qzl/eryao
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Merge dev into main
Build production Docker image / build-backend-image (push) Successful in 52s
Details
Build production Docker image / deploy-production (push) Successful in 41s
Details

Browse Source 
Security hardening: disable Swagger in prod, remove dead debug field
This commit was merged in pull request #7.
This commit is contained in:
qzl
2026-04-30 11:48:04 +08:00
parent 46394ffcdf 6432c24e20
commit f2c3c795e7
3 changed files with 9 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.env.example
+1 -2
View File
@@ -5,10 +5,9 @@
# 运行时配置 # 运行时配置
############ ############
ERYAO_RUNTIME__ENVIRONMENT=dev ERYAO_RUNTIME__ENVIRONMENT=dev
ERYAO_RUNTIME__DEBUG=true
ERYAO_RUNTIME__LOG_LEVEL=INFO ERYAO_RUNTIME__LOG_LEVEL=INFO
ERYAO_RUNTIME__SQL_LOG_QUERIES=false ERYAO_RUNTIME__SQL_LOG_QUERIES=false
ERYAO_RUNTIME__TRUSTED_PROXY_IPS=[] ERYAO_RUNTIME__TRUSTED_PROXY_IPS='["127.0.0.1", "172.18.0.1"]'
############ ############
# Web 服务器配置(Uvicorn # Web 服务器配置(Uvicorn
backend/src/app.py
+8 -1
View File
@@ -48,7 +48,14 @@ async def lifespan(_: FastAPI) -> AsyncGenerator[None, None]:
logger.info("Base services closed", services=SERVICE_STARTUP_ORDER) logger.info("Base services closed", services=SERVICE_STARTUP_ORDER)
app = FastAPI(lifespan=lifespan) _is_prod = config.runtime.environment == "prod"
app = FastAPI(
lifespan=lifespan,
docs_url=None if _is_prod else "/docs",
redoc_url=None if _is_prod else "/redoc",
openapi_url=None if _is_prod else "/openapi.json",
)
app.add_middleware( app.add_middleware(
CORSMiddleware, CORSMiddleware,
allow_origins=config.cors.allow_origins, allow_origins=config.cors.allow_origins,
backend/src/core/config/settings.py
-1
View File
@@ -35,7 +35,6 @@ def _resolve_project_root() -> Path:
class RuntimeSettings(BaseModel): class RuntimeSettings(BaseModel):
environment: Literal["dev", "test", "prod"] = "dev" environment: Literal["dev", "test", "prod"] = "dev"
service_name: str = "app" service_name: str = "app"
debug: bool = True
log_level: str = "INFO" log_level: str = "INFO"
log_json: bool = True log_json: bool = True
log_rotation: Literal["time", "size", "none"] = "time" log_rotation: Literal["time", "size", "none"] = "time"