openstack/horizon
Code Issues Proposed changes
f9e057030d
horizon/openstack_dashboard/settings.py

377 lines
12 KiB
Python
Raw Normal View History

Updated Copyright dates to 2012. * fixes bug 916953 Change-Id: I44bdbb735fa1ac068c38997844591c8f256c62fb
2012-02-04 17:40:31 -06:00
# Copyright 2012 United States Government as represented by the
Updated license headers
2011-07-03 21:10:53 -07:00
# Administrator of the National Aeronautics and Space Administration.
# All Rights Reserved.
#
Updated Copyright dates to 2012. * fixes bug 916953 Change-Id: I44bdbb735fa1ac068c38997844591c8f256c62fb
2012-02-04 17:40:31 -06:00
# Copyright 2012 Nebula, Inc.
Updated license headers
2011-07-03 21:10:53 -07:00
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
Initial commit
2011-01-12 13:43:31 -08:00
import logging
import os
import sys
Adds transitional deprecation code for old dashboard names. This code allows users who upgrade from Folsom to Grizzly to continue using their old settings file until H. The code is in the settings file because it must be run prior to the modules listed in INSTALLED_APPS being loaded into the python path. Fixes bug 1071444. Change-Id: I7ac30b731be3cdc7513e3d6bc34d624963bbea9b
2012-11-20 20:33:09 -08:00
import warnings
Initial commit
2011-01-12 13:43:31 -08:00
Add Django-1.7 support And add initial Django-1.8 fixes - skip unittests until exceptions are fixed - Django-1.8 changed the way TemplateLoaders are initialized. - django.middleware.doc.XViewMiddleware is removed. - SessionAuthenticationMiddleware was added and will be mandatory for Django-2.0 Closes-Bug: #1425892 Partially Implements: blueprint django18 Change-Id: Idfd3f494db7b11a66e2262c9520be88b098fbb7b
2015-02-13 08:29:22 +01:00
import django
Remove #noqa from most common imports and add them to import_exceptions We have a lot of import with #noqa that is there to ignore h302, because it's traditional to import and use a name directly, instead of a whole module. This hides other errors and gives people the impression that it's actually fine to import non-modules, you just have to slap #noqa on those lines. I went through the code and identified about a dozen names that are most commonly imported this way. I remove the #noqa tag from them, and added them to the list in import_exceptions. I also removed a few unused imports that were revealed in the process. Change-Id: I27afb8e2b1d4759ec974ded9464d8f010312ee78
2014-01-03 17:31:49 +01:00
from django.utils.translation import ugettext_lazy as _
Provide a default for OPENSTACK_IMAGE_BACKEND The list of image formats has become customisable, but didn't have a default which can cause issues since it's a required field when creating a new image. Also document the setting. Additionally, mark OpenStack settings documentation as "(Partial)" until #1221115 is closed. Change-Id: I980c2d61bc9f9ac14fa39e5088c2ce03c48499b2 Closes-Bug: #1223427
2013-09-11 11:09:42 +01:00
Revert "Refactoring the exceptions lists" This reverts commit 7fc1baad3a909465423810758a8d83c4715a1010. Change-Id: I495e76eea8c873d71b37625b0953d821156c599c Closes-Bug: 1440903
2015-04-06 16:45:55 -05:00
from openstack_dashboard import exceptions
Move static files configuration to reduce settings.py churn Operators don't like it when we change settings.py a lot, so this change moves application configuration code (which can change a bunch) out of settings.py into a separate file. Change-Id: If099aa0d5d24827b1ce301f7c586647e6617826d Closes-Bug: 1475447
2015-07-17 15:58:34 +10:00
from openstack_dashboard.static_settings import find_static_files # noqa
Fixing changing WEBROOT from / There were a few items missed with the patch enabling changing WEBROOT patch. First the XStatic files were being unpacked in the wrong directoy because root_url was not being passed in. This caused 404 errors when running with a different web root. This change allows root_url to be passed in on XStatic handling. Second, STATIC_URL and MEDIA_URL were not using WEBROOT. These now are built with WEBROOT. Third, the fa-font-path variable was hard-coded in _variables.scss to use "/" as the web root. A webroot variable has been added that can be overridden. Additionally, a new theme has also been added to change the web root. Closes-Bug: #1434276 Change-Id: Ifff1c60b3405ce2136d039b8d74da08752e7215c
2015-03-23 08:26:01 -06:00
from openstack_dashboard.static_settings import get_staticfiles_dirs # noqa
Separate static_settings.py from settings.py The packagers will most likely need to replace the configuration for the locations of all the static files when packaging for their distributions. It's much more convenient for them, when that configuration is in a separate file. Change-Id: I346687f4592b97f9c15a20e09fd0e1e80bd1918d Partial-implements: blueprint static-file-bower
2015-01-13 14:45:07 +01:00
Separate OpenStack exceptions from Horizon exceptions. Placing the OpenStack exception class definitions into their own module inside the openstack_dashboard project allows more flexibility for deployers and others who might wish to use the horizon module for non-OpenStack Django projects. The patch also contains two tiny cleanup items in the templatetag files. Change-Id: I8b250804ad07027d40d554ad1e7ee0b5af63d466
2012-08-05 12:52:21 -07:00
Adds transitional deprecation code for old dashboard names. This code allows users who upgrade from Folsom to Grizzly to continue using their old settings file until H. The code is in the settings file because it must be run prior to the modules listed in INSTALLED_APPS being loaded into the python path. Fixes bug 1071444. Change-Id: I7ac30b731be3cdc7513e3d6bc34d624963bbea9b
2012-11-20 20:33:09 -08:00
warnings.formatwarning = lambda message, category, *args, **kwargs: \
PEP8 E126 has been resolved Change-Id: Ic5d3b96b6061b7a34e7620d8d09418bd6976fbb1 Partial-Bug: #1085346
2013-09-05 15:49:35 +08:00
'%s: %s' % (category.__name__, message)
Adds transitional deprecation code for old dashboard names. This code allows users who upgrade from Folsom to Grizzly to continue using their old settings file until H. The code is in the settings file because it must be run prior to the modules listed in INSTALLED_APPS being loaded into the python path. Fixes bug 1071444. Change-Id: I7ac30b731be3cdc7513e3d6bc34d624963bbea9b
2012-11-20 20:33:09 -08:00
Initial commit
2011-01-12 13:43:31 -08:00
ROOT_PATH = os.path.dirname(os.path.abspath(__file__))
Cleans up the settings files. Removes deprecated settings, makes sure os.path.abspath is always used consistently, and generally tidies up. Change-Id: Ib0e3ef454ac8c9ef74e987b6088df6c744a2ab44
2012-06-20 13:37:10 -07:00
BIN_DIR = os.path.abspath(os.path.join(ROOT_PATH, '..', 'bin'))
Initial commit
2011-01-12 13:43:31 -08:00
Unified horizon and openstack-dashboard environments. Buildout has been removed entirely, all dev installation is now done via the single tools/install_venv.py script. Django's manage.py script has also been updated to a newer version/convention; this allows for less python path mangling and makes things cleaner and more explicit. Note that, as such, it has been moved up a directory level. Change-Id: I62f9f06ee00568fc91e5ba7e1fd15d22ea849d1f
2012-01-04 14:46:40 -08:00
if ROOT_PATH not in sys.path:
sys.path.append(ROOT_PATH)
Initial commit
2011-01-12 13:43:31 -08:00
DEBUG = False
TEMPLATE_DEBUG = DEBUG
Auth refactor. Switch to using the self-contained django_openstack_auth package which is a proper django.contrib.auth pluggable backend. Notable functional improvements include: * Better overall security via use of standard Django auth code (well-vetted by security experts). * Token expiration checking. * User "enabled" attribute checking. * Support for full range of Django auth attributes such as is_anonymous, is_active, is_superuser, etc. * Improved hooks for RBAC/permission-based acess control. Regarding the RBAC/permission-based access control, this patch moves all "role" and "service"-oriented checks to permission checks. This will make transitioning to policy-driven checking much easier once that fully lands in OpenStack. Implements blueprint move-keystone-support-to-django-auth-backend Change-Id: I4f3112af797aff8c4c5e9930c6ca33a70e45589d
2012-04-13 21:46:04 -07:00
SITE_BRANDING = 'OpenStack Dashboard'
Initial commit
2011-01-12 13:43:31 -08:00
Support to move the horizon relative to web root When deploying Horizon, on a web server, where other applications are used, it's quite handy to be able to move Horizon around quickly. This change introduces a single Variable WEBROOT to achieve this. Implements: blueprint shared-webserver Change-Id: Ic731f6754e233b328a8dbe7026b1d7417620fd66
2014-04-11 13:50:34 +02:00
WEBROOT = '/'
LOGIN_URL = None
LOGOUT_URL = None
LOGIN_REDIRECT_URL = None
Allow STATIC_ROOT override STATIC_ROOT is a file system location. It does not need to be tied to WEBROOT. Change-Id: I4935c5d8bd883cb5f091af22582e942f13aa5100 Partial-Bug: #1399585
2015-07-13 11:40:32 -06:00
STATIC_ROOT = None
Allow STATIC_URL override When the change was committed to allow moving WEBROOT from '/', STATIC_URL became hard-coded based on WEBROOT. This is an unnecessary linking and breaks downstream packages. This patch supports overriding STATIC_URL in local_settings.py and have it honored by settings.py. Closes-Bug: #1474551 Change-Id: Id0c5b2c6e4ff5f85ec94c5f474382664b303be23
2015-07-21 11:16:22 -06:00
STATIC_URL = None
Initial commit
2011-01-12 13:43:31 -08:00
Unifies the project packaging into one set of modules. There are no longer two separate projects living inside the horizon repository. There is a single project now with a single setup.py, single README, etc. The openstack-dashboard/dashboard django project is now named "openstack_dashboard" and lives as an example project in the topmost horizon directory. The "horizon/horizon" directory has been bumped up a level and now is directly on the path when the root horizon directory is on your python path. Javascript media which the horizon module directly relies upon now ships in the horizon/static dir rather than openstack-dashboard/dashboard/static. All the corresponding setup, installation, build, and env scripts have been updated accordingly. Implements blueprint unified-packaging. Change-Id: Ieed8e3c777432cd046c3e0298869a9428756ab62
2012-02-28 23:27:46 -08:00
ROOT_URLCONF = 'openstack_dashboard.urls'
HORIZON_CONFIG = {
Splits OpenStack Dashboard bits from framework app code. Moves everything OpenStack-specific (dashboards, apis, etc.) into the openstack_dashboard project, achieving a much cleaner separation between the project-specific code and the generic Horizon framework code. Change-Id: I7235b41d449b26c980668fc3eb4360b24508717b
2012-10-04 15:43:40 -07:00
'user_home': 'openstack_dashboard.views.get_user_home',
Adds an option for linking to external help docs. Change-Id: Iea9ab299078f8552f53ca747f48e30a0b049bd06
2012-08-02 16:39:52 -07:00
'ajax_queue_limit': 10,
Implement configurable auto-fade for alerts messages. The configuration takes what alert types would fade, the delay before it fades and the fade out duration. Fixes bug 1144820 Change-Id: I421ee52308613da72118a507ed8b8b574c176f68
2013-03-06 16:21:12 -08:00
'auto_fade_alerts': {
'delay': 3000,
'fade_duration': 1500,
'types': ['alert-success', 'alert-info']
},
Separate OpenStack exceptions from Horizon exceptions. Placing the OpenStack exception class definitions into their own module inside the openstack_dashboard project allows more flexibility for deployers and others who might wish to use the horizon module for non-OpenStack Django projects. The patch also contains two tiny cleanup items in the templatetag files. Change-Id: I8b250804ad07027d40d554ad1e7ee0b5af63d466
2012-08-05 12:52:21 -07:00
'help_url': "http://docs.openstack.org",
Revert "Refactoring the exceptions lists" This reverts commit 7fc1baad3a909465423810758a8d83c4715a1010. Change-Id: I495e76eea8c873d71b37625b0953d821156c599c Closes-Bug: 1440903
2015-04-06 16:45:55 -05:00
'exceptions': {'recoverable': exceptions.RECOVERABLE,
'not_found': exceptions.NOT_FOUND,
'unauthorized': exceptions.UNAUTHORIZED},
