1482a386c2
Fix documentation for how to enable ZulipLDAPAuthBackend.
2015-09-30 09:04:16 -07:00
92aebe595b
Dramatically extend post-install documentation for production Zulip.
2015-09-30 09:04:14 -07:00
5ad84fd997
Improve documentation for the Zulip email integration.
...
* Document fix for the 'less insecure' email problem.
* Mention that general Django email documentation applies.
2015-09-29 18:58:27 -07:00
3efdb7ebf3
Document how to setup the Zulip S3 integration.
2015-09-29 18:11:58 -07:00
80fa5006f8
Document the purpose of local_settings.py properly.
2015-09-29 18:05:04 -07:00
6bb9b129f7
Update Zulip support email to zulip-devel@googlegroups.com.
...
Ideally some of these templates should really point to the
local installation's support email address, but this is a
good start.
Exceptions:
* Where to report security incidents
* MIT Zephyr-related pages
* zulip.com terms and conditions
2015-09-29 17:59:47 -07:00
d93d4c7216
Fix settings documentation of twitter keys.
...
Twitter keys are stored in zulip-secrets.conf.
2015-09-29 17:45:05 -07:00
852ac66f8e
Extend the Google oauth documentation in local_server_template.py.
2015-09-28 10:05:58 -07:00
b6c1f1d162
Fix incorrect name for email_password secret in settings template.
...
Fixes #49 .
2015-09-27 17:06:03 -07:00
ed742fa847
small typo fix
2015-09-27 01:10:01 -06:00
af4aac6836
settings: Document SMTP firewall issues in email configuration.
2015-09-26 21:32:47 -07:00
2c6bfe136a
Remove confusing EMAIL_HOST_PASSWORD setting in SMTP configuration.
...
This was one of the various configuration options made confusing by
the secrets-to-configuration migration.
Fixes #27 .
2015-09-26 17:48:21 -07:00
5dd330e769
Document how to setup Google auth for Zulip voyager.
2015-09-26 13:50:46 -07:00
140e598a89
Update configuration examples to use current Google auth backend.
2015-09-26 13:50:28 -07:00
ae4cb6df35
Make python-postmonkey not a required package.
...
This is in some ways a regression, but because we don't have
python-postmonkey packaged right now, this is required to make the
Zulip production installation process work on Trusty.
(imported from commit 539d253eb7fedc20bf02cc1f0674e9345beebf48)
2015-09-25 00:22:14 -07:00
a0006d5faf
Remove duplicate REQUIRED_SETTINGS check.
...
This makes fetching settings from here for the rabbitmq config not
work; and the main place we check for this is in initialize-database
anyway.
(imported from commit fcc6eff3882f880fdc8b127daffc9a3173f3ff20)
2015-09-25 00:22:14 -07:00
858d0a984b
Move API super users configuration into the database.
...
(imported from commit 3cc702f93e7252b42930dba4bde93a915b6dbf44)
2015-09-20 11:13:20 -07:00
36a9dc2cf7
Cleanup various minor Zanitization issues.
...
(imported from commit 5784eb5ac70706f72b05463354434a83a6e1beaa)
2015-09-20 00:25:38 -07:00
3ac95ddc1a
Add UserProfile flag to control whether we have a left side userlist.
...
Previously this was hardcoded for a single customer.
(imported from commit a6b7095050aa10cef976541505d9b09a35453f48)
2015-09-19 23:22:59 -07:00
fcec80461b
Remove the SSO-only realm integration.
...
It's messy code, only one customer ever used it, and it's not in use
today.
(imported from commit af3f512ac6af74af66c588c7d40d699e98514d0a)
2015-09-19 21:54:51 -07:00
166192fb57
Add additional missing IP addresses to ALLOWED_HOSTS.
...
(imported from commit 4f81101a1df35074947228c259e944c4565061c6)
2015-09-19 15:51:27 -07:00
cf1aff661c
Add current production IP addresses to ALLOWED_HOSTS.
...
(imported from commit c255acb6ad7cd47d8a51509f4c24a05ac06ebd9a)
2015-09-19 15:13:02 -07:00
73264ab530
Move VOYAGER detection to after initialization of ZULIP_COM
...
(imported from commit c9aa814ebc30a78abe8babfc3bf2eedb8198d17d)
2015-08-29 12:07:33 -07:00
17fd248f23
Move postgres host configuration for zulip.com out of settings.py.
...
(imported from commit fe95011ae86ff7c5f20c789b459a763326da374d)
2015-08-22 13:49:43 -07:00
930c64df8a
Move zulip.com-related statsd configuration out of main settings.py.
...
