cleanup

2025-09-22 07:34:49 +02:00 · 2025-09-22 07:34:49 +02:00 · d35ed7b292
commit d35ed7b292
parent 8f0edf86d1
3 changed files with 33 additions and 32 deletions
--- a/config/settings.py
+++ b/config/settings.py
@ -45,15 +45,15 @@ INSTALLED_APPS = [
 # Middleware
 # ---------------------------------------------------------------------------
 MIDDLEWARE = [
-    "django.middleware.security.SecurityMiddleware",
+    "django.middleware.security.SecurityMiddleware", # CSRF protection
-    "django.contrib.sessions.middleware.SessionMiddleware",
+    "django.contrib.sessions.middleware.SessionMiddleware", # session management
-    "django.middleware.locale.LocaleMiddleware",
+    "django.middleware.locale.LocaleMiddleware", # language settings
-    "django.middleware.common.CommonMiddleware",
+    "django.middleware.common.CommonMiddleware", # common middleware
-    "django.middleware.csrf.CsrfViewMiddleware",
+    "django.middleware.csrf.CsrfViewMiddleware", # CSRF protection
-    "django.contrib.auth.middleware.AuthenticationMiddleware",
+    "django.contrib.auth.middleware.AuthenticationMiddleware", # authentication
-    "risks.middleware.AuditUserMiddleware",
+    "risks.middleware.AuditUserMiddleware", # audit user
-    "django.contrib.messages.middleware.MessageMiddleware",
+    "django.contrib.messages.middleware.MessageMiddleware", # messages
-    "django.middleware.clickjacking.XFrameOptionsMiddleware",
+    "django.middleware.clickjacking.XFrameOptionsMiddleware", # clickjacking protection
 ]
 # ---------------------------------------------------------------------------
@ -72,11 +72,11 @@ TEMPLATES = [
        "APP_DIRS": True,
        "OPTIONS": {
            "context_processors": [
-                "django.template.context_processors.debug",
+                "django.template.context_processors.debug", # debug info
-                "django.template.context_processors.request",
+                "django.template.context_processors.request", # request info
-                "django.contrib.auth.context_processors.auth",
+                "django.contrib.auth.context_processors.auth", # auth info 
-                "django.contrib.messages.context_processors.messages",
+                "django.contrib.messages.context_processors.messages", # messages
-                "risks.context_processors.unread_notifications_count",
+                "risks.context_processors.unread_notifications_count", # unread notifications
            ],
        },
    },
@ -118,7 +118,7 @@ else:  # default: SQLite
    DATABASES = {
        "default": {
            "ENGINE": "django.db.backends.sqlite3",
-            "NAME": BASE_DIR / "db.sqlite3",  # fixed filename for simplicity
+            "NAME": BASE_DIR / "db.sqlite3",
        }
    }
@ -130,10 +130,10 @@ AUTHENTICATION_BACKENDS = [
    "django.contrib.auth.backends.ModelBackend",  # local auth
 ]
 AUTH_PASSWORD_VALIDATORS = [
-    {"NAME": "django.contrib.auth.password_validation.UserAttributeSimilarityValidator"},
+    {"NAME": "django.contrib.auth.password_validation.UserAttributeSimilarityValidator"}, # check for username similarity
-    {"NAME": "django.contrib.auth.password_validation.MinimumLengthValidator"},
+    {"NAME": "django.contrib.auth.password_validation.MinimumLengthValidator"}, # min length
-    {"NAME": "django.contrib.auth.password_validation.CommonPasswordValidator"},
+    {"NAME": "django.contrib.auth.password_validation.CommonPasswordValidator"}, # check for common passwords
-    {"NAME": "django.contrib.auth.password_validation.NumericPasswordValidator"},
+    {"NAME": "django.contrib.auth.password_validation.NumericPasswordValidator"}, # check for numeric passwords
 ]
 # Login-Flow
--- a/config/urls.py
+++ b/config/urls.py
@ -14,13 +14,18 @@ router.register(r"users", UserViewSet)
 router.register(r"logs", AuditViewSet)
 urlpatterns = [
-    path("admin/", admin.site.urls),
+    # Risk Management
    path("i18n/", include("django.conf.urls.i18n")), # Language Switch
    path("api/ping/", ping),               # Public healthcheck endpoint
    path("api/secure-ping/", secure_ping), # Protected API endpoint
    path("api/", include(router.urls)),
    path("accounts/", include("django.contrib.auth.urls")),
    path("", include("risks.urls", namespace="risks")),
    # Admin
    path("admin/", admin.site.urls),
    # Login/Logout
    path("accounts/", include("django.contrib.auth.urls")),
    # Language Switch
    path("i18n/", include("django.conf.urls.i18n")),
    # API
    path("api/", include(router.urls)),
    path("api/ping/", ping),
    path("api/secure-ping/", secure_ping),
 ]
 # Add OIDC routes only if Single Sign-On is enabled
--- a/locale/de/LC_MESSAGES/django.po
+++ b/locale/de/LC_MESSAGES/django.po
@ -410,8 +410,7 @@ msgstr "Sende an alle App-Mitarbeiter"
 #: risks/models.py:438
 msgid "Extra recipients (emails, comma or newline separated)"
-msgstr ""
+msgstr "Zusätzliche Empfänger (E-Mails, durch Komma oder Zeilenumbruch getrennt)"
 "Zusätzliche Empfänger (E-Mails, durch Komma oder Zeilenumbruch getrennt)"
 #: risks/signals.py:71
 #, python-brace-format
@ -459,8 +458,7 @@ msgstr "Maßnahme gelöscht: {t}"
 #: risks/signals.py:218
 #, python-brace-format
 msgid "Residual review required for risk '{t}' due to control change"
-msgstr ""
+msgstr "Restrisikoprüfung nötig für das Risiko: '{t}', da Maßnahmen geändert wurden"
 "Restrisikoprüfung nötig für das Risiko: '{t}', da Maßnahmen geändert wurden"
 #: risks/signals.py:245
 #, python-brace-format
@ -508,9 +506,7 @@ msgstr "Das Risiko wurde geprüft und als geschlossen markiert"
 #: risks/views.py:220
 msgid "Not all controls are completed. Risk cannot be closed yet."
-msgstr ""
+msgstr "Nicht alle Maßnhamen sind abgeschlossen, das Risiko kann nicht geschlossen werden."
 "Nicht alle Maßnhamen sind abgeschlossen, das Risiko kann nicht geschlossen "
 "werden."
 #: risks/views.py:409
 msgid "Risk status updated."