pk/atst
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
6,649 Commits 1 Branch 0 Tags
b270d0e4b0bcc25545d37fd50fa2678fc39911dd
Commit Graph

2591 Commits

Author SHA1 Message Date
richard-dds
d1e6533824 Implement EnvironmentRoles.disable 2019-10-29 15:57:57 -04:00
richard-dds
ec44d4a560 Merge pull request #1143 from dod-ccpo/consolidate-csp-interface 
Simplify CloudProviderInterface and remove AWS impl.
 2019-10-29 13:47:14 -04:00
graham-dds
5526356938 remove TODO from admin.py 2019-10-28 15:37:50 -04:00
graham-dds
eb22d5ec1e Invitation revoking & role disabling to base class 2019-10-28 15:37:43 -04:00
richard-dds
184b58d5d2 Remove AWSCloudProvider 2019-10-28 13:55:34 -04:00
richard-dds
6ea17bb4f8 Merge create_environment and create_environment_baseline 2019-10-28 13:39:40 -04:00
graham-dds
ccaabcaab0 Add revoke invitation logic to port. admin route 2019-10-28 13:15:42 -04:00
graham-dds
a0bccc64a9 Disable PortfolioRole when revoking an invite 2019-10-28 13:14:39 -04:00
richard-dds
c66b1ef2f9 Add mypy and add typechecking step to script/test 
Only check atst/domain/csp/cloud.py for now
 2019-10-24 14:44:53 -04:00
graham-dds
9de90d796d Rename audit log feature flag config variable 2019-10-21 11:36:53 -04:00
graham-dds
c27e0e618e apply feature flag to /activity-history route 2019-10-21 11:36:53 -04:00
graham-dds
1ac9243749 edit create_audit_event method of AuditableMixin 
- create dictonary of log data and log it. Only create insance of
AuditEvent if AUDIT_LOG_FEATURE_TOGGLE is set to True
 2019-10-21 11:36:40 -04:00
graham-dds
8e0ce0519d Add AUDIT_LOG_FEATURE_TOGGLE to flask app settings 
- set in ini config
 2019-10-21 10:32:58 -04:00
dandds
efcb9681d3 Make Postgres SSL connection configurable. 
This will allow us to force SSL connections to the database in
production by setting two values:

- PGSSLMODE should be set to "verify-full". This forces the client to
  verify the server against a known CA: https://www.postgresql.org/docs/10/libpq-ssl.html
- PGSSLROOTCERT should be set to the path of the public cert for the
  relevant CA.

When the database connection is made, these values are passed to the
adapter. For local development, PGSSLMODE is set to "prefer" and
PGSSLROOTCERT is left unset.

Kubernetes config has been added to maintain the root CAs for both Azure
and AWS as k8s ConfigMap objects. These are mounted into the containers
and referenced by PGSSLROOTCERT in the container environment.
 2019-10-17 16:05:19 -04:00
dandds
fc637e933d Specify Flask SERVER_NAME value for Celery worker. 
The Celery worker cannot render URLs for the app without having a
SERVER_NAME value set. AT-AT's ability to send notifications when an
environment is ready is broken as a result.

This commit sets a null default value for SERVER_NAME in the default
config file. A setting must exist in the INI file in order to be
over-written by an environment variable, which is why we declare it as
null here. There is an additional kwarg, "allow_no_value", that must be
passed to ConfigParser to allow null values.