Correct local_settings example from overwriting settings Currently, local_settings.py.example redefines HORIZON_CONFIG (previously defined in settings.py). This adds to confusion as to where proper definitions and modifications should be made. This change ensures that only modifications of HORIZON_CONFIG are made within local_settings.py.example and defining of HORIZON_CONFIG is left in settings.py. -added importing of HORIZON_CONFIG from settings -corrected portion that was redefining HORIZON_CONFIG -left the modal_backdrop = static change that was occuring in the redefition in local_settings to that of a modification and commented out to serve as an example (conforms to usual pattern) -migrated the default for 'modal_backdrop' into settings.py Change-Id: I7ddeee82258f6c871ff77e1bc03115c2adbf618e Closes-Bug: #1472687
2015-08-12 11:12:18 -05:00
'modal_backdrop': 'static',
Allow extensions to add Angular modules This change allows extension plugins to make use of AngularJS without changing horizon template or javascript files. Horizon bootstraps AngularJS once when a page loads with a list of modules. An extension can register a list of modules and a list of javascript files that contain these modules. Implements blueprint: plugins-angular Change-Id: I4a76363dd4a631cc0d2fc2c902c2f5cac0f073f2
2014-05-08 12:34:21 -06:00
'angular_modules': [],
'js_files': [],
Extending Horizon's plug-in architecture to Jasmine Horizon has a well-defined plug-in architecture, but the architecture doesn't cover Horizon's Jasmine spec runner. This patch fills the gap. This patch also - defines a new field `js_spec_file` in HORIZON_CONFIG in settings. - fix a bug openstack_dashboard/utils/settings.py where using python set to collect js files, which will cause the order of the js file lost. Change is made to use list to respect the js files order. - update doc/source/topics/settings.rst to include the newly added field. Change-Id: Idc122e8b1f917cdd344aa8f4b48fd80a6bdddb70 Close-Bug: 1421778
2015-02-08 22:00:18 -08:00
'js_spec_files': [],
Applying auto-file-discovery partially This patch applies auto-file-discovery to - horizon/horizon/horizon/static/ - horizon/openstack_dashboard/static/openstack-service-api/ Change-Id: I3477f0fa3912f6381474e4278037f909aa9fa55a Co-Authored-By: Richard Jones <r1chardj0n3s@gmail.com> Co-Authored-By: Thai Tran <tqtran@us.ibm.com> Partially-Implements: blueprint auto-js-file-finding
2015-06-19 18:21:30 -07:00
'external_templates': [],
Unifies the project packaging into one set of modules. There are no longer two separate projects living inside the horizon repository. There is a single project now with a single setup.py, single README, etc. The openstack-dashboard/dashboard django project is now named "openstack_dashboard" and lives as an example project in the topmost horizon directory. The "horizon/horizon" directory has been bumped up a level and now is directly on the path when the root horizon directory is on your python path. Javascript media which the horizon module directly relies upon now ships in the horizon/static dir rather than openstack-dashboard/dashboard/static. All the corresponding setup, installation, build, and env scripts have been updated accordingly. Implements blueprint unified-packaging. Change-Id: Ieed8e3c777432cd046c3e0298869a9428756ab62
2012-02-28 23:27:46 -08:00
}
Initial commit
2011-01-12 13:43:31 -08:00
Implements ability to upload local image to glance. Change-Id: Icb53633bb1d5e1dd827f24d81ce908ed497b44f3 Implements: blueprint image-upload
2013-01-29 04:35:18 -05:00
# Set to True to allow users to upload images to glance via Horizon server.
# When enabled, a file form field will appear on the create image form.
# See documentation for deployment considerations.
HORIZON_IMAGES_ALLOW_UPLOAD = True
Provide a default for OPENSTACK_IMAGE_BACKEND The list of image formats has become customisable, but didn't have a default which can cause issues since it's a required field when creating a new image. Also document the setting. Additionally, mark OpenStack settings documentation as "(Partial)" until #1221115 is closed. Change-Id: I980c2d61bc9f9ac14fa39e5088c2ce03c48499b2 Closes-Bug: #1223427
2013-09-11 11:09:42 +01:00
# The OPENSTACK_IMAGE_BACKEND settings can be used to customize features
# in the OpenStack Dashboard related to the Image service, such as the list
# of supported image formats.
OPENSTACK_IMAGE_BACKEND = {
'image_formats': [
Show default text for image format This changes the default Horizon settings so that the list of image formats starts with an entry that uses default text in accordance with other dialogs. Change-Id: If001fc49aad60e15b2c42afcf741499fcebae5f6 Partial-Bug: #1302256
2014-05-15 12:29:27 -04:00
('', _('Select format')),
Provide a default for OPENSTACK_IMAGE_BACKEND The list of image formats has become customisable, but didn't have a default which can cause issues since it's a required field when creating a new image. Also document the setting. Additionally, mark OpenStack settings documentation as "(Partial)" until #1221115 is closed. Change-Id: I980c2d61bc9f9ac14fa39e5088c2ce03c48499b2 Closes-Bug: #1223427
2013-09-11 11:09:42 +01:00
('aki', _('AKI - Amazon Kernel Image')),
('ami', _('AMI - Amazon Machine Image')),
('ari', _('ARI - Amazon Ramdisk Image')),
Add support for Docker image format The 'Docker' format is added to the default list of supported formats so it can be selected from the list of formats when creating or updating an image. When the docker format is selected, the disk_format and container_format properties are set appropriately. This also includes changes to the Format column and filter for the Images table to handle this type. Closes-Bug: #1455179 Change-Id: Ie705c86d47c0b6035373b9311454748122185988
2015-05-29 11:07:37 -05:00
('docker', _('Docker')),
Provide a default for OPENSTACK_IMAGE_BACKEND The list of image formats has become customisable, but didn't have a default which can cause issues since it's a required field when creating a new image. Also document the setting. Additionally, mark OpenStack settings documentation as "(Partial)" until #1221115 is closed. Change-Id: I980c2d61bc9f9ac14fa39e5088c2ce03c48499b2 Closes-Bug: #1223427
2013-09-11 11:09:42 +01:00
('iso', _('ISO - Optical Disk Image')),
Add support for OVA images in Horizon This is supported in glance etc. Add additional descriptions to image backend formats. Change-Id: I839a4f17cfc75dbec8c753721bc1dbd8c7a8d578 Closes-Bug: #1415418
2015-01-28 12:07:49 +01:00
('ova', _('OVA - Open Virtual Appliance')),
Provide a default for OPENSTACK_IMAGE_BACKEND The list of image formats has become customisable, but didn't have a default which can cause issues since it's a required field when creating a new image. Also document the setting. Additionally, mark OpenStack settings documentation as "(Partial)" until #1221115 is closed. Change-Id: I980c2d61bc9f9ac14fa39e5088c2ce03c48499b2 Closes-Bug: #1223427
2013-09-11 11:09:42 +01:00
('qcow2', _('QCOW2 - QEMU Emulator')),
('raw', _('Raw')),
Add support for OVA images in Horizon This is supported in glance etc. Add additional descriptions to image backend formats. Change-Id: I839a4f17cfc75dbec8c753721bc1dbd8c7a8d578 Closes-Bug: #1415418
2015-01-28 12:07:49 +01:00
('vdi', _('VDI - Virtual Disk Image')),
('vhd', _('VHD - Virtual Hard Disk')),
Clean up whitespace in settings files Whitespace should be consistent inside of local_settings.py.example. Currently, most comments in side our settings files follow the "space after # mark" guideline. This is as it should be. However, commented out code-lines are inconsistently including that space. Most of the time they don't include it. There's a case to be made for either approach: Do include the space after the #: Keeps things consistent and it's how pyflakes likes things. Do not include the space after the #: Identifies the commented out line as potential code, instead of a descriptive comment. Makes it easier to just remove the '#' character to activate the line of code. Specifically with python, leaving the white space is likely bad. An informal survey of the lines in these files shows that most commented out code lines do not have a space, and I agree with that policy. I'd like to make this the policy and clean up the code. Also added trailing ',' chars on the last element of many lists. Change-Id: I36b6b40996f7ee5eb566719fe7a92ddecf569f5d Closes-Bug: #1428222
2015-03-04 10:38:33 -07:00
('vmdk', _('VMDK - Virtual Machine Disk')),
Provide a default for OPENSTACK_IMAGE_BACKEND The list of image formats has become customisable, but didn't have a default which can cause issues since it's a required field when creating a new image. Also document the setting. Additionally, mark OpenStack settings documentation as "(Partial)" until #1221115 is closed. Change-Id: I980c2d61bc9f9ac14fa39e5088c2ce03c48499b2 Closes-Bug: #1223427
2013-09-11 11:09:42 +01:00
]
}
Initial commit
2011-01-12 13:43:31 -08:00
MIDDLEWARE_CLASSES = (
'django.middleware.common.CommonMiddleware',
'django.middleware.csrf.CsrfViewMiddleware',
'django.contrib.sessions.middleware.SessionMiddleware',
Auth refactor. Switch to using the self-contained django_openstack_auth package which is a proper django.contrib.auth pluggable backend. Notable functional improvements include: * Better overall security via use of standard Django auth code (well-vetted by security experts). * Token expiration checking. * User "enabled" attribute checking. * Support for full range of Django auth attributes such as is_anonymous, is_active, is_superuser, etc. * Improved hooks for RBAC/permission-based acess control. Regarding the RBAC/permission-based access control, this patch moves all "role" and "service"-oriented checks to permission checks. This will make transitioning to policy-driven checking much easier once that fully lands in OpenStack. Implements blueprint move-keystone-support-to-django-auth-backend Change-Id: I4f3112af797aff8c4c5e9930c6ca33a70e45589d
2012-04-13 21:46:04 -07:00
'django.contrib.auth.middleware.AuthenticationMiddleware',
Initial commit
2011-01-12 13:43:31 -08:00
'django.contrib.messages.middleware.MessageMiddleware',
Add Django-1.7 support And add initial Django-1.8 fixes - skip unittests until exceptions are fixed - Django-1.8 changed the way TemplateLoaders are initialized. - django.middleware.doc.XViewMiddleware is removed. - SessionAuthenticationMiddleware was added and will be mandatory for Django-2.0 Closes-Bug: #1425892 Partially Implements: blueprint django18 Change-Id: Idfd3f494db7b11a66e2262c9520be88b098fbb7b
2015-02-13 08:29:22 +01:00
)
if django.VERSION >= (1, 8, 0):
MIDDLEWARE_CLASSES += (
'django.contrib.auth.middleware.SessionAuthenticationMiddleware',)
else:
MIDDLEWARE_CLASSES += ('django.middleware.doc.XViewMiddleware',)
MIDDLEWARE_CLASSES += (
Re-architects the OpenStack Dashboard for modularity and extensibility. Implements blueprint extensible-architecture. Implements blueprint improve-dev-documentation. Implements blueprint gettext-everywhere. Implements blueprint sphinx-docs. Complete re-architecture of the dashboard to transform it from a standalone django-openstack app to a Horizon framework for building dashboards. See the docs for more information. Incidentally fixes the following bugs: Fixes bug 845868 -- no PEP8 violations. Fixes bug 766096 -- the dashboard can now be installed at any arbitrary URL. Fixes bug 879111 -- tenant id is now controlled solely by the tenant switcher, not the url (which was disregarded anyway) Fixes bug 794754 -- output of venv installation is considerably reduced. Due to the scale and scope of this patch I recommend reviewing it on github: https://github.com/gabrielhurley/horizon/tree/extensible_architecture Change-Id: I8e63f7ea235f904247df40c33cb66338d973df9e
2011-10-31 11:31:05 -07:00
'horizon.middleware.HorizonMiddleware',
Fixed language selection box
2011-06-03 14:23:25 +09:00
'django.middleware.locale.LocaleMiddleware',
Add X-FRAME_OPTIONS header to protect against Clickjacking Enables the django.middleware.clickjacking.XFrameOptionsMiddleware middleware class with the default X-Frame-Options header SAMEORIGIN. More details here: https://docs.djangoproject.com/en/dev/ref/clickjacking/ Change-Id: Ic06fdf0b79c9cd245c12ed1f4438af9a4b52ad03 Fixes: bug #1118327
2013-02-13 11:43:11 +02:00
'django.middleware.clickjacking.XFrameOptionsMiddleware',
Initial commit
2011-01-12 13:43:31 -08:00
)
TEMPLATE_CONTEXT_PROCESSORS = (
'django.core.context_processors.debug',
'django.core.context_processors.i18n',
'django.core.context_processors.request',
'django.core.context_processors.media',
Refactored openstack-dashboard to use Django 1.3's contrib.staticfiles app as per current best-practices. This bumps the minimum required version of Django to 1.3 and introduces a backwards-incompatible change for any third-party code that relied on hard-coded paths to the media directory.
