From 739453502212cbe62eb93cae59c1e231f8d7a64b Mon Sep 17 00:00:00 2001
From: Shane McDonald <me@shanemcd.com>
Date: Tue, 23 Feb 2021 08:46:42 -0500
Subject: [PATCH] Remove default SECRET_KEY

We should never be using default values for sensitive information
---
 awx/settings/defaults.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/awx/settings/defaults.py b/awx/settings/defaults.py
index af1590862c..9471899b37 100644
--- a/awx/settings/defaults.py
+++ b/awx/settings/defaults.py
@@ -148,7 +148,7 @@ SCHEDULE_MAX_JOBS = 10
 SITE_ID = 1
 
 # Make this unique, and don't share it with anybody.
-SECRET_KEY = 'p7z7g1ql4%6+(6nlebb6hdk7sd^&fnjpal308%n%+p^_e6vo1y'
+SECRET_KEY = open('/etc/tower/SECRET_KEY', 'rb').read().strip()
 
 # Hosts/domain names that are valid for this site; required if DEBUG is False
 # See https://docs.djangoproject.com/en/dev/ref/settings/#allowed-hosts