CRUD for EnvironmentVariables from Project's admin #4899
Conversation
humitos
force-pushed
the
humitos/admin/crud-env-variables
branch
from
02b0742
to
cdc848d
Compare
Codecov Report
@@ Coverage Diff @@
## master #4899 +/- ##
==========================================
+ Coverage 76.74% 76.87% +0.13%
==========================================
Files 158 158
Lines 9951 9981 +30
Branches 1244 1246 +2
==========================================
+ Hits 7637 7673 +36
+ Misses 1980 1976 -4
+ Partials 334 332 -2
|
humitos
force-pushed
the
humitos/admin/crud-env-variables
branch
from
cdc848d
to
2657a19
Compare
| {% endblock %} | ||
|
|
||
| {% block project_edit_content %} | ||
| <form method="post" action="{% url 'projects_environmentvariables_delete' project_slug=project.slug environmentvariable_pk=environmentvariable.pk %}"> |
There was a problem hiding this comment.
What do we want to communicate on Environment Variable detail page to the user?
There was a problem hiding this comment.
We probably need to explain that "These environment variables are available to all build steps." This is another place to keep UI prose copy short.
| <li> | ||
| <a class="button" | ||
| href="{% url 'projects_environmentvariables_create' project_slug=project.slug %}"> | ||
| {% trans "Add Environment Variable" %} |
There was a problem hiding this comment.
What do we want to communicate on Environment Variable list page to the user?
There was a problem hiding this comment.
I like Heroku's example. Just a short blob explaining env vars and point to the docs for anything substantial. I'm not big on prose content in UI.
humitos
removed
the
PR: work in progress
There was a problem hiding this comment.
I like the direction this is going. I do think we need a way to reveal and edit the envvar value. Currently once set, it cannot be edited or even viewed! I think there are a couple decent patterns here and I attached some screenshots.
I also think we should have a little bit of verbiage on the envvar list view page along the lines of:
Environment variables are a way to store settings that are used in your documentation builds.
They are a good place to store any private data such as API keys that your build may need.
Some other sites UIs for reference
Azure
By default, Azure hides the values but you can show them.
Heroku
Heroku hides the keys and values until you hit "reveal config vars" and then it shows names and values.
| <p> | ||
| {% blocktrans trimmed %} | ||
| Notice that the values are not escaped when your builds are executed. | ||
| Special characters (for bash) should be escaped accordingly. |
There was a problem hiding this comment.
I think we should escape these sorts of things. Think a long random secret key that might have some special characters like $ in it. The user should be able to just copy and paste it in.
There was a problem hiding this comment.
Agreed, let's make it easier for the user. This is a technical implementation detail that the user shouldn't have to worry about
There was a problem hiding this comment.
Good point.
I don't want to do this by myself. I checked the code and I found that we are already doing something similar at
I found that there is shlex.quote in Python3 and pipes.quote in Python2. I will use this accordingly.
NOTE: we may want to replace our
bash_escape_reregex also.
There was a problem hiding this comment.
I tested this with,
- enter:
{1}\|\1+-(8)$ - results:
"'{1}\\|\\1+-(8)$'"
and,
- enter:
alo'ja - results:
'\'alo\'"\'"\'ja\''
are they correct?
|
@davidfischer I like your feedback. At the moment, I just kept this simple and I based it on what Travis does: do not edit and do not scape (in fact, I copied the message from their settings page)
This was on purpose since I was not sure how we want to manage this. I put an example on the PR description about viewing some secrets added by another owner of the project that the user that is seeing them may not be able to see them. I found that Travis behaves in this way. Also, GitHub for example does not allow you to reveal "Personal Access Tokens" once they are created and copied to the clipboard. It's not exactly the same use case, but similar in the sense they are secrets. It's pretty easy to show a form to update them. I mean, it's not a technical issue. We only need to make a decision about this. |
I had not considered this but that's a pretty good reason to not make them viewable or editable. |
There are more things that could be considered here. Travis, for example, shows a boolean saying "Display value on build log". We could add a boolean to mark a variable as "Secret" and do not display/allow to edit only these ones. Although, I'm not sure how if this complexity worth in the end. |
|
Let's keep this simple to start. I like the plan for making the UI read only as the token is created. If we want to make the UI fancier later, we can revisit this as a new feature. |
There was a problem hiding this comment.