This also removes the convenient way to run statsd in the Dev VM,
because we don't anticipate anyone doing that. It's just 2 lines of
config to configure it anyway:
STATSD_HOST = 'localhost'
STATSD_PREFIX = 'user'
(imported from commit 5b09422ee0e956bc7f336dd1e575634380b8bfa2)
2015-08-22 13:49:43 -07:00
3e87c82d56
Reorganize settings.py to put the default values in a sane place.
...
(imported from commit 00f09c6c65cb95d29c466e996b17f80a30635acf)
2015-08-22 13:49:43 -07:00
50ccbc4230
Refactor database configuration to make ZULIP_COM the special case instead of the default.
...
(imported from commit bba7a3a78dc4fd0e442503f8707295eabc581652)
2015-08-22 13:48:52 -07:00
8549606eb3
Require ALLOWED_HOSTS to be set in production.
...
(imported from commit 581e3d44aa42b5c8e6322b760b8b66a1f0aaf375)
2015-08-22 13:48:52 -07:00
da84aa3412
Require REQUIRED_SETTINGS in PRODUCTION.
...
(imported from commit 7f43ba4d54021f806481b2e369c5482b0e0f99fe)
2015-08-22 13:48:47 -07:00
6f50a2703e
Remove duplicate ZULIP_COM detection from settings.py.
...
And fix up some required configuration.
(imported from commit 761758638baa297118848c9f5640638d6b2f4f67)
2015-08-21 10:48:13 -07:00
e78361f985
Move STATSD_CONFIGURATION below setting defaults.
...
(imported from commit 48d833c672ad96318f738c663c3bea61cd1ec382)
2015-08-21 10:42:15 -07:00
83a653efce
Change semantics of ZULIP_COM to include ZULIP_COM_STAGING machines.
...
(imported from commit 2e84c756b4ac41c13d619ab6ceb99e347d1f48cb)
2015-08-21 10:41:14 -07:00
16e0f21687
Fix a bunch of Zulip Voyager related comments.
...
(imported from commit 176e875cbc310ba00d6137930ddb718bd68f1866)
2015-08-21 10:40:54 -07:00
e3f38acbce
Enterprise => Voyager.
...
(imported from commit 41b9a67301aeaf5fd40bbbb8f34a326ca98431fd)
2015-08-21 10:33:35 -07:00
3f7cb34b00
enterprise => voyager
...
(imported from commit 04be792bb480d5e5db1c91d296d1000cf1682571)
2015-08-21 10:33:35 -07:00
edf7e732a2
ENTERPRISE => VOYAGER.
...
(imported from commit 4f8080b9f506a87ca40bef32e39de5218cba916a)
2015-08-21 10:33:35 -07:00
f9f1fdc4d7
change deploy_type in zulip.com conf file.
...
(imported from commit 6fad28d15f530a619d7359bce0a182ed61b876ab)
2015-08-21 10:33:35 -07:00
f79adf830f
deployed => production
...
(imported from commit 2d7b0a7a73b0c84b32634a88af1e0d666139d4ff)
2015-08-21 10:33:35 -07:00
d702ddb3cf
DEPLOYED => PRODUCTION
...
(imported from commit a7d365c07916c5103fc721c712db94f9af977640)
2015-08-21 10:33:35 -07:00
63e576b811
STAGING_DEPLOYED => ZULIP_COM_STAGING
...
(imported from commit 25419979292218932c53cface59c1e8e2348a7c2)
2015-08-21 10:33:35 -07:00
8778c4726a
Add settings.DEVELOPMENT as a complement of settings.DEPLOYED.
...
(imported from commit 0437140d9fee7eec7b28abe583cfe8cde3e07c21)
2015-08-21 10:33:35 -07:00
24f6743288
Eliminate TESTING_DEPLOYED.
...
(imported from commit 477d8b7a15f703df1e10ae5682e02fea5ce040e4)
2015-08-21 10:33:35 -07:00
59b94a901c
Moving ALLOWED_HOSTS to local_settings.
...
(imported from commit b89c6983fd87ede42954dd84706f999ed0de740d)
2015-08-21 10:33:35 -07:00
80651c99cd
Stop using local_settings.py at all in the Dev VM.
...
(imported from commit d067bcfe9d71628d8f671c5bc7bb38f521f9a965)
2015-08-21 10:33:35 -07:00
78277b5ee5
Make ADMIN_DOMAIN and ZULIP_ADMINISTRATOR have sane dev defaults.
...
(imported from commit 3d2602166541c7eaa72ea7fad87a2dc86f7c8f15)
2015-08-21 09:01:58 -07:00
3e61714035
Make DEPLOYMENT_ROLE_KEY no longer required.
