You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
636917345d | 5 years ago | |
---|---|---|
Docker | 5 years ago | |
bids | 5 years ago | |
bin | 5 years ago | |
core | 5 years ago | |
items | 5 years ago | |
sales | 5 years ago | |
web | 5 years ago | |
xmrauctions | 5 years ago | |
.coveragerc | 5 years ago | |
.dockerignore | 5 years ago | |
.env.example | 5 years ago | |
.gitignore | 5 years ago | |
LICENSE | 5 years ago | |
Makefile | 5 years ago | |
README.md | 5 years ago | |
manage.py | 5 years ago | |
pytest.ini | 5 years ago | |
requirements.txt | 5 years ago |
README.md
xmrauctions
This is a somewhat simple little Django, CRUD app. It's fairly minimal auction house where you can post items you possess and exchange them with your fellow humans from anywhere around the world.
This app is in an alpha stage and is not polished enough to transact real money. Once we make progress on some of the to-do items we will proceed to that.
Dev
You first need secrets. Copy the example one and fill in your details. You'll need to provide your own node and wallet RPC endpoints or public ones. The Makefile
provided should be enough for general use. Review that file to see what's happening under the hood.
cp env.example .env
vim .env
make build
make up
make dev
Go-Live Checklist
In no particular order, nice to haves, and should likely haves:
- Bad bot spam prevention (fail2ban)
- DDoS mitigation
- Secrets in SSM with env setting
- Email spam prevention
- Cloudtrail configured all regions
- Web server access logs syncing to S3
- Log rotate on access logs
- Security ELK dashboard
- Malicious Image upload abuse prevention
- SES metric alarms
- Budget alarms
- Unit Tests
- DB backups
- Dockerize wallet to run on other instance