From 1fee71370a697f8dab15a6cdb3b96ba85cf645f1 Mon Sep 17 00:00:00 2001
From: acidburnmonkey <acidburnmonkey@gmail.com>
Date: Wed, 6 Aug 2025 01:43:23 -0400
Subject: [PATCH] settings.py changed to prod settings

---
 manage.py          |  1 +
 mysite/settings.py | 20 ++++++++++++++++++--
 mysite/urls.py     |  1 -
 3 files changed, 19 insertions(+), 3 deletions(-)

diff --git a/manage.py b/manage.py
index a7da667..4740a07 100755
--- a/manage.py
+++ b/manage.py
@@ -1,5 +1,6 @@
 #!/usr/bin/env python
 """Django's command-line utility for administrative tasks."""
+
 import os
 import sys
 
diff --git a/mysite/settings.py b/mysite/settings.py
index 492775f..27f2eb9 100644
--- a/mysite/settings.py
+++ b/mysite/settings.py
@@ -26,9 +26,9 @@ load_dotenv()
 SECRET_KEY = os.getenv('DJANGO_KEY')
 
 # SECURITY WARNING: don't run with debug turned on in production!
-DEBUG = True
+DEBUG = False
 
-ALLOWED_HOSTS = []
+ALLOWED_HOSTS = ['localhost']
 
 
 # Application definition
@@ -130,3 +130,19 @@ STATICFILES_DIRS = [
 # https://docs.djangoproject.com/en/5.2/ref/settings/#default-auto-field
 
 DEFAULT_AUTO_FIELD = 'django.db.models.BigAutoField'
+
+
+
+# Security settings for production
+SECURE_SSL_REDIRECT = True
+SECURE_BROWSER_XSS_FILTER = True
+SECURE_CONTENT_TYPE_NOSNIFF = True
+CSRF_COOKIE_SECURE = True
+SESSION_COOKIE_SECURE = True
+
+
+REST_FRAMEWORK = {
+    'DEFAULT_RENDERER_CLASSES': [
+        'rest_framework.renderers.JSONRenderer',
+    ],
+}
diff --git a/mysite/urls.py b/mysite/urls.py
index ac4937d..1e31e02 100644
--- a/mysite/urls.py
+++ b/mysite/urls.py
@@ -2,7 +2,6 @@ from django.urls import path
 from .views import Doxme, home, robots
 
 
-
 urlpatterns = [
     path('home/', home),
     path('robots.txt/', robots),