File to contain the creds: _google_creds.txt (in .gitignore of course...)
Content of file:
DD_SOCIAL_AUTH_GOOGLE_OAUTH2_ENABLED=(bool, True),
DD_SOCIAL_AUTH_GOOGLE_OAUTH2_KEY=(str, 'xxxxxxxxxxxxxx.apps.googleusercontent.com'),
DD_SOCIAL_AUTH_GOOGLE_OAUTH2_SECRET=(str, 'xxxxx-xxxxx-xxxx'),
SOCIAL_AUTH_GOOGLE_OAUTH2_WHITELISTED_EMAILS = ['xxxxxx@gmail.com']
sed to replace in settings.py file:
IFS=$'\n'; for line in $(cat _google_creds.txt); do sed -r -i "s/(.*)${line%=*}=.*/\1${line}/" ~/gitrepos/madchap_ddojo/dojo/settings/settings.py; done
You can run it as many times as you want.
Run import_initial_data.py. It will create a product, an engagement and a test and import reports if you have any.
_config.py to contain the top-level directory, like
dd_api_url="http://localhost:8080/api/v2"
reports_directory="/your/directory"
jira_url="https://whatever.atlassian.net"
jira_project="MADBOX"
enable_jira_for_product="True"
Create sub-directories for each scanner. The name of these directory must exactly match the scanner names per factory.py.
Put corresponding valid reports in each of these directories. They will be slurped in.
- (API for system settings) DefectDojo/django-DefectDojo#2135
- Integrate specific per-parser dedup confguration through intelligent sed ?
Create a file _jira_creds.py with the following format:
username="likely_your_email_address"
password="your_api_key"