I'm trying to setup nginx, gunicorn, supervisor and trac, it is all working fine, even the static files which I asked for help here some days before... but the authentification. How does it works??
I know about the basic/digest authentification with nginx... but is there any plugin or something to have authentification without to setup basic/digest authentification in nginx? I mean, is there some web-based authentification?
I've found an AccountManager plugin, but seems that it has been discontinued or it doesn't receive any update (at least for installation directions)
If it is not posible to setup trac with some kind of web/psql authentification, tell me about an alternative based in python, please.
I'm considering taiga because it's based on django at the back and looks very good, but I'm afraid it goes private software in the future, so i wanted to find a completely open source solution here.
Thanks
I'm considering taiga because it's based on django at the back and
looks very good, but I'm afraid it goes private software in the
future, so i wanted to find a completely open source solution here.
Taiga developers here! Taiga is not going open source in the future. We will charge for private projects, but public projects will always be free and Open Source self-hosted version will always be available. So please, don't worry about this or write us to our mailing list (some people asked this already)
https://groups.google.com/forum/#!forum/taigaio
We are happy that you considered Taiga.
Related
I'm going to be hopefully deploying the first of many (fingers crossed!) projects through Heroku here soon. My concerns about a git and pip driven environment are that it becomes difficult to clone our internal reusable private Github repo apps through pip. For example, we have apps for blogs, comments, feedback, search, and so on that can be reused in other projects. What I have seen so far are that you can use either HTTP auth by embedding a username/password in the URL or jump through hoops generating an SSH key.
I appreciate you guys taking the time to read this. There are a million other things I'm sure you could be doing right now instead so thanks :)
I would recommend setting up a private PyPI server. I've been researching it recently, and the one that seemed best to me was devpi.
Alternatively, a paid-for service such as Gemfury may be more appropriate for you. I personally rejected it because it does not support releasing python packages the normal (sdist upload) way, but perhaps that was unfair.
Am very new on WSDL (SOAP) web service on GAE python,
i read some services like SOAPpy, SUDS
actually i couldn't able to figure-out which is best and easy for consuming the services.
Guys, Could you please share me your experiences with this or any other best services which i can use in my app.
Note: am using Windows7 for development with Python2.5, GAE 1.6.1v
SUDS is very nice and would be my preferred choice, but AFAIK doesn't work on GAE without modifications. It stores the WSDL cache on file system, while on GAE you'd want to store in memcached instead. Fixing it shouldn't be too difficult, if you search you should find a couple of blog postings on the issue. There are also several versions on github, perhaps some of those support GAE.
That's my blog post linked in the above comment. I'm glad it was helpful, but I'm surprised that my suds_memcache.py is still useful. I've gone ahead and made it a gist to make it easier to get to/find and so you can easily fork it:
https://gist.github.com/jjwatt/f263b00a2827d6decbfd42a0734872fb
I have developed a few python programs that I want to make available online.
I am new to web services, and I am not sure what I need to do in order to create a service where somebody makes a request to an URL (for example), and the URL triggers a Python program that displays something in the user's browser, or a set of inputs are given to the program via browser, and then python does whatver it is supposed to do.
I was playing with the google app engine, which runs fine with the tutorial, and was planning to use it becuase it looks easy, but the problem with GAE is that it does not work well (or does not work at all) with some libraries that I plan to use.
I guess what I am trying to do is some sort of API using my WebFaction account.
Can anybody point me in the right directions? What choices do I have in WebFaction? What are the easiest tools available?
Thank you very much for your help in advance.
Cheers
Well, your question is a little bit generic, but here are a few pointers/tips:
Webfaction allows you to install pretty much anything you want (you need to compile it / or ask the admins to install some CentOS package for you).
They provide some default Apache server with mod_wsgi, so you can run web2py, Django or any other wsgi frameworks.
Most popular Python web frameworks have available installers in Webfaction (web2py, django...), so I would recommend you to go with one of them.
I would also install supervisord to keep your service running after some reboot/crash/problem.
I would be glad to help you if you have any specific question...
I have picked up python/django just barely a year. Deployment of django site is still a subject that I have many questions about, though I have successfully manual deployed my site. One of my biggest questions around deployment is what measures can I take to safeguard the source code of my apps, including passwords in django's setting.py, from others, especially when my site runs on a virtual hosting provided by some 3rd party. Call me paranoid but the fact that my source code is running on a third-party server, which someone has the privileges to access anything/anywhere on the server, makes me feel uneasy.
There is almost no scenario where your hosting provider would be interested in your source code. The source code of most websites just isn't worth very much.
If you really feel it is necessary to protect your source code, the best thing to do is serve it from a system that you own and control physically and have exclusive access to.
Failing that, there are a few techniques for obfuscating python, the most straightforward of which is to only push .pyc files and not .py files to your production server. However, this is not standard practice with Django because theft of web site source code by hosting providers is not really an extant problem. I do not know whether or not this technique would work with Django specifically.
If someone has the privileges to access anything/anywhere on the server you can't do much, because what you can do others can do too, you can try some way of obfuscation but that will not work. Only solution is NOT to use such shared repository.
Edit: options
Keep working with shared repository if your data is not very sensitive
Use dedicated hosting from companies like rack-space etc
Use AWS to run your own instance
Use google-app-engine server but that may require a DB change
Run your own server (most secure)
While your source code's probably fine where it is, I'd recommend not storing your configuration passwords in plaintext, whether the code file is compiled or not. Rather, have a hash of the appropriate password on the server, have the server generate a hash of the password submitted during login and compare those instead. Standard security practice.
Then again I could just be talking out my rear end since I haven't fussed about with Django yet.
Protecting source code is not that important IMHO. I would just deploy compiled files and not worry too much about it.
Protecting your config (specially passwords) is indeed important. Temia's point is good.
I have a python/django application that im running on my dreamhost account. Excuse me for the novice question, but I'm a Java programmer by day and relatively new to python.
Ideally what I'd like to do is set something up where I can take the code I have locally, upload it to my server and then touch the restart.txt file. I realize I could probably accomplish this with a bat/ftp script, but I has hoping for something a bit more advanced/robust. I have a local mercurial repository where I'm doing version control, is it at all feasible to get mercurial running on dreamhost, and then set up so that when I push changes from my local repo to the server repo, those get deployed to the proper location?
Are there other solutions I should be looking at? I guess all I'm looking for is someone to point me in the right direction.
All the cool guys are using fabric nowadays. It's exactly what you looking for.