2011-08-29 17:41:35 -07:00
'django.core.context_processors.static',
Initial commit
2011-01-12 13:43:31 -08:00
'django.contrib.messages.context_processors.messages',
Re-architects the OpenStack Dashboard for modularity and extensibility. Implements blueprint extensible-architecture. Implements blueprint improve-dev-documentation. Implements blueprint gettext-everywhere. Implements blueprint sphinx-docs. Complete re-architecture of the dashboard to transform it from a standalone django-openstack app to a Horizon framework for building dashboards. See the docs for more information. Incidentally fixes the following bugs: Fixes bug 845868 -- no PEP8 violations. Fixes bug 766096 -- the dashboard can now be installed at any arbitrary URL. Fixes bug 879111 -- tenant id is now controlled solely by the tenant switcher, not the url (which was disregarded anyway) Fixes bug 794754 -- output of venv installation is considerably reduced. Due to the scale and scope of this patch I recommend reviewing it on github: https://github.com/gabrielhurley/horizon/tree/extensible_architecture Change-Id: I8e63f7ea235f904247df40c33cb66338d973df9e
2011-10-31 11:31:05 -07:00
'horizon.context_processors.horizon',
Splits OpenStack Dashboard bits from framework app code. Moves everything OpenStack-specific (dashboards, apis, etc.) into the openstack_dashboard project, achieving a much cleaner separation between the project-specific code and the generic Horizon framework code. Change-Id: I7235b41d449b26c980668fc3eb4360b24508717b
2012-10-04 15:43:40 -07:00
'openstack_dashboard.context_processors.openstack',
Initial commit
2011-01-12 13:43:31 -08:00
)
TEMPLATE_LOADERS = (
Updated template loaders to the current class-based versions. The old values were deprecated as of Django 1.2 and will be removed in 1.4 Change-Id: Ie7611b4554fe2f31a2c38c3d5729d3d90c9e6afb
2011-12-22 19:01:46 -08:00
'django.template.loaders.filesystem.Loader',
Adds dash/panel app templates, mgmt commands, template loader. Implements blueprint scaffolding. Using custom management commands you can now create the majority of the boilerplate code for a new dashboard or panel from a set of basic templates with a single command. See the docs for more info. Additionally, in support of the new commands (and inherent codified directory structure) there's a new template loader included which can load templates from "templates" directories in any registered panel. Change-Id: I1df5eb152cb18694dc89d562799c8d3e8950ca6f
2012-04-26 19:22:51 -07:00
'django.template.loaders.app_directories.Loader',
Clean up whitespace in settings files Whitespace should be consistent inside of local_settings.py.example. Currently, most comments in side our settings files follow the "space after # mark" guideline. This is as it should be. However, commented out code-lines are inconsistently including that space. Most of the time they don't include it. There's a case to be made for either approach: Do include the space after the #: Keeps things consistent and it's how pyflakes likes things. Do not include the space after the #: Identifies the commented out line as potential code, instead of a descriptive comment. Makes it easier to just remove the '#' character to activate the line of code. Specifically with python, leaving the white space is likely bad. An informal survey of the lines in these files shows that most commented out code lines do not have a space, and I agree with that policy. I'd like to make this the policy and clean up the code. Also added trailing ',' chars on the last element of many lists. Change-Id: I36b6b40996f7ee5eb566719fe7a92ddecf569f5d Closes-Bug: #1428222
2015-03-04 10:38:33 -07:00
'horizon.loaders.TemplateLoader',
Initial commit
2011-01-12 13:43:31 -08:00
)
TEMPLATE_DIRS = (
os.path.join(ROOT_PATH, 'templates'),
)
Updating Horizon to use LESS. This changes all of the Bootstrap CSS and Horizon CSS to use LESS. Horizon's specific CSS will be organized into separate files in another commit, as it is outside the scope of this BP. We are also now packing LESS 1.3.0 directly within Horizon. Implementation of Blueprint transition-to-lesscss Change-Id: Ie4be8b28ab3ce04ea21d7d5cd49c2ccb66bd8ade
2012-05-11 23:37:35 -07:00
STATICFILES_FINDERS = (
Unbundle jquery from horizon using xstatic Instead of bundling the jquery.js code with horizon, we use the xstatic and xstatic-jquery s dependencies that provide us with the packaged files. This patch partially implements blueprint remove-javascript-bundling Further patches will follow. Change-Id: I395f1c64f2341d4d6847d4f7e648d6c03eb85988
2014-03-24 10:40:03 -04:00
'django.contrib.staticfiles.finders.FileSystemFinder',
Updating Horizon to use LESS. This changes all of the Bootstrap CSS and Horizon CSS to use LESS. Horizon's specific CSS will be organized into separate files in another commit, as it is outside the scope of this BP. We are also now packing LESS 1.3.0 directly within Horizon. Implementation of Blueprint transition-to-lesscss Change-Id: Ie4be8b28ab3ce04ea21d7d5cd49c2ccb66bd8ade
2012-05-11 23:37:35 -07:00
'django.contrib.staticfiles.finders.AppDirectoriesFinder',
Unbundle bootstrap and use xstatic version This uses the xstatic-packaged versions of bootstrap and bootstrap-datepicker. It requires newer versions of pyscss and django-pyscss, as there were some bugs in there that were just fixed upstream. Change-Id: I0a7660d29fecde915eb46916453a9ea96296798d Implements: bluperint remove-javascript-bundling Closes-bug: #1375883
2014-08-25 10:58:39 +02:00
'compressor.finders.CompressorFinder',
Refactored openstack-dashboard to use Django 1.3's contrib.staticfiles app as per current best-practices. This bumps the minimum required version of Django to 1.3 and introduces a backwards-incompatible change for any third-party code that relied on hard-coded paths to the media directory.
2011-08-29 17:41:35 -07:00
)
Unbundle jquery from horizon using xstatic Instead of bundling the jquery.js code with horizon, we use the xstatic and xstatic-jquery s dependencies that provide us with the packaged files. This patch partially implements blueprint remove-javascript-bundling Further patches will follow. Change-Id: I395f1c64f2341d4d6847d4f7e648d6c03eb85988
2014-03-24 10:40:03 -04:00
Updating Horizon to use LESS. This changes all of the Bootstrap CSS and Horizon CSS to use LESS. Horizon's specific CSS will be organized into separate files in another commit, as it is outside the scope of this BP. We are also now packing LESS 1.3.0 directly within Horizon. Implementation of Blueprint transition-to-lesscss Change-Id: Ie4be8b28ab3ce04ea21d7d5cd49c2ccb66bd8ade
2012-05-11 23:37:35 -07:00
COMPRESS_PRECOMPILERS = (
SCSS $webroot should inherit from settings.py There is double maintenance right now when you change the STATIC_URL via settings.py, you must also use a custom theme to have access to also change $webroot within the SCSS to serve font-awesome from a custom location. This patch makes the STATIC_URL available by default in the SCSS namespace through variable $static_url. Also, it was being called $webroot in the SCSS, but it should actually be called $static_url since it should map directly to settings.py's STATIC_URL. Change-Id: I1ee40652f8110b176f45b8811f0e0197789a73da Closes-Bug: #1478794
2015-08-14 20:51:21 -07:00
('text/scss', 'horizon.utils.scss_filter.HorizonScssFilter'),
Updating Horizon to use LESS. This changes all of the Bootstrap CSS and Horizon CSS to use LESS. Horizon's specific CSS will be organized into separate files in another commit, as it is outside the scope of this BP. We are also now packing LESS 1.3.0 directly within Horizon. Implementation of Blueprint transition-to-lesscss Change-Id: Ie4be8b28ab3ce04ea21d7d5cd49c2ccb66bd8ade
2012-05-11 23:37:35 -07:00
)
COMPRESS_CSS_FILTERS = (
'compressor.filters.css_default.CssAbsoluteFilter',
)
COMPRESS_ENABLED = True
COMPRESS_OUTPUT_DIR = 'dashboard'
COMPRESS_CSS_HASHING_METHOD = 'hash'
Dependency Reconcilliation Fresh installs seem to have dependency issues, this fixes Horizon to explicitly state which parser to use, as django- compress incorrectly tries to use a compressor that is not installed on some fresh installs. Fixes bug #1010968 Change-Id: I62ac5fd43b846cf967077e0a3d1e16db5861223c
2012-06-11 14:20:32 -07:00
COMPRESS_PARSER = 'compressor.parser.HtmlParser'
Updating Horizon to use LESS. This changes all of the Bootstrap CSS and Horizon CSS to use LESS. Horizon's specific CSS will be organized into separate files in another commit, as it is outside the scope of this BP. We are also now packing LESS 1.3.0 directly within Horizon. Implementation of Blueprint transition-to-lesscss Change-Id: Ie4be8b28ab3ce04ea21d7d5cd49c2ccb66bd8ade
2012-05-11 23:37:35 -07:00
Plugin-based dashboard configuration This is a proof of concept of how plugin-based configuration of OpenStack dashboards could be realized. Additional plugins add their configuration file in the opestack_dashboard/enabled/ directory (the exact location is up for discussion, we will probably want a whole hierarchy of locations, with the possibility of overriding settings). An example file _50_tuskar.py is added to show how an additional dashboard could plug into this system. If you have tuskar_ui installed, this would add Tuskar to Horizon. Change-Id: Iaa594deffbdb865116f6f62855c32c8633d2b208 Implements: blueprint plugin-architecture
2013-11-14 12:43:05 +01:00
INSTALLED_APPS = [
Unifies the project packaging into one set of modules. There are no longer two separate projects living inside the horizon repository. There is a single project now with a single setup.py, single README, etc. The openstack-dashboard/dashboard django project is now named "openstack_dashboard" and lives as an example project in the topmost horizon directory. The "horizon/horizon" directory has been bumped up a level and now is directly on the path when the root horizon directory is on your python path. Javascript media which the horizon module directly relies upon now ships in the horizon/static dir rather than openstack-dashboard/dashboard/static. All the corresponding setup, installation, build, and env scripts have been updated accordingly. Implements blueprint unified-packaging. Change-Id: Ieed8e3c777432cd046c3e0298869a9428756ab62
2012-02-28 23:27:46 -08:00
'openstack_dashboard',
Auth refactor. Switch to using the self-contained django_openstack_auth package which is a proper django.contrib.auth pluggable backend. Notable functional improvements include: * Better overall security via use of standard Django auth code (well-vetted by security experts). * Token expiration checking. * User "enabled" attribute checking. * Support for full range of Django auth attributes such as is_anonymous, is_active, is_superuser, etc. * Improved hooks for RBAC/permission-based acess control. Regarding the RBAC/permission-based access control, this patch moves all "role" and "service"-oriented checks to permission checks. This will make transitioning to policy-driven checking much easier once that fully lands in OpenStack. Implements blueprint move-keystone-support-to-django-auth-backend Change-Id: I4f3112af797aff8c4c5e9930c6ca33a70e45589d
2012-04-13 21:46:04 -07:00
'django.contrib.contenttypes',
'django.contrib.auth',
Initial commit
2011-01-12 13:43:31 -08:00
'django.contrib.sessions',
'django.contrib.messages',
Refactored openstack-dashboard to use Django 1.3's contrib.staticfiles app as per current best-practices. This bumps the minimum required version of Django to 1.3 and introduces a backwards-incompatible change for any third-party code that relied on hard-coded paths to the media directory.