This also applies the correct domains as SERVER_NAME environment
variables in the Kubernetes ConfigMaps for the AWS and Azure Celery
workers.
 2019-10-16 11:57:18 -04:00
richard-dds
96c1fcbe85 Merge branch 'master' into revert-user-deletion 2019-10-15 17:06:06 -04:00
leigh-mil
59ae5a6b12 Merge pull request #1118 from dod-ccpo/revoke-app-invite_2 
Disable the App Role when revoking an invite.
 2019-10-15 16:41:51 -04:00
leigh-mil
1eecf19459 Update flash message for resending an invite 2019-10-15 14:35:13 -04:00
leigh-mil
91ce3dda9e Disable the App Role when revoking an invite. 2019-10-15 14:25:21 -04:00
richard-dds
1bce0a1f01 Revert user deletion job 2019-10-14 16:51:19 -04:00
graham-dds
e8595e592a Merge pull request #1111 from dod-ccpo/multistep-app-provisioning-design-tweaks 
More multistep app provisioning design tweaks
 2019-10-14 15:40:04 -04:00
graham-dds
8e6a4101ff Update copy in headers / flash 2019-10-14 14:46:00 -04:00
graham-dds
24be9a6a61 Update copy for new app provisioning 
- change flashed message for adding members
- use the correct helper text for the app name input
- a few other updates to text in translations
 2019-10-14 10:10:22 -04:00
leigh-mil
10c16cc4ef Send email after environment is provisioned 2019-10-10 09:45:01 -04:00
richard-dds
95b33ac33d Add beat task for dispatch_delete_user 2019-10-09 09:57:50 -04:00
richard-dds
0c480ccc41 Fix tests 2019-10-08 16:42:25 -04:00
richard-dds
ed7bc33e44 Set deleted flag in do_delete_user 2019-10-08 16:42:25 -04:00
richard-dds
274ff9fbbf Trigger environment_role deletion 2019-10-08 16:42:25 -04:00
richard-dds
78c4949776 Move sqlalchemy_dumps to atst.utils.json 2019-10-08 16:42:25 -04:00
richard-dds
2ad30b5fa4 Implement dispatch_delete_user job 2019-10-08 16:42:25 -04:00
richard-dds
00f76ae5af Add delete user job 2019-10-08 16:42:25 -04:00
leigh-mil
1a809418b1 Refactor out duplicate dictionary 2019-10-08 16:10:46 -04:00
leigh-mil
13bc830536 Add update invite form to settings page and move user info page of member form into its own macro 2019-10-08 16:10:46 -04:00
leigh-mil
4d043363a7 Create route for resending an app invite 
Replace ApplicationInvitations._update_status() with revoke() because multiple functions used _update_status() and it was causing app roles to be disabled when they shouldn't have. Now app roles are disabled within the revoke function.
Updated Invitations.resend() to accept user details so the invite info
can be changed in the new invite
 2019-10-08 15:59:16 -04:00
leigh-mil
bb6d656def Merge pull request #1106 from dod-ccpo/clin-errors-contract-dates 
PoP Range error message
 2019-10-08 15:39:34 -04:00
graham-dds
f57ee99328 New app step 2 template rendering: specify kwargs 2019-10-08 13:15:28 -04:00
graham-dds
4a4e20534f Flashed message after step 1 of app provisioning 
- add flash for updating application
- add to route logic
 2019-10-08 13:15:28 -04:00
graham-dds
2d28356cdc Refactor routes 2019-10-08 13:15:28 -04:00
graham-dds
237123d474 Make application description optional 2019-10-08 13:15:28 -04:00
leigh-mil
f4855c0ae3 Use validator on the field for checking that the pop dates are within the contract date range 2019-10-08 10:32:02 -04:00
leigh-mil
07b3c68422 Add min and max range values to date selector so a more accurate error message can be displayed when a date is out of the range 2019-10-08 10:32:02 -04:00
leigh-mil
875b908908 Do not change app role status when invite status changes, add assertions to tests for this 2019-10-03 14:56:38 -04:00
richard-dds
04235fd13d Extract constant for permission boundary ARN 2019-10-02 16:01:23 -04:00
richard-dds
329f014b16 Use jinja template to generate policy json 2019-10-02 16:01:23 -04:00
richard-dds
7a8b96d2a8 Use _get_client everywhere 2019-10-02 16:01:23 -04:00
richard-dds
10aa1c9bff Pull out a constant 2019-10-02 16:01:23 -04:00
richard-dds
cc3de11e54 Standardize all of the AWS credentials 2019-10-02 16:01:23 -04:00
richard-dds
686ef55e40 Remove comment 2019-10-02 16:01:23 -04:00
richard-dds
6ca6131d21 Add comment regarding AWSCloudProvider.BASELINE_POLICIES 2019-10-02 16:01:23 -04:00
richard-dds
faaac42291 Remove todo 2019-10-02 16:01:23 -04:00