import os from pathlib import Path from datetime import timedelta from dotenv import load_dotenv BASE_DIR = Path(__file__).resolve().parent.parent load_dotenv(BASE_DIR / '.env') SECRET_KEY = 'django-insecure-!-mtect5n-yyxkp2m=j(8dz_yi$b3w3ddo&w#i(@4kv-spdthy' DEBUG = True ALLOWED_HOSTS = [ "127.0.0.1", "localhost", "192.168.2.76", "8.160.178.88" ] INSTALLED_APPS = [ 'django.contrib.admin', 'django.contrib.auth', 'django.contrib.contenttypes', 'django.contrib.sessions', 'django.contrib.messages', 'django.contrib.staticfiles', # Third-party apps 'rest_framework', 'rest_framework_simplejwt', 'django_filters', 'drf_spectacular', # Local apps 'apps.common', 'apps.user', 'apps.case', 'apps.training', ] MIDDLEWARE = [ 'django.middleware.security.SecurityMiddleware', 'django.contrib.sessions.middleware.SessionMiddleware', 'django.middleware.common.CommonMiddleware', 'django.middleware.csrf.CsrfViewMiddleware', 'django.contrib.auth.middleware.AuthenticationMiddleware', 'django.contrib.messages.middleware.MessageMiddleware', 'django.middleware.clickjacking.XFrameOptionsMiddleware', 'config.middleware.APIAccessLogMiddleware', ] ROOT_URLCONF = 'config.urls' TEMPLATES = [ { 'BACKEND': 'django.template.backends.django.DjangoTemplates', 'DIRS': [], 'APP_DIRS': True, 'OPTIONS': { 'context_processors': [ 'django.template.context_processors.request', 'django.contrib.auth.context_processors.auth', 'django.contrib.messages.context_processors.messages', ], }, }, ] WSGI_APPLICATION = 'config.wsgi.application' # Database - MySQL DATABASES = { 'default': { 'ENGINE': 'django.db.backends.mysql', 'NAME': os.getenv('DB_NAME', 'medical_training'), 'USER': os.getenv('DB_USER', 'root'), 'PASSWORD': os.getenv('DB_PASSWORD', ''), 'HOST': os.getenv('DB_HOST', 'localhost'), 'PORT': os.getenv('DB_PORT', '3306'), 'OPTIONS': { 'charset': 'utf8mb4', 'init_command': "SET sql_mode='STRICT_TRANS_TABLES'", }, 'TEST': { 'NAME': 'test_medical_training', 'CHARSET': 'utf8mb4', 'COLLATION': 'utf8mb4_unicode_ci', }, } } AUTH_PASSWORD_VALIDATORS = [ {'NAME': 'django.contrib.auth.password_validation.UserAttributeSimilarityValidator'}, {'NAME': 'django.contrib.auth.password_validation.MinimumLengthValidator'}, {'NAME': 'django.contrib.auth.password_validation.CommonPasswordValidator'}, {'NAME': 'django.contrib.auth.password_validation.NumericPasswordValidator'}, ] LANGUAGE_CODE = 'zh-hans' TIME_ZONE = 'Asia/Shanghai' USE_I18N = True USE_TZ = True STATIC_URL = 'static/' DEFAULT_AUTO_FIELD = 'django.db.models.BigAutoField' # ─── REST Framework ─────────────────────────────────────────────────────────── REST_FRAMEWORK = { 'EXCEPTION_HANDLER': 'config.exceptions.custom_exception_handler', 'DEFAULT_SCHEMA_CLASS': 'drf_spectacular.openapi.AutoSchema', 'DEFAULT_AUTHENTICATION_CLASSES': [ 'apps.user.authentication.RedisBlacklistJWTAuthentication', 'rest_framework.authentication.SessionAuthentication', ], 'DEFAULT_PERMISSION_CLASSES': [ 'rest_framework.permissions.IsAuthenticated', ], 'DEFAULT_PAGINATION_CLASS': 'rest_framework.pagination.PageNumberPagination', 'PAGE_SIZE': 20, 'DEFAULT_THROTTLE_CLASSES': [], 'DEFAULT_THROTTLE_RATES': { 'sms_phone_minute': '1/minute', 'sms_phone_day': '10/day', 'sms_ip': '30/hour', 'register_ip': '10/hour', 'reset_phone': '5/hour', 'pdf_parse_user': '20/hour', 'scoring_rule_generate_user': '20/hour', }, } # ─── JWT ────────────────────────────────────────────────────────────────────── SIMPLE_JWT = { 'ACCESS_TOKEN_LIFETIME': timedelta(hours=2), 'REFRESH_TOKEN_LIFETIME': timedelta(days=7), 