From 101f84edef50ff5fb1ec27132d336f8e5d23bb41 Mon Sep 17 00:00:00 2001 From: xrendan Date: Thu, 12 Jun 2025 17:58:55 -0600 Subject: [PATCH 1/2] Add staging creds --- .gitignore | 2 + config/credentials/staging.yml.enc | 1 + config/environments/production.rb | 2 +- config/environments/staging.rb | 86 ++++++++++++++++++++++++++++++ 4 files changed, 90 insertions(+), 1 deletion(-) create mode 100644 config/credentials/staging.yml.enc create mode 100644 config/environments/staging.rb diff --git a/.gitignore b/.gitignore index 063233c..bf8aba6 100644 --- a/.gitignore +++ b/.gitignore @@ -30,3 +30,5 @@ # Ignore master key for decrypting credentials and more. /config/master.key + +/config/credentials/staging.key diff --git a/config/credentials/staging.yml.enc b/config/credentials/staging.yml.enc new file mode 100644 index 0000000..98e7bf8 --- /dev/null +++ b/config/credentials/staging.yml.enc @@ -0,0 +1 @@ +zzhZt2HaptbYfhrmuak0tSs4PWE+qnyBzAZUgYtjeiMPNuI/oxlwNTIhchCBhW5usn2HfwuUrnGAkh2WZWeskT73FlV6uYLmAz1TzvqFT04s9N+or4ey8hOftwzAEszqvwn5fJoLfEqzKR33M4MZ8Esl+QujOvofbNzAYxmH6zc6WLaiQ+kxgqgm8Y3TgndAthn5VnayZV5eehpBVjNOe3BDacRQIbQ9z+fHjeJLlmX6wskVL9y6eJBp0GOAtafBEYqB4x8FZONHyDhxAQ8zbKe7toNHkBbo0ycrMgq8Notkds0zRKgNveiWcXLxcTR8qtp6bdc7rCK9LQkTSpay6ZRLcfshNwqTETIfrsKKlo5Fq1mWxDmRw0NGvIiSXPphBle7EncAVE7/5LnqryS1rW5JFC7W1ZEenFLWGSdeu24EHwulCcgYXgTl80k3A1azh0ISx5usT7GSsVTsFK2VCElkx1xGh41HSEiEg946+BqhVouYY4QxDABJ--y0ACm/PCUMgn5cOI--2FGz5wcBz06WmfgGoCHHqQ== \ No newline at end of file diff --git a/config/environments/production.rb b/config/environments/production.rb index 3086ffe..9959bc7 100644 --- a/config/environments/production.rb +++ b/config/environments/production.rb @@ -54,7 +54,7 @@ # config.action_mailer.raise_delivery_errors = false # Set host to be used by links generated in mailer templates. - config.action_mailer.default_url_options = { host: "example.com" } + config.action_mailer.default_url_options = { host: ENV["HOST"] } # Specify outgoing SMTP server. Remember to add smtp/* credentials via rails credentials:edit. # config.action_mailer.smtp_settings = { diff --git a/config/environments/staging.rb b/config/environments/staging.rb new file mode 100644 index 0000000..9959bc7 --- /dev/null +++ b/config/environments/staging.rb @@ -0,0 +1,86 @@ +require "active_support/core_ext/integer/time" + +Rails.application.configure do + # Settings specified here will take precedence over those in config/application.rb. + + # Code is not reloaded between requests. + config.enable_reloading = false + + # Eager load code on boot for better performance and memory savings (ignored by Rake tasks). + config.eager_load = true + + # Full error reports are disabled. + config.consider_all_requests_local = false + + # Cache assets for far-future expiry since they are all digest stamped. + config.public_file_server.headers = { "cache-control" => "public, max-age=#{1.year.to_i}" } + + # Enable serving of images, stylesheets, and JavaScripts from an asset server. + # config.asset_host = "http://assets.example.com" + + # Store uploaded files on the local file system (see config/storage.yml for options). + config.active_storage.service = :local + + # Assume all access to the app is happening through a SSL-terminating reverse proxy. + config.assume_ssl = true + + # Force all access to the app over SSL, use Strict-Transport-Security, and use secure cookies. + config.force_ssl = true + + # Skip http-to-https redirect for the default health check endpoint. + # config.ssl_options = { redirect: { exclude: ->(request) { request.path == "/up" } } } + + # Log to STDOUT with the current request id as a default log tag. + config.log_tags = [ :request_id ] + config.logger = ActiveSupport::TaggedLogging.logger(STDOUT) + + # Change to "debug" to log everything (including potentially personally-identifiable information!) + config.log_level = ENV.fetch("RAILS_LOG_LEVEL", "info") + + # Prevent health checks from clogging up the logs. + config.silence_healthcheck_path = "/up" + + # Don't log any deprecations. + config.active_support.report_deprecations = false + + # Replace the default in-process memory cache store with a durable alternative. + # config.cache_store = :mem_cache_store + + # Replace the default in-process and non-durable queuing backend for Active Job. + # config.active_job.queue_adapter = :resque + + # Ignore bad email addresses and do not raise email delivery errors. + # Set this to true and configure the email server for immediate delivery to raise delivery errors. + # config.action_mailer.raise_delivery_errors = false + + # Set host to be used by links generated in mailer templates. + config.action_mailer.default_url_options = { host: ENV["HOST"] } + + # Specify outgoing SMTP server. Remember to add smtp/* credentials via rails credentials:edit. + # config.action_mailer.smtp_settings = { + # user_name: Rails.application.credentials.dig(:smtp, :user_name), + # password: Rails.application.credentials.dig(:smtp, :password), + # address: "smtp.example.com", + # port: 587, + # authentication: :plain + # } + + # Enable locale fallbacks for I18n (makes lookups for any locale fall back to + # the I18n.default_locale when a translation cannot be found). + config.i18n.fallbacks = true + + # Do not dump schema after migrations. + config.active_record.dump_schema_after_migration = false + + # Only use :id for inspections in production. + config.active_record.attributes_for_inspect = [ :id ] + + # Enable DNS rebinding protection and other `Host` header attacks. + # config.hosts = [ + # "example.com", # Allow requests from example.com + # /.*\.example\.com/ # Allow requests from subdomains like `www.example.com` + # ] + # + # Skip DNS rebinding protection for the default health check endpoint. + # config.host_authorization = { exclude: ->(request) { request.path == "/up" } } +end From aad231b6ee74cbeb5a7496201c0cf8751f395557 Mon Sep 17 00:00:00 2001 From: xrendan Date: Thu, 12 Jun 2025 18:05:50 -0600 Subject: [PATCH 2/2] run rubocop --- test/controllers/departments_controller_test.rb | 1 - 1 file changed, 1 deletion(-) diff --git a/test/controllers/departments_controller_test.rb b/test/controllers/departments_controller_test.rb index 84f3c8e..831a0cb 100644 --- a/test/controllers/departments_controller_test.rb +++ b/test/controllers/departments_controller_test.rb @@ -14,5 +14,4 @@ class DepartmentsControllerTest < ActionDispatch::IntegrationTest get department_url(@department), as: :json assert_response :success end - end