add certificate common settings and defaults
This commit is contained in:
lpm0073
parent
459d4e9a21
commit
bb35ac6655
35
README.rst
35
README.rst
@ -21,15 +21,26 @@ Configuration
|
||||
- ``CREDENTIALS_MYSQL_DATABASE`` (default: ``"credentials"``)
|
||||
- ``CREDENTIALS_MYSQL_USERNAME`` (default: ``"credentials"``)
|
||||
- ``CREDENTIALS_MYSQL_PASSWORD`` (default: ``"{{ 8|random_string }}"``)
|
||||
- ``CREDENTIALS_OAUTH2_KEY`` (default: ``"credentials"``)
|
||||
- ``CREDENTIALS_OAUTH2_KEY_DEV`` (default: ``"credentials-dev"``)
|
||||
- ``CREDENTIALS_OAUTH2_KEY_SSO`` (default: ``"credentials-sso"``)
|
||||
- ``CREDENTIALS_OAUTH2_KEY_SSO_DEV`` (default: ``"credentials-sso-dev"``)
|
||||
- ``CREDENTIALS_OAUTH2_SECRET`` (default: ``"{{ 8|random_string }}"``)
|
||||
- ``CREDENTIALS_OAUTH2_SECRET_DEV`` (default: ``"{{ 8|random_string }}"``)
|
||||
- ``CREDENTIALS_OAUTH2_SECRET_SSO`` (default: ``"{{ 8|random_string }}"``)
|
||||
- ``CREDENTIALS_OAUTH2_SECRET_SSO_DEV`` (default: ``"{{ 8|random_string }}"``)
|
||||
- ``CREDENTIALS_SECRET_KEY`` (default: ``"{{ 20|random_string }}"``)
|
||||
- ``CREDENTIALS_LOGO_TRADEMARK_URL`` (default: ``"https://edx-cdn.org/v3/default/logo-trademark.svg"``)
|
||||
- ``CREDENTIALS_LOGO_TRADEMARK_URL_PNG`` (default: ``"https://edx-cdn.org/v3/default/logo-trademark.png"``)
|
||||
- ``CREDENTIALS_LOGO_TRADEMARK_URL_SVG`` (default: ``"https://edx-cdn.org/v3/default/logo-trademark.svg"``)
|
||||
- ``CREDENTIALS_LOGO_URL`` (default: ``"https://edx-cdn.org/v3/default/logo.svg"``)
|
||||
- ``CREDENTIALS_LOGO_URL_PNG`` (default: ``"https://edx-cdn.org/v3/default/logo.png"``)
|
||||
- ``CREDENTIALS_LOGO_URL_SVG`` (default: ``"https://edx-cdn.org/v3/default/logo.svg"``)
|
||||
- ``CREDENTIALS_LOGO_WHITE_URL`` (default: ``"https://edx-cdn.org/v3/default/logo-white.svg"``)
|
||||
- ``CREDENTIALS_LOGO_WHITE_URL_PNG`` (default: ``"https://edx-cdn.org/v3/default/logo-white.png"``)
|
||||
- ``CREDENTIALS_LOGO_WHITE_URL_SVG`` (default: ``"https://edx-cdn.org/v3/default/logo-white.svg"``)
|
||||
- ``CREDENTIALS_FAVICON_URL`` (default: ``"https://edx-cdn.org/v3/default/favicon.ico"``)
|
||||
- ``CREDENTIALS_SOCIAL_AUTH_REDIRECT_IS_HTTPS`` (default: ``{% if ENABLE_HTTPS %}True{% else %}False{% endif %}``)
|
||||
- ``CREDENTIALS_SOCIAL_AUTH_EDX_OAUTH2_ISSUER`` (default: ``"{% if ENABLE_HTTPS %}https{% else %}http{% endif %}://{{ LMS_HOST }}"``)
|
||||
- ``CREDENTIALS_SOCIAL_AUTH_EDX_OAUTH2_URL_ROOT`` (default: ``"http://lms:8000"``)
