Compare commits

..

10 commits

Author SHA1 Message Date
f7a7c4a375 edit docker compose config
Some checks failed
CI / build (3.10) (push) Has been cancelled
CI / build (3.8) (push) Has been cancelled
CI / build (3.9) (push) Has been cancelled
CodeQL / Analyze (push) Has been cancelled
2024-09-15 17:01:50 +02:00
Devin Lundberg
86e7e2e220
[Snyk] Security upgrade cryptography from 43.0.0 to 43.0.1 (#391)
fix: requirements.txt to reduce vulnerabilities


The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-7886970

Co-authored-by: snyk-bot <snyk-bot@snyk.io>
2024-09-11 10:51:49 -07:00
Viktor Haid
c13e80bf2a
fix i18n (#375)
* fix i18n

* Ignore linter error regarding _
2024-09-11 10:51:17 -07:00
dependabot[bot]
5745dd40f1
Bump fakeredis from 2.23.4 to 2.24.1 (#390)
Bumps [fakeredis](https://github.com/cunla/fakeredis-py) from 2.23.4 to 2.24.1.
- [Release notes](https://github.com/cunla/fakeredis-py/releases)
- [Commits](https://github.com/cunla/fakeredis-py/compare/v2.23.4...v2.24.1)

---
updated-dependencies:
- dependency-name: fakeredis
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-27 10:29:15 -07:00
dependabot[bot]
f3af080237
Bump tox from 4.17.0 to 4.18.0 (#388)
Bumps [tox](https://github.com/tox-dev/tox) from 4.17.0 to 4.18.0.
- [Release notes](https://github.com/tox-dev/tox/releases)
- [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst)
- [Commits](https://github.com/tox-dev/tox/compare/4.17.0...4.18.0)

---
updated-dependencies:
- dependency-name: tox
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-27 10:28:58 -07:00
dependabot[bot]
ce7994e95c
Bump tox from 4.16.0 to 4.17.0 (#386)
Bumps [tox](https://github.com/tox-dev/tox) from 4.16.0 to 4.17.0.
- [Release notes](https://github.com/tox-dev/tox/releases)
- [Changelog](https://github.com/tox-dev/tox/blob/main/docs/changelog.rst)
- [Commits](https://github.com/tox-dev/tox/compare/4.16.0...4.17.0)

---
updated-dependencies:
- dependency-name: tox
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-06 13:09:33 -07:00
dependabot[bot]
eea66f49e7
Bump wheel from 0.43.0 to 0.44.0 (#384)
Bumps [wheel](https://github.com/pypa/wheel) from 0.43.0 to 0.44.0.
- [Release notes](https://github.com/pypa/wheel/releases)
- [Changelog](https://github.com/pypa/wheel/blob/main/docs/news.rst)
- [Commits](https://github.com/pypa/wheel/compare/0.43.0...0.44.0)

---
updated-dependencies:
- dependency-name: wheel
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-05 12:36:15 -07:00
dependabot[bot]
63f7d8f18d
Bump flake8 from 7.0.0 to 7.1.1 (#383)
Bumps [flake8](https://github.com/pycqa/flake8) from 7.0.0 to 7.1.1.
- [Commits](https://github.com/pycqa/flake8/compare/7.0.0...7.1.1)

---
updated-dependencies:
- dependency-name: flake8
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-05 12:35:54 -07:00
dependabot[bot]
7af9712941
Bump pytest from 8.1.0 to 8.3.2 (#385)
Bumps [pytest](https://github.com/pytest-dev/pytest) from 8.1.0 to 8.3.2.
- [Release notes](https://github.com/pytest-dev/pytest/releases)
- [Changelog](https://github.com/pytest-dev/pytest/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pytest-dev/pytest/compare/8.1.0...8.3.2)

---
updated-dependencies:
- dependency-name: pytest
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-05 00:46:33 -07:00
dependabot[bot]
6370c0439d
Bump cryptography from 42.0.8 to 43.0.0 (#382)
Bumps [cryptography](https://github.com/pyca/cryptography) from 42.0.8 to 43.0.0.
- [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst)
- [Commits](https://github.com/pyca/cryptography/compare/42.0.8...43.0.0)

---
updated-dependencies:
- dependency-name: cryptography
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-05 00:45:48 -07:00
6 changed files with 52 additions and 21 deletions

View file

@ -11,10 +11,13 @@ WORKDIR $APP_DIR
COPY ["setup.py", "requirements.txt", "MANIFEST.in", "README.rst", "AUTHORS.rst", "$APP_DIR/"]
COPY ["./snappass", "$APP_DIR/snappass"]
RUN pip install -r requirements.txt
RUN pybabel compile -d snappass/translations
RUN python setup.py install && \
chown -R snappass $APP_DIR && \
chgrp -R snappass $APP_DIR
RUN pip install -r requirements.txt
USER snappass

View file

@ -1,3 +1,4 @@
include *.rst LICENSE
recursive-include snappass/static *
recursive-include snappass/templates *
recursive-include snappass/translations *

View file

@ -1,9 +1,9 @@
coverage==7.6.0
fakeredis==2.23.4
flake8==7.0.0
fakeredis==2.24.1
flake8==7.1.1
freezegun==1.5.1
pytest==8.1.0
pytest==8.3.2
pytest-cov==5.0.0
tox==4.16.0
tox==4.18.0
bumpversion==0.6.0
wheel==0.43.0
wheel==0.44.0

View file

@ -4,15 +4,41 @@ services:
snappass:
build: .
image: pinterest/snappass
ports:
- "5000:5000"
#image: pinterest/snappass
#ports:
# - "5000:5000"
stop_signal: SIGINT
environment:
- REDIS_HOST=redis
- NO_SSL=True
- VIRTUAL_HOST=share.brothertec.eu
- VIRTUAL_PORT=5000
- LETSENCRYPT_HOST=share.brothertec.eu
- LETSENCRYPT_EMAIL=admin@brothertec.eu
restart: unless-stopped
labels:
- "com.centurylinklabs.watchtower.enable=false"
networks:
- default
- proxy
- edge-tier
depends_on:
- redis
redis:
image: "redis:latest"
restart: unless-stopped
labels:
- "com.centurylinklabs.watchtower.enable=true"
networks:
proxy:
name: nginx-proxy
external: true
edge-tier:
name: edge
external: true

View file

@ -1,4 +1,4 @@
cryptography==42.0.8
cryptography==43.0.1
Flask==3.0.0
itsdangerous==2.2.0
Jinja2==3.1.4

View file

@ -11,7 +11,8 @@ from urllib.parse import quote_plus
from urllib.parse import unquote_plus
from urllib.parse import urljoin
from distutils.util import strtobool
from flask_babel import Babel
# _ is required to get the Jinja templates translated
from flask_babel import Babel, _ # noqa: F401
NO_SSL = bool(strtobool(os.environ.get('NO_SSL', 'False')))
URL_PREFIX = os.environ.get('URL_PREFIX', None)