django-orchestra/TODO.md

TODO
====

* scape strings before executing scripts in order to prevent exploits: django templates automatically scapes things. Most important is to ensuer that all escape ' to &quot
* Optimize SSH: pool, `UseDNS no`
* Don't store passwords and other service parameters that can be changed by the services i.e. mailman, vps etc. Find an execution mechanism that trigger `change_password()`

* abort transaction on orchestration when `state == TIMEOUT` ?
* filter and other user.is_main refactoring 
* use format_html_join for orchestration email alerts

* generic form for change and display passwords and crack change password form
* enforce an emergency email contact and account to contact contacts about problems when mailserver is down

* add `BackendLog` retry action
* move invoice contact to invoices app?
* wrapper around reverse('admin:....') `link()` and `link_factory()`
* PHPbBckendMiixin with get_php_ini
* Apache: `IncludeOptional /etc/apache2/extra-vhos[t]/account-site-custom.con[f]`
* rename account.user to primary_user
* webmail identities and addresses
* cached -> cached_property
* user.roles.mailbox its awful when combined with addresses:
    * address.mailboxes filter by account is crap in admin and api
    * address.mailboxes api needs a mailbox object endpoint (not nested user)
    * Its not intuitive, users expect to create mailboxes, not users!
    * Mailbox is something tangible, not a role!
* System user vs virtual user:
    * system user automatically hast @domain.com address :(

* use Code: https://github.com/django/django/blob/master/django/forms/forms.py#L415 for domain.refresh_serial()
* Permissions .filter_queryset()


* git deploy in addition to FTP?
* env vars instead of multiple settings files: https://devcenter.heroku.com/articles/config-vars ?
* optional chroot shell?

* make sure prefetch_related() is used correctly 
Remember that, as always with QuerySets, any subsequent chained methods which imply a different database query will ignore previously cached results, and retrieve data using a fresh database query. 
* profile select_related vs prefetch_related

* use HTTP OPTIONS instead of configuration endpoint, or rename to settings?

* Log changes from rest api (serialized objects)


* passlib; nano /usr/local/lib/python2.7/dist-packages/passlib/ext/django/utils.py SortedDict -> collections.OrderedDict
* pip install pyinotify

* create custom field that returns backend python objects

* Timezone awareness on monitoring system (reading server-side logs with different TZ than orchestra) maybe a settings value? (use UTC internally, timezone.localtime() when interacting with servers)

* EMAIL backend operations which contain stderr messages (because under certain failures status code is still 0)


* Settings dictionary like DRF2 in order to better override large settings like WEBSITES_APPLICATIONS.etc


* DOCUMENT: orchestration.middleware: we need to know when an operation starts and ends in order to perform bulk server updates and also to wait for related objects to be saved (base object is saved first and then related)
            orders.signales: we perform changes right away because data model state can change under monitoring and other periodik task, and we should keep orders consistency under any situation.
                             dependency collector with max_recursion that matches the number of dots on service.match and service.metric


* Be consistent with dates:
    * created_on date
    * created_at datetime

at + clock time, midnight, noon- At 3:30 p.m., At 4:01, At noon


* backend logs with hal logo
* Use logs for storing monitored values
* set_password orchestration method?


* make account_link to autoreplace account on change view.

* LAST version of this shit http://wkhtmltopdf.org/downloads.html
* Rename pack to plan ? one can have multiple plans?

* transaction.process FK?

* translations
        from django.utils import translation
        with translation.override('en'):
* Plurals!

* help_text on readonly_fields specialy Bill.state. (eg. A bill is in OPEN state when bla bla )

* Account link and "show all" button on the filters secction instead of object-tools

* Create ProForma from orders orders.bill(proforma=True)
Initial commit 2014-05-08 16:59:35 +00:00			`TODO`
			`====`

			`* scape strings before executing scripts in order to prevent exploits: django templates automatically scapes things. Most important is to ensuer that all escape ' to &quot`
			* Optimize SSH: pool, `UseDNS no`
			* Don't store passwords and other service parameters that can be changed by the services i.e. mailman, vps etc. Find an execution mechanism that trigger `change_password()`

			* abort transaction on orchestration when `state == TIMEOUT` ?
			`* filter and other user.is_main refactoring`
			`* use format_html_join for orchestration email alerts`

			`* generic form for change and display passwords and crack change password form`
			`* enforce an emergency email contact and account to contact contacts about problems when mailserver is down`

