mandayejs/README

MandayeJS
=========


Apache Configuration
--------------------

  <VirtualHost _default_:443>
    ServerAdmin webmaster@localhost
    ServerName dev.entrouvert.org.127.0.0.1.xip.io
    DocumentRoot /var/www/
    SSLEngine On
    SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem
    SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key

    CustomLog /var/log/apache2/mandayejs-access.log combined
    ErrorLog /var/log/apache2/mandayejs-error.log

    SSLProxyEngine on
    ProxyPreserveHost On
    SSLProxyVerify none
    SSLProxyCheckPeerCN off
    SSLProxyCheckPeerName off

    ProxyPass /_mandaye/ http://localhost:8000/_mandaye/
    ProxyPassReverse /_mandaye/ http://localhost:8000/_mandaye/

    RequestHeader unset Accept-Encoding
    ProxyPass /_mandaye !
    ProxyPass / https://dev.entrouvert.org/
    ProxyPassReverse / https://dev.entrouvert.org/

    ExtFilterDefine fixtext mode=output intype=text/html \
       cmd="/bin/sed -e '\$a<script type=\"text/javascript\" src=\"/_mandaye/static/mandaye.js\"></script>'"

    <Location />
      SetOutputFilter fixtext
    </Location>
    <Location /_mandaye>
      SetOutputFilter None
    </Location>

  </VirtualHost>

Nginx Settings
--------------
server {
    listen 443;
    server_name example.com ;

    ssl                  on;
    include includes/ssl.conf;
    include includes/example.com.conf;

    location ~ ^/_mandaye/static/(.+)$ {
          root /;
          try_files /var/lib/mandayejs/tenants/$host/static/$1
                    /var/lib/mandayejs/collectstatic/$1
                    =404;
    }

    location /_mandaye/ {
          proxy_pass  http://unix:/run/mandayejs/mandayejs.sock;
          proxy_set_header   Host $http_host;
          proxy_set_header   X-Real-IP       $remote_addr;
          proxy_set_header   X-Forwarded-For $proxy_add_x_forwarded_for;
          proxy_set_header   X-Forwarded-Host $server_name;
    }

    location / {
        sub_filter </head> '<script type="text/javascript" src="/_mandaye/static/mandaye.js"></script></head>';
        sub_filter_once off;
	    proxy_ssl_server_name on;
        proxy_pass http://example.fr;
    }

    access_log /var/log/nginx/example.com-access.log combined;
    error_log /var/log/nginx/example.com-errors.log debug;
}


Settings.json
-------------
    # Secret Key used for the encryption/decryption
    # Must be 16, 32 or 64 bytes long
    SECRET_KEY = 'whatever you want but keep it secret'

    # AppSettings module
    SITE_APP = 'mandayejs.applications.Example'

    # Authentication method for service in a multitenant environment
    HOBO_ANONYMOUS_SERVICE_USER_CLASS = 'hobo.rest_authentication.AnonymousAdminServiceUser'


App Settings
------------
    # AppSettings are defined in mandayejs/applications.py
    #

    class Example(AppSettings):
        SITE_LOGIN_PATH = '/'
        SITE_LOCATORS = [
            {
                'id': '#username',
                'label': 'Username',
                'name': 'username',
                'kind': 'string',
                'required': True,
                'help': '',
            },
            {
                'id': '#birth_date',
                'label': 'Birth date',
                'name': 'birth_date',
                'kind': 'date',
                'required': True,
                'help': 'exemple 16/06/2008'
            },
            {
                'id': '#password',
                'label': 'Password',
                'name': 'password',
                'kind': 'password',
                'required': True,
                'help': ''
            },
        ]

        # List of javascript scripts running on every pages
        # they're loaded in panel.html
        SITE_APP_SCRIPTS = [
            'myapp/js/example.com.js',
        ]

        # JS Script asserting authentication through phantomjs
        # The authentication assertion function must be into
        # a var such as :
        #
        # $(function(){
        #   window.auth_success = function(){
        #       // your code
        #   }
        # });
        SITE_AUTH_CHECKER = 'myapp/js/auth.checker.js'