2011-08-29 17:41:35 -07:00
'django.contrib.staticfiles',
Volume Progress Bar & Fixes For Quota When a volume creation exceed the allocation quota a vague error message was returned that offered the user no guidance as to what went wrong. This has been fixed. Fixes Bug #1012883 This change also abstracts the Quota javascript to allow it to be used anywhere on the site for any progress bars that are to be shown in the future. Implements blueprint progress-bar-javascript On top of this I have renamed all "can_haz" filters in the code, as they are really sort of embarassing. Lastly, I have added the ability to append JS events to the window load when a modal is loaded as a static page, OR when it is loaded as an AJAX modal. Change-Id: I4b0cefa160cafbbd07d4b0981f62febaed051871
2012-06-23 13:58:35 -07:00
'django.contrib.humanize',
Use SCSS instead of LESS Convert all of Horizon's styles from LESS to SCSS, and use pyscss and django_pyscss to compile them. This lets us continue with the upgrade to Bootstrap 3, and the use of django_pyscss also lets us include horizon's style files, with all the variables, in plugins style files. This partially implements the blueprint bootstrap-update. Change-Id: I1bc9b4ded5de2393c8e57e5286b1da373673789d Closes-bug: #1260675
2014-04-25 15:37:48 +02:00
'django_pyscss',
Workaround for 'File exists' test failure Adds code to create the assets directory that django_pyscss intends to create for scss. This avoids throwing an exception in concurrency scenarios Change-Id: Ic55e2a7ce59ec9b7550a7412697cb8d6563d98a3 Closes-bug: #1367590
2014-09-22 10:50:12 -05:00
'openstack_dashboard.django_pyscss_fix',
Updating Horizon to use LESS. This changes all of the Bootstrap CSS and Horizon CSS to use LESS. Horizon's specific CSS will be organized into separate files in another commit, as it is outside the scope of this BP. We are also now packing LESS 1.3.0 directly within Horizon. Implementation of Blueprint transition-to-lesscss Change-Id: Ie4be8b28ab3ce04ea21d7d5cd49c2ccb66bd8ade
2012-05-11 23:37:35 -07:00
'compressor',
Re-architects the OpenStack Dashboard for modularity and extensibility. Implements blueprint extensible-architecture. Implements blueprint improve-dev-documentation. Implements blueprint gettext-everywhere. Implements blueprint sphinx-docs. Complete re-architecture of the dashboard to transform it from a standalone django-openstack app to a Horizon framework for building dashboards. See the docs for more information. Incidentally fixes the following bugs: Fixes bug 845868 -- no PEP8 violations. Fixes bug 766096 -- the dashboard can now be installed at any arbitrary URL. Fixes bug 879111 -- tenant id is now controlled solely by the tenant switcher, not the url (which was disregarded anyway) Fixes bug 794754 -- output of venv installation is considerably reduced. Due to the scale and scope of this patch I recommend reviewing it on github: https://github.com/gabrielhurley/horizon/tree/extensible_architecture Change-Id: I8e63f7ea235f904247df40c33cb66338d973df9e
2011-10-31 11:31:05 -07:00
'horizon',
Auth refactor. Switch to using the self-contained django_openstack_auth package which is a proper django.contrib.auth pluggable backend. Notable functional improvements include: * Better overall security via use of standard Django auth code (well-vetted by security experts). * Token expiration checking. * User "enabled" attribute checking. * Support for full range of Django auth attributes such as is_anonymous, is_active, is_superuser, etc. * Improved hooks for RBAC/permission-based acess control. Regarding the RBAC/permission-based access control, this patch moves all "role" and "service"-oriented checks to permission checks. This will make transitioning to policy-driven checking much easier once that fully lands in OpenStack. Implements blueprint move-keystone-support-to-django-auth-backend Change-Id: I4f3112af797aff8c4c5e9930c6ca33a70e45589d
2012-04-13 21:46:04 -07:00
'openstack_auth',
Plugin-based dashboard configuration This is a proof of concept of how plugin-based configuration of OpenStack dashboards could be realized. Additional plugins add their configuration file in the opestack_dashboard/enabled/ directory (the exact location is up for discussion, we will probably want a whole hierarchy of locations, with the possibility of overriding settings). An example file _50_tuskar.py is added to show how an additional dashboard could plug into this system. If you have tuskar_ui installed, this would add Tuskar to Horizon. Change-Id: Iaa594deffbdb865116f6f62855c32c8633d2b208 Implements: blueprint plugin-architecture
2013-11-14 12:43:05 +01:00
]
Initial commit
2011-01-12 13:43:31 -08:00
Auth refactor. Switch to using the self-contained django_openstack_auth package which is a proper django.contrib.auth pluggable backend. Notable functional improvements include: * Better overall security via use of standard Django auth code (well-vetted by security experts). * Token expiration checking. * User "enabled" attribute checking. * Support for full range of Django auth attributes such as is_anonymous, is_active, is_superuser, etc. * Improved hooks for RBAC/permission-based acess control. Regarding the RBAC/permission-based access control, this patch moves all "role" and "service"-oriented checks to permission checks. This will make transitioning to policy-driven checking much easier once that fully lands in OpenStack. Implements blueprint move-keystone-support-to-django-auth-backend Change-Id: I4f3112af797aff8c4c5e9930c6ca33a70e45589d
2012-04-13 21:46:04 -07:00
TEST_RUNNER = 'django_nose.NoseTestSuiteRunner'
AUTHENTICATION_BACKENDS = ('openstack_auth.backend.KeystoneBackend',)
Allow specifying authentication URLs from settings To allow us to have authentication mechanisms that live out of tree as AUTHENTICATION_BACKENDS do we need to have a way to load the views that service those backends. Provide a means via settings that we can add new routes to the /auth urls. Closes-Bug: #1433358 Change-Id: I1ffc8a4e0bbfa58c7b50351432668d49d3a7dab1
2015-03-13 04:10:02 +00:00
AUTHENTICATION_URLS = ['openstack_auth.urls']
Change django message storage backends default. Due to original cookie storage backends have limit 2048 bytes, change it to fallbackstorage, which could store extra message in session storage. Related django storage illustration https://docs.djangoproject.com/en/1.6/ref/contrib/messages/#module-django.contrib.messages Closes-Bug: #1168541 Change-Id: Ieed4db962ccdadcb346c8ca7e6e789766f9838e5
2014-06-23 10:35:20 +08:00
MESSAGE_STORAGE = 'django.contrib.messages.storage.fallback.FallbackStorage'
Initial commit
2011-01-12 13:43:31 -08:00
Revamp of testing machinery. * Uses Django 1.4 as minimum version for Folsom. * Switches to using Django 1.4's LiveServerTestCase instead of django-nose-selenium and cherrypy. * Moves django-nose to be a test dependency only. Fixes bug 801362. Change-Id: I5c8a145aba868acf355fe215307d7ce8835913f6
2012-04-11 14:04:08 -07:00
SESSION_ENGINE = 'django.contrib.sessions.backends.signed_cookies'
SESSION_COOKIE_HTTPONLY = True
Initial commit
2011-01-12 13:43:31 -08:00
SESSION_EXPIRE_AT_BROWSER_CLOSE = True
Revamp of testing machinery. * Uses Django 1.4 as minimum version for Folsom. * Switches to using Django 1.4's LiveServerTestCase instead of django-nose-selenium and cherrypy. * Moves django-nose to be a test dependency only. Fixes bug 801362. Change-Id: I5c8a145aba868acf355fe215307d7ce8835913f6
2012-04-11 14:04:08 -07:00
SESSION_COOKIE_SECURE = False
Implement Browser session timeout By default, Horizon just uses session, which expire, when the browser is closed. This implements additionally a session timeout. Change-Id: I140ee2ee37e092036a66d890d920423dfc493fba Fixes: bug 1118441
2013-06-20 12:52:37 +02:00
SESSION_TIMEOUT = 1800
Misspell in comments in settings.py 'af' should be 'of' in openstack_dashboard/settings.py Change-Id: Ibcb0e4b592882e2dfb9322632b56c1385a782c44
2015-01-22 20:10:41 -08:00
# A token can be near the end of validity when a page starts loading, and
Checking session timeout before authentication If both the keystone token and the session expired, the user was asked to login twice. This is because the token expiration was not checked. When a user had timed out both in session and keystone token validity, the user was asked to log in, then the timestamp was checked, and the user logged out again and asked to log in a second time. We now check both the timestamp and keystone token validity before authentication validity and force back the login page to retrieve a new keystone token, avoiding the timeout race condition between session and token validity which was forcing a dual login. A keystone token expiration is now considered as a session timeout too. Also, a page can start loading while the token is valid, and finish while it's invalid. This was leading to errors during the page loading. We now set a TOKEN_TIMEOUT_MARGIN period in seconds which allows defining a margin before which we consider the token as expired. This is a configurable parameter in the django settings because the time a page takes to render is infra and deployment specific. This margin is preset to ten seconds. Requires: https://review.openstack.org/101556 Closes-Bug: 1308918 Change-Id: I0bf0d079a9dc000c1a30f0e20dcaa03b22d63e51