|
||||
- ``CREDENTIALS_SOCIAL_AUTH_EDX_OAUTH2_KEY`` (default: ``"credentials-sso-key"``)
|
||||
- ``CREDENTIALS_SOCIAL_AUTH_EDX_OAUTH2_SECRET`` (default: ``"credentials-sso-secret"``)
|
||||
- ``CREDENTIALS_SOCIAL_AUTH_EDX_OAUTH2_LOGOUT_URL`` (default: ``"{{ SOCIAL_AUTH_EDX_OAUTH2_ISSUER }}/logout"``)
|
||||
- ``CREDENTIALS_BACKEND_SERVICE_EDX_OAUTH2_KEY`` (default: ``"credentials-backend-service-key"``)
|
||||
- ``CREDENTIALS_BACKEND_SERVICE_EDX_OAUTH2_SECRET`` (default: ``"{{ CREDENTIALS_OAUTH2_SECRET }}"``)
|
||||
- ``CREDENTIALS_BACKEND_SERVICE_EDX_OAUTH2_PROVIDER_URL`` (default: ``"http://lms:8000/oauth2"``)
|
||||
|
||||
|
||||
|
||||
Usage
|
||||
@ -37,6 +48,12 @@ Usage
|
||||
|
||||
::
|
||||
|
||||
# tutor local
|
||||
tutor plugins enable credentials
|
||||
|
||||
# tutor on k8s
|
||||
# you'll need to create a public remote repository (ie AWS ECR)
|
||||
# ---------------------------------------------------------------------
|
||||
tutor plugins enable credentials
|
||||
tutor config save --set CREDENTIALS_DOCKER_IMAGE=URI_OF_YOUR_REPOSITORY
|
||||
tutor images build credentials
|
||||
|
||||
@ -1,5 +1,90 @@
|
||||
from credentials.settings.utils import get_logger_config
|
||||
|
||||
SECRET_KEY = "{{ CREDENTIALS_SECRET_KEY }}"
|
||||
ALLOWED_HOSTS = [
|
||||
"{{ CREDENTIALS_HOST }}",
|
||||
"CREDENTIALS",
|
||||
]
|
||||
PLATFORM_NAME = "{{ PLATFORM_NAME }}"
|
||||
PROTOCOL = "{% if ENABLE_HTTPS %}https{% else %}http{% endif %}"
|
||||
|
||||
CORS_ALLOW_CREDENTIALS = True
|
||||
CORS_ORIGIN_WHITELIST = []
|
||||
|
||||
{% set jwt_rsa_key = rsa_import_key(JWT_RSA_PRIVATE_KEY) %}
|
||||
JWT_AUTH["JWT_ISSUER"] = "{{ JWT_COMMON_ISSUER }}"
|
||||
JWT_AUTH["JWT_AUDIENCE"] = "{{ JWT_COMMON_AUDIENCE }}"
|
||||
JWT_AUTH["JWT_SECRET_KEY"] = "{{ JWT_COMMON_SECRET_KEY }}"
|
||||
JWT_AUTH["JWT_PUBLIC_SIGNING_JWK_SET"] = json.dumps(
|
||||
{
|
||||
"keys": [
|
||||
{
|
||||
"kid": "openedx",
|
||||
"kty": "RSA",
|
||||
"e": "{{ jwt_rsa_key.e|long_to_base64 }}",
|
||||
"n": "{{ jwt_rsa_key.n|long_to_base64 }}",
|
||||
}
|
||||
]
|
||||
}
|
||||
)
|
||||
JWT_AUTH["JWT_ISSUERS"] = [
|
||||
{
|
||||
"ISSUER": "{{ JWT_COMMON_ISSUER }}",
|
||||
"AUDIENCE": "{{ JWT_COMMON_AUDIENCE }}",
|
||||
"SECRET_KEY": "{{ OPENEDX_SECRET_KEY }}"
|
||||
}
|
||||
]
|
||||
|
||||
LOGO_TRADEMARK_URL = "https://edx-cdn.org/v3/default/logo-trademark.svg"
|
||||
LOGO_TRADEMARK_URL_PNG = "https://edx-cdn.org/v3/default/logo-trademark.png"
|
||||