        # List of cookies to delete when dissociating an account
        SITE_AUTH_COOKIE_KEYS = [
            'UserSessionId',
        ]

        # URL on which the authentication is forced
        # if user is connected and already associated
        SITE_FORCE_REDIRECT_URL = '/login.php'

        # LOCATOR on which the authentication is forced
        # if user is connected and already associated
        SITE_FORCE_REDIRECT_LOCATOR = '#logon-form'


        # Locator used to catch the local application
        # logout process in order to launch a SLO
        SITE_LOGOUT_LOCATOR = '#account_logout'

        # Application's webservices
        SITE_WEB_SERVICES = {
            'products': '/products/id',
        }

        # If you class inherits from another and
        # a SITE_LOGIN_PATH need to be set
        SITE_LOGIN_PATH_PREFIX = '/wonderland/'


About Statics
-------------
    #Panel
        * The logo file must be named *logo.png* and located in tenants/<my_tenant>/static/images/logo.png
        * css related to the panel, must be name *mandaye.css* and located in tenants/<my_tenant>/static/css/mandaye.css

    #Association
        * css, js and image (logo) related to the association page must be named respectively *associate.css* and *associate.js* and located in tenants/<my_tenant>/static/{css.js,images}/associate.{css,js,png}


N.B:
---
    statics files found in mandayejs/sites/<app_name>/static/<client_name>/<client_app> are there for versioning purpose only. They should placed (if needed) in *tenants/<tenant_name>/static*


API
---

* GET /_mandaye/api/ :
    response :
        status_code : 200
        data :
            {
                "login": "",
                "password": ""
            }

* POST /_mandaye/api :
    data : {
        "name_id_content": "12345",
        "email": "kevin@fake.com",
        "first_name": "kevin",
        "last_name": "fake",
        "locators": {
            "login": "fake",
            "password": "fake"
        }
    }

    response :
        status_code :
            - success : 200
            - failure : 401/403

* DELETE /_mandaye/api :
    data : {
        "name_id_content": "12345"
    }
    response :
        status_code :
            - success : 200
            - failure : 403/404
add README file with sample apache configuration 2015-03-22 20:51:29 +01:00			`MandayeJS`
			`=========`


			`Apache Configuration`
			`--------------------`

			`<VirtualHost _default_:443>`
			`ServerAdmin webmaster@localhost`
			`ServerName dev.entrouvert.org.127.0.0.1.xip.io`
			`DocumentRoot /var/www/`
			`SSLEngine On`
			`SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem`
			`SSLCertificateKeyFile /etc/ssl/private/ssl-cert-snakeoil.key`

			`CustomLog /var/log/apache2/mandayejs-access.log combined`
			`ErrorLog /var/log/apache2/mandayejs-error.log`

			`SSLProxyEngine on`
			`ProxyPreserveHost On`
			`SSLProxyVerify none`
			`SSLProxyCheckPeerCN off`
			`SSLProxyCheckPeerName off`

			`ProxyPass /_mandaye/ http://localhost:8000/_mandaye/`
			`ProxyPassReverse /_mandaye/ http://localhost:8000/_mandaye/`

			`RequestHeader unset Accept-Encoding`
			`ProxyPass /_mandaye !`
			`ProxyPass / https://dev.entrouvert.org/`
			`ProxyPassReverse / https://dev.entrouvert.org/`

			`ExtFilterDefine fixtext mode=output intype=text/html \`
			`cmd="/bin/sed -e '\$a<script type=\"text/javascript\" src=\"/_mandaye/static/mandaye.js\"></script>'"`

			`<Location />`
			`SetOutputFilter fixtext`
			`</Location>`
			`<Location /_mandaye>`
			`SetOutputFilter None`
			`</Location>`

