pk/atst
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,651 Commits 1 Branch 0 Tags
Commit Graph

6651 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Jay R. Newlin (PromptWorks)
85a6771ad9
Merge branch 'staging' into ghost-inspector-wo-20121202 2019-12-09 10:17:26 -05:00
leigh-mil
658051f856
Merge pull request #1225 from dod-ccpo/suspend-env-role 
Revoke env access before env role has been provisioned
 2019-12-06 13:31:49 -05:00
leigh-mil
8330b4de24 Check to see if the env_role has been provisioned before disabling env_role in the csp 2019-12-06 09:59:56 -05:00
Jay R. Newlin (PromptWorks)
fb2beb5bc5 Minor adjustments 2019-12-06 09:59:16 -05:00
Jay R. Newlin (PromptWorks)
4e14cd6ffb Accommodate empty-state changes 2019-12-06 09:58:50 -05:00
Jay R. Newlin (PromptWorks)
7638afaa9c Add Ghost Inspector-recommended flow control to wait for file upload to complete; accommodate empty-state changes 2019-12-06 09:56:55 -05:00
Jay R. Newlin (PromptWorks)
708d8110fe Test that user can add environment access 2019-12-06 09:55:46 -05:00
Jay R. Newlin (PromptWorks)
0f6581848c Remove superfluous steps; adjust to allow modifying user access in other tests 2019-12-06 09:54:56 -05:00
leigh-mil
c501431719 Check to see if the environment has been provisioned before disabling the env role in the csp 2019-12-06 09:53:36 -05:00
Jay R. Newlin (PromptWorks)
7e86825988 New tests created this week 2019-12-06 09:53:33 -05:00
dandds
afd23e1259
Merge pull request #1233 from dod-ccpo/integration-script 
Add script for running Ghost Inspector tests locally.
 2019-12-05 17:34:29 -05:00
dandds
0851e42572 Add script for running Ghost Inspector tests locally. 
Eventually, this should replace the CircleCI config for running the
integration tests to avoid duplication. In the interest of time so that
I don't have to debug broken builds, I'm only adding it as a utility
script.
 2019-12-05 16:50:53 -05:00
leigh-mil
95697db8f5
Merge pull request #1229 from dod-ccpo/to-blank-state 
Styling tweaks to application and TO index pages
 2019-12-04 15:16:57 -05:00
leigh-mil
f7c1d403c7
Merge branch 'staging' into to-blank-state 2019-12-04 14:56:12 -05:00
dandds
e00916a20f
Merge pull request #1231 from dod-ccpo/redis-uri 
Fix Redis config in CI.
 2019-12-04 14:42:31 -05:00
dandds
4ba652868d Fix Redis config in CI. 
Missed a few instances of the old connection string parameter in the
CircleCI config.
 2019-12-04 14:21:36 -05:00
dandds
a431e0fe8e
Merge pull request #1230 from dod-ccpo/redis-uri 
Compose REDIS_URI from component parts.
 2019-12-04 13:43:47 -05:00
dandds
20c7e943c8 Compose REDIS_URI from component parts. 
This updates the configuration handling for the Redis connection string.
The motivation is so that the Redis password can be managed separately
via Azure Key Vault and eventually be rotated independently of the rest
of the connection URI.

This also tweaks the method we use to build the DATABASE_URI and removes
some stale config from the CI config file.
 2019-12-04 13:28:26 -05:00
leigh-mil
6dabd0bf35 Move copy into translations file 2019-12-03 15:43:06 -05:00
leigh-mil
31d9f34615 Add in check for edit perms before showing add/create button in empty state macro 2019-12-03 15:43:06 -05:00
leigh-mil
5ebcaa3950 Add sticky CTA to applications index page and update copy in TO index sticky CTA 2019-12-03 15:43:06 -05:00
leigh-mil
8e25adb1c3 Update EmptyState macro to align with new designs 2019-12-03 15:43:06 -05:00
leigh-mil
74ff581570 Remove route for /portfolios 2019-12-03 15:43:06 -05:00
leigh-mil
9ef4f693eb Sticky CTA styling fixes: 
1. Remove gap between sidenav and sticky cta
2. Update z-index of sticky cta so it is behind the sidenav
 2019-12-03 15:43:06 -05:00
leigh-mil
d1252b83ef
Merge pull request #1226 from dod-ccpo/modal-focus-styling 
Add styling for a and button elements on focus
 2019-12-03 13:44:47 -05:00
leigh-mil
d1b6e7833d Delete styling that removed focus styling 2019-12-03 13:24:20 -05:00
dandds
adbb6fd9f8
Merge pull request #1227 from dod-ccpo/crl-cronjob-limits 
Add more restrictions to K8s CRL CronJob.
 2019-12-03 13:15:26 -05:00
dandds
f4ffde89d0 Add more restrictions to K8s CRL CronJob. 
The K8s CronJob that manages CRL syncing often leaves pods hanging
around for days at a time. This appears to happen when the download of a
particular CRL from DISA hangs for whatever reason. This updates the
configuration so that a running cronjob is automatically replaced by its
successor, rather than the two running concurrently. (The CRL CronJob
runs every hour, and it one has taken that long then it's hanging and
needs to be replace.) Similarly, this updates the config to only retain
one successful CRL pod, rather than the default of three.
 2019-12-03 11:37:29 -05:00
leigh-mil
e2513582ba
Merge pull request #1219 from dod-ccpo/upload-timing-bug 
TO next button activation bugfix
 2019-12-03 10:43:57 -05:00
leigh-mil
dd6d516d2c
Merge branch 'staging' into upload-timing-bug 2019-12-03 10:26:27 -05:00
leigh-mil
fd479d2d1b
Merge pull request #1215 from dod-ccpo/schema-review 
Schema review
 2019-12-03 10:25:06 -05:00
leigh-mil
a6ff40c6b8
Merge branch 'staging' into schema-review 2019-12-03 10:06:10 -05:00
dandds
2ce88a09d3
Merge pull request #1228 from dod-ccpo/ghost-on-protected-branches 
Limit integration tests to only run on protected branches.
 2019-12-03 09:58:44 -05:00
leigh-mil
b5c6fd35bd
Merge branch 'staging' into schema-review 2019-12-03 09:46:01 -05:00
dandds
b1814db50b Limit integration tests to only run on protected branches. 
Because of limitations with CircleCI, we should limit Ghost Inspector
tests to only run on merge commits to our protected branches. This will
allow us to build every commit in CI without exhausting our monthly
allotment of Ghost Inspector test runs. Once that setting has been
enabled in CircleCI ("build every commit") we will not longer have to
worry about what our default branch in the Github repo is.
 2019-12-03 09:27:10 -05:00
tomdds
f3f37d5a1a
Merge pull request #1210 from dod-ccpo/nginx-config-update 
Nginx Config Update
 2019-12-02 16:03:34 -05:00
tomdds
728bb5713f Fix flexVol serving of nginx certificates 
FlexVol requires that you specify certificates as secrets in order to get both the certificate and private key in the appropriate format for nginx to consume. Additionally, flexvol shouldn't interfer with other secrets mounted in it's host directory.
 2019-12-02 15:45:16 -05:00
tomdds
df6ab4a016 Fix some formatting problems in nginx configs 2019-12-02 15:45:16 -05:00
tomdds
9ac5249308 Add .env files to gitignore 2019-12-02 15:45:16 -05:00
tomdds
5006945cfe Remove tls volumeMount 2019-12-02 15:45:16 -05:00
tomdds
33ce02d045 Better differentiate between master and staging vault config via overlay 2019-12-02 15:45:16 -05:00
tomdds
253ddaa49e Properly register key vault object types 2019-12-02 15:45:16 -05:00
tomdds
36406372e3 Remove unused secret volume for tls key and cert 2019-12-02 15:45:16 -05:00
tomdds
221e9ab26b Add a staging overlay for the key vault name 
Currently we're just using the test vault, but in the future we want to be able to prescribe vault names for different environments via overlay.
 2019-12-02 15:45:16 -05:00
tomdds
26bb2f4614 Use mounted all-in-one cert for nginx ssl 
Mount the combined key and cert for nginx ssl using flexvol and point the necessary nginx config at it.
 2019-12-02 15:45:16 -05:00
tomdds
9b8d5e3662 Document generation and updating of dhparams. 2019-12-02 15:45:16 -05:00
tomdds
1c4e00e914 Update Deploy Readme for FlexVol consumption 
Explain via example how you can use FlexVol to mount secrets in our containers.
 2019-12-02 15:45:16 -05:00
tomdds
9469d1ff1b Introduce TEMPLATE_ID variable for FlexVolume 
FlexVolume requires you specify the tenant id of the key vault instance, so this will need to be templated in for future enviroments
 2019-12-02 15:45:16 -05:00
tomdds
949ffa294d Use a single FlexVolume for nginx secrets 
Just a name update for now, but we'll use the one flex volume to mount all the nginx related secrets going forward.
 2019-12-02 15:45:16 -05:00
tomdds
6acc085a77 Use dhparam.pem from AZ Key Vault 2019-12-02 15:45:16 -05:00