2014-04-17 11:18:00 +02:00
# invalid during the rendering which can cause errors when a page load.
# TOKEN_TIMEOUT_MARGIN defines a time in seconds we retrieve from token
# validity to avoid this issue. You can adjust this time depending on the
# performance of the infrastructure.
TOKEN_TIMEOUT_MARGIN = 10
add support for Django-1.6 Sessions now store JSON instead of pickled objects. Partially-implements blueprint django-1point6 Change-Id: I332ba18005284774a53fb3cb8c6e51bca1480ded
2013-11-26 09:47:39 +01:00
Logging error if cookie size is > 4KB When session storage is configured to use signed cookies, logging error when cookie size is > 4KB. Change-Id: Ia766f4505ce0527123a9fa9a62bf6d312858da46 Closes-Bug: #1214197
2013-09-16 11:01:06 +02:00
# When using cookie-based sessions, log error when the session cookie exceeds
# the following size (common browsers drop cookies above a certain size):
SESSION_COOKIE_MAX_SIZE = 4093
Revamp of testing machinery. * Uses Django 1.4 as minimum version for Folsom. * Switches to using Django 1.4's LiveServerTestCase instead of django-nose-selenium and cherrypy. * Moves django-nose to be a test dependency only. Fixes bug 801362. Change-Id: I5c8a145aba868acf355fe215307d7ce8835913f6
2012-04-11 14:04:08 -07:00
add support for Django-1.6 Sessions now store JSON instead of pickled objects. Partially-implements blueprint django-1point6 Change-Id: I332ba18005284774a53fb3cb8c6e51bca1480ded
2013-11-26 09:47:39 +01:00
# when doing upgrades, it may be wise to stick to PickleSerializer
Change note about the removal of variable SESSION_SERIALIZER The comment should be changed to reflect the results of the proposed removal of the variable during the J-cycle. More details are in the comments of the change request I625f5f4a9f128ff31aee58f2a79ee88c91dc1f56. Related to bug #1349463. Change-Id: I625f5f4a9f128ff31aee58f2a79ee88c91dc1f56
2014-07-24 12:14:54 +02:00
# NOTE(berendt): Check during the K-cycle if this variable can be removed.
# https://bugs.launchpad.net/horizon/+bug/1349463
add support for Django-1.6 Sessions now store JSON instead of pickled objects. Partially-implements blueprint django-1point6 Change-Id: I332ba18005284774a53fb3cb8c6e51bca1480ded
2013-11-26 09:47:39 +01:00
SESSION_SERIALIZER = 'django.contrib.sessions.serializers.PickleSerializer'
Fixed language selection box
2011-06-03 14:23:25 +09:00
LANGUAGES = (
update language list in openstack_dashboard settings.py Imported openstack_dashboard/settings.py from merged change I0c378e885efc4ecdafdd5d6b027a514a5af5bb2f. The changes in openstack_dashboard/settings.py should be available in master. Change-Id: I116927c5c5d2e45e2b481369eba4e79ce7ffb34a
2014-05-08 10:06:05 +02:00
('de', 'German'),
Remove gettext_noop from language list Language names in LANGUAGES list are marked as translatable, but it is unnecessary, so this change removes gettext_noop. Change-Id: I8f8dd9d16daebf8fec6ecb3f9191ece05c3ceead Closes-Bug: #1254488
2014-03-04 17:31:40 +01:00
('en', 'English'),
('en-au', 'Australian English'),
('en-gb', 'British English'),
('es', 'Spanish'),
('fr', 'French'),
update language list in openstack_dashboard settings.py Imported openstack_dashboard/settings.py from merged change I0c378e885efc4ecdafdd5d6b027a514a5af5bb2f. The changes in openstack_dashboard/settings.py should be available in master. Change-Id: I116927c5c5d2e45e2b481369eba4e79ce7ffb34a
2014-05-08 10:06:05 +02:00
('hi', 'Hindi'),
Remove gettext_noop from language list Language names in LANGUAGES list are marked as translatable, but it is unnecessary, so this change removes gettext_noop. Change-Id: I8f8dd9d16daebf8fec6ecb3f9191ece05c3ceead Closes-Bug: #1254488
2014-03-04 17:31:40 +01:00
('ja', 'Japanese'),
('ko', 'Korean (Korea)'),
('nl', 'Dutch (Netherlands)'),
('pl', 'Polish'),
('pt-br', 'Portuguese (Brazil)'),
Add Russian to settings.py The Russian translation is 100% in transifex. We should include it in settings.py. Change-Id: I8a9950ba9a09d7a2e53670d9ce2c4fc884797288 Closes-Bug: 1443514
2015-04-13 10:50:47 -05:00
('ru', 'Russian'),
update language list in openstack_dashboard settings.py Imported openstack_dashboard/settings.py from merged change I0c378e885efc4ecdafdd5d6b027a514a5af5bb2f. The changes in openstack_dashboard/settings.py should be available in master. Change-Id: I116927c5c5d2e45e2b481369eba4e79ce7ffb34a
2014-05-08 10:06:05 +02:00
('sr', 'Serbian'),
Remove gettext_noop from language list Language names in LANGUAGES list are marked as translatable, but it is unnecessary, so this change removes gettext_noop. Change-Id: I8f8dd9d16daebf8fec6ecb3f9191ece05c3ceead Closes-Bug: #1254488
2014-03-04 17:31:40 +01:00
('zh-cn', 'Simplified Chinese'),
update language list in openstack_dashboard settings.py Imported openstack_dashboard/settings.py from merged change I0c378e885efc4ecdafdd5d6b027a514a5af5bb2f. The changes in openstack_dashboard/settings.py should be available in master. Change-Id: I116927c5c5d2e45e2b481369eba4e79ce7ffb34a
2014-05-08 10:06:05 +02:00
('zh-tw', 'Chinese (Taiwan)'),
Fixed language selection box
2011-06-03 14:23:25 +09:00
)
LANGUAGE_CODE = 'en'
Store user settings in persistent cookies as well as the session This should keep international users from having to reset their language preferences every time they login. Fixes Bug: 1225250 Change-Id: I093e7a98085bf83890b295ec4a61f839b60db4db
2013-09-13 17:25:02 -07:00
LANGUAGE_COOKIE_NAME = 'horizon_language'
marked static strings in python code for Internationalization
2011-06-02 15:23:09 +09:00
USE_I18N = True
Make Horizon timezone-aware. This systematically replaces anyplace that deals with dates or times in Horizon with Django's timezone-aware machinery, and enables timezone support in settings. The assumption is that the server time should *always* be UTC. TO DO: Add a setting for allowing the user to change their preferred timezone display and add timezone indicators anywhere times are displayed to the user. Implements blueprint timezones. Also fixes bug 927974. Change-Id: I5e462ba86e64b97b46873a017f87f328acee1b1d
2012-06-21 19:33:42 -07:00
USE_L10N = True
USE_TZ = True
Initial commit
2011-01-12 13:43:31 -08:00
Sync default OPENSTACK_KEYSTONE_DEFAULT_ROLE with keystone bug 1264228 changes OPENSTACK_KEYSTONE_DEFAULT_ROLE in example local_settings.py and the document from "Member" to "_member_" which is the default config value in keystone. However, OPENSTACK_KEYSTONE_DEFAULT_ROLE in settings.py is not changed and the default value is still "Member". Change-Id: I4bd4e2388bb2678f80e4f744682699f69252a732 Closes-Bug: #1296429
2014-03-24 06:54:12 +09:00
OPENSTACK_KEYSTONE_DEFAULT_ROLE = '_member_'
Re-architects the OpenStack Dashboard for modularity and extensibility. Implements blueprint extensible-architecture. Implements blueprint improve-dev-documentation. Implements blueprint gettext-everywhere. Implements blueprint sphinx-docs. Complete re-architecture of the dashboard to transform it from a standalone django-openstack app to a Horizon framework for building dashboards. See the docs for more information. Incidentally fixes the following bugs: Fixes bug 845868 -- no PEP8 violations. Fixes bug 766096 -- the dashboard can now be installed at any arbitrary URL. Fixes bug 879111 -- tenant id is now controlled solely by the tenant switcher, not the url (which was disregarded anyway) Fixes bug 794754 -- output of venv installation is considerably reduced. Due to the scale and scope of this patch I recommend reviewing it on github: https://github.com/gabrielhurley/horizon/tree/extensible_architecture Change-Id: I8e63f7ea235f904247df40c33cb66338d973df9e
2011-10-31 11:31:05 -07:00
Make sure Horizon is treating passwords securely. * Applies the sensitive_post_parameters and sensitive_variables decorators to functions that handle sensitive data. * Defines a custom Exception Filter class to provide some added security. * Adds notes on logging to the docs. Fixes bug 1004114 for Horizon. Change-Id: I13ac91d91e0ed2322cc61633b02455cfed39fdcd
2012-05-24 15:25:35 -07:00
DEFAULT_EXCEPTION_REPORTER_FILTER = 'horizon.exceptions.HorizonReporterFilter'
Adding RBAC policy system and checks for identity Adding file based RBAC engine for Horizon using copies of nova and keystone policy.json files Policy engine builds on top of oslo incubator policy.py, fileutils was also pulled from oslo incubator as a dependency of policy.py When Horizon runs and a policy check is made, a path and mapping of services to policy files is used to load the rules into the policy engine. Each check is mapped to a service type and validated. This extra level of mapping is required because the policy.json files may each contain a 'default' rule or unqualified (no service name include) rule. Additionally, maintaining separate policy.json files per service will allow easier syncing with the service projects. The engine allows for compound 'and' checks at this time. E.g., the way the Create User action is written, multiple APIs are called to read data (roles, projects) and more are required to update data (grants, user). Other workflows e.g., Edit Project, should have separate save actions per step as they are unrelated. Only the applicable policy checks to that step were added. The separating unrelated steps saves will should be future work. The underlying engine supports more rule types that are used in the underlying policy.json files. Policy checks were added for all actions on tables in the Identity Panel only. And the service policy files imported are limited in this commit to reduce scope of the change. Additionally, changes were made to the base action class to add support or setting policy rules and an overridable method for determining the policy check target. This reduces the need for redundant code in each action policy check. Note, the benefit Horizon has is that the underlying APIs will correct us if we get it wrong, so if a policy file is not found for a particular service, permission is assumed and the actual API call to the service will fail if the action isn't authorized for that user. Finally, adding documentation regarding policy enforcement. Implements: blueprint rbac Change-Id: I4a4a71163186b973229a0461b165c16936bc10e5
2013-08-16 17:28:46 -06:00
POLICY_FILES_PATH = os.path.join(ROOT_PATH, "conf")
# Map of local copy of service policy files
POLICY_FILES = {
'identity': 'keystone_policy.json',
adding policy checks for cinder Adding cinder policy rules file for policy checks. Implementing rule checks as well. Some cinder API calls actually hit nova, so adding those calls as well. Also a couple of improvements to the Horizon policy engine. First, now providing the token scope project_id and user_id as targets by default, unless otherwise specified. Most service policy rules check on or both of these. Second, checking to see if rule exists, before attempting enforcement. If the rule does not exist, using the default rule for that service. This now matches what the service policy engines do. Implements: blueprint block-rbac Change-Id: Ifef08b8975280f4e621ba8eebec9d405e1e870a2
2013-10-09 15:12:54 -06:00
'compute': 'nova_policy.json',
Adding policy checks for glance Additionally, added the missing policy checks on Image panel. Change-Id: Ia9fa2fcdfb12f97ff27150a69d964be47ab717cf Implements: blueprint image-rbac
2014-01-30 21:01:41 -08:00
'volume': 'cinder_policy.json',
'image': 'glance_policy.json',
Adding policy checks for heat Change-Id: Ia454eefbaaf0c6262bfcc2890dead4d074555404 Implements: blueprint heat-rbac
2014-02-10 20:10:49 -08:00
'orchestration': 'heat_policy.json',
adding policy check for neutron Policy checks for all actions on firewalls, loadbalancers, network_topology, networks, routers and vpn panels. Co-Authored-By: Lin Hua Cheng <lin-hua.cheng@hp.com> Change-Id: Id12257d3200f8af6ff590fd576c4cb6e414b455a Implements: blueprint network-rbac
2014-02-05 14:01:17 -08:00
'network': 'neutron_policy.json',
Adding policy support for ceilometer Adding default policy json file for ceilometer which is very sparse. Configuring access to metering panel to be RBAC gated. Using the appropriate policy checks to load the panel. Change-Id: Iad3ffe9d73fb994b146637e714c7d8c46102e104 Closes-Bug: #1419193 Partially-Closes: #1161144
2015-02-06 17:00:27 -07:00
'telemetry': 'ceilometer_policy.json',
Adding RBAC policy system and checks for identity Adding file based RBAC engine for Horizon using copies of nova and keystone policy.json files Policy engine builds on top of oslo incubator policy.py, fileutils was also pulled from oslo incubator as a dependency of policy.py When Horizon runs and a policy check is made, a path and mapping of services to policy files is used to load the rules into the policy engine. Each check is mapped to a service type and validated. This extra level of mapping is required because the policy.json files may each contain a 'default' rule or unqualified (no service name include) rule. Additionally, maintaining separate policy.json files per service will allow easier syncing with the service projects. The engine allows for compound 'and' checks at this time. E.g., the way the Create User action is written, multiple APIs are called to read data (roles, projects) and more are required to update data (grants, user). Other workflows e.g., Edit Project, should have separate save actions per step as they are unrelated. Only the applicable policy checks to that step were added. The separating unrelated steps saves will should be future work. The underlying engine supports more rule types that are used in the underlying policy.json files. Policy checks were added for all actions on tables in the Identity Panel only. And the service policy files imported are limited in this commit to reduce scope of the change. Additionally, changes were made to the base action class to add support or setting policy rules and an overridable method for determining the policy check target. This reduces the need for redundant code in each action policy check. Note, the benefit Horizon has is that the underlying APIs will correct us if we get it wrong, so if a policy file is not found for a particular service, permission is assumed and the actual API call to the service will fail if the action isn't authorized for that user. Finally, adding documentation regarding policy enforcement. Implements: blueprint rbac Change-Id: I4a4a71163186b973229a0461b165c16936bc10e5
2013-08-16 17:28:46 -06:00
}
Don't generate the secret_key until after loading local settings Currently the settings.py generates a secret_key, then loads user ovverides. The former step requires write access in a directory that the webserver has no real business trying to write to, which is a security risk, amongst other things. As a simple mitigation step, defer loading the default until after the local_settings.py has been loaded. Then the admins can decide if/how the secret_key is stored (or not stored, as the case may be) and in absentia of that, it uses the current behaviour of scribbling files in odd places. Fixes Bug: 1220884 Change-Id: I158702f9500563a4d16f6aefc1a3afea766b1e92
2013-09-24 11:26:59 -07:00
SECRET_KEY = None
Don't reset LOCAL_PATH if it's already set If LOCAL_PATH is set in local_settings, then settings should not override it, even if SECRET_KEY is unset. Change-Id: I6aca03f65afddffb6cdd00e4084a8ab9b2255ef1 Closes-Bug: #1254694
2014-01-09 15:35:38 -07:00
LOCAL_PATH = None
Don't generate the secret_key until after loading local settings Currently the settings.py generates a secret_key, then loads user ovverides. The former step requires write access in a directory that the webserver has no real business trying to write to, which is a security risk, amongst other things. As a simple mitigation step, defer loading the default until after the local_settings.py has been loaded. Then the admins can decide if/how the secret_key is stored (or not stored, as the case may be) and in absentia of that, it uses the current behaviour of scribbling files in odd places. Fixes Bug: 1220884 Change-Id: I158702f9500563a4d16f6aefc1a3afea766b1e92
2013-09-24 11:26:59 -07:00
Make security rules with All translatable The security rule names that include the word "All" should be translatable. I've included a SECURITY_GROUP_RULES value with the 3 translatable rules from local_settings.py.example so that we will actually have translations for those values. Change-Id: Id21ac0e6ea328ab18f35f7711de356015db5f50a Closes-bug: #1334031
2014-06-24 17:33:26 -05:00
SECURITY_GROUP_RULES = {
'all_tcp': {
'name': _('All TCP'),
'ip_protocol': 'tcp',
'from_port': '1',
'to_port': '65535',
},
'all_udp': {
'name': _('All UDP'),
'ip_protocol': 'udp',
'from_port': '1',
'to_port': '65535',
},
'all_icmp': {
'name': _('All ICMP'),
'ip_protocol': 'icmp',
'from_port': '-1',
'to_port': '-1',
},
}
Allow adding to INSTALLED_APPS from local_settings.py Defines a new option, ADD_INSTALLED_APPS, which gets prepended to the beginning of INSTALLED_APPS. Change-Id: I956835c3e18edee9e223a607005b47a5c5977687 Closes-bug: #1343342
2014-07-17 17:19:52 +02:00
ADD_INSTALLED_APPS = []
Custom Horizon Theme This patch is to propose the workflow of customizing Horizon theme easily. Currently Horizon relies on DjangoScssFilter to preprocess all the scss files. The css styles such as color and font are mostly controlled by the variables specified in the the scss files (_variables.scss). In addition, Horizon mostly reuses bootstrap sass variables to define the styles. We leverage the current idea by injecting another level of variables to overwrite the current bootstrap/horizon variables such that developer can swap the theme easily. This patch includes several areas of code changes: 1. Introduce another static file subdirectory for developer to store custom themes. 2. Add an additional configuration in the settings.py for developer to load the theme to use. 3. Add an example new custom theme. 4. Refactor the current Horizon sass files such that they don't hardcode the style but are controlled by the variables instead. Implements: blueprint horizon-themes Change-Id: Id915b95b66d9aba97cdb41cc100bf7dc1d75afcd Co-Authored-By: Alan Fung <wingfung@cisco.com> Co-Authored-By: Kahou Lei <kahou82@gmail.com> Co-Authored-By: David Lyle <dklyle0@gmail.com>
2015-02-27 15:50:27 -08:00
comment and version update for DEFAULT_THEME_PATH Change-Id: I007fc1b555aafd696d32a82d8a8ec2693f10d746
2015-08-06 14:21:53 -06:00
# directory for custom theme, set as default.
Custom Horizon Theme This patch is to propose the workflow of customizing Horizon theme easily. Currently Horizon relies on DjangoScssFilter to preprocess all the scss files. The css styles such as color and font are mostly controlled by the variables specified in the the scss files (_variables.scss). In addition, Horizon mostly reuses bootstrap sass variables to define the styles. We leverage the current idea by injecting another level of variables to overwrite the current bootstrap/horizon variables such that developer can swap the theme easily. This patch includes several areas of code changes: 1. Introduce another static file subdirectory for developer to store custom themes. 2. Add an additional configuration in the settings.py for developer to load the theme to use. 3. Add an example new custom theme. 4. Refactor the current Horizon sass files such that they don't hardcode the style but are controlled by the variables instead. Implements: blueprint horizon-themes Change-Id: Id915b95b66d9aba97cdb41cc100bf7dc1d75afcd Co-Authored-By: Alan Fung <wingfung@cisco.com> Co-Authored-By: Kahou Lei <kahou82@gmail.com> Co-Authored-By: David Lyle <dklyle0@gmail.com>
2015-02-27 15:50:27 -08:00
# It can be overridden in local_settings.py
Horizon should still collect 'default' theme In order to maintain backward compatibility with anyone that might be inheriting from Horizon's default theme, we should always just auto collect it into /static/themes/default. This patch also provides the basic functionality for someone to also set the DEFAULT_THEME_PATH to something other than 'default' through local_settings.py Change-Id: I66d1613c8309967bc57ef646c26338e82cb94a93 Closes-Bug: #1481890
2015-08-05 12:22:43 -07:00
DEFAULT_THEME_PATH = 'themes/default'
CUSTOM_THEME_PATH = DEFAULT_THEME_PATH
Custom Horizon Theme This patch is to propose the workflow of customizing Horizon theme easily. Currently Horizon relies on DjangoScssFilter to preprocess all the scss files. The css styles such as color and font are mostly controlled by the variables specified in the the scss files (_variables.scss). In addition, Horizon mostly reuses bootstrap sass variables to define the styles. We leverage the current idea by injecting another level of variables to overwrite the current bootstrap/horizon variables such that developer can swap the theme easily. This patch includes several areas of code changes: 1. Introduce another static file subdirectory for developer to store custom themes. 2. Add an additional configuration in the settings.py for developer to load the theme to use. 3. Add an example new custom theme. 4. Refactor the current Horizon sass files such that they don't hardcode the style but are controlled by the variables instead. Implements: blueprint horizon-themes Change-Id: Id915b95b66d9aba97cdb41cc100bf7dc1d75afcd Co-Authored-By: Alan Fung <wingfung@cisco.com> Co-Authored-By: Kahou Lei <kahou82@gmail.com> Co-Authored-By: David Lyle <dklyle0@gmail.com>
2015-02-27 15:50:27 -08:00
Initial commit
2011-01-12 13:43:31 -08:00
try:
remove 'import *' usage (or mark is #noqa) This is talked in bug #1188533, and in current codes, there are several places here: horizon/forms/__init__.py:18:from django.forms import * mark '# noqa' openstack_dashboard/settings.py:182: from local.local_settings import * openstack_dashboard/test/settings.py:5:from horizon.test.settings import * mark '# noqa' openstack_dashboard/dashboards/project/instances/workflows/__init__.py:1:from create_instance import * openstack_dashboard/dashboards/project/instances/workflows/__init__.py:2:from update_instance import * openstack_dashboard/dashboards/project/instances/workflows/__init__.py:3:from resize_instance import * fix it openstack_dashboard/dashboards/project/images_and_snapshots/urls.py:21:from django.conf.urls.defaults import * fix it fixes bug # 1188533 Change-Id: Id671280903f8452a78f81f1240d92297de7a89a8
2013-07-24 16:27:01 +08:00
from local.local_settings import * # noqa
Unifies the project packaging into one set of modules. There are no longer two separate projects living inside the horizon repository. There is a single project now with a single setup.py, single README, etc. The openstack-dashboard/dashboard django project is now named "openstack_dashboard" and lives as an example project in the topmost horizon directory. The "horizon/horizon" directory has been bumped up a level and now is directly on the path when the root horizon directory is on your python path. Javascript media which the horizon module directly relies upon now ships in the horizon/static dir rather than openstack-dashboard/dashboard/static. All the corresponding setup, installation, build, and env scripts have been updated accordingly. Implements blueprint unified-packaging. Change-Id: Ieed8e3c777432cd046c3e0298869a9428756ab62
2012-02-28 23:27:46 -08:00
except ImportError:
logging.warning("No local_settings file found.")