			`</VirtualHost>`
README updated 2015-12-04 11:15:44 +01:00
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`Nginx Settings`
			`--------------`
			`server {`
update readme 2016-02-02 17:28:02 +01:00			`listen 443;`
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`server_name example.com ;`

update readme 2016-02-02 17:28:02 +01:00			`ssl on;`
			`include includes/ssl.conf;`
			`include includes/example.com.conf;`

set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`location ~ ^/_mandaye/static/(.+)$ {`
			`root /;`
			`try_files /var/lib/mandayejs/tenants/$host/static/$1`
			`/var/lib/mandayejs/collectstatic/$1`
			`=404;`
			`}`

			`location /_mandaye/ {`
			`proxy_pass http://unix:/run/mandayejs/mandayejs.sock;`
			`proxy_set_header Host $http_host;`
			`proxy_set_header X-Real-IP $remote_addr;`
			`proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;`
			`proxy_set_header X-Forwarded-Host $server_name;`
update readme 2016-02-02 17:28:02 +01:00			`}`
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00
			`location / {`
update readme 2016-02-02 17:28:02 +01:00			`sub_filter </head> '<script type="text/javascript" src="/_mandaye/static/mandaye.js"></script></head>';`
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`sub_filter_once off;`
update readme 2016-02-02 17:28:02 +01:00			`proxy_ssl_server_name on;`
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`proxy_pass http://example.fr;`
			`}`

			`access_log /var/log/nginx/example.com-access.log combined;`
			`error_log /var/log/nginx/example.com-errors.log debug;`
			`}`
README updated 2015-12-04 11:15:44 +01:00
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00
			`Settings.json`
			`-------------`
encrypt user credentials (#9534) 2016-01-11 12:58:42 +01:00			`# Secret Key used for the encryption/decryption`
			`# Must be 16, 32 or 64 bytes long`
			`SECRET_KEY = 'whatever you want but keep it secret'`
update readme 2016-02-02 17:28:02 +01:00
			`# AppSettings module`
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`SITE_APP = 'mandayejs.applications.Example'`
handle association failure (#9415) 2015-12-24 10:48:54 +01:00
update readme 2016-02-02 17:28:02 +01:00			`# Authentication method for service in a multitenant environment`
			`HOBO_ANONYMOUS_SERVICE_USER_CLASS = 'hobo.rest_authentication.AnonymousAdminServiceUser'`


set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`App Settings`
			`------------`
			`# AppSettings are defined in mandayejs/applications.py`
update readme 2016-02-02 17:28:02 +01:00			`#`

set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`class Example(AppSettings):`
			`SITE_LOGIN_PATH = '/'`
			`SITE_LOCATORS = [`
			`{`
update readme 2016-02-02 17:28:02 +01:00			`'id': '#username',`
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`'label': 'Username',`
			`'name': 'username',`
			`'kind': 'string',`
			`'required': True,`
			`'help': '',`
			`},`
			`{`
			`'id': '#birth_date',`
			`'label': 'Birth date',`
			`'name': 'birth_date',`
			`'kind': 'date',`
			`'required': True,`
			`'help': 'exemple 16/06/2008'`
			`},`
			`{`
			`'id': '#password',`
			`'label': 'Password',`
			`'name': 'password',`
			`'kind': 'password',`
			`'required': True,`
			`'help': ''`
			`},`
			`]`

update readme 2016-02-02 17:28:02 +01:00			`# List of javascript scripts running on every pages`
delete every single client settings (#9615) 2016-01-18 00:19:13 +01:00			`# they're loaded in panel.html`
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`SITE_APP_SCRIPTS = [`
			`'myapp/js/example.com.js',`
			`]`

			`# JS Script asserting authentication through phantomjs`
update readme 2016-02-02 17:28:02 +01:00			`# The authentication assertion function must be into`
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`# a var such as :`
			`#`
update readme 2016-02-02 17:28:02 +01:00			`# $(function(){`
one generic force.redirect.js (#9692) 2016-01-19 19:21:47 +01:00			`# window.auth_success = function(){`
update readme 2016-02-02 17:28:02 +01:00			`# // your code`
one generic force.redirect.js (#9692) 2016-01-19 19:21:47 +01:00			`# }`
update readme 2016-02-02 17:28:02 +01:00			`# });`
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`SITE_AUTH_CHECKER = 'myapp/js/auth.checker.js'`

