Sensitive information

[tonyshenyy]

Dav pointed out in the meeting that we should hide some sensitive information such as the database info in settings.py on our end. I can filter-branch it, but then everyone who currently has a local copy need to do re-cloning or rebasing. Is that fine for everyone?

[davclark]

From Nov 29 on Slack

No need to filter-branch. You can just get heroku to update to new credentials

This is an example of how to keep things secret: https://devcenter.heroku.com/articles/config-vars

You need code like this in the settings.py: https://devcenter.heroku.com/articles/heroku-postgresql#connecting-in-python

You can have a secrets file that creates the variables locally on your computer, but they will be provided by Heroku to the running app.

[davclark]

I'm taking this issue. It's been two weeks and this is foundational - it needs to get done.