Use runtime configuration

angelsl · angelsl · commit 873ec182b455 · 2021-01-06T03:36:07.000+08:00
diff --git a/config/cadet.exs.example b/config/cadet.exs.example
@@ -0,0 +1,99 @@
+# Example production configuration file
+
+import Config
+
+config :cadet, CadetWeb.Endpoint,
+  cors_endpoints: "example.com",
+  server: true,
+  load_from_system_env: true,
+  url: [host: "api.example.com", port: 80],
+  http: [compress: true],
+  secret_key_base: "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"
+
+config :cadet, Cadet.Auth.Guardian,
+  issuer: "cadet",
+  secret_key: "AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA"
+
+config :cadet, Cadet.Repo,
+  adapter: Ecto.Adapters.Postgres,
+  rds_secret_name: "prod-cadet-db",
+  pool_size: 10
+
+config :cadet,
+  identity_providers: %{
+    # # To use authentication with LumiNUS.
+    # "nusnet_id" =>
+    #   {Cadet.Auth.Providers.LumiNUS,
+    #    %{
+    #      # The LumiNUS API key
+    #      api_key: "",
+    #      # The module code to check for enrolment.
+    #      module_code: "CS1101S",
+    #      # The term of the module to check
+    #      module_term: "2010"
+    #    }},
+    # # An example of OpenID authentication with Cognito. Any OpenID-compliant
+    # # provider should work.
+    # "cognito" =>
+    #   {Cadet.Auth.Providers.OpenID,
+    #    %{
+    #      # This should match a key in openid_connect_providers below
+    #      openid_provider: :cognito,
+    #      # You may need to write your own claim extractor for other providers
+    #      claim_extractor: Cadet.Auth.Providers.CognitoClaimExtractor
+    #    }},
+    "test" =>
+      {Cadet.Auth.Providers.Config,
+       [
+         %{
+           token: "admin_token",
+           code: "admin_code",
+           name: "Test Admin",
+           username: "admin",
+           role: :admin
+         },
+         %{
+           token: "staff_token",
+           code: "staff_code",
+           name: "Test Staff",
+           username: "staff",
+           role: :staff
+         },
+         %{
+           token: "student_token",
+           code: "student_code",
+           name: "Test Student",
+           username: "student",
+           role: :student
+         }
+       ]}
+  },
+  # See https://hexdocs.pm/openid_connect/readme.html
+  # openid_connect_providers: [
+  #   cognito: [
+  #     discovery_document_uri: "",
+  #     client_id: "",
+  #     client_secret: "",
+  #     response_type: "code",
+  #     scope: "openid profile"
+  #   ]
+  # ],
+  autograder: [
+    lambda_name: "autograderLambdaName"
+  ],
+  uploader: [
+    assets_bucket: "source-academy-assets",
+    sourcecasts_bucket: "env-cadet-sourcecasts"
+  ],
+  # Configuration for Sling integration (executing on remote devices)
+  remote_execution: [
+    # Prefix for AWS IoT thing names
+    thing_prefix: "env-sling",
+    # AWS IoT thing group to put created things into (must be set-up beforehand)
+    thing_group: "env-sling",
+    # Role ARN to use when generating signed client MQTT-WS URLs (must be set-up beforehand)
+    client_role_arn: "arn:aws:iam::12345678:role/env-cadet-frontend"
+  ]
+
+config :sentry,
+  dsn: "https://public_key/sentry.io/somethingsomething"
diff --git a/config/config.exs b/config/config.exs
@@ -89,9 +89,3 @@ config :guardian, Guardian.DB,
   token_types: ["refresh"],
   # default: 60 minute
   sweep_interval: 180
-
-# Import secrets, such as the LumiNUS key, or guest account credentials
-# The secret.exs file holds secrets that are useful even in development, and
-# so is kept separate from the prod.secret.exs file, which holds secrets useful
-# only for configuring the production build.
-if Mix.env() != :test, do: import_config("secrets.exs")
diff --git a/config/dev.exs b/config/dev.exs
@@ -72,3 +72,5 @@ config :git_hooks,
       ]
     ]
   ]
+
+import_config("dev.secrets.exs")
diff --git a/config/dev.secrets.exs.example b/config/dev.secrets.exs.example
diff --git a/config/prod.exs b/config/prod.exs
@@ -44,7 +44,3 @@ config :logger, level: :info
 config :ex_aws,
   access_key_id: [:instance_role],
   secret_access_key: [:instance_role]
-
-# Finally import the config/prod.secret.exs
-# which should be versioned separately.
-import_config "prod.secrets.exs"
diff --git a/config/prod.secrets.exs.example b/config/prod.secrets.exs.example
diff --git a/config/releases.exs b/config/releases.exs
@@ -0,0 +1 @@
+"CONFIG" |> System.get_env("/etc/cadet.exs") |> Code.eval_file()
diff --git a/lib/cadet/jobs/autograder/lambda_worker.ex b/lib/cadet/jobs/autograder/lambda_worker.ex
@@ -12,8 +12,6 @@ defmodule Cadet.Autograder.LambdaWorker do
   alias Cadet.Autograder.ResultStoreWorker
   alias Cadet.Assessments.{Answer, Question}
 
-  @lambda_name :cadet |> Application.compile_env!(:autograder) |> Keyword.get(:lambda_name)
-
   @doc """
   This Que callback transforms an input of %{question: %Question{}, answer: %Answer{}} into
   the correct shape to dispatch to lambda, waits for the response, parses it, and enqueues a
@@ -28,7 +26,9 @@ defmodule Cadet.Autograder.LambdaWorker do
       Process.sleep(1000)
     else
       response =
-        @lambda_name
+        :cadet
+        |> Application.fetch_env!(:autograder)
+        |> Keyword.get(:lambda_name)
         |> ExAws.Lambda.invoke(lambda_params, %{})
         |> ExAws.request!()
 

Original file line number	Diff line number	Diff line change
`@@ -72,3 +72,5 @@ config :git_hooks,`
`72`	`72`	`]`
`73`	`73`	`]`
`74`	`74`	`]`
	`75`	`+`
	`76`	`+import_config("dev.secrets.exs")`
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+"CONFIG" \|> System.get_env("/etc/cadet.exs") \|> Code.eval_file()`