...
(imported from commit 046ce610d847cc987d3f6d584ccc0bc84b55df84)
2015-08-21 09:01:58 -07:00
90bfc39d55
Remove dead GoogleBackend from prod configuration.
...
(imported from commit 5fcf5c4bdb8d3564819005b624076878b59cd23b)
2015-08-21 01:42:22 -07:00
ab9539cffe
Remove OpenID authentication
...
(imported from commit 70a859041a851ed10dc40cfc068330e472d2ed09)
2015-08-20 23:52:48 -07:00
15fe02b618
Remove authhack
...
In Django 1.8 the username length limit seems to be 254 by default.
(imported from commit cf0027431f5a4fea9e366a49d345b9d09b90d869)
2015-08-20 23:15:45 -07:00
0aab583bb1
Django 1.8 compatibility: transactions
...
- autocommit is now the default
- commit_on_success is now atomic
(imported from commit b6166ca666ff23d34f2871ca365ce3ec66b0fa86)
2015-08-20 23:15:45 -07:00
599742536b
Switch from South to native Django migrations
...
This commit loses some indexes, unique constraints etc. that were
manually added by the old migrations. I plan to add them to a new
migration in a subsequent commit.
(imported from commit 4bcbf06080a7ad94788ac368385eac34b54623ce)
2015-08-20 23:01:26 -07:00
15abf9ed31
Move all remaining calls of get_secret from local_settings.py to settings.py.
...
(imported from commit 099a122121f8e06568cef3579f955cb73b20ee50)
2015-08-20 22:19:26 -07:00
bd5fc484f0
Move GOOGLE_OAUTH2_CLIENT_SECRET to be read in settings.py.
...
(imported from commit 814dc32cd6099516486be76fa8baffbafda69596)
2015-08-20 22:19:17 -07:00
4b3874988f
Move DROPBOX_APP_KEY to be read from get_secrets
...
(imported from commit 99acd66c4478a0826b0e0ec7bf26c9a59f7febca)
2015-08-20 21:58:59 -07:00
ef320c6e95
Remove Redis remote authentication feature.
...
We can add it back later but for now we can just stick with localhost
since that's what most people will want.
(imported from commit c5fe524282219dc62a0670f569c0cb6af04be339)
2015-08-20 21:58:59 -07:00
e41c00107d
Move twitter secret keys to use get_secrets in settings.py
...
(imported from commit cc21265ae64a49be20bec74386314d60ee822746)
2015-08-20 21:58:59 -07:00
32f6d1055d
Get s3_key and s3_secret_key from secrets in settings.py.
...
(imported from commit 2c2574988486bbb6f0f769250664a5a2a4c9e6c9)
2015-08-20 21:58:51 -07:00
d34d44e1d4
Read ANDROID_GCM_API_KEY from secrets; move to settings.py
...
(imported from commit 0d0d59116065956b9cbbe895eb09f0433b752cf1)
2015-08-20 21:54:55 -07:00
ec5ed87ca0
Make get_secret return None instead of an exception if the secret isn't defined.
...
Remove empty key generation from generate_enterprise_secrets, since get_secret ignores missing keys now.
(imported from commit 32d61e3058f0d41bfb4b17775e581a3c84540fe7)
2015-08-20 21:54:38 -07:00
2cab113035
Rename getsecret -> get_secret and remove duplicate secret-reading code in settings.py
...
(imported from commit 097d6b4fad1fcf8b6f09dc212056fdb313efe5e4)
2015-08-20 21:52:26 -07:00
58e5c654fa
Make feedback button option default-off.
...
(imported from commit 23b89ab72bd04826016631e01da950af0a5df694)
2015-08-20 19:47:00 -07:00
13f3b448e5
Kill Embed.ly integration.
...
(imported from commit dfe42a26e57100108c3c50298041bd520e0d8b1b)
2015-08-20 19:46:48 -07:00
bded0d9d54
Remove corporate beta signup form
...
(imported from commit 1b3a0cd8a59a124905fa4cbd3121a78d23aeb3a2)
2015-08-20 18:40:34 -07:00
4d0f7c7ea4
Add a user-visible setting for 24-hour time display.
...
(imported from commit d934824fd6b72e64a455aac9ff4585b262145f02)
2015-08-20 17:33:16 -07:00
e79447131f
Make build-enterprise-tarball run again.
...
(imported from commit e3dd8d75811458d0cee8a2d05a4b47abd6eda7fd)
2015-08-20 17:33:16 -07:00
0a6bb975c3
Replace settings.OG_ZULIPER_EMAILS with database lookups
...
