gwift_old/gwift/settings/production.py

from .base import * # NOQA

# SECURITY WARNING: don't run with debug turned on in production!
DEBUG = False

# Password validation
# https://docs.djangoproject.com/en/1.9/ref/settings/#auth-password-validators

AUTH_PASSWORD_VALIDATORS = [
    {
        'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator',
    },
    {
        'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator',
    },
]

# Be sure to force https for csrf cookie
CSRF_COOKIE_SECURE = True

# Same for session cookie
SESSION_COOKIE_SECURE = True