123,45678
TEMP_SEARCH_RELATED_CONTENT_PAGE_IDS=