Initial commit
2011-01-12 13:43:31 -08:00
Support to move the horizon relative to web root When deploying Horizon, on a web server, where other applications are used, it's quite handy to be able to move Horizon around quickly. This change introduces a single Variable WEBROOT to achieve this. Implements: blueprint shared-webserver Change-Id: Ic731f6754e233b328a8dbe7026b1d7417620fd66
2014-04-11 13:50:34 +02:00
if not WEBROOT.endswith('/'):
WEBROOT += '/'
if LOGIN_URL is None:
LOGIN_URL = WEBROOT + 'auth/login/'
if LOGOUT_URL is None:
LOGOUT_URL = WEBROOT + 'auth/logout/'
if LOGIN_REDIRECT_URL is None:
LOGIN_REDIRECT_URL = WEBROOT
Fixing changing WEBROOT from / There were a few items missed with the patch enabling changing WEBROOT patch. First the XStatic files were being unpacked in the wrong directoy because root_url was not being passed in. This caused 404 errors when running with a different web root. This change allows root_url to be passed in on XStatic handling. Second, STATIC_URL and MEDIA_URL were not using WEBROOT. These now are built with WEBROOT. Third, the fa-font-path variable was hard-coded in _variables.scss to use "/" as the web root. A webroot variable has been added that can be overridden. Additionally, a new theme has also been added to change the web root. Closes-Bug: #1434276 Change-Id: Ifff1c60b3405ce2136d039b8d74da08752e7215c
2015-03-23 08:26:01 -06:00
MEDIA_ROOT = os.path.abspath(os.path.join(ROOT_PATH, '..', 'media'))
MEDIA_URL = WEBROOT + 'media/'
Allow STATIC_ROOT override STATIC_ROOT is a file system location. It does not need to be tied to WEBROOT. Change-Id: I4935c5d8bd883cb5f091af22582e942f13aa5100 Partial-Bug: #1399585
2015-07-13 11:40:32 -06:00
if STATIC_ROOT is None:
STATIC_ROOT = os.path.abspath(os.path.join(ROOT_PATH, '..', 'static'))
Allow STATIC_URL override When the change was committed to allow moving WEBROOT from '/', STATIC_URL became hard-coded based on WEBROOT. This is an unnecessary linking and breaks downstream packages. This patch supports overriding STATIC_URL in local_settings.py and have it honored by settings.py. Closes-Bug: #1474551 Change-Id: Id0c5b2c6e4ff5f85ec94c5f474382664b303be23
2015-07-21 11:16:22 -06:00
if STATIC_URL is None:
STATIC_URL = WEBROOT + 'static/'
STATICFILES_DIRS = get_staticfiles_dirs(STATIC_URL)
Fixing changing WEBROOT from / There were a few items missed with the patch enabling changing WEBROOT patch. First the XStatic files were being unpacked in the wrong directoy because root_url was not being passed in. This caused 404 errors when running with a different web root. This change allows root_url to be passed in on XStatic handling. Second, STATIC_URL and MEDIA_URL were not using WEBROOT. These now are built with WEBROOT. Third, the fa-font-path variable was hard-coded in _variables.scss to use "/" as the web root. A webroot variable has been added that can be overridden. Additionally, a new theme has also been added to change the web root. Closes-Bug: #1434276 Change-Id: Ifff1c60b3405ce2136d039b8d74da08752e7215c
2015-03-23 08:26:01 -06:00
CUSTOM_THEME = os.path.join(ROOT_PATH, CUSTOM_THEME_PATH)
Horizon Themes should support and house easy Template Overrides Themers need an easy way to maninpulate existing templates. Django provides a very easy method for custom overloads via prepending a Theme located template directory to the existing TEMPLATE_DIRS tuple located in the settings.py. The new template directory needs to maintain the same directory structure as the overridden templates. Also, the entire theme directory was being served out at /static/custom, but it is not needed to statically serve up the Django templates. This new functionality now supports having more granular control over what is statically served from /static/custom by specifying a 'static' subfolder within your theme. If no sub folder is found, then the legacy functionality is the fall back, and the entire folder is served. Since the Blue theme was provided as a way to showcase the extensibility of Horizon themes, I have provided an examle of what a template override would look like and how it would be used. The Blue theme now includes an entirely Bootstrap Compliant top navbar experience that is responsive, but without losing any of the underlying Django functionality, values or translations. Implements: blueprint horizon-theme-templates Change-Id: I40a744d5439ee5138337a7cdb1c0a937b5107836
2015-06-03 12:46:51 -07:00
# If a custom template directory exists within our custom theme, then prepend
# it to our first-come, first-serve TEMPLATE_DIRS
if os.path.exists(os.path.join(CUSTOM_THEME, 'templates')):
TEMPLATE_DIRS = \
Themes should live at root of openstack_dashboard Recent changes to Horizon Themes has broadened the scope of simply containing only static files. Themes can now house simple Django overrides and as such, should not be located under '/static' by default any longer. Change-Id: Ifbf4cf65e063a2f5342d9cfdc82287a827789e93 Partially-Implements: blueprint horizon-theme-css-reorg
2015-07-27 15:59:14 -07:00
(os.path.join(CUSTOM_THEME, 'templates'),) + TEMPLATE_DIRS
Horizon Themes should support and house easy Template Overrides Themers need an easy way to maninpulate existing templates. Django provides a very easy method for custom overloads via prepending a Theme located template directory to the existing TEMPLATE_DIRS tuple located in the settings.py. The new template directory needs to maintain the same directory structure as the overridden templates. Also, the entire theme directory was being served out at /static/custom, but it is not needed to statically serve up the Django templates. This new functionality now supports having more granular control over what is statically served from /static/custom by specifying a 'static' subfolder within your theme. If no sub folder is found, then the legacy functionality is the fall back, and the entire folder is served. Since the Blue theme was provided as a way to showcase the extensibility of Horizon themes, I have provided an examle of what a template override would look like and how it would be used. The Blue theme now includes an entirely Bootstrap Compliant top navbar experience that is responsive, but without losing any of the underlying Django functionality, values or translations. Implements: blueprint horizon-theme-templates Change-Id: I40a744d5439ee5138337a7cdb1c0a937b5107836
2015-06-03 12:46:51 -07:00
# Only expose the subdirectory 'static' if it exists from a custom theme,
# allowing other logic to live with a theme that we might not want to expose
# statically
if os.path.exists(os.path.join(CUSTOM_THEME, 'static')):
CUSTOM_THEME = os.path.join(CUSTOM_THEME, 'static')
Horizon should still collect 'default' theme In order to maintain backward compatibility with anyone that might be inheriting from Horizon's default theme, we should always just auto collect it into /static/themes/default. This patch also provides the basic functionality for someone to also set the DEFAULT_THEME_PATH to something other than 'default' through local_settings.py Change-Id: I66d1613c8309967bc57ef646c26338e82cb94a93 Closes-Bug: #1481890
2015-08-05 12:22:43 -07:00
# Only collect and expose the default theme if the user chose to set a
# different theme
if DEFAULT_THEME_PATH != CUSTOM_THEME_PATH:
STATICFILES_DIRS.append(
('themes/default', os.path.join(ROOT_PATH, DEFAULT_THEME_PATH)),
)
Fixing changing WEBROOT from / There were a few items missed with the patch enabling changing WEBROOT patch. First the XStatic files were being unpacked in the wrong directoy because root_url was not being passed in. This caused 404 errors when running with a different web root. This change allows root_url to be passed in on XStatic handling. Second, STATIC_URL and MEDIA_URL were not using WEBROOT. These now are built with WEBROOT. Third, the fa-font-path variable was hard-coded in _variables.scss to use "/" as the web root. A webroot variable has been added that can be overridden. Additionally, a new theme has also been added to change the web root. Closes-Bug: #1434276 Change-Id: Ifff1c60b3405ce2136d039b8d74da08752e7215c
2015-03-23 08:26:01 -06:00
STATICFILES_DIRS.append(
('custom', CUSTOM_THEME),
)
Support to move the horizon relative to web root When deploying Horizon, on a web server, where other applications are used, it's quite handy to be able to move Horizon around quickly. This change introduces a single Variable WEBROOT to achieve this. Implements: blueprint shared-webserver Change-Id: Ic731f6754e233b328a8dbe7026b1d7417620fd66
2014-04-11 13:50:34 +02:00
favicon, logo and logo-splash should allow theme overrides favicon, logo and logo-splash are all elements that should be easy to customize within a theme. By adding this path to the STATICFILES_DIR, this enables very granular overrides of any of the images located within dashboard/img, by simply adding an 'img' directory to your custom theme directory (or static directory) and providing an image with the same file name. Closes-Bug: #1448283 Change-Id: I4feb229cac805e1b1fa3a55b5ecea1339a9fc8f9 Co-Authored-By: Tracy Jones <tjones@vmware.com> Co-Authored-By: Diana Whitten <hurgleburgler@gmail.com>
2015-07-29 11:49:58 -07:00
# Load the subdirectory 'img' of a custom theme if it exists, thereby allowing
# very granular theme overrides of all dashboard img files using the first-come
# first-serve filesystem loader.
if os.path.exists(os.path.join(CUSTOM_THEME, 'img')):
STATICFILES_DIRS.insert(0, ('dashboard/img',
os.path.join(CUSTOM_THEME, 'img')))
Applying auto-file-discovery partially This patch applies auto-file-discovery to - horizon/horizon/horizon/static/ - horizon/openstack_dashboard/static/openstack-service-api/ Change-Id: I3477f0fa3912f6381474e4278037f909aa9fa55a Co-Authored-By: Richard Jones <r1chardj0n3s@gmail.com> Co-Authored-By: Thai Tran <tqtran@us.ibm.com> Partially-Implements: blueprint auto-js-file-finding
2015-06-19 18:21:30 -07:00
# populate HORIZON_CONFIG with auto-discovered JavaScript sources, mock files,
# specs files and external templates.
Move static files configuration to reduce settings.py churn Operators don't like it when we change settings.py a lot, so this change moves application configuration code (which can change a bunch) out of settings.py into a separate file. Change-Id: If099aa0d5d24827b1ce301f7c586647e6617826d Closes-Bug: 1475447
2015-07-17 15:58:34 +10:00
find_static_files(ROOT_PATH, HORIZON_CONFIG)
Applying auto-file-discovery partially This patch applies auto-file-discovery to - horizon/horizon/horizon/static/ - horizon/openstack_dashboard/static/openstack-service-api/ Change-Id: I3477f0fa3912f6381474e4278037f909aa9fa55a Co-Authored-By: Richard Jones <r1chardj0n3s@gmail.com> Co-Authored-By: Thai Tran <tqtran@us.ibm.com> Partially-Implements: blueprint auto-js-file-finding
2015-06-19 18:21:30 -07:00
Plugin-based dashboard configuration This is a proof of concept of how plugin-based configuration of OpenStack dashboards could be realized. Additional plugins add their configuration file in the opestack_dashboard/enabled/ directory (the exact location is up for discussion, we will probably want a whole hierarchy of locations, with the possibility of overriding settings). An example file _50_tuskar.py is added to show how an additional dashboard could plug into this system. If you have tuskar_ui installed, this would add Tuskar to Horizon. Change-Id: Iaa594deffbdb865116f6f62855c32c8633d2b208 Implements: blueprint plugin-architecture
2013-11-14 12:43:05 +01:00
# Load the pluggable dashboard settings
import openstack_dashboard.enabled
import openstack_dashboard.local.enabled
from openstack_dashboard.utils import settings
INSTALLED_APPS = list(INSTALLED_APPS) # Make sure it's mutable
Clean up whitespace in settings files Whitespace should be consistent inside of local_settings.py.example. Currently, most comments in side our settings files follow the "space after # mark" guideline. This is as it should be. However, commented out code-lines are inconsistently including that space. Most of the time they don't include it. There's a case to be made for either approach: Do include the space after the #: Keeps things consistent and it's how pyflakes likes things. Do not include the space after the #: Identifies the commented out line as potential code, instead of a descriptive comment. Makes it easier to just remove the '#' character to activate the line of code. Specifically with python, leaving the white space is likely bad. An informal survey of the lines in these files shows that most commented out code lines do not have a space, and I agree with that policy. I'd like to make this the policy and clean up the code. Also added trailing ',' chars on the last element of many lists. Change-Id: I36b6b40996f7ee5eb566719fe7a92ddecf569f5d Closes-Bug: #1428222
2015-03-04 10:38:33 -07:00
settings.update_dashboards(
[
openstack_dashboard.enabled,
openstack_dashboard.local.enabled,
],
HORIZON_CONFIG,
INSTALLED_APPS,
)
Allow adding to INSTALLED_APPS from local_settings.py Defines a new option, ADD_INSTALLED_APPS, which gets prepended to the beginning of INSTALLED_APPS. Change-Id: I956835c3e18edee9e223a607005b47a5c5977687 Closes-bug: #1343342
2014-07-17 17:19:52 +02:00
INSTALLED_APPS[0:0] = ADD_INSTALLED_APPS
Plugin-based dashboard configuration This is a proof of concept of how plugin-based configuration of OpenStack dashboards could be realized. Additional plugins add their configuration file in the opestack_dashboard/enabled/ directory (the exact location is up for discussion, we will probably want a whole hierarchy of locations, with the possibility of overriding settings). An example file _50_tuskar.py is added to show how an additional dashboard could plug into this system. If you have tuskar_ui installed, this would add Tuskar to Horizon. Change-Id: Iaa594deffbdb865116f6f62855c32c8633d2b208 Implements: blueprint plugin-architecture
2013-11-14 12:43:05 +01:00
Don't generate the secret_key until after loading local settings Currently the settings.py generates a secret_key, then loads user ovverides. The former step requires write access in a directory that the webserver has no real business trying to write to, which is a security risk, amongst other things. As a simple mitigation step, defer loading the default until after the local_settings.py has been loaded. Then the admins can decide if/how the secret_key is stored (or not stored, as the case may be) and in absentia of that, it uses the current behaviour of scribbling files in odd places. Fixes Bug: 1220884 Change-Id: I158702f9500563a4d16f6aefc1a3afea766b1e92
2013-09-24 11:26:59 -07:00
# Ensure that we always have a SECRET_KEY set, even when no local_settings.py
# file is present. See local_settings.py.example for full documentation on the
# horizon.utils.secret_key module and its use.
if not SECRET_KEY:
Don't reset LOCAL_PATH if it's already set If LOCAL_PATH is set in local_settings, then settings should not override it, even if SECRET_KEY is unset. Change-Id: I6aca03f65afddffb6cdd00e4084a8ab9b2255ef1 Closes-Bug: #1254694
2014-01-09 15:35:38 -07:00
if not LOCAL_PATH:
LOCAL_PATH = os.path.join(os.path.dirname(os.path.abspath(__file__)),
'local')
Don't generate the secret_key until after loading local settings Currently the settings.py generates a secret_key, then loads user ovverides. The former step requires write access in a directory that the webserver has no real business trying to write to, which is a security risk, amongst other things. As a simple mitigation step, defer loading the default until after the local_settings.py has been loaded. Then the admins can decide if/how the secret_key is stored (or not stored, as the case may be) and in absentia of that, it uses the current behaviour of scribbling files in odd places. Fixes Bug: 1220884 Change-Id: I158702f9500563a4d16f6aefc1a3afea766b1e92
2013-09-24 11:26:59 -07:00
from horizon.utils import secret_key
SECRET_KEY = secret_key.generate_or_read_from_file(os.path.join(LOCAL_PATH,
'.secret_key_store'))
Moving policy engine implementation This is the first step in moving the policy engine to django_openstack_auth. It makes the policy check method pluggable in openstack_dashboard as it is in horizon. To do this, the wrapper around the policy engine is moved to a new file isolated from the policy check method. A thin check method is left in policy.py to allow the code and policy mix-ins to behave as now. The existing policy test file is also moved for relocation. A new test file has been added to exercise the simpler check method. Once the actual engine is moved to django_openstack_auth, we'll be able to remove policy_backend.py and the test version of policy_backend.py as well. Partially Implemenents: blueprint move-policy-engine Change-Id: I591bcbe69bf255f1aa0346fdf869fac86d2e6d3d
2014-11-17 17:05:58 -07:00
from openstack_dashboard import policy_backend
POLICY_CHECK_FUNCTION = policy_backend.check
Adding RBAC policy system and checks for identity Adding file based RBAC engine for Horizon using copies of nova and keystone policy.json files Policy engine builds on top of oslo incubator policy.py, fileutils was also pulled from oslo incubator as a dependency of policy.py When Horizon runs and a policy check is made, a path and mapping of services to policy files is used to load the rules into the policy engine. Each check is mapped to a service type and validated. This extra level of mapping is required because the policy.json files may each contain a 'default' rule or unqualified (no service name include) rule. Additionally, maintaining separate policy.json files per service will allow easier syncing with the service projects. The engine allows for compound 'and' checks at this time. E.g., the way the Create User action is written, multiple APIs are called to read data (roles, projects) and more are required to update data (grants, user). Other workflows e.g., Edit Project, should have separate save actions per step as they are unrelated. Only the applicable policy checks to that step were added. The separating unrelated steps saves will should be future work. The underlying engine supports more rule types that are used in the underlying policy.json files. Policy checks were added for all actions on tables in the Identity Panel only. And the service policy files imported are limited in this commit to reduce scope of the change. Additionally, changes were made to the base action class to add support or setting policy rules and an overridable method for determining the policy check target. This reduces the need for redundant code in each action policy check. Note, the benefit Horizon has is that the underlying APIs will correct us if we get it wrong, so if a policy file is not found for a particular service, permission is assumed and the actual API call to the service will fail if the action isn't authorized for that user. Finally, adding documentation regarding policy enforcement. Implements: blueprint rbac Change-Id: I4a4a71163186b973229a0461b165c16936bc10e5
2013-08-16 17:28:46 -06:00
Extend offline-compression context When using offline compression, all context information needs to be available in order to generate matching compressor output. Change I84807f6ca0d9769d25b942c151c1a83501648a0a introduced references to HORIZON_CONFIG, so add it to the predefined list of context for offline compression as well. Change-Id: I44ee139626f0eac6fa34f9136926a1a626498039
2013-01-16 13:39:01 +01:00
# Add HORIZON_CONFIG to the context information for offline compression
COMPRESS_OFFLINE_CONTEXT = {
Fix bug where WEBROOT is not respected The WEB_ROOT setting needs to be respected rather than assuming / as the root of the application. Simiarly, we can not assume that STATIC_URL is a sub url of the WEB_ROOT. They can be configured as two indepedent url. Angular templates are loaded dynamically with Ajax, which requires an absolute base path. We define those base paths as angular constants for template use and future routing. TO TEST, follow directions at: http://docs.openstack.org/developer/horizon/topics/settings.html#webroot Co-Authored-By: Matt Borland <matt.borland@hp.com> Co-Authored-By: Shaoquan Chen <sean.chen2@hp.com> Co-Authored-By: Thai Tran <tqtran@us.ibm.com> Change-Id: Ifcd459633682edc94b270019ce77e17d64bea22d Closes-Bug: #1451681
2015-07-21 10:45:40 -07:00
'WEBROOT': WEBROOT,
Extend offline-compression context When using offline compression, all context information needs to be available in order to generate matching compressor output. Change I84807f6ca0d9769d25b942c151c1a83501648a0a introduced references to HORIZON_CONFIG, so add it to the predefined list of context for offline compression as well. Change-Id: I44ee139626f0eac6fa34f9136926a1a626498039
2013-01-16 13:39:01 +01:00
'STATIC_URL': STATIC_URL,
Clean up whitespace in settings files Whitespace should be consistent inside of local_settings.py.example. Currently, most comments in side our settings files follow the "space after # mark" guideline. This is as it should be. However, commented out code-lines are inconsistently including that space. Most of the time they don't include it. There's a case to be made for either approach: Do include the space after the #: Keeps things consistent and it's how pyflakes likes things. Do not include the space after the #: Identifies the commented out line as potential code, instead of a descriptive comment. Makes it easier to just remove the '#' character to activate the line of code. Specifically with python, leaving the white space is likely bad. An informal survey of the lines in these files shows that most commented out code lines do not have a space, and I agree with that policy. I'd like to make this the policy and clean up the code. Also added trailing ',' chars on the last element of many lists. Change-Id: I36b6b40996f7ee5eb566719fe7a92ddecf569f5d Closes-Bug: #1428222
2015-03-04 10:38:33 -07:00
'HORIZON_CONFIG': HORIZON_CONFIG,
Extend offline-compression context When using offline compression, all context information needs to be available in order to generate matching compressor output. Change I84807f6ca0d9769d25b942c151c1a83501648a0a introduced references to HORIZON_CONFIG, so add it to the predefined list of context for offline compression as well. Change-Id: I44ee139626f0eac6fa34f9136926a1a626498039
2013-01-16 13:39:01 +01:00
}
Adds transitional deprecation code for old dashboard names. This code allows users who upgrade from Folsom to Grizzly to continue using their old settings file until H. The code is in the settings file because it must be run prior to the modules listed in INSTALLED_APPS being loaded into the python path. Fixes bug 1071444. Change-Id: I7ac30b731be3cdc7513e3d6bc34d624963bbea9b
2012-11-20 20:33:09 -08:00
Re-enable client logging. The log level setting got moved before the local conf import, thereby making it impossible to actually set the log level to debug. This moves it back to the correct ordering. Change-Id: I7b6c17350add058215c8dd3e3dd7351df64a544a
2013-02-05 16:04:10 -08:00
if DEBUG:
logging.basicConfig(level=logging.DEBUG)
Fix middleware to not access session fields without user auth Change-Id: Idc2b71aa9ca08570e870ac6e356211dfbaa7a726 Fixes: bug #1211535
2013-08-15 17:13:22 -06:00
# during django reloads and an active user is logged in, the monkey
# patch below will not otherwise be applied in time - resulting in developers
# appearing to be logged out. In typical production deployments this section
Fixed several typos in comments Change-Id: I230414c703cf47d7ec727362c20f1814324a2447
2014-05-24 14:42:14 -05:00
# below may be omitted, though it should not be harmful
Fix middleware to not access session fields without user auth Change-Id: Idc2b71aa9ca08570e870ac6e356211dfbaa7a726 Fixes: bug #1211535
2013-08-15 17:13:22 -06:00
from openstack_auth import utils as auth_utils
auth_utils.patch_middleware_get_user()
Copy Permalink