Skip to content

Commit 414e10f

Browse files
committed
Merge branch 'release/1.6.0'
2 parents 027d879 + b0fd70a commit 414e10f

File tree

277 files changed

+109017
-4792
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

277 files changed

+109017
-4792
lines changed

.gitignore

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -92,7 +92,8 @@ Quarterly.txt
9292
# yarn
9393
components/*
9494
!components/package.json
95-
dojo/static/*
95+
!components/yarn.lock
96+
# dojo/static/*
9697
!dojo/static/dojo/*
9798
dojo/media
9899
/static

.travis.yml

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -9,14 +9,14 @@ env:
99
- HELM_VERSION=v2.13.0
1010
- CHANGE_MINIKUBE_NONE_USER=true
1111
matrix:
12+
- TEST=flake8
13+
- TEST=integration_tests
14+
- TEST=docker
1215
- BROKER=rabbitmq DATABASE=mysql
1316
- BROKER=rabbitmq DATABASE=postgresql
1417
- BROKER=redis DATABASE=mysql
1518
- BROKER=redis DATABASE=postgresql
16-
- TEST=flake8
1719
- TEST=snyk
18-
- TEST=docker
19-
- TEST=integration_tests
2020
matrix:
2121
allow_failures:
2222
- env: TEST=snyk

BRANCHING-MODEL.md

Lines changed: 26 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,26 @@
1+
# Introduction
2+
This section describes
3+
- how branches are handled
4+
- defectdojo release cycle
5+
6+
Please be careful to submit your pull requests to the correct branch:
7+
- bugfix: latest release branch
8+
- evolutions: dev branch
9+
10+
If in doubt please use dev branch.
11+
12+
# Release and hotfix model
13+
![Schemas](doc/branching_model.png)
14+
## Releasing
15+
- Start an x.y.0 release branch off dev branch
16+
- Commit only bug fixes onto this branch (and merge those fixes back to dev)
17+
- Dev branch keeps living with further evolutions
18+
- Every 4-8 weeks, merge the release branch to master and tag: this is when the new release is out: x.(y+1).z
19+
20+
# Issuing a hotfix
21+
- In case of major issue found after releasing, issue a hotfix branch (first is x.y.1) which is merged to master, dev, and the next release branch
22+
23+
24+
(Schemes created with https://www.planttext.com/)
25+
26+
(This model is inspired by https://nvie.com/posts/a-successful-git-branching-model/ but without feature branches.)

DefectDojoMaintainers.md

Lines changed: 0 additions & 1 deletion
This file was deleted.

Dockerfile.django

Lines changed: 2 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -104,5 +104,6 @@ ENV \
104104
DD_UWSGI_MODE="socket" \
105105
DD_UWSGI_ENDPOINT="0.0.0.0:3031" \
106106
DD_DJANGO_ADMIN_ENABLED="True" \
107-
DD_TRACK_MIGRATIONS="True"
107+
DD_TRACK_MIGRATIONS="True" \
108+
DD_DJANGO_METRICS_ENABLED="False"
108109
ENTRYPOINT ["/entrypoint-uwsgi.sh"]

Dockerfile.integration-tests

Lines changed: 51 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,51 @@
1+
2+
# code: language=Dockerfile
3+
4+
FROM python:3.5.9-slim-buster@sha256:8068eec6231ae9b097b296068ba4ed0da08eff5f8a4b44c585d25afaea9e8b33 as build
5+
WORKDIR /app
6+
RUN \
7+
apt-get -y update && \
8+
apt-get -y install \
9+
git \
10+
wget \
11+
curl \
12+
unzip \
13+
gpg \
14+
&& \
15+
apt-get clean && \
16+
rm -rf /var/lib/apt/lists && \
17+
true
18+
19+
# Installing Google Chrome browser
20+
RUN \
21+
curl -sS -o - https://dl.google.com/linux/linux_signing_key.pub | apt-key add && \
22+
echo "deb [arch=amd64] http://dl.google.com/linux/chrome/deb/ stable main" >> /etc/apt/sources.list.d/google-chrome.list && \
23+
apt-get -y update && \
24+
apt-get -y install \
25+
google-chrome-stable \
26+
&& \
27+
apt-get clean && \
28+
rm -rf /var/lib/apt/lists && \
29+
true
30+
31+
# Installing Chromium Driver and Selenium for test automation
32+
RUN LATEST_VERSION=$(curl -s https://chromedriver.storage.googleapis.com/LATEST_RELEASE) && \
33+
wget -O /tmp/chromedriver.zip https://chromedriver.storage.googleapis.com/$LATEST_VERSION/chromedriver_linux64.zip && \
34+
unzip /tmp/chromedriver.zip chromedriver -d /usr/local/bin/ && \
35+
rm /tmp/chromedriver.zip && \
36+
chmod 777 /usr/local/bin/chromedriver;
37+
38+
RUN pip install --no-cache-dir selenium requests
39+
40+
COPY tests/ ./tests/
41+
COPY docker/wait-for-it.sh \
42+
docker/entrypoint-integration-tests.sh \
43+
/
44+
45+
RUN chmod -R 0777 /app
46+
USER 1001
47+
ENV \
48+
DD_ADMIN_USER=admin \
49+
DD_ADMIN_PASSWORD='' \
50+
DD_BASE_URL="http://localhost:8080/"
51+
CMD ["/entrypoint-integration-tests.sh"]