Also renames the OG_ZULIPER_EMAILS to CROSS_REALM_BOT_EMAILS
(imported from commit a9e0ccebbd6b37376e535600670ad493dc8de7e1)
2015-08-20 17:20:41 -07:00
7cd1d9665d
test_settings: set CAMO_KEY = 'dummy' to make tests pass
...
(imported from commit d8705d8bbcad365b6b94a456d1942a8afc1a32d4)
2015-08-20 11:07:52 -07:00
0a20f168a7
Auto-generate dev-secrets file.
...
Source LOCAL_DATABASE_PASSWORD and INITIAL_PASSWORD_SALT from the secrets file.
Fix the creation of pgpass file.
Tim's note: This will definitely break the original purpose of the
tool but it should be pretty easy to add that back as an option.
(imported from commit 8ab31ea2b7cbc80a4ad2e843a2529313fad8f5cf)
2015-08-20 00:20:44 -07:00
86278804c9
Use the EmailAuthBackend for the test suite.
...
(imported from commit 2f7bf9864991358e9dabacbd2b0f652a9f69230c)
2015-08-19 23:34:30 -07:00
6f77e68622
Add GET /export endpoint, which dumps important tables in json.
...
Meant to be used in tandem with the manage.py import command.
The following sensitive data is scrubbed:
* user api keys
* user password hashes
* stream email keys
* invite-only streams
* messages from invite-only streams
* messages from users from other domains
(imported from commit 8e58dcdcb80ef1c7127d3ab15accf40c6187633f)
2015-08-19 15:31:08 -07:00
7cffb41e13
Reorganize and document settings.py.
...
(imported from commit e2694979d5aee95c22b83b7aa84d80b56ffae1d6)
2015-08-18 20:57:35 -07:00
5b8894cd25
Rename USING_SSO to something more clear.
...
(imported from commit 94e8ae84b01419783872a5d09bafe5c2eb933c18)
2015-08-18 20:48:15 -07:00
05b0cbb36a
Zulip doesn't use MEDIA_URL.
...
(imported from commit ebc370d9c5cf2d7e7d366cbb25fe721c817f212e)
2015-08-18 20:48:15 -07:00
dcc3b3fe37
Don't create Zulip employee accounts automatically in Dev VM.
...
(imported from commit 378f12d3f2ac4c131919c0efbd049b9eaa961694)
2015-08-18 20:46:35 -07:00
2de3e2ebdd
Move several secrets to using the get_secret function in settings.py.
...
(imported from commit 08fb828265c4a9e35294a51c0901bd5ad3990344)
2015-08-18 20:17:48 -07:00
8c88746912
Move iOS App IDs to settings.py since it's needed to run the app.
...
(imported from commit 891e32ffa82430487fc333fa549ee465f0d018c0)
2015-08-18 20:17:48 -07:00
43c7ff64d1
Remove unused FULL_NAVBAR configuration setting.
...
(imported from commit 47c3be669f7ba44426301a46e3f54054f3e2440b)
2015-08-18 20:17:48 -07:00
0dae10eab4
Remove unused secret HASH_SALT.
...
(imported from commit 831c4cb7680b7bf8dadbd930195175e9a4186356)
2015-08-18 20:17:48 -07:00
2ffd022a5f
Include defaults for AUTHENTICATION_BACKENDS
...
(imported from commit cdfffacc45f30e6959085ba8bc5aed72ae3527cf)
2015-08-18 20:17:47 -07:00
78f32dcbd8
Fix bug in dev login which showed email/password prompts on logins after the first.
...
(imported from commit 626684ef1da8feb53aca05c9225ee628156f9810)
2015-08-18 20:17:47 -07:00
46e224997e
Add a new dev login page for logging in without a password on the dev VM.
...
(imported from commit ac8f2504771c9907b7e92dc91cec5f7220ce951b)
2015-08-18 20:17:47 -07:00
29ed28af00
Fix ZulipRemoteUserBackend for activating mirror dummies.
...
If you're using e.g. our Jabber<=>Zulip mirroring capability along
with the RemoteUser SSO integration, previously it would fail if a
user with a corresponding dummy user tried to login/signup (since they
didn't have an account but one wouldn't be created because
ZulipRemoteUserBackend was reporting that an account already existed).
(imported from commit 006eaa9afa8feedddd860c2bef41e604285228a7)
2015-08-18 11:28:36 -07:00
f5089e535d
Add dummy secrets for use in development.
...
We also reference these secrets from zproject/local_settings.py, keying
off IS_DEPLOYED.
(imported from commit eb83310e219616ed1c6c253f0d6893134bbe3517)
2015-08-16 21:35:34 -07:00
48f1a84d6e
Additional defaults for dev.