delete every single client settings (#9615) 2016-01-18 00:19:13 +01:00			`# List of cookies to delete when dissociating an account`
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00			`SITE_AUTH_COOKIE_KEYS = [`
			`'UserSessionId',`
			`]`

update readme 2016-02-02 17:28:02 +01:00			`# URL on which the authentication is forced`
force redirect when user logged and associated (#9669) 2016-01-15 17:18:37 +01:00			`# if user is connected and already associated`
			`SITE_FORCE_REDIRECT_URL = '/login.php'`
set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00
update readme 2016-02-02 17:28:02 +01:00			`# LOCATOR on which the authentication is forced`
one generic force.redirect.js (#9692) 2016-01-19 19:21:47 +01:00			`# if user is connected and already associated`
			`SITE_FORCE_REDIRECT_LOCATOR = '#logon-form'`

misc : update readme and MANIFEST.in 2016-02-09 17:51:27 +01:00
			`# Locator used to catch the local application`
			`# logout process in order to launch a SLO`
			`SITE_LOGOUT_LOCATOR = '#account_logout'`

archimed user account webservice (#9517) 2016-01-20 16:24:08 +01:00			`# Application's webservices`
			`SITE_WEB_SERVICES = {`
			`'products': '/products/id',`
			`}`

handle login path prefix (#9885) 2016-02-09 17:02:27 +01:00			`# If you class inherits from another and`
			`# a SITE_LOGIN_PATH need to be set`
			`SITE_LOGIN_PATH_PREFIX = '/wonderland/'`

set up duonet app settings (#9615) 2016-01-12 18:14:22 +01:00
			`About Statics`
			`-------------`
delete every single client settings (#9615) 2016-01-18 00:19:13 +01:00			`#Panel`
			`* The logo file must be named logo.png and located in tenants/<my_tenant>/static/images/logo.png`
			`* css related to the panel, must be name mandaye.css and located in tenants/<my_tenant>/static/css/mandaye.css`

			`#Association`
add default div for logo (#9953) 2016-02-12 16:21:49 +01:00			`* css, js and image (logo) related to the association page must be named respectively associate.css and associate.js and located in tenants/<my_tenant>/static/{css.js,images}/associate.{css,js,png}`
delete every single client settings (#9615) 2016-01-18 00:19:13 +01:00

			`N.B:`
			`---`
			`statics files found in mandayejs/sites/<app_name>/static/<client_name>/<client_app> are there for versioning purpose only. They should placed (if needed) in tenants/<tenant_name>/static`
mandayejs api (#9782) 2016-01-29 15:50:43 +01:00

			`API`
			`---`

			`* GET /_mandaye/api/ :`
			`response :`
			`status_code : 200`
update readme 2016-02-02 17:28:02 +01:00			`data :`
mandayejs api (#9782) 2016-01-29 15:50:43 +01:00			`{`
			`"login": "",`
			`"password": ""`
			`}`

			`* POST /_mandaye/api :`
			`data : {`
			`"name_id_content": "12345",`
			`"email": "kevin@fake.com",`
			`"first_name": "kevin",`
			`"last_name": "fake",`
			`"locators": {`
			`"login": "fake",`
			`"password": "fake"`
			`}`
			`}`

update readme 2016-02-02 17:28:02 +01:00			`response :`
			`status_code :`
mandayejs api (#9782) 2016-01-29 15:50:43 +01:00			`- success : 200`
update readme 2016-02-02 17:28:02 +01:00			`- failure : 401/403`
mandayejs api (#9782) 2016-01-29 15:50:43 +01:00
update readme 2016-02-02 17:28:02 +01:00			`* DELETE /_mandaye/api :`
mandayejs api (#9782) 2016-01-29 15:50:43 +01:00			`data : {`
			`"name_id_content": "12345"`
			`}`
			`response :`
			`status_code :`
			`- success : 200`
update readme 2016-02-02 17:28:02 +01:00			`- failure : 403/404`