Please make some dependencies optional

[sergei-maertens]

We will use this dependency in https://github.com/GeneriekPublicatiePlatformWoo/registratie-component and I'm seeing some dependencies that are problematic or just plain not needed. Can you please put these in optional dependency groups so that you can install with pip install open-api-framework[pscyopg2,celery] etc.?

Dependencies that caught my eye

• django-cors-headers: not necessary for this project, since it will only consumed by backend servers and thus CORS does not apply
• django-markup: we will not have templates that need to render markdown
• django-redis: Django has built-in support for redis cache now, a third party dependency is not necessarily needed
• djangorestframework-gis: no geo-stuff is relevant to this project
• django-csp: no public UI or DigiD requirements are relevant, CSP will not be applied, maybe in the future
• djangorestframework-inclusions: we will not need this
• commonground-api-common: this one in particular will pull in a lot of deprecated/outdated stuff and there's nothing in there of interest for this project
• psycopg2 conflicts with psycopg 3, which is the successor
• bleach: we will not be rendering WYSIWYG content that requires sanitation
• uwsgi seems odd to require this here, what if someone wants to use gunicorn or daphne for ASGI support (okay, far fetched, but doesn't belong in this list IMO)
• celery: definitely excluding this from the project as long as possible
• flower: tied to celery, so see above

[alextreme]

Valid concerns, we'll discuss them within Team Bron.

CSP is relevant due to audits like https://taiga.maykinmedia.nl/project/gemeente-amsterdam/issue/18 . It does need to be set correctly though (eg. #68 )

[alextreme]

Discussed, regarding django-redis and psycopg2 it would be better to remove (redis) and update (to psycopg3) instead of adding optional dependancies

Will leave in triage to discuss broader with Team bron