removed redundant requirement, updated security docs, added dockerfile

ansibleguy · Jan 27, 2024 · ecdc63a · ecdc63a
1 parent f2b9679
commit ecdc63a
Show file tree

Hide file tree

Showing 4 changed files with 22 additions and 8 deletions.
diff --git a/Dockerfile b/Dockerfile
@@ -0,0 +1,15 @@
+FROM python:3.10-alpine
+
+ARG AW_VERSION="0.0.5"
+
+# BUILD CMD: docker build -t ansible-webui:0.0.4-dev --build-arg "AW_VERSION=0.0.4" .
+
+# /ansible-webui can be used to mount an existing playbook-directory/-repo
+RUN pip install --no-cache-dir --upgrade pip 2>/dev/null && \
+    pip install --no-cache-dir ansible-webui==${AW_VERSION} && \
+    mkdir -p /ansible-webui
+
+WORKDIR /ansible-webui
+EXPOSE 8000
+
+CMD ["python3", "-m", "ansible-webui"]
diff --git a/docs/source/usage/security.rst b/docs/source/usage/security.rst
@@ -37,10 +37,11 @@ Security considerations this project does take into account:
 
     These files are:
 
-    * ..created with mode 0600
+    * .. created with mode 0600
 
-    * ..overwritten and deleted at execution-cleanup
+    * .. overwritten and deleted at execution-cleanup
 
+* Usage of GitHub's `dependabot <https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/about-supply-chain-security#what-is-dependabot>`_ and `CodeQL <https://docs.github.com/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/about-code-scanning-with-codeql>`_
 
 Setup
 *****
@@ -49,12 +50,12 @@ Setup
 
     You should: (*example config will be added later on*)
 
-    * ..use HTTPS
+    * .. use HTTPS
 
-    * ..restrict the HTTP security headers (X-Frame-Options, X-Content-Type, Content-Security-Policy and Referrer-Policy, HSTS)
+    * .. restrict the HTTP security headers (X-Frame-Options, X-Content-Type, Content-Security-Policy and Referrer-Policy, HSTS)
 
-    * ..limit the networks able to access the Web-application using your firewall(s)
+    * .. limit the networks able to access the Web-application using your firewall(s)
 
-    * ..`limit the request rate <https://docs.nginx.com/nginx/admin-guide/security-controls/controlling-access-proxied-http/>`_ on the login form :code:`/a/*` and API :code:`/api/*`
+    * .. `limit the request rate <https://docs.nginx.com/nginx/admin-guide/security-controls/controlling-access-proxied-http/>`_ on the login form :code:`/a/*` and API :code:`/api/*`
 
 * Make sure the Account passwords and API keys are kept/used safe
diff --git a/requirements.txt b/requirements.txt
@@ -16,7 +16,6 @@ djangorestframework-api-key==2.*
 drf-spectacular
 
 ## styles
-django-bootstrap-v5
 fontawesomefree
 
 # scheduling

diff --git a/src/ansible-webui/aw/settings.py b/src/ansible-webui/aw/settings.py
@@ -29,7 +29,6 @@
     'rest_framework_api_key',
     'drf_spectacular',
     # styles
-    'bootstrap5',
     'fontawesomefree',
 ]
 MIDDLEWARE = [