pk/atst
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,432 Commits 1 Branch 0 Tags
Commit Graph

6432 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
leigh-mil
25a5cb136c
Merge pull request #1196 from dod-ccpo/revoke-env-access 
Catch CSP exceptions and display a flash message with the error
 2019-11-22 14:46:34 -05:00
dandds
1ec0352c5c
Merge pull request #1205 from dod-ccpo/cd-workflow-fixes 
Do not run test workflow for merges to main branches.
 2019-11-22 13:12:54 -05:00
dandds
41bab4f594 Do not run test workflow for merges to main branches. 
We should not run a redundant testing workflow on merges to master or
staging.

This also includes a quick fix to configure the FLASK_ENV for the main
site.
 2019-11-22 12:56:17 -05:00
tomdds
9b59e803d1
Merge pull request #1204 from dod-ccpo/fix-upload-header 
Fix Upload Header
 2019-11-22 11:57:53 -05:00
tomdds
4df68bab23 Add BLOB_STORAGE_URL config 
Our content security policy in non-dev environments didn't allow uploading to azure blob storage. This adds a configurable blob storage base URL to allow regions to specify which storage endpoint they expect the upload request to use.
 2019-11-22 11:56:27 -05:00
dandds
5cc032b655
Merge pull request #1183 from dod-ccpo/cdn 
Set up a CDN
 2019-11-22 11:26:39 -05:00
leigh-mil
4cba564c97 Catch CSP exceptions and display a flash message with the error 2019-11-22 08:49:16 -05:00
leigh-mil
c2975fff69
Merge pull request #1192 from dod-ccpo/app-member-status-labels 
Status labels on app members table
 2019-11-22 08:23:26 -05:00
dandds
08fc530223 Add config value for CDN origin. 
This value is set as the Access-Control-Allow-Origin header value for
the application. When using Azure CDN, the CDN will consume this header
when it populates its cache and use it on subsequent requests.

It would be possible to make this the same as the Flask SERVER_NAME
value. We explicitly set SERVER_NAME for Celery worker processes because
they need that information to contruct URLs outside of the request cycle
(Flask can infer the server name within a request cycle). I decided not
to rely on SERVER_NAME though because it has side effects:

- It determines what `url_for` uses as the host domain (which would be
  fine).
- It makes it so that the Flask app can only server requests to that
  domain (probably fine, but it felt like too big a side effect).

Additionally, SERVER_NAME does not include the scheme. For all of these
reasons I opted to make CDN_ORIGIN a separate config value.
 2019-11-21 16:43:22 -05:00
dandds
c6187466a3 Configure staging with different FLASK_ENV, include sub-route for CDN_URL. 2019-11-21 16:43:22 -05:00
dandds
293854ece6 CircleCI config for passing CDN url to the Docker image. 
The workflows need to split since we're passing different parameters to
the Docker build at the beginning of the workflow.
 2019-11-21 16:42:42 -05:00
richard-dds
8e12c6bfbd Add CDN config for staging 2019-11-21 16:42:42 -05:00
richard-dds
e29163f65a Add CDN config for prod 2019-11-21 16:42:42 -05:00
richard-dds
5ca20222fc Run build-prod in CI 2019-11-21 16:42:42 -05:00
richard-dds
4c693cf9c0 Fix bad rebase 2019-11-21 16:42:42 -05:00
richard-dds
8ddd9fab96 Add docker arg for CDN_URL 2019-11-21 16:42:42 -05:00
richard-dds
5e9a3f0ba6 Add STATIC_URL and ASSET_URL config in base.ini 2019-11-21 16:42:42 -05:00
richard-dds
4c5a4f29b8 Allow static_url domain in prod 2019-11-21 16:42:42 -05:00
richard-dds
c10aedd4dc Override flask's url_for 2019-11-21 16:42:42 -05:00
richard-dds
7ace430dee Use url_for for all static paths 2019-11-21 16:42:42 -05:00
dandds
436cbcffe4
Merge pull request #1194 from dod-ccpo/staging-server-name 
Set SERVER_NAME correctly for staging Celery workers.
 2019-11-21 16:37:27 -05:00
leigh-mil
6e6b910d5a
Merge pull request #1198 from dod-ccpo/ignore-audit-log-in-coverage 
Exclude audit log from coverage
 2019-11-21 16:25:37 -05:00
dandds
e0c58290c9
Merge pull request #1201 from dod-ccpo/reset-reset-db 
Adjust script to drop all tables and reset from scratch.
 2019-11-21 15:56:02 -05:00
tomdds
f4c1055c29
Merge pull request #1181 from dod-ccpo/load-testing 
Load Testing
 2019-11-21 15:38:16 -05:00
dandds
cd3cb7b614 Adjust script to drop all tables and reset from scratch. 
This updates the script for resetting the database so that it drops and
recreates all the tables, instead of disabling Postgres triggers and
truncating most of the tables. The latter strategy requires superuser
permissions in Postgres that the db user we manage in Azure does not
have. The script now:

