GNX-WEB/backEnd/production.env.example

# Production Environment Configuration for GNX Contact Form
# Copy this file to .env and update with your actual values

# Django Settings
SECRET_KEY=your-super-secret-production-key-here
DEBUG=False
ALLOWED_HOSTS=gnxsoft.com,www.gnxsoft.com,your-server-ip

# Database - Using SQLite (default)
# SQLite is configured in settings.py - no DATABASE_URL needed

# Email Configuration (Production)
EMAIL_BACKEND=django.core.mail.backends.smtp.EmailBackend
EMAIL_HOST=smtp.gmail.com
EMAIL_PORT=587
EMAIL_USE_TLS=True
EMAIL_USE_SSL=False
EMAIL_HOST_USER=your-email@gmail.com
EMAIL_HOST_PASSWORD=your-app-password
DEFAULT_FROM_EMAIL=noreply@gnxsoft.com

# Company email for contact form notifications
COMPANY_EMAIL=contact@gnxsoft.com

# Email timeout settings for production reliability
EMAIL_TIMEOUT=30
EMAIL_CONNECTION_TIMEOUT=10
EMAIL_READ_TIMEOUT=10

# Security Settings
SECURE_SSL_REDIRECT=True
SECURE_HSTS_SECONDS=31536000
SECURE_HSTS_INCLUDE_SUBDOMAINS=True
SECURE_HSTS_PRELOAD=True
SECURE_CONTENT_TYPE_NOSNIFF=True
SECURE_BROWSER_XSS_FILTER=True
X_FRAME_OPTIONS=DENY

# CORS Settings (Production)
PRODUCTION_ORIGINS=https://gnxsoft.com,https://www.gnxsoft.com
CORS_ALLOW_CREDENTIALS=True

# CSRF Trusted Origins
CSRF_TRUSTED_ORIGINS=https://gnxsoft.com,https://www.gnxsoft.com

# API Security - Internal API Key (nginx will add this header)
# REQUIRED in production! Auto-generated only in DEBUG mode.
# Generate a secure key: python -c "import secrets; print(secrets.token_urlsafe(32))"
# Or get current key: python manage.py show_api_key
INTERNAL_API_KEY=your-secure-api-key-here-change-this-in-production

# Admin IP Restriction - Only these IPs can access Django admin
# Comma-separated list of IP addresses or CIDR networks (e.g., 193.194.155.249 or 192.168.1.0/24)
ADMIN_ALLOWED_IPS=193.194.155.249

# Static Files
STATIC_ROOT=/var/www/gnx/staticfiles/
MEDIA_ROOT=/var/www/gnx/media/

# Logging
LOG_LEVEL=INFO