We deploy django use AWS Elastic Beanstalk and use credstash for secrets:
https://github.com/fugue/credstash
So we can just do PASSWORD = credstash.getSecret('password') which works
pretty well with the AWS Key Management Service.
What is a pain is that the AWS Health Check does not set the Host header
and we don't know until runtime what the IP address of the server will be.
We have to do a call to the local metadata server to find out the IP
address then add it to ALLOWED_HOSTS which is really quite hideous. There
is an explanation here:
https://dryan.com/articles/elb-django-allowed-hosts/
Personally I would quite like to see an equivalent of the @csrf_exempt
decorator perhaps @allowed_hosts_exempt that could be use to mark the
health check method.
Andrew
--
You received this message because you are subscribed to the Google Groups
"Django developers (Contributions to Django itself)" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to django-developers+unsubscr...@googlegroups.com.
To post to this group, send email to django-developers@googlegroups.com.
Visit this group at https://groups.google.com/group/django-developers.
To view this discussion on the web visit
https://groups.google.com/d/msgid/django-developers/5868cb37-2d59-4792-95b6-146a56309ad8%40googlegroups.com.
For more options, visit https://groups.google.com/d/optout.
