-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
1 parent
791a848
commit 510ab1b
Showing
2 changed files
with
60 additions
and
6 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,53 +1,104 @@ | ||
| # SRM Respondent Home UI | ||
|
|
||
| User Interface for respondents to access ONS Survey Data Collection questionnaires and services | ||
|
|
||
| ## Installation/build | ||
|
|
||
| To install all dependencies and download the templates run: | ||
|
|
||
| ```shell | ||
| make install | ||
| ``` | ||
|
|
||
| To build the docker image and run the tests: | ||
|
|
||
| ```shell | ||
| make build | ||
| ``` | ||
|
|
||
| ## Running | ||
|
|
||
| Once that's done, you can run the make command to run it in your terminal: | ||
|
|
||
| ```shell | ||
| make run | ||
| ``` | ||
|
|
||
| or to run it in Pycharm, use the run template that's specified and it should work as expected. | ||
|
|
||
| ## Translations | ||
|
|
||
| The site uses babel for translations. | ||
|
|
||
| Text to translate is marked up in html and py templates and files, then a messages.pot is build via pybabel, which collates all the text to translate into a single file. | ||
| Text to translate is marked up in html and py templates and files, then a messages.pot is build via pybabel, which | ||
| collates all the text to translate into a single file. | ||
|
|
||
| To build/re-build the translation messages.pot use: | ||
|
|
||
| ``` | ||
| pipenv run pybabel extract -F babel.cfg -o app/translations/messages.pot . | ||
| ``` | ||
|
|
||
| To create a new language messages file, run the following, changing the 2 character language code at the end to the required language code. Only generate a individual language file once. | ||
|
|
||
| Note that this implementation includes an English translation. This is needed due to an issue with implementing pybabel with aiohttp. | ||
| To create a new language messages file, run the following, changing the 2 character language code at the end to the | ||
| required language code. Only generate a individual language file once. | ||
|
|
||
| Note that this implementation includes an English translation. This is needed due to an issue with implementing pybabel | ||
| with aiohttp. | ||
|
|
||
| ``` | ||
| pipenv run pybabel init -i app/translations/messages.pot -d app/translations -l cy | ||
| ``` | ||
|
|
||
| Once created, you can update the existing language messages.po files to include changes in the messages.pot by running the following. This will update ALL language files. | ||
| Once created, you can update the existing language messages.po files to include changes in the messages.pot by running | ||
| the following. This will update ALL language files. | ||
|
|
||
| ``` | ||
| pipenv run pybabel update -i app/translations/messages.pot -d app/translations | ||
| ``` | ||
|
|
||
| To compile updates to the messages.po files into messages.mo (the file actually used by the site) use: | ||
|
|
||
| ``` | ||
| pipenv run pybabel compile -d app/translations | ||
| ``` | ||
|
|
||
| ## Venom Tests | ||
|
|
||
| We have a suite of [Venom tests](https://github.com/ovh/venom) for testing the OWASP header recommendations. These tests | ||
| are copied from the [OWASP Secure Headers Project](https://github.com/oshp/oshp-validator). | ||
|
|
||
| See [./tests/venom_tests.yml](./tests/venom_tests.yml). | ||
|
|
||
| These tests are designed to be run against a public HTTPS endpoint in a prod-like environment, since some of the headers | ||
| they check must not be present on HTTP responses e.g. | ||
| the [HSTS header](https://www.rfc-editor.org/rfc/rfc6797#section-6.1). Hence, these tests cannot all pass when run | ||
| against a local HTTP only instance. However, it may be useful for development to still run them locally. | ||
|
|
||
| ### Running Venom locally | ||
|
|
||
| * First, use our [docker dev](https://github.com/ONSdigital/ssdc-rm-docker-dev) to run our local development | ||
| environment. | ||
| This will run RH UI at `http://localhost:9092`. | ||
|
|
||
| * Now create a local copy of the venom test suite with the correct URL substituted in: | ||
|
|
||
| ```shell | ||
| sed -e "s|<VENOM_TARGET_URL>|http://host.docker.internal:9092/en/start|" ./tests/venom_tests.yml > tmp_venom_local.yml | ||
| ``` | ||
|
|
||
| It may be helpful to now open the created `tmp_venom_local.yml` file in an editor and comment out the HSTS header test | ||
| which is bound to fail locally. | ||
|
|
||
| * Now run the tests against the docker dev RH UI using the official OVH Venom docker image ( | ||
| See https://github.com/ovh/venom?tab=readme-ov-file#docker-image for more details on running venom and docs on | ||
| configuration). | ||
|
|
||
| ```shell | ||
| mkdir -p tmp_venom_results | ||
| docker run --network="ssdcrmdockerdev_default" \ | ||
| --mount type=bind,source=$(pwd)/tmp_venom_local.yml,target=/workdir/tests/tests.yml \ | ||
| --mount type=bind,source=$(pwd)/tmp_venom_results,target=/workdir/results \ | ||
| ovhcom/venom:latest | ||
| ``` | ||
|
|
||
| * The test results should be shown in your terminal, and details logs written in the `tmp_venom_results` folder. |