6561 Commits

Author SHA1 Message Date
graham-dds
c14ad9fdd3 Move reports fixture data to dir at project root 2019-12-10 11:23:53 -05:00
graham-dds
29644a495b Add tests (& placeholder tests) for new reporting 2019-12-10 11:23:53 -05:00
graham-dds
ac4b15e4b2 Update seed sample script to conform to new fixture data 2019-12-10 11:23:53 -05:00
graham-dds
dc9a21a501 Refactor mock reporting data and class methods
All mock reporting data was moved to a JSON file. The concept of
what JEDI CLIN a particular environment drew money from was added to the
data.

This change had a cascade effect to the reporting class methods,
templates, and Vue components that ingested that reporting data. Many of
these files were modified to adapt to these changes. This also included
modifying the obligated funding bar graphs to reflect new design
changes.
2019-12-10 11:23:53 -05:00
dandds
d9c79b9b58
Merge pull request #1234 from dod-ccpo/kv-flask-config
Use Key Vault for Flask application config
2019-12-10 10:32:52 -05:00
dandds
ec638d6b01 Transition to using secrets in Key Vault.
This does the following:

- Removes references to the atst-override.ini file, now deprecated.
- Adds all non-secret data that was managed in the override file to the
  relevant K8s ConfigMaps.
- Adds additional documentation explaining out use of Key Vault for
  secrets management.
2019-12-10 10:14:54 -05:00
dandds
f8c31e4dcf Add function for Flask app to read config from a directory.
The application now checks for an environment variable,
OVERRIDE_CONFIG_DIRECTORY. If that value is set, it loops all the files
in the specified directory and checks if their names correspond to known
configuration settings. The contents of any matching files are read and
set as the new configuration value for that setting. This will allow us
to read mounted Azure Key Vault items as config values.

This also moves the functionality for applying environment variables to
the config into an analogous function.
2019-12-10 10:14:53 -05:00
dandds
972cf14a66 K8s configuration for mounting application config.
This adds an additional volume mount for Flask application secrets.
These will be mounted into the ATST container so that their values can
be read in as config.
2019-12-10 10:14:53 -05:00
dandds
2d714cae39 Add some missing configuration settings.
These settings are used in the deployed instance and mentioned elsewhere
in the README, but were missing from the base INI file and the
Configuration Guide section of the README.
2019-12-10 10:14:53 -05:00
Jay R. Newlin (PromptWorks)
489067fcf2
Merge pull request #1235 from dod-ccpo/ghost-inspector-wo-20121202
Ghost Inspector updates week of 2012-12-02
2019-12-09 10:33:05 -05:00
Jay R. Newlin (PromptWorks)
85a6771ad9
Merge branch 'staging' into ghost-inspector-wo-20121202 2019-12-09 10:17:26 -05:00
leigh-mil
658051f856
Merge pull request #1225 from dod-ccpo/suspend-env-role
Revoke env access before env role has been provisioned
2019-12-06 13:31:49 -05:00
leigh-mil
8330b4de24 Check to see if the env_role has been provisioned before disabling env_role in the csp 2019-12-06 09:59:56 -05:00
Jay R. Newlin (PromptWorks)
fb2beb5bc5 Minor adjustments 2019-12-06 09:59:16 -05:00
Jay R. Newlin (PromptWorks)
4e14cd6ffb Accommodate empty-state changes 2019-12-06 09:58:50 -05:00
Jay R. Newlin (PromptWorks)
7638afaa9c Add Ghost Inspector-recommended flow control to wait for file upload to complete; accommodate empty-state changes 2019-12-06 09:56:55 -05:00
Jay R. Newlin (PromptWorks)
708d8110fe Test that user can add environment access 2019-12-06 09:55:46 -05:00
Jay R. Newlin (PromptWorks)
0f6581848c Remove superfluous steps; adjust to allow modifying user access in other tests 2019-12-06 09:54:56 -05:00
leigh-mil
c501431719 Check to see if the environment has been provisioned before disabling the env role in the csp 2019-12-06 09:53:36 -05:00
Jay R. Newlin (PromptWorks)
7e86825988 New tests created this week 2019-12-06 09:53:33 -05:00
dandds
afd23e1259
Merge pull request #1233 from dod-ccpo/integration-script
Add script for running Ghost Inspector tests locally.
2019-12-05 17:34:29 -05:00
dandds
0851e42572 Add script for running Ghost Inspector tests locally.
Eventually, this should replace the CircleCI config for running the
integration tests to avoid duplication. In the interest of time so that
I don't have to debug broken builds, I'm only adding it as a utility
script.
2019-12-05 16:50:53 -05:00
leigh-mil
95697db8f5
Merge pull request #1229 from dod-ccpo/to-blank-state
Styling tweaks to application and TO index pages
2019-12-04 15:16:57 -05:00
leigh-mil
f7c1d403c7
Merge branch 'staging' into to-blank-state 2019-12-04 14:56:12 -05:00
dandds
e00916a20f
Merge pull request #1231 from dod-ccpo/redis-uri
Fix Redis config in CI.
2019-12-04 14:42:31 -05:00
dandds
4ba652868d Fix Redis config in CI.
Missed a few instances of the old connection string parameter in the
CircleCI config.
2019-12-04 14:21:36 -05:00
dandds
a431e0fe8e
Merge pull request #1230 from dod-ccpo/redis-uri
Compose REDIS_URI from component parts.
2019-12-04 13:43:47 -05:00
dandds
20c7e943c8 Compose REDIS_URI from component parts.
This updates the configuration handling for the Redis connection string.
The motivation is so that the Redis password can be managed separately
via Azure Key Vault and eventually be rotated independently of the rest
of the connection URI.

This also tweaks the method we use to build the DATABASE_URI and removes
some stale config from the CI config file.
2019-12-04 13:28:26 -05:00
leigh-mil
6dabd0bf35 Move copy into translations file 2019-12-03 15:43:06 -05:00
leigh-mil
31d9f34615 Add in check for edit perms before showing add/create button in empty state macro 2019-12-03 15:43:06 -05:00
leigh-mil
5ebcaa3950 Add sticky CTA to applications index page and update copy in TO index sticky CTA 2019-12-03 15:43:06 -05:00
leigh-mil
8e25adb1c3 Update EmptyState macro to align with new designs 2019-12-03 15:43:06 -05:00
leigh-mil
74ff581570 Remove route for /portfolios 2019-12-03 15:43:06 -05:00
leigh-mil
9ef4f693eb Sticky CTA styling fixes:
1. Remove gap between sidenav and sticky cta
2. Update z-index of sticky cta so it is behind the sidenav
2019-12-03 15:43:06 -05:00
leigh-mil
d1252b83ef
Merge pull request #1226 from dod-ccpo/modal-focus-styling
Add styling for a and button elements on focus
2019-12-03 13:44:47 -05:00
leigh-mil
d1b6e7833d Delete styling that removed focus styling 2019-12-03 13:24:20 -05:00
dandds
adbb6fd9f8
Merge pull request #1227 from dod-ccpo/crl-cronjob-limits
Add more restrictions to K8s CRL CronJob.
2019-12-03 13:15:26 -05:00
dandds
f4ffde89d0 Add more restrictions to K8s CRL CronJob.
The K8s CronJob that manages CRL syncing often leaves pods hanging
around for days at a time. This appears to happen when the download of a
particular CRL from DISA hangs for whatever reason. This updates the
configuration so that a running cronjob is automatically replaced by its
successor, rather than the two running concurrently. (The CRL CronJob
runs every hour, and it one has taken that long then it's hanging and
needs to be replace.) Similarly, this updates the config to only retain
one successful CRL pod, rather than the default of three.
2019-12-03 11:37:29 -05:00
leigh-mil
e2513582ba
Merge pull request #1219 from dod-ccpo/upload-timing-bug
TO next button activation bugfix
2019-12-03 10:43:57 -05:00
leigh-mil
dd6d516d2c
Merge branch 'staging' into upload-timing-bug 2019-12-03 10:26:27 -05:00
leigh-mil
fd479d2d1b
Merge pull request #1215 from dod-ccpo/schema-review
Schema review
2019-12-03 10:25:06 -05:00
leigh-mil
a6ff40c6b8
Merge branch 'staging' into schema-review 2019-12-03 10:06:10 -05:00
dandds
2ce88a09d3
Merge pull request #1228 from dod-ccpo/ghost-on-protected-branches
Limit integration tests to only run on protected branches.
2019-12-03 09:58:44 -05:00
leigh-mil
b5c6fd35bd
Merge branch 'staging' into schema-review 2019-12-03 09:46:01 -05:00
dandds
b1814db50b Limit integration tests to only run on protected branches.
Because of limitations with CircleCI, we should limit Ghost Inspector
tests to only run on merge commits to our protected branches. This will
allow us to build every commit in CI without exhausting our monthly
allotment of Ghost Inspector test runs. Once that setting has been
enabled in CircleCI ("build every commit") we will not longer have to
worry about what our default branch in the Github repo is.
2019-12-03 09:27:10 -05:00
tomdds
f3f37d5a1a
Merge pull request #1210 from dod-ccpo/nginx-config-update
Nginx Config Update
2019-12-02 16:03:34 -05:00
tomdds
728bb5713f Fix flexVol serving of nginx certificates
FlexVol requires that you specify certificates as secrets in order to get both the certificate and private key in the appropriate format for nginx to consume. Additionally, flexvol shouldn't interfer with other secrets mounted in it's host directory.
2019-12-02 15:45:16 -05:00
tomdds
df6ab4a016 Fix some formatting problems in nginx configs 2019-12-02 15:45:16 -05:00
tomdds
9ac5249308 Add .env files to gitignore 2019-12-02 15:45:16 -05:00
tomdds
5006945cfe Remove tls volumeMount 2019-12-02 15:45:16 -05:00