from secrets import token_bytes
import os

SECRET_KEY = token_bytes(16)
DEBUG = False
ENV = "production"

# Address of the server reachable from the same host.
ADMIN_TARGET = "http://localhost:80"

# Matches of regexes listed here will be removed when rendering user input.
FILTER = [r"<[^>]*/?[^>]*script[^<]*>"]

# Enable a list off all messages at /messages, reachable if the flag cookie is set.
SUPER_SECRET_ADMIN_PANEL = True

# The cookie to steal.
FLAG = os.getenv("FLAG", "flag")
FLAG_COOKIE = { "flag":  FLAG }


SQLALCHEMY_DATABASE_URI = "sqlite:///messages.sqlite"
SQLALCHEMY_TRACK_MODIFICATIONS = False