LOGO_TRADEMARK_URL_SVG = "https://edx-cdn.org/v3/default/logo-trademark.svg"
|
||||
LOGO_URL = "https://edx-cdn.org/v3/default/logo.svg"
|
||||
LOGO_URL_PNG = "https://edx-cdn.org/v3/default/logo.png"
|
||||
LOGO_URL_SVG = "https://edx-cdn.org/v3/default/logo.svg"
|
||||
LOGO_WHITE_URL = "https://edx-cdn.org/v3/default/logo-white.svg"
|
||||
LOGO_WHITE_URL_PNG = "https://edx-cdn.org/v3/default/logo-white.png"
|
||||
LOGO_WHITE_URL_SVG = "https://edx-cdn.org/v3/default/logo-white.svg"
|
||||
FAVICON_URL = "https://edx-cdn.org/v3/default/favicon.ico"
|
||||
|
||||
SOCIAL_AUTH_REDIRECT_IS_HTTPS = {% if ENABLE_HTTPS %}True{% else %}False{% endif %}
|
||||
SOCIAL_AUTH_EDX_OAUTH2_ISSUER = "{% if ENABLE_HTTPS %}https{% else %}http{% endif %}://{{ LMS_HOST }}"
|
||||
SOCIAL_AUTH_EDX_OAUTH2_URL_ROOT = "http://lms:8000"
|
||||
|
||||
SOCIAL_AUTH_EDX_OAUTH2_KEY = "credentials-sso-key"
|
||||
SOCIAL_AUTH_EDX_OAUTH2_SECRET = "credentials-sso-secret"
|
||||
SOCIAL_AUTH_EDX_OAUTH2_LOGOUT_URL = "{{ SOCIAL_AUTH_EDX_OAUTH2_ISSUER }}/logout"
|
||||
BACKEND_SERVICE_EDX_OAUTH2_KEY = "credentials-backend-service-key"
|
||||
BACKEND_SERVICE_EDX_OAUTH2_SECRET = "{{ CREDENTIALS_OAUTH2_SECRET }}"
|
||||
BACKEND_SERVICE_EDX_OAUTH2_PROVIDER_URL = "http://lms:8000/oauth2"
|
||||
|
||||
EDX_DRF_EXTENSIONS = {
|
||||
'OAUTH2_USER_INFO_URL': '{% if ENABLE_HTTPS %}https{% else %}http{% endif %}://{{ LMS_HOST }}/oauth2/user_info',
|
||||
}
|
||||
|
||||
DATABASES = {
|
||||
"default": {
|
||||
"ENGINE": "django.db.backends.mysql",
|
||||
"NAME": "{{ CREDENTIALS_MYSQL_DATABASE }}",
|
||||
"USER": "{{ CREDENTIALS_MYSQL_USERNAME }}",
|
||||
"PASSWORD": "{{ CREDENTIALS_MYSQL_PASSWORD }}",
|
||||
"HOST": "{{ MYSQL_HOST }}",
|
||||
"PORT": "{{ MYSQL_PORT }}",
|
||||
"OPTIONS": {
|
||||
"init_command": "SET sql_mode='STRICT_TRANS_TABLES'",
|
||||
},
|
||||
}
|
||||
}
|
||||
|
||||
EMAIL_BACKEND = "django.core.mail.backends.smtp.EmailBackend"
|
||||
EMAIL_HOST = "{{ SMTP_HOST }}"
|
||||
EMAIL_PORT = "{{ SMTP_PORT }}"
|
||||
EMAIL_HOST_USER = "{{ SMTP_USERNAME }}"
|
||||
EMAIL_HOST_PASSWORD = "{{ SMTP_PASSWORD }}"
|
||||
EMAIL_USE_TLS = {{SMTP_USE_TLS}}
|
||||
|
||||
#USE_LEARNER_RECORD_MFE = False
|
||||
#LEARNER_RECORD_MFE_RECORDS_PAGE_URL = ""
|
||||
|
||||
# reconfigure logging and Get rid of local logger
|
||||
LOGGING = get_logger_config(debug=False, dev_env=True, local_loglevel="INFO")
|
||||
LOGGING["handlers"].pop("local")
|
||||
|
||||
Loading…
x
Reference in New Issue
Block a user
