Sun 17 Apr, 2022
With the idea that the project should be able to be made open-source at any moment without compromising security - here's how I have seperated settings.py from credentials such as db logins and secret keys.
touch:/etc/secrets/<example.jcaston.uk>/settings.ini
>> /etc/secrets/<example.jcaston.uk>/settings.ini:
[SECRETS]SECRET_KEY=sEcrEtkEystrIng...[DATABASE]DATABASE_ENGINE=django.db.backends.postgresqlDATABASE_NAME=dbnameDATABASE_USER=dbuserDATABASE_PASSWORD=dbpasswordDATABASE_HOST=localhostDATABASE_PORT=5432
[OTHER]SOMETHING_ELSE=otherthingANOTHER_THING=anotherthing...
>> settings/core.py:from configparser import RawConfigParser...config=RawConfigParser()config.read('/etc/<example.jcaston.uk>/settings.ini').........SECRET_KEY=config.get('SECRETS', 'SECRET_KEY')...ANOTHER_THING=config.get('OTHER', 'ANOTHER_THING')...
Caps does not matter in the .ini, just be consistent in how you are naming/referencing it.
blog.jcaston.uk // 2025