Security: SECRET_KEY obligatorio desde .env — sin fallback hardcodeado

This commit is contained in:
2026-05-04 23:24:30 -04:00
parent d290c98784
commit 1f03a329b2
2 changed files with 4 additions and 33 deletions
+1 -32
View File
@@ -1,32 +1 @@
# Servidor SECRET_KEY=900fc274236e8254115faf2815d6a775c1661e2d9b929a35a0ebed4147dd31f1
SERVER_HOST=0.0.0.0
SERVER_PORT=5503
# Base de datos
DATABASE_URL=sqlite:///./aidsmonitoring.db
# AIS Source: SIMULATOR | UDP | TCP | SERIAL
AIS_SOURCE=SIMULATOR
# Si AIS_SOURCE=UDP
AIS_UDP_HOST=127.0.0.1
AIS_UDP_PORT=10110
# Si AIS_SOURCE=SERIAL (RTL-SDR mañana)
AIS_SERIAL_PORT=COM3
AIS_SERIAL_BAUD=38400
# Mapa - centro inicial (Miami)
MAP_CENTER_LAT=25.7743
MAP_CENTER_LON=-80.1937
MAP_ZOOM=11
# GPS receptor serial — dejar vacío para auto-detección, poner COM8 si es fijo
GPS_PORT=
# GPS_BAUD=9600 # dejar comentado = prueba 9600, 4800, 115200, 38400 automáticamente
# Alertas
PROXIMITY_ALERT_METERS=500
PROJECTION_MINUTES=10
PRE_BUFFER_MINUTES=5
GPS_BAUD=9600
+3 -1
View File
@@ -12,7 +12,9 @@ import os
from database import get_db, SessionLocal from database import get_db, SessionLocal
from models.user import User, Role from models.user import User, Role
SECRET_KEY = os.getenv("SECRET_KEY", "aidsmonitoring-secret-2026-change-in-prod") SECRET_KEY = os.getenv("SECRET_KEY")
if not SECRET_KEY:
raise RuntimeError("SECRET_KEY no configurado — crea backend/.env con SECRET_KEY=<valor>")
ALGORITHM = "HS256" ALGORITHM = "HS256"
TOKEN_HOURS = 8 TOKEN_HOURS = 8