'ROTATE_REFRESH_TOKENS': True, 'BLACKLIST_AFTER_ROTATION': False, 'ALGORITHM': 'HS256', 'SIGNING_KEY': SECRET_KEY, 'AUTH_HEADER_TYPES': ('Bearer',), 'AUTH_HEADER_NAME': 'HTTP_AUTHORIZATION', } # ─── Redis Cache ────────────────────────────────────────────────────────────── CACHES = { 'default': { 'BACKEND': 'django_redis.cache.RedisCache', 'LOCATION': os.getenv('REDIS_URL', 'redis://127.0.0.1:6379/1'), 'OPTIONS': { 'CLIENT_CLASS': 'django_redis.client.DefaultClient', }, } } # ─── SMS ────────────────────────────────────────────────────────────────────── SMS_CODE_EXPIRE = 300 # 验证码有效期(秒) SMS_CODE_INTERVAL = 60 # 发送间隔(秒) SMS_PROVIDER = os.getenv('SMS_PROVIDER', 'mock') SMS_MOCK_CODE = os.getenv('SMS_MOCK_CODE', '123456') # mock 模式下固定验证码 ALIYUN_SMS_ACCESS_KEY_ID = os.getenv('ALIYUN_SMS_ACCESS_KEY_ID', '') ALIYUN_SMS_ACCESS_KEY_SECRET = os.getenv('ALIYUN_SMS_ACCESS_KEY_SECRET', '') ALIYUN_SMS_SIGN_NAME = os.getenv('ALIYUN_SMS_SIGN_NAME', '医疗训练平台') ALIYUN_SMS_TEMPLATE_REGISTER = os.getenv('ALIYUN_SMS_TEMPLATE_REGISTER', '') ALIYUN_SMS_TEMPLATE_LOGIN = os.getenv('ALIYUN_SMS_TEMPLATE_LOGIN', '') ALIYUN_SMS_TEMPLATE_RESET = os.getenv('ALIYUN_SMS_TEMPLATE_RESET', '') # ─── DeepSeek ───────────────────────────────────────────────────────────────── DEEPSEEK_API_KEY = os.getenv('DEEPSEEK_API_KEY', '') DEEPSEEK_BASE_URL = os.getenv('DEEPSEEK_BASE_URL', 'https://api.deepseek.com') DEEPSEEK_MODEL = os.getenv('DEEPSEEK_MODEL', 'deepseek-chat') DEEPSEEK_TIMEOUT_SECONDS = int(os.getenv('DEEPSEEK_TIMEOUT_SECONDS', '120')) DEEPSEEK_MAX_RETRIES = int(os.getenv('DEEPSEEK_MAX_RETRIES', '1')) # ─── Spectacular (Swagger / OpenAPI) ───────────────────────────────────────── SPECTACULAR_SETTINGS = { 'TITLE': 'Medical Training API', 'DESCRIPTION': '医疗训练系统 API 文档', 'VERSION': '1.0.0', 'SERVE_INCLUDE_SCHEMA': False, 'COMPONENT_SPLIT_REQUEST': True, # 修复同名枚举冲突(User.STATUS_CHOICES 与 CaseBase.STATUS_CHOICES 值相同,共用一个名称) 'ENUM_NAME_OVERRIDES': { 'CaseTypeEnum': 'apps.case.models.CaseBase.CASE_TYPE_CHOICES', 'CreatableCaseTypeEnum': [('traditional', 'traditional'), ('teaching', 'teaching')], 'CommonStatusEnum': 'apps.case.models.CaseBase.STATUS_CHOICES', 'PublishStatusEnum': 'apps.case.models.CaseBase.PUBLISH_STATUS_CHOICES', 'TrainingStatusEnum': 'apps.training.models.TrainingRecord.STATUS_CHOICES', 'TeacherStudentStatusEnum': 'apps.user.models.TeacherStudentRelation.STATUS_CHOICES', }, } # ─── Auth ───────────────────────────────────────────────────────────────────── AUTH_USER_MODEL = 'user.User' # ─── Logging ────────────────────────────────────────────────────────────────── LOGS_DIR = BASE_DIR / 'logs' LOGS_DIR.mkdir(exist_ok=True) LOGGING = { 'version': 1, 'disable_existing_loggers': False, 'formatters': { 'verbose': { 'format': '{asctime} {levelname} [{name}] {message}', 'style': '{', }, }, 'handlers': { 'console': { 'class': 'logging.StreamHandler', 'formatter': 'verbose', }, 'audit_file': { 'class': 'config.logging_handlers.DailyFileHandler', 'dir_path': str(LOGS_DIR), 'prefix': 'audit', 'backup_count': 30, 'formatter': 'verbose', }, 'api_access_file': { 'class': 'config.logging_handlers.DailyFileHandler', 'dir_path': str(LOGS_DIR), 'prefix': 'api-access', 'backup_count': 30, 'formatter': 'verbose', }, }, 'loggers': { 'audit': { 'handlers': ['audit_file', 'console'], 'level': 'INFO', 'propagate': False, }, 'api_access': { 'handlers': ['api_access_file'], 'level': 'INFO', 'propagate': False, }, }, 'root': { 'handlers': ['console'], 'level': 'INFO', }, }