- drops the tables
- reruns the alembic migrations
- reseeds the permission sets
 2019-11-21 15:37:31 -05:00
leigh-mil
dd148f0837 exclude audit log related functions from coverage 2019-11-20 13:46:44 -05:00
leigh-mil
ef12701dbb Default creating an invite in the AppliationRoleFactory to True and fix tests 2019-11-20 12:09:46 -05:00
leigh-mil
8aa302357b Move label display logic into the Label macro 2019-11-20 12:09:46 -05:00
leigh-mil
58a0b2dd9d Move display status logic to be a property of an ApplicationRole 2019-11-20 12:08:41 -05:00
leigh-mil
9f90f5abbd Update app member status labels to accurately reflect member's current status 2019-11-20 11:59:48 -05:00
leigh-mil
3f146c7da8
Merge pull request #1195 from dod-ccpo/vue-emitters-fix_part-4 
Vue emitters fix part 4 - clean up
 2019-11-20 11:54:51 -05:00
leigh-mil
223420a747
Merge pull request #1197 from dod-ccpo/remove-csp-alert 
Remove csp alert
 2019-11-20 11:54:27 -05:00
leigh-mil
516a01840e Remove csp alert 2019-11-19 16:48:43 -05:00
graham-dds
8767ed8a27
Merge pull request #1193 from dod-ccpo/goodbye_styleguide 
Remove developer styleguide from project
 2019-11-19 15:16:12 -05:00
leigh-mil
a6a908ae55 Remove other events emitted from root 2019-11-19 14:49:11 -05:00
leigh-mil
04b9250ea1 Create emitter function for field-change event 2019-11-19 14:49:11 -05:00
leigh-mil
bc0382834b Remove old field-mount and field-change emitters and listeners. 
Replace FormMixin with new functionality.
 2019-11-19 14:49:11 -05:00
dandds
280778ab5f Set SERVER_NAME correctly for staging Celery workers. 2019-11-19 13:36:47 -05:00
graham-dds
fea8c9bce9 Remove developer styleguide from project 
Since we're actively moving our styles toward a pure of a USWDS
implementation as possible, this styleguide page is becoming
increasingly outdated.
 2019-11-19 13:34:14 -05:00
leigh-mil
3576551f42
Merge pull request #1191 from dod-ccpo/vue-emitters-fix_part-3 
Vue emitters fix part 3 - Portfolio Settings page
 2019-11-19 10:21:41 -05:00
leigh-mil
05210d434b
Merge pull request #1188 from dod-ccpo/new-app-form-step-3-bug 
Edit member perms in new app form bugfix
 2019-11-19 10:20:53 -05:00
tomdds
e08c5b278e Add load testing readme 2019-11-18 15:13:23 -05:00
tomdds
a4c106ee0f Add referer headers to load tests for csrf 2019-11-18 14:30:34 -05:00
leigh-mil
622234bc51 Remove unused Vue component 2019-11-18 14:14:31 -05:00
leigh-mil
d4facd1e36 Update emitters for vue components on portfolio settings page 2019-11-18 14:14:31 -05:00
leigh-mil
7c8717c2fe Add tests for the applications.new routes for adding a new member and updating a member 
Add tests for creating and updating app member helper methods
 2019-11-18 14:09:52 -05:00
tomdds
84e5fa9bd1 Improve id extraction for apps and portfolios 2019-11-18 13:47:42 -05:00
tomdds
9b64d26961 Extract new entity creation percentages to constants 2019-11-18 13:47:17 -05:00
dandds
b6e8db2e50
Merge pull request #1190 from dod-ccpo/reset-db 
Rename script for resetting the database.
 2019-11-18 10:53:04 -05:00
dandds
7e468f8ac6 Rename script for resetting the database. 
Renamed this script because it's current name is misleading. It does not
just remove sample data; it truncates every table except the alembic
version table and `permission_sets`.
 2019-11-18 10:17:44 -05:00