mirror of
https://github.com/empayre/fleet.git
synced 2024-11-06 08:55:24 +00:00
4fd1efe98a
This pull request relies on the `mdm-gen-cert` command from https://github.com/fleetdm/fleet/pull/8884. Closes: https://github.com/fleetdm/fleet/issues/8223 Changes: - Updated the deploy Fleet website workflow to: - Add Go as a dependency - Build the mdm-gen-cert binary in `/website/.tools/` - add the `/.tools/` folder to the Heroku app - Added `deliver-apple-csr.js` - an API that: - can be called by making a `POST` request to `/api/v1/deliver-apple-csr` - accepts `csr` as an input - runs the `mdm-gen-cert` command with the `csr` set as an environment variable - returns an `invalidEmailDomain` response if the user's email domain is in the array of banned email domains. - saves the users organization and email address to the website's database - Sends an email to the requesting user's email address with the signed CSR attached as a text file named `apple-apns-request.txt` - Posts a message to a channel in the Fleet Slack. - Added a new model: `CertificateSigningRequests` that contains two required attributes: `emailAddress` and `organization` - Added a new email template `email-signed-csr-for-apns` - Updated routes, policies, eslintrc, and rebuilt cloud-sdk Before this can be merged, we will need to: - [x] Add new config variables in Heroku - [x] `sails.config.custom.mdmVendorCertPem` - [x] `sails.config.custom.mdmVendorKeyPem` - [x] `sails.config.custom.mdmVendorKeyPassphrase` - [x] `sails.config.custom.slackWebhookUrlForMDMSignups` - [x] Add the `CertificateSigningRequests` model to the website's database
70 lines
2.9 KiB
Plaintext
Vendored
70 lines
2.9 KiB
Plaintext
Vendored
{
|
|
// ╔═╗╔═╗╦ ╦╔╗╔╔╦╗┬─┐┌─┐ ┌─┐┬ ┬┌─┐┬─┐┬─┐┬┌┬┐┌─┐
|
|
// ║╣ ╚═╗║ ║║║║ ║ ├┬┘│ │ │└┐┌┘├┤ ├┬┘├┬┘│ ││├┤
|
|
// o╚═╝╚═╝╩═╝╩╝╚╝ ╩ ┴└─└─┘ └─┘ └┘ └─┘┴└─┴└─┴─┴┘└─┘
|
|
// ┌─ ┌─┐┌─┐┬─┐ ┌┐ ┬─┐┌─┐┬ ┬┌─┐┌─┐┬─┐ ┬┌─┐ ┌─┐┌─┐┌─┐┌─┐┌┬┐┌─┐ ─┐
|
|
// │ ├┤ │ │├┬┘ ├┴┐├┬┘│ ││││└─┐├┤ ├┬┘ │└─┐ ├─┤└─┐└─┐├┤ │ └─┐ │
|
|
// └─ └ └─┘┴└─ └─┘┴└─└─┘└┴┘└─┘└─┘┴└─ └┘└─┘ ┴ ┴└─┘└─┘└─┘ ┴ └─┘ ─┘
|
|
// > An .eslintrc configuration override for use in the `assets/` directory.
|
|
//
|
|
// This extends the top-level .eslintrc file, primarily to change the set of
|
|
// supported globals, as well as any other relevant settings. (Since JavaScript
|
|
// code in the `assets/` folder is intended for the browser habitat, a different
|
|
// set of globals is supported. For example, instead of Node.js/Sails globals
|
|
// like `sails` and `process`, you have access to browser globals like `window`.)
|
|
//
|
|
// (See .eslintrc in the root directory of this Sails app for more context.)
|
|
// - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
|
|
|
|
"extends": [
|
|
"../.eslintrc"
|
|
],
|
|
|
|
"env": {
|
|
"browser": true,
|
|
"node": false
|
|
},
|
|
|
|
"parserOptions": {
|
|
"ecmaVersion": 8
|
|
//^ If you are not using a transpiler like Babel, change this to `5`.
|
|
},
|
|
|
|
"globals": {
|
|
|
|
// Allow any window globals you're relying on here; e.g.
|
|
// - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
|
|
"SAILS_LOCALS": true,
|
|
"io": true,
|
|
"Cloud": true,
|
|
"parasails": true,
|
|
"$": true,
|
|
"_": true,
|
|
"bowser": true,
|
|
"StripeCheckout": true,
|
|
"Stripe": true,
|
|
"Vue": true,
|
|
"VueRouter": true,
|
|
"moment": true,
|
|
"docsearch": true,
|
|
"Chart": true,
|
|
// "google": true,
|
|
// ...etc.
|
|
// - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
|
|
|
|
// Make sure backend globals aren't indadvertently tolerated in our client-side JS:
|
|
// - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
|
|
"sails": false,
|
|
"User": false,
|
|
"HistoricalUsageSnapshot": false,
|
|
"Quote": false,
|
|
"Subscription": false,
|
|
"NewsletterSubscription": false,
|
|
"VantaConnection": false,
|
|
"CertificateSigningRequest": false,
|
|
// ...and any other backend globals (e.g. `"Organization": false`)
|
|
// - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
|
|
}
|
|
|
|
}
|