darkhelm/notifications-admin
1
0
Fork 0
mirror of https://github.com/GSA/notifications-admin.git synced 2026-02-24 12:21:22 -05:00
Code Issues Packages Projects Releases Wiki Activity
4,338 Commits 49 Branches 59 Tags
c9b2211bd349e24b64c095bfc781cd0028fdf724
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Chris Hill-Scott c9b2211bd3 Let users download a CSV of inbound messages 
In user research, we’ve seen users copy/pasting the contents of the
inbound SMS page into a spreadsheet, in order to keep a record of the
messages they receive. They even went as far as to write a macro which
fixed the errors caused by copying and pasting.

It would be much easier if we just gave them the data already in a
spreadsheet format. Which is what this commit does.

One caveat is that, because spreadsheets can contain executable code (ie
formulas), and because we’re populating the spreadsheet with
user-submitted data (albeit via SMS) we need to be careful about
injection attacks.

The details of how these attacks work are detailed here (interesting
reading): http://georgemauer.net/2017/10/07/csv-injection.html

The mitigation is to not allow characters which initialise a formula
at the start of the cell.
2017-10-18 10:27:37 +01:00
app
Let users download a CSV of inbound messages
2017-10-18 10:27:37 +01:00
docker
paas-failwhale
scripts
Configure gunicorn errorlog
2017-09-22 15:41:41 +01:00
tests
Let users download a CSV of inbound messages
2017-10-18 10:27:37 +01:00
.babelrc
.cfignore
.coveralls.yml
.gitignore
Remove package-lock.json
2017-09-27 12:15:33 +01:00
.npmrc
Remove package-lock.json
2017-09-27 12:15:33 +01:00
.sass-lint.yml
app.py
Rename imports to get rid of deprecation warnings
2017-07-27 15:17:17 +01:00
appspec.yml
deploy-exclude.lst
environment_test.sh
gulpfile.babel.js
Prevent doubling clicking form submissions
2017-09-15 14:29:56 +01:00
gunicorn_config.py
Change .info to .error
2017-09-25 16:24:11 +01:00
LICENSE
Makefile
Revert d06a72 and 6b9b1be but keep the wheel-removal changes
2017-07-21 11:21:17 +01:00
manifest-base.yml
Configure gunicorn errorlog
2017-09-22 15:41:41 +01:00
manifest-preview.yml
Drop admin-paas.* route
2017-10-12 14:52:22 +01:00
manifest-production.yml
Drop admin-paas.* route
2017-10-12 14:52:22 +01:00
manifest-prototype-base.yml
Add config to deploy a prototype version of admin
2017-05-08 16:54:44 +01:00
manifest-prototype-preview.yml
Add config to deploy a prototype version of admin
2017-05-08 16:54:44 +01:00
manifest-prototype-production.yml
Add config to deploy a prototype version of admin
2017-05-08 16:54:44 +01:00
manifest-prototype-staging.yml
Add config to deploy a prototype version of admin
2017-05-08 16:54:44 +01:00
manifest-sandbox.yml
manifest-staging.yml
Drop admin-paas.* route
2017-10-12 14:52:22 +01:00
package.json
Update versions of GOV.UK packages
2017-09-25 15:20:35 +01:00
README.md
requirements_for_test.txt
Update pytest-xdist from 1.20.0 to 1.20.1
2017-10-05 21:34:58 +01:00
requirements.txt
log json to stdout
2017-10-17 14:23:15 +01:00
runtime.txt
Updated runtime python version
2017-10-03 10:57:07 +01:00
setup.cfg
wsgi.py
remove credstash
2017-07-27 12:43:08 +01:00

README.md

Requirements Status Coverage Status

notifications-admin

GOV.UK Notify admin application.

Features of this application

  • Register and manage users
  • Create and manage services
  • Send batch emails and SMS by uploading a CSV
  • Show history of notifications

First-time setup

Brew is a package manager for OSX. The following command installs brew:

    /usr/bin/ruby -e "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install)"

Languages needed

  • Python 3.4
  • Node 5.0.0 or greater
  • npm 3.0.0 or greater
    brew install node

NPM is Node's package management tool. n is a tool for managing different versions of Node. The following installs n and uses the latest version of Node.

    npm install -g n
    n latest
    npm rebuild node-sass

The app runs within a virtual environment. We use mkvirtualenv for easier working with venvs

    pip install virtualenvwrapper
    mkvirtualenv -p /usr/local/bin/python3 notifications-admin

Install dependencies and build the frontend assets:

    workon notifications-admin
    ./scripts/bootstrap.sh

Rebuilding the frontend assets

If you want the front end assets to re-compile on changes, leave this running in a separate terminal from the app

    npm run watch

Create a local environment.sh file containing the following:

echo "
export NOTIFY_ENVIRONMENT='development'
export ADMIN_CLIENT_SECRET='notify-secret-key'
export API_HOST_NAME='http://localhost:6011'
export DANGEROUS_SALT='dev-notify-salt'
export SECRET_KEY='notify-secret-key'
export DESKPRO_API_HOST="some-host"
export DESKPRO_API_KEY="some-key"
"> environment.sh

AWS credentials

Your aws credentials should be stored in a folder located at ~/.aws. Follow Amazon's instructions for storing them correctly

Running the application

    workon notifications-admin
    ./scripts/run_app.sh

Then visit localhost:6012

Reference in New Issue View Git Blame Copy Permalink
Description
The UI of Notify.gov
Readme 552 MiB
Languages
Python 69.3%
HTML 16.6%
JavaScript 11.1%
SCSS 0.9%
Nunjucks 0.7%
Other 1.4%