			* add `BackendLog` retry action
			`* move invoice contact to invoices app?`
			* wrapper around reverse('admin:....') `link()` and `link_factory()`
			`* PHPbBckendMiixin with get_php_ini`
			* Apache: `IncludeOptional /etc/apache2/extra-vhos[t]/account-site-custom.con[f]`
			`* rename account.user to primary_user`
			`* webmail identities and addresses`
			`* cached -> cached_property`
			`* user.roles.mailbox its awful when combined with addresses:`
			`* address.mailboxes filter by account is crap in admin and api`
			`* address.mailboxes api needs a mailbox object endpoint (not nested user)`
			`* Its not intuitive, users expect to create mailboxes, not users!`
			`* Mailbox is something tangible, not a role!`
			`* System user vs virtual user:`
			`* system user automatically hast @domain.com address :(`

			`* use Code: https://github.com/django/django/blob/master/django/forms/forms.py#L415 for domain.refresh_serial()`
			`* Permissions .filter_queryset()`


			`* git deploy in addition to FTP?`
			`* env vars instead of multiple settings files: https://devcenter.heroku.com/articles/config-vars ?`
			`* optional chroot shell?`
Random improvements 2014-05-13 13:46:40 +00:00
			`* make sure prefetch_related() is used correctly`
			`Remember that, as always with QuerySets, any subsequent chained methods which imply a different database query will ignore previously cached results, and retrieve data using a fresh database query.`
			`* profile select_related vs prefetch_related`

			`* use HTTP OPTIONS instead of configuration endpoint, or rename to settings?`
Added orders and prices apps 2014-05-27 15:55:09 +00:00
			`* Log changes from rest api (serialized objects)`
Random work 2014-07-08 15:19:15 +00:00

			`* passlib; nano /usr/local/lib/python2.7/dist-packages/passlib/ext/django/utils.py SortedDict -> collections.OrderedDict`
			`* pip install pyinotify`
Improved resource monitoring 2014-07-09 16:17:43 +00:00
Improvements on resource monitoring 2014-07-10 15:19:06 +00:00			`* create custom field that returns backend python objects`
Implemented some monitors 2014-07-11 14:48:46 +00:00
			`* Timezone awareness on monitoring system (reading server-side logs with different TZ than orchestra) maybe a settings value? (use UTC internally, timezone.localtime() when interacting with servers)`

			`* EMAIL backend operations which contain stderr messages (because under certain failures status code is still 0)`
Fixes on resource monitoring 2014-07-11 21:09:17 +00:00

			`* Settings dictionary like DRF2 in order to better override large settings like WEBSITES_APPLICATIONS.etc`
Improvements on orders 2014-07-18 15:32:27 +00:00

			`* DOCUMENT: orchestration.middleware: we need to know when an operation starts and ends in order to perform bulk server updates and also to wait for related objects to be saved (base object is saved first and then related)`
			`orders.signales: we perform changes right away because data model state can change under monitoring and other periodik task, and we should keep orders consistency under any situation.`
			`dependency collector with max_recursion that matches the number of dots on service.match and service.metric`
Improvements on bank transfer payment method 2014-07-30 12:55:33 +00:00
Added payments and bills scafolding 2014-07-23 16:24:56 +00:00
Added preliminar implementation of admin billing 2014-07-24 15:43:23 +00:00			`* Be consistent with dates:`
			`* created_on date`
			`* created_at datetime`

			`at + clock time, midnight, noon- At 3:30 p.m., At 4:01, At noon`

Refactor admin_fields 2014-07-24 09:53:34 +00:00
			`* backend logs with hal logo`
Improved monitoring backends 2014-07-25 15:17:50 +00:00			`* Use logs for storing monitored values`
Improvements on bank transfer payment method 2014-07-30 12:55:33 +00:00			`* set_password orchestration method?`
Split email into a separated mails app 2014-08-22 15:31:44 +00:00

			`* make account_link to autoreplace account on change view.`
Added invoice footer with pagination 2014-08-29 16:13:34 +00:00
			`* LAST version of this shit http://wkhtmltopdf.org/downloads.html`
Refactor payment methods plugability 2014-09-04 15:55:43 +00:00			`* Rename pack to plan ? one can have multiple plans?`
Added support for bill sublines on microspective template0 2014-09-03 22:01:44 +00:00
Refactor payment methods plugability 2014-09-04 15:55:43 +00:00			`* transaction.process FK?`
Improvements on bills and payment management 2014-09-05 14:27:30 +00:00
			`* translations`
			`from django.utils import translation`
			`with translation.override('en'):`
			`* Plurals!`
Implemented payments source selection 2014-09-06 10:56:30 +00:00
			`* help_text on readonly_fields specialy Bill.state. (eg. A bill is in OPEN state when bla bla )`

			`* Account link and "show all" button on the filters secction instead of object-tools`

			`* Create ProForma from orders orders.bill(proforma=True)`