Bjoern Welker 630595bce9 security: add SECRET_KEY validation ...

- Prevent server startup if SECRET_KEY is not set in production
- Raise RuntimeError with helpful message if using default value
- Allow debug mode for local development

This ensures the application never runs with an insecure session
secret in production environments.

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

2026-02-06 08:09:45 +01:00

27 KiB

Executable File

Raw Blame History

View Raw