From c1e1e4f998916fcadd60a8f99c5668a24ea974a0 Mon Sep 17 00:00:00 2001
From: Nico Schottelius <nico@wurzel.schottelius.org>
Date: Thu, 3 Sep 2015 20:04:12 +0200
Subject: [PATCH] read secret key from file

Signed-off-by: Nico Schottelius <nico@wurzel.schottelius.org>
---
 dynamicweb/settings.py | 8 ++++++--
 1 file changed, 6 insertions(+), 2 deletions(-)

diff --git a/dynamicweb/settings.py b/dynamicweb/settings.py
index 1b683c66..1db559c5 100644
--- a/dynamicweb/settings.py
+++ b/dynamicweb/settings.py
@@ -27,8 +27,12 @@ LOGIN_URL = None
 LOGOUT_URL = None
 LOGIN_REDIRECT_URL = None
 
-# SECURITY WARNING: keep the secret key used in production secret!
-SECRET_KEY = 'xlhyv_l5-z6e8_@q6)n0up1a0$5-aad7d)om2t8g$bi6*@q44i'
+EMAIL_HOST="localhost"
+EMAIL_PORT=25
+
+SECRET_KEY_FILE = os.path.join(BASE_DIR, "secret-key")
+with open(SECRET_KEY_FILE, "r") as f:
+    SECRET_KEY = f.read().strip()
 
 # SECURITY WARNING: don't run with debug turned on in production!
 DEBUG = False