gmakstutis/ragflow
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Update logging for auto-generated SECRET_KEY

Browse source 
Remove the code that exposes the generated key in the log, as it poses a security risk.
This commit is contained in:
FoolFu 2025-11-22 00:16:41 +08:00 committed by GitHub
parent f0a14f5fce
commit 8208a2bf48
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
common/settings.py
View file

@ -139,7 +139,7 @@ def _get_or_create_secret_key():
import logging import logging
new_key = secrets.token_hex(32) new_key = secrets.token_hex(32)
logging.warning(f"SECURITY WARNING: Using auto-generated SECRET_KEY. Generated key: {new_key}") logging.warning(f"SECURITY WARNING: Using auto-generated SECRET_KEY.")
return new_key return new_key
class StorageFactory: class StorageFactory: