- Ensure prefix is passed for all services

- Add eveai-tem secret (Scaleway Transactional Email) to allow sending emails - Adapted security URLs - Certification problem in regions solved - Redis insight added to tools in k8s - Introduced new way of connection pooling for Redis - TRA-79 - intrernal server error bij registreren catalog
2025-09-09 08:45:45 +02:00
parent 804486664b
commit a9bbd1f466
15 changed files with 447 additions and 103 deletions
--- a/config/config.py
+++ b/config/config.py
@@ -32,6 +32,7 @@ class Config(object):
    REDIS_USER = environ.get('REDIS_USER')
    REDIS_PASS = environ.get('REDIS_PASS')
    REDIS_CERT_DATA = environ.get('REDIS_CERT')
+    REDIS_SCHEME = None

    # Determine if REDIS_URL is an IP; use it to control hostname checking
    REDIS_IS_IP = False
@@ -52,8 +53,10 @@ class Config(object):
        REDIS_CA_CERT_PATH = _tmp.name

    if not REDIS_CERT_DATA:   # We are in a simple dev/test environment
+        REDIS_SCHEME = 'redis'
        REDIS_BASE_URI = f'redis://{REDIS_URL}:{REDIS_PORT}'
    else:   # We are in a scaleway environment, providing name, user and certificate
+        REDIS_SCHEME = 'rediss'
        REDIS_BASE_URI = f'rediss://{REDIS_USER}:{REDIS_PASS}@{REDIS_URL}:{REDIS_PORT}'

    # Central SSL options dict for reuse (Celery/Dogpile/etc.)
@@ -94,12 +97,8 @@ class Config(object):
    SESSION_REFRESH_EACH_REQUEST = True
    # Configure SESSION_REDIS with SSL when cert is provided
    if REDIS_CERT_DATA and REDIS_CA_CERT_PATH:
-        SESSION_REDIS = redis.Redis(
-            host=REDIS_URL,
-            port=int(REDIS_PORT or 6379),
-            username=REDIS_USER,
-            password=REDIS_PASS,
-            ssl=True,
+        SESSION_REDIS = redis.from_url(
+            f'{REDIS_BASE_URI}/0',  # REDIS_BASE_URI is reeds rediss://user:pass@host:port
            ssl_cert_reqs=ssl.CERT_REQUIRED,
            ssl_ca_certs=REDIS_CA_CERT_PATH,
            ssl_check_hostname=REDIS_SSL_CHECK_HOSTNAME,
@@ -136,7 +135,7 @@ class Config(object):
    SECURITY_CONFIRMABLE = True
    SECURITY_TRACKABLE = True
    SECURITY_PASSWORD_COMPLEXITY_CHECKER = 'zxcvbn'
-    SECURITY_POST_LOGIN_VIEW = '/user/tenant_overview'
+    SECURITY_POST_LOGIN_VIEW = '/admin/user/tenant_overview'
    SECURITY_RECOVERABLE = True
    SECURITY_EMAIL_SENDER = "eveai_super@flow-it.net"
    SECURITY_EMAIL_SUBJECT_PASSWORD_RESET = 'Reset Your Password'