Dockerfile.nginx

Lines changed: 19 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -30,16 +30,17 @@ ENV \
3030
RUN \
3131
apt-get -y update && \
3232
apt-get -y install apt-transport-https ca-certificates && \
33-
curl -sSL https://deb.nodesource.com/gpgkey/nodesource.gpg.key | apt-key add - && \
33+
curl -sSL https://deb.nodesource.com/gpgkey/nodesource.gpg.key | apt-key add --no-tty - && \
3434
curl -sL https://deb.nodesource.com/setup_12.x | bash - && \
3535
curl -sS https://dl.yarnpkg.com/debian/pubkey.gpg | apt-key add - && \
36-
echo "deb https://nightly.yarnpkg.com/debian/ nightly main" | tee /etc/apt/sources.list.d/yarn.list && \
36+
wget https://github.com/yarnpkg/yarn/releases/download/v1.21.0/yarn_1.21.0_all.deb && \
37+
dpkg -i yarn_1.21.0_all.deb && \
3738
apt-get -y update && \
39+
echo "$(yarn --version)" && \
3840
apt-get -y install nodejs && \
3941
echo "$(node --version)" && \
40-
apt-get -y install --no-install-recommends yarn && \
41-
echo "$(yarn --version)" && \
4242
apt-get clean && \
43+
rm yarn_1.21.0_all.deb && \
4344
rm -rf /var/lib/apt/lists && \
4445
true
4546

@@ -61,19 +62,28 @@ RUN \
6162
python3 manage.py collectstatic --noinput && \
6263
true
6364

64-
FROM nginx:1.17.7@sha256:89a42c3ba15f09a3fbe39856bddacdf9e94cd03df7403cad4fc105088e268fc9
65+
FROM nginx:1.17.9@sha256:7ac7819e1523911399b798309025935a9968b277d86d50e5255465d6592c0266
6566
COPY --from=collectstatic /app/static/ /usr/share/nginx/html/static/
66-
COPY wsgi_params nginx/nginx.conf /etc/nginx/
67-
COPY docker/entrypoint-nginx.sh nginx/*.cer nginx/*.key /
67+
COPY wsgi_params nginx/nginx.conf nginx/nginx_TLS.conf /etc/nginx/
68+
COPY docker/entrypoint-nginx.sh /
6869
RUN \
70+
apt-get -y update && \
71+
apt-get -y install openssl && \
72+
apt-get clean && \
6973
chmod -R g=u /var/cache/nginx && \
7074
chmod -R g=u /var/run && \
71-
if [ -f /*.key -o -f /*.cer ]; then chown 1001 /*.key /*.cer; fi && \
75+
mkdir -p /etc/nginx/ssl && \
76+
chmod -R g=u /etc/nginx && \
7277
true
7378
ENV \
7479
DD_UWSGI_PASS="uwsgi_server" \
7580
DD_UWSGI_HOST="uwsgi" \
76-
DD_UWSGI_PORT="3031"
81+
DD_UWSGI_PORT="3031" \
82+
GENERATE_TLS_CERTIFICATE="false" \
83+
USE_TLS="false" \
84+
NGINX_METRICS_ENABLED="false" \
85+
METRICS_HTTP_AUTH_USER="" \
86+
METRICS_HTTP_AUTH_PASSWORD=""
7787
USER 1001
7888
EXPOSE 8080
7989
ENTRYPOINT ["/entrypoint-nginx.sh"]

0 commit comments

Comments
 (0)