DEPRECATED - Mozilla's old PTO app. Though I prefer the term "vintage".
Перейти к файлу
Philippe M. Chiasson de0fed87e7
README++
2018-02-27 10:43:21 -05:00
FirePHPCore Initial 2009-07-22 17:33:12 +00:00
css Do not cut off the right side of the logo. 2015-02-09 11:06:23 -08:00
img Improved PTO tool 2011-04-16 18:38:20 +00:00
js Improved PTO tool 2011-04-16 18:38:20 +00:00
nubis upgrade to SSO pseudo-module 2018-02-09 12:52:08 -05:00
templates [Bug 1398371] Fixing URL from intranet.mozilla.org to mana.mozilla.org 2017-09-15 15:46:37 -07:00
.gitignore w00t! adding a new gitignore 2017-06-28 10:22:27 -07:00
README.md README++ 2018-02-27 10:43:21 -05:00
auth.php Fixing a minor typo in auth.php 2017-07-20 15:54:07 -07:00
class.Debug.php Improved PTO tool 2011-04-16 18:38:20 +00:00
class.Filtering.php Fixes bug 1052153, Don't allow anyone except the appropriate People people to view other employees' PTO 2014-08-11 20:59:11 -04:00
config-dist.php Reworking code to function with pluggable authentication. Moving PHP_AUTH_USER to variable to be set via config instead of relying blindly on PHP_AUTH_USER 2017-02-14 11:06:54 -05:00
contribute.json Changing prod URL from intranet.mozilla.org to pto.mozilla.org 2017-09-15 15:46:17 -07:00
edit.php Reworking code to function with pluggable authentication. Moving PHP_AUTH_USER to variable to be set via config instead of relying blindly on PHP_AUTH_USER 2017-02-14 11:06:54 -05:00
export.php Reworking code to function with pluggable authentication. Moving PHP_AUTH_USER to variable to be set via config instead of relying blindly on PHP_AUTH_USER 2017-02-14 11:06:54 -05:00
favicon.ico Initial 2009-07-22 17:33:12 +00:00
filtering.inc Improved PTO tool 2011-04-16 18:38:20 +00:00
index.php Improved PTO tool 2011-04-16 18:38:20 +00:00
mypto.php Reworking code to function with pluggable authentication. Moving PHP_AUTH_USER to variable to be set via config instead of relying blindly on PHP_AUTH_USER 2017-02-14 11:06:54 -05:00
output.inc Fixes bug 1052153, Don't allow anyone except the appropriate People people to view other employees' PTO 2014-08-11 20:59:11 -04:00
perms.inc Reworking code to function with pluggable authentication. Moving PHP_AUTH_USER to variable to be set via config instead of relying blindly on PHP_AUTH_USER 2017-02-14 11:06:54 -05:00
prefetch.inc Removed extra getRecords from prefetch 2013-09-03 19:49:25 +00:00
pto.inc Improved PTO tool 2011-04-16 18:38:20 +00:00
report.inc Allow reports generated for a specific person 2010-08-19 21:55:48 +00:00
report.php Reworking code to function with pluggable authentication. Moving PHP_AUTH_USER to variable to be set via config instead of relying blindly on PHP_AUTH_USER 2017-02-14 11:06:54 -05:00
schema.sql Improved PTO tool 2011-04-16 18:38:20 +00:00
submit.php use SMTP when SES is enabled 2018-02-06 11:59:40 -05:00

README.md

PTO Nubis deployment repository

This is the deployment repository for pto.mozilla.org

Components

Defined in nubis/terraform/main.tf

Webservers

Defined in nubis/puppet/apache.pp

The produced image is that of a simple Ubuntu Apache webserver running PHP

Load Balancer

Simple ELB

Email

This application sends outbound e-mails using SES

SSO

This entire application is protected behind mod_auth_openidc

Database

Main application state is persisted in an RDS/MySQL database

Administrative access to it can be gained thru the db-admin service.

Cache

Elasticache/Memcache is used to provide persistency for mod_auth_openidc's session cache

Configuration

The application's configuration file is config.php and is not managed, it simply sources nubis_configuration from /etc/nubis-config/${project_name}.php

Consul Keys

This application's Consul keys, living under {project_name}-{environment}/${environment}/config/ and defined in Defined in nubis/terraform/consul.tf

Debug

Operator Supplied Controls an application-specific debugging mode

export_users

Operator Supplied List of email addresses of users allowed to export reports

hr_managers

Operator Supplied List of email addresses of HR managers

mail_blacklist

Operator Supplied List of email addresses where mail may NOT be sent

mail_submitter

Operator Supplied Full e-mail address of the sender of PTO emails

notified_people

Operator Supplied Full e-amil address that will always recieve PTO emails

ldap_host

Operator Supplied LDAP Url to connect to the server, for example

ldaps://ldap.company.com:636

ldal_bind_user

Operator Supplied Bind DN to use to authenticate to the LDAP server

ldap_bind_pass

Operator Supplied Password to use to authenticate to the LDAP server

Cache/Endpoint

DNS endpoint of Elasticache/memcache

Cache/Port

TCP port of Elasticache/memcache

The hostname of the RDS/MySQL Database

OpenID/Server/Memcached

Hostname:Port of Elasticache/memcache

OpenID/Server/Passphrase

Generated OpenID passphrase for session encryption

OpenID/Client/Domain

Operator Supplied Auth0 Domain for this application, typically 'mozilla'

OpenID/Client/ID

Operator Supplied Auth0 Client ID for this application

OpenID/Client/Secret

Operator Supplied Auth0 Client Secret for this application 'mozilla'

OpenID/Client/Site

Operator Supplied Auth0 Site URL for this application

SMTP/Server

SES SMTP server hostname

SMTP/User

SES SMTP username

SMTP/Password

SES SMTP password

Cron Jobs

Daily backup job copies data from Storage to Buckets

Logs

No application specific logs