I'll pull this down next week and test, or feel free to attach some screen grabs if you get to this before I can test. I prefer to keep UI copy minimal -- UI with a lot of copy usually indicates your UI is not obivous. We'll link to doc pages with lots of information for users instead.
I like the pattern of keeping this UI as simple as possible for now. Read once on envvar input makes a lot of sense for a few reasons, at least to start.
| {% endblock %} | ||
|
|
||
| {% block project_edit_content %} | ||
| <form method="post" action="{% url 'projects_environmentvariables_delete' project_slug=project.slug environmentvariable_pk=environmentvariable.pk %}"> |
There was a problem hiding this comment.
We probably need to explain that "These environment variables are available to all build steps." This is another place to keep UI prose copy short.
| <p> | ||
| {% blocktrans trimmed %} | ||
| Notice that the values are not escaped when your builds are executed. | ||
| Special characters (for bash) should be escaped accordingly. |
There was a problem hiding this comment.
Agreed, let's make it easier for the user. This is a technical implementation detail that the user shouldn't have to worry about
| <li> | ||
| <a class="button" | ||
| href="{% url 'projects_environmentvariables_create' project_slug=project.slug %}"> | ||
| {% trans "Add Environment Variable" %} |
There was a problem hiding this comment.
I like Heroku's example. Just a short blob explaining env vars and point to the docs for anything substantial. I'm not big on prose content in UI.
humitos
force-pushed
the
humitos/admin/crud-env-variables
branch
from
0d1c4eb
to
feaba50
Compare
|
Some screenshots, Empty list view,
Create/Add view,
Non-empty list view,
Validation error,
Delete view,
|
| raise forms.ValidationError( | ||
| _("Variable name can't start with READTHEDOCS"), | ||
| ) | ||
| elif self.project.environmentvariable_set.filter(name=name).exists(): |
There was a problem hiding this comment.
We could add this as a constraint in the model
There was a problem hiding this comment.
Yes. I suppose that we still need the validation in the form otherwise I think it will explode when trying to save it and the user will have a 500.
humitos
force-pushed
the
humitos/admin/crud-env-variables
branch
2 times, most recently
from
f0d37c0
to
8a002b9
Compare
This is already done via a regex. |
|
The only missing thing here could be to decide what to show in the detail page of the environment variable, otherwise, we could merge this PR. I'm not really sure what kind of text to add there since there are not too much to say or to show really because we don't want to show the value. |
|
Maybe we can add some user docs? and/or maybe update https://docs.readthedocs.io/en/latest/builds.html |
Good idea! I added a simple |
humitos
force-pushed
the
humitos/admin/crud-env-variables
branch
2 times, most recently
from
65e3022
to
ee5bb12
Compare
Add the `environment_variables` field to this serializer that will be returned only when the user is admin.
humitos
force-pushed
the
humitos/admin/crud-env-variables
branch
from
ee5bb12
to
dec39ba
Compare
humitos
force-pushed
the
humitos/admin/crud-env-variables
branch
from
2beb9e2
to
e7a2ea9
Compare
| Environment Variable: {{ name }} | ||
| {% endblocktrans %} | ||
| {% endblock %} | ||
|
|
There was a problem hiding this comment.
I think we need copy here saying "The value here is not shown for security purposes" or similar. Otherwise it's a weird UI.
docs/builds.rst
Outdated
| .. tip:: | ||
|
|
||
| In case extra environment variables are needed to the build process (like secrets, tokens, etc), | ||
| you can add them going to **Admin > Environment Variables** in your project. |
There was a problem hiding this comment.
I think we need more docs than this. We should have a guide in guides/, something along the lines of "I need secrets or environment variables in my build" that mentions the use case of keeping secrets.
There was a problem hiding this comment.
I pushed a guide for this.
It mention only one example for now (using the secret to access to a user/pass protected URL). I'm not sure if we want to mention other cases or something else.
|
|
||
| Values will never be exposed to users, even to owners of the project. Once you create an environment variable you won't be able to see its value anymore because of security purposes. | ||
|
|
||
| After adding an environment variable from your project's admin, you can access it from your build process using Python, for example: |
This PR allows users to add environment variables to be used at build time. This way, they can include secrets (or configs) that should not be in the repository.
Phase II from #3992 | PR branched from #4894
Missing things:
I only let the user to LIST, CREATE and DELETE environment variables since I don't think it's a good idea to be able to "Edit" and show a sensible secret on the browser. Also, if that's a secret that only one of the owners knows we should not expose that value to all the owners of the project.