root: fix system check warnings (#8277)

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
2024-01-24 12:10:55 +01:00
parent 4f4815251e
commit 9ed2b74661
3 changed files with 14 additions and 6 deletions
--- a/authentik/root/settings.py
+++ b/authentik/root/settings.py
@ -453,6 +453,17 @@ _DISALLOWED_ITEMS = [
    "CELERY",
 ]

+SILENCED_SYSTEM_CHECKS = [
+    # We use our own subclass of django.middleware.csrf.CsrfViewMiddleware
+    "security.W003",
+    # We don't set SESSION_COOKIE_SECURE since we use a custom SessionMiddleware subclass
+    "security.W010",
+    # HSTS: This is configured in reverse proxies/the go proxy, not in django
+    "security.W004",
+    # https redirect: This is configured in reverse proxies/the go proxy, not in django
+    "security.W008",
+]
+

 def _update_settings(app_path: str):
    try: