Details

    • Type: Bug
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Done
    • Affects Version/s: None
    • Fix Version/s: None
    • Labels:

      Description

      Remove users from Appstore DB(appsDB.json). Currently, we have two users charan and valla.

      While creating new appsDB.json make sure that there are no users in the database. (It can compromise security)

      Test Steps:
      1. Go to the admin section.
      2. Go to the User table.
      3. Make sure you have zero users.
      4. Test the same in testappstore.bioviz.org

        Attachments

          Activity

          Hide
          aloraine Ann Loraine added a comment - - edited

          Question:

          • If we continue to include Apps in the JSON file that we are using to stand up development App Store instances, will we need to also continue including users in the JSON as well? I think there may be users associated with Apps. If yes, we might need to include some "dummy" ( ? ) users in the JSON.
          Show
          aloraine Ann Loraine added a comment - - edited Question: If we continue to include Apps in the JSON file that we are using to stand up development App Store instances, will we need to also continue including users in the JSON as well? I think there may be users associated with Apps. If yes, we might need to include some "dummy" ( ? ) users in the JSON.
          Hide
          svallapu Sai Charan Reddy Vallapureddy added a comment -

          Ann Loraine

          Yes, users are associated with the apps.

          It is better to remove all the admin users we created for development purposes before it goes live.

          Now, testappstore.bioviz.org has my personal admin user credentials. These admin credentials are imported from appsDB.json. (Whenever we create a user with manage.py, this user will be added in the users table)

          This ticket main purpose it to remove my admin credentials from DB and create a new appsDB.json file. It is best practice to have just one main Admin user for testappstore.

          Show
          svallapu Sai Charan Reddy Vallapureddy added a comment - Ann Loraine Yes, users are associated with the apps. It is better to remove all the admin users we created for development purposes before it goes live. Now, testappstore.bioviz.org has my personal admin user credentials. These admin credentials are imported from appsDB.json. (Whenever we create a user with manage.py, this user will be added in the users table) This ticket main purpose it to remove my admin credentials from DB and create a new appsDB.json file. It is best practice to have just one main Admin user for testappstore.
          Hide
          aloraine Ann Loraine added a comment -

          Yes, I think I noticed that. The your user (which has "admin" privs) is also the same user associated with all the apps.

          Show
          aloraine Ann Loraine added a comment - Yes, I think I noticed that. The your user (which has "admin" privs) is also the same user associated with all the apps.
          Hide
          svallapu Sai Charan Reddy Vallapureddy added a comment -

          Branch: https://bitbucket.org/svallapu/appstore/branch/IGBF-1844#diff

          Removed my personal admin user credentials from the database.

          Show
          svallapu Sai Charan Reddy Vallapureddy added a comment - Branch: https://bitbucket.org/svallapu/appstore/branch/IGBF-1844#diff Removed my personal admin user credentials from the database.
          Hide
          svallapu Sai Charan Reddy Vallapureddy added a comment -

          Pull Request submitted

          Show
          svallapu Sai Charan Reddy Vallapureddy added a comment - Pull Request submitted
          Hide
          aloraine Ann Loraine added a comment -

          Merged to master. Needs to be deployed on testappstore (locally?) for testing.
          I am not sure how to engineer making a change to the RDS database on the test appstore however.
          Should we drop the database and re-build it?

          Show
          aloraine Ann Loraine added a comment - Merged to master. Needs to be deployed on testappstore (locally?) for testing. I am not sure how to engineer making a change to the RDS database on the test appstore however. Should we drop the database and re-build it?
          Hide
          svallapu Sai Charan Reddy Vallapureddy added a comment - - edited

          Ann Loraine

          We can update the database with Django loaddata. I think we dont have to drop the database(database skeleton is not changed)

          command: python manage.py loaddata appsDB.json

          Show
          svallapu Sai Charan Reddy Vallapureddy added a comment - - edited Ann Loraine We can update the database with Django loaddata. I think we dont have to drop the database(database skeleton is not changed) command: python manage.py loaddata appsDB.json
          Hide
          noor91zahara Noor Zahara added a comment -

          The users have been removed.
          Working as expected

          Show
          noor91zahara Noor Zahara added a comment - The users have been removed. Working as expected

            People

            • Assignee:
              svallapu Sai Charan Reddy Vallapureddy
              Reporter:
              svallapu Sai Charan Reddy Vallapureddy
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: