Set a valid / unique SECRET_KEY others than the empty default. Django's default SECRET_KEY is an empty string, which is actually not secure. Use horizon.util.secret key to generate a unique key and store it securely. Change-Id: I7b6deed7db6136ee15ac7ea315019a5b78698f7d

commit: 345363023da70404180dc645538547a84fa326e2 [log] [tgz]
author: Sascha Peilicke <saschpe@suse.de> Thu Jun 21 16:09:27 2012 +0200
committer: Sascha Peilicke <saschpe@suse.de> Tue Jul 17 12:42:45 2012 +0200
tree: 1fe176bb774666912d00d48604cc5f5f8c71a28f
parent: 282fbda6f4202d365be085a78dbb0f195323dea8 [diff] [blame]
diff --git a/files/horizon_settings.py b/files/horizon_settings.py
index 1a6c17a..487c06e 100644
--- a/files/horizon_settings.py
+++ b/files/horizon_settings.py

@@ -20,6 +20,10 @@
 CACHE_BACKEND = 'dummy://'
 SESSION_ENGINE = 'django.contrib.sessions.backends.cached_db'
 
+# Set a secure and unique SECRET_KEY (the Django default is '')
+from horizon.utils import secret_key
+SECRET_KEY = secret_key.generate_or_read_from_file(os.path.join(LOCAL_PATH, '.secret_key_store'))
+
 # Send email to the console by default
 EMAIL_BACKEND = 'django.core.mail.backends.console.EmailBackend'
 # Or send them to /dev/null
commit	345363023da70404180dc645538547a84fa326e2	[log] [tgz]
author	Sascha Peilicke <saschpe@suse.de>	Thu Jun 21 16:09:27 2012 +0200
committer	Sascha Peilicke <saschpe@suse.de>	Tue Jul 17 12:42:45 2012 +0200
tree	1fe176bb774666912d00d48604cc5f5f8c71a28f
parent	282fbda6f4202d365be085a78dbb0f195323dea8 [diff] [blame]