settings: Make AVATAR_SALT mandatory.

This also allows us to remove some assertions as we now know that AVATAR_SALT will never be None. Signed-off-by: Zixuan James Li <p359101898@gmail.com>
2025-11-02 21:13:36 +00:00 · 2022-08-23 19:44:43 -04:00
parent 059d0e7be8
commit c8d5959689
3 changed files with 1 additions and 3 deletions
--- a/zproject/computed_settings.py
+++ b/zproject/computed_settings.py
@@ -82,7 +82,7 @@ SHARED_SECRET = get_mandatory_secret("shared_secret")
 # avatar.  If this salt is discovered, attackers will only be able to determine
 # that the owner of an email account has uploaded an avatar to Zulip, which isn't
 # the end of the world.  Don't use the salt where there is more security exposure.
-AVATAR_SALT = get_secret("avatar_salt")
+AVATAR_SALT = get_mandatory_secret("avatar_salt")

 # SERVER_GENERATION is used to track whether the server has been
 # restarted for triggering browser clients to reload.