edit docker compose config

[Snyk] Security upgrade cryptography from 43.0.0 to 43.0.1 (#391 )
fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-7886970 Co-authored-by: snyk-bot <snyk-bot@snyk.io>
2024-09-15 17:01:50 +02:00 · 2024-09-11 10:51:49 -07:00 · 2024-09-11 10:51:17 -07:00 · 2024-08-27 10:29:15 -07:00 · 2024-08-27 10:28:58 -07:00 · 2024-08-06 13:09:33 -07:00
6 changed files with 52 additions and 21 deletions
--- a/5
+++ b/5
@ -11,10 +11,13 @@ WORKDIR $APP_DIR
 COPY ["setup.py", "requirements.txt", "MANIFEST.in", "README.rst", "AUTHORS.rst", "$APP_DIR/"]
 COPY ["./snappass", "$APP_DIR/snappass"]

+RUN pip install -r requirements.txt
+
+RUN pybabel compile -d snappass/translations
+
 RUN python setup.py install && \
    chown -R snappass $APP_DIR && \
    chgrp -R snappass $APP_DIR
-RUN pip install -r requirements.txt

 USER snappass

--- a/MANIFEST.in
+++ b/MANIFEST.in
@ -1,3 +1,4 @@
 include *.rst LICENSE
 recursive-include snappass/static *
 recursive-include snappass/templates *
+recursive-include snappass/translations *
--- a/dev-requirements.txt
+++ b/dev-requirements.txt
@ -1,9 +1,9 @@
 coverage==7.6.0
-fakeredis==2.23.4
-flake8==7.0.0
+fakeredis==2.24.1
+flake8==7.1.1
 freezegun==1.5.1
-pytest==8.1.0
+pytest==8.3.2
 pytest-cov==5.0.0
-tox==4.16.0
+tox==4.18.0
 bumpversion==0.6.0
-wheel==0.43.0
+wheel==0.44.0
--- a/docker-compose.yml
+++ b/docker-compose.yml
@ -4,15 +4,41 @@ services:

  snappass:
    build: .
-        image: pinterest/snappass
-        ports:
-            - "5000:5000"
+    #image: pinterest/snappass
+    #ports:
+    #   - "5000:5000"
    stop_signal: SIGINT
    environment:
      - REDIS_HOST=redis
      - NO_SSL=True
+      - VIRTUAL_HOST=share.brothertec.eu
+      - VIRTUAL_PORT=5000
+      - LETSENCRYPT_HOST=share.brothertec.eu
+      - LETSENCRYPT_EMAIL=admin@brothertec.eu
+
+    restart: unless-stopped
+    labels:
+      - "com.centurylinklabs.watchtower.enable=false"
+
+    networks:
+      - default
+      - proxy
+      - edge-tier
+
    depends_on:
      - redis

  redis:
    image: "redis:latest"
+    restart: unless-stopped
+    labels:
+      - "com.centurylinklabs.watchtower.enable=true"
+
+
+networks:
+  proxy:
+    name: nginx-proxy
+    external: true
+  edge-tier:
+    name: edge
+    external: true
--- a/requirements.txt
+++ b/requirements.txt
@ -1,4 +1,4 @@
-cryptography==42.0.8
+cryptography==43.0.1
 Flask==3.0.0
 itsdangerous==2.2.0
 Jinja2==3.1.4
--- a/snappass/main.py
+++ b/snappass/main.py
@ -11,7 +11,8 @@ from urllib.parse import quote_plus
 from urllib.parse import unquote_plus
 from urllib.parse import urljoin
 from distutils.util import strtobool
-from flask_babel import Babel
+# _ is required to get the Jinja templates translated
+from flask_babel import Babel, _  # noqa: F401

 NO_SSL = bool(strtobool(os.environ.get('NO_SSL', 'False')))
 URL_PREFIX = os.environ.get('URL_PREFIX', None)
Author	SHA1	Message	Date
Simon Rieger	f7a7c4a375	edit docker compose config Some checks failed CI / build (3.10) (push) Has been cancelled Details CI / build (3.8) (push) Has been cancelled Details CI / build (3.9) (push) Has been cancelled Details CodeQL / Analyze (push) Has been cancelled Details	2024-09-15 17:01:50 +02:00
Devin Lundberg	86e7e2e220	[Snyk] Security upgrade cryptography from 43.0.0 to 43.0.1 (#391 ) fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-7886970 Co-authored-by: snyk-bot <snyk-bot@snyk.io>	2024-09-11 10:51:49 -07:00
Viktor Haid	c13e80bf2a	fix i18n (#375 ) * fix i18n * Ignore linter error regarding _	2024-09-11 10:51:17 -07:00
dependabot[bot]	5745dd40f1	Bump fakeredis from 2.23.4 to 2.24.1 (#390 ) Bumps [fakeredis](https://github.com/cunla/fakeredis-py) from 2.23.4 to 2.24.1. - [Release notes](https://github.com/cunla/fakeredis-py/releases) - [Commits](https://github.com/cunla/fakeredis-py/compare/v2.23.4...v2.24.1) --- updated-dependencies: - dependency-name: fakeredis dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-27 10:29:15 -07:00
dependabot[bot]	f3af080237	Bump tox from 4.17.0 to 4.18.0 (#388 ) Bumps [tox](https://github.com/tox-dev/tox) from 4.17.0 to 4.18.0. - [Release notes](https://github.com/tox-dev/tox/releases) - [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst) - [Commits](https://github.com/tox-dev/tox/compare/4.17.0...4.18.0) --- updated-dependencies: - dependency-name: tox dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-27 10:28:58 -07:00
dependabot[bot]	ce7994e95c	Bump tox from 4.16.0 to 4.17.0 (#386 ) Bumps [tox](https://github.com/tox-dev/tox) from 4.16.0 to 4.17.0. - [Release notes](https://github.com/tox-dev/tox/releases) - [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst) - [Commits](https://github.com/tox-dev/tox/compare/4.16.0...4.17.0) --- updated-dependencies: - dependency-name: tox dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-06 13:09:33 -07:00
dependabot[bot]	eea66f49e7	Bump wheel from 0.43.0 to 0.44.0 (#384 ) Bumps [wheel](https://github.com/pypa/wheel) from 0.43.0 to 0.44.0. - [Release notes](https://github.com/pypa/wheel/releases) - [Changelog](https://github.com/pypa/wheel/blob/main/docs/news.rst) - [Commits](https://github.com/pypa/wheel/compare/0.43.0...0.44.0) --- updated-dependencies: - dependency-name: wheel dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:36:15 -07:00
dependabot[bot]	63f7d8f18d	Bump flake8 from 7.0.0 to 7.1.1 (#383 ) Bumps [flake8](https://github.com/pycqa/flake8) from 7.0.0 to 7.1.1. - [Commits](https://github.com/pycqa/flake8/compare/7.0.0...7.1.1) --- updated-dependencies: - dependency-name: flake8 dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 12:35:54 -07:00
dependabot[bot]	7af9712941	Bump pytest from 8.1.0 to 8.3.2 (#385 ) Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.1.0 to 8.3.2. - [Release notes](https://github.com/pytest-dev/pytest/releases) - [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pytest-dev/pytest/compare/8.1.0...8.3.2) --- updated-dependencies: - dependency-name: pytest dependency-type: direct:development update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 00:46:33 -07:00
dependabot[bot]	6370c0439d	Bump cryptography from 42.0.8 to 43.0.0 (#382 ) Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.8 to 43.0.0. - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/42.0.8...43.0.0) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2024-08-05 00:45:48 -07:00