The missing debug tool for django.
DjangoSonar is a comprehensive debugging and introspection tool for Django applications, inspired by Laravel Telescope.
Having spent years developing with Laravel before switching to Django, the first thing I missed from this change was the amazing Laravel Telescope. So, I decided to create it myself.
DjangoSonar is built using:
If you use this project, please consider giving it a β.
- Self updating lists of:
- Requests
- Exceptions
- Queries
- Dumps
- Events
- Logs
- (Signals coming soonβ’)
- Request insights:
- Payload get/post
- Auth User
- Session vars
- Headers
- ...
- π Automatic sensitive data filtering (passwords, tokens, API keys, etc.)
- Historical data (clearable)
- Simple and reactive UI
- First you need to install the package:
pip install django-sonar- Then, to enable the dashboard, you will need to add the app to the INSTALLED_APPS in your project main settings file:
INSTALLED_APPS = [
...
'django_sonar',
...
]- Add the urls to the main urls.py file in your project folder:
urlpatterns = [
...
path('sonar/', include('django_sonar.urls')),
...
]- π Be sure to add the exclusions settings too, or you will get way too much data in your sonar dashboard:
DJANGO_SONAR = {
'excludes': [
STATIC_URL,
MEDIA_URL,
'/sonar/',
'/admin/',
'/__reload__/',
],
}In this example I'm excluding all the http requests to static files, uploads, the sonar dashboard itself, the django admin panels and the browser reload library. Update this setting accordingly, YMMW.
DjangoSonar automatically filters sensitive data from request payloads, headers, and session data before storing them in the database. By default, it masks common sensitive fields like:
password,passwd,pwd,passtoken,api_key,secret,authorizationcredit_card,cvv,ssn,pin- And more...
These fields are replaced with ***FILTERED*** in the stored data.
Custom Sensitive Fields: You can add your own sensitive field patterns by adding them to the configuration:
DJANGO_SONAR = {
'excludes': [
STATIC_URL,
MEDIA_URL,
'/sonar/',
],
'sensitive_fields': [
'custom_secret',
'internal_api_key',
'private_data',
],
}The filtering is case-insensitive and works with partial matches (e.g., user_password, my_api_key will also be filtered).
For better performance, it's recommended to store Django Sonar data in a separate database. This prevents monitoring overhead from impacting your main application database.
Step 1: Configure a separate database in your settings.py:
DATABASES = {
'default': {
'ENGINE': 'django.db.backends.postgresql',
'NAME': 'your_main_db',
# ... other settings
},
'sonar_db': {
'ENGINE': 'django.db.backends.sqlite3', # or postgresql, mysql, etc.
'NAME': BASE_DIR / 'sonar.db',
}
}Step 2: Add the database router to your settings.py:
DATABASE_ROUTERS = ['django_sonar.db_router.SonarDatabaseRouter']Step 3: Run migrations:
# Migrate your main database (Django Sonar tables will be skipped)
python manage.py migrate
# Migrate the sonar database (only Django Sonar tables)
python manage.py migrate --database=sonar_dbNow all Django Sonar data will be stored in the separate database!
Note: The database router ensures that:
- Django Sonar tables only migrate to
sonar_db - Your main application tables never migrate to
sonar_db - Everything stays cleanly separated
- Now you should be able to execute the migrations to create the two tables that DjangoSonar will use to collect the data.
python manage.py migrate- And finally add the DjangoSonar middleware to your middlewares to enable the data collection:
MIDDLEWARE = [
...
'django_sonar.middlewares.requests.RequestsMiddleware',
...
]To access the dashboard you will point your browser to the /sonar/ url (but you can change it as described before). The interface is very simple and self explanatory.
You could use DjangoSonar in production too, since it gives you an historical overview of all the requests, but be sure to clear the data and disable it when you have debugged the problem.
π If you forget to disable/clear DjangoSonar you could end up with several gigabytes of data collected. So please use it with caution when in production π
Only authenticated superusers can access sonar. If you are trying to access the dashboard with a wrong type of user, you will see an error page, otherwise you should see the DjangoSonar login page.
You can dump values to DjangoSonar using the sonar() helper function:
from django_sonar.utils import sonar
sonar('something')And you can also dump multiple values like this:
from django_sonar.utils import sonar
sonar('something', self.request.GET, [1,2,3])Use sonar_event() to push structured domain events into Sonar during a request:
from django_sonar import sonar_event
sonar_event(
'billing.invoice_paid',
payload={'invoice_id': 123, 'amount': 49.90, 'currency': 'USD'},
level='info',
tags=['billing', 'payments'],
)Tracked fields:
namelevelpayload(shown in the Event Data column)tagstimestamp
These entries are shown in the Events panel.
Attach django_sonar.logging.SonarHandler to Django logging to track log entries in Sonar:
LOGGING = {
'version': 1,
'disable_existing_loggers': False,
'handlers': {
'console': {'class': 'logging.StreamHandler'},
'sonar': {'class': 'django_sonar.logging.SonarHandler'},
},
'loggers': {
'': {
'handlers': ['console', 'sonar'],
'level': 'INFO',
},
},
}Example usage:
import logging
logger = logging.getLogger(__name__)
logger.warning(
'Payment retry scheduled',
extra={
'context': {'invoice_id': 123, 'attempt': 2},
'queue': 'payments',
},
)Tracked fields:
loggerlevelmessagecontext(all extra fields are normalized into this)timestamp
These entries are shown in the Logs panel.
Note: events/logs are buffered per request and persisted by the Sonar middleware at request end.
DjangoSonar supports extension panels that are auto-registered from settings, so developers can add new dashboard sections without forking core views/templates.
Create a module in your app, for example myapp/sonar_panels.py:
from django_sonar.panels import SonarPanel
class EventsPanel(SonarPanel):
key = 'events'
label = 'Events'
icon = 'bi-calendar-event'
category = 'events'
list_template = 'myapp/sonar/events_list.html'
# optional:
# detail_template = 'myapp/sonar/events_detail.html'
# list_context_name = 'events'Panel keys must be unique. Key collisions with built-ins or other custom panels raise an explicit configuration error.
DJANGO_SONAR = {
'excludes': [
STATIC_URL,
MEDIA_URL,
'/sonar/',
'/admin/',
],
'custom_panels': [
'myapp.sonar_panels.EventsPanel',
],
}Create the template referenced by list_template, for example myapp/templates/myapp/sonar/events_list.html.
DjangoSonar renders this template at:
/sonar/p/events/(list)/sonar/p/events/<uuid>/(detail, only ifdetail_templateis defined)
The panel is also automatically shown in the Sonar sidebar navigation.
Panel list queries use SonarData.category by default.
For the example above, save entries with category events (for example via middleware/hooks/services) and they will appear in your custom panel.
DjangoSonar is open-sourced software licensed under the MIT license.
If you really like this project and you want to help me please consider buying me a beer πΊ