...
(imported from commit 1b4bd71ff4ed27a83a24e58e797d900a7869c72d)
2015-08-16 16:46:08 -07:00
8ea139c772
Fix bugdown fixture for dummy camo key
...
(imported from commit 698b261918457117a01ce51f69d49f54f35b3297)
2015-08-16 16:45:15 -07:00
466a678c2c
Remove "More messages below" indicator
...
It's been very buggy for a while, has limited usefulness compared with
unread counts, and profiling over the weekend indicates that it's very
slow.
(imported from commit 716fe47f2bbec1bd8a6e4d265ded5c64efe2ad5c)
2015-03-30 15:44:36 -07:00
d865732e0d
Maintain two APNS connections and send correct notifications to each
...
Now we have 2 different Zulip apps out there, and they are signed with
two certs: Zulip and Dropbox. The Dropbox-signed apps are going to need
to be sent APNS notifications from the appropriate APNS connection
(imported from commit 6db50c5811847db4f08e5c997c7bbb4b46cfc462)
2015-02-11 06:57:25 +00:00
910429f365
Move secrets to their own file
...
(imported from commit 4e46f217e8a1df9b7cc03db9dc9fc41a6c273365)
2015-02-10 17:31:26 -08:00
15713964a5
Add the notification-bot to the cross realm PM whitelist
...
(imported from commit 92a19f955a99650c79b83c6afb23726caf02e577)
2015-02-08 21:03:45 -08:00
a0a537e0ce
Add the feedback bot to OG_ZULIPER_EMAILS
...
The feedback bot needs to be included in the OG_ZULIPER_EMAILS so users
can send feedback.
(imported from commit b0c3295379d0f062a912f8b6c957419335be1c48)
2015-02-08 10:08:32 -08:00
f4239d60ca
Add pagerduty webhook
...
(imported from commit 06219066b423f53d08094f3f97a98016e145b2a7)
2015-02-07 18:16:11 -08:00
1eebcb472d
Only allow users in the OG zuliper list to send cross realm PMs
...
Changes from allowing all of the zulip realms to a whitelist of users.
(imported from commit 5ad2db9a62b430ef2c9d867e4afdf661b11ae96a)
2015-01-30 23:39:47 -08:00
2c760ae735
Remove mixpanel
...
(imported from commit 9b6cc58ee9be483db8bf2d2eaaaecabc14f821e4)
2015-02-06 13:59:30 -08:00
9738f2fa17
Send feedback to prod
...
(imported from commit 52c76dfb6f8b8e49d1a9e799852a1683e85673c6)
2015-02-05 22:46:30 -08:00
7e9c121ad3
Use the full_name if available
...
We were trying to default the users first name when using google auth,
but it was getting lost when rendering the form.
(imported from commit 710e0c2ce591488920458dca74209c75e7031abd)
2015-02-05 21:54:28 -05:00
439b86fe3b
Migrate the google SSO from openid to oauth2
...
(imported from commit 6938c1cc5d245cc5642043279470365ff04df903)
2015-02-05 21:54:28 -05:00
3f68c56554
Disable password auth for dropbox
...
This change disabled password auth, but the UI still shows the login
form. I will remove that once we have the new hostname.
(imported from commit 6ca119571854ac54645680b40255e346be1c1613)
2015-02-05 21:47:59 -05:00
e241e6e833
[manual] Support chat.dropboxer.net hostname.
...
This needs to be deployed on both prod and lb0 to be functional
DEPLOY INSTRUCTIONS: restart carefully
(imported from commit d97a450754608357418c80e5b3c7b3bbcd1d09fb)
2015-02-05 17:55:29 -08:00
7e786d5426
Import default session middleware as start for custom session middleware.
...
(imported from commit 76aae367ab6ea5c2a7b0d98368482a3cb312b217)
2015-01-15 21:09:52 -08:00
f63ee86730
Fix login popup on cross-realm authenticated content previews
...
We were serving 401s on /user_uploads when the user wasn't authenticated (due to
it being a REST endpoint). This was causing a login popup to display instead of
just a broken image preview.
(imported from commit 62640f5bd59eb3b86ab5aae5923ccfa742459805)
2014-10-29 17:53:05 -07:00
Tim Abbott
Waseem Daher
Thomas Butter
Caleb Anderson
Tim Abbott
David Roe
Reid Barton
Yoyo Zhou
Anders Kaseorg
Kate Buckner
acrefoot
Cat Miller
Jonathan Dahan
Luke Faraone
Zev Benjamin
Leo Franchi
Jason Michalski