Metadata-Version: 2.1
Name: django-polaris
Version: 2.1.1
Summary: An extendable Django server for Stellar Ecosystem Proposals
Home-page: https://django-polaris.readthedocs.io/en/stable
Author: Jake Urban
Author-email: jake@stellar.org
License: Apache license 2.0
Keywords: stellar,sdf,anchor,server,polaris,sep-24,sep24,sep-31,sep31
Platform: UNKNOWN
Classifier: Environment :: Web Environment
Classifier: Framework :: Django
Classifier: Framework :: Django :: 3.2
Classifier: Intended Audience :: Developers
Classifier: License :: OSI Approved :: Apache Software License
Classifier: Operating System :: OS Independent
Classifier: Programming Language :: Python
Classifier: Programming Language :: Python :: 3.7
Requires-Python: >=3.7
Description-Content-Type: text/x-rst
License-File: LICENSE

==============
Django Polaris
==============

.. image:: https://circleci.com/gh/stellar/django-polaris.svg?style=shield
    :target: https://circleci.com/gh/stellar/django-polaris

.. image:: https://codecov.io/gh/stellar/django-polaris/branch/master/graph/badge.svg?token=3DaW3jM6Q8
    :target: https://codecov.io/gh/stellar/django-polaris

.. image:: https://img.shields.io/badge/python-3.7%20%7C%203.8%20%7C%203.9-blue?style=shield
    :alt: Python - Version
    :target: https://pypi.python.org/pypi/django-polaris

.. _readthedocs: https://django-polaris.readthedocs.io/
.. _tutorial: https://django-polaris.readthedocs.io/en/stable/tutorials/index.html
.. _`email list`: https://groups.google.com/g/stellar-polaris
.. _`polaris-project-template`: https://github.com/JakeUrban/polaris-project-template

Getting Started
===============

If you're starting without an existing django application, see the `polaris-project-template`_
repository for getting started with the boilerplate code. To get a SEP-24 anchor server running
quickly, see the tutorial_.

For important updates on Polaris' development and releases please join the `email list`_.

The documentation below outlines the common set up needed for any Polaris deployment, but
each SEP implementation has its own configuration and integration requirements. These
requirements are described in the documentation for each SEP.

What is Polaris?
================

.. _Stellar Development Foundation: https://www.stellar.org/
.. _github: https://github.com/stellar/django-polaris
.. _django app: https://docs.djangoproject.com/en/2.2/intro/reusable-apps/
.. _demo wallet: http://demo-wallet.stellar.org

Polaris is an extendable `django app`_ for Stellar Ecosystem Proposal (SEP) implementations
maintained by the `Stellar Development Foundation`_ (SDF). Using Polaris, you can run a web
server supporting any combination of SEP-1, 6, 10, 12, 24, and 31.

While Polaris implements the majority of the functionality described in each SEP, there are
pieces of functionality that can only be implemented by the developer using Polaris.
For example, only an anchor can implement the integration with their partner bank.

This is why each SEP implemented by Polaris comes with a programmable interface for developers
to inject their own business logic.

The complete documentation can be found on readthedocs_. The SDF also runs a reference
server using Polaris that can be tested using our `demo wallet`_.

Installation and Configuration
==============================

.. _Django docs: https://docs.djangoproject.com/en/3.0/

These instructions assume you have already set up a django project. If you haven't,
take a look at the `Django docs`_. It also assumes you have a database configured
from the project's ``settings.py``.

First make sure you have ``cd``'ed into your django project's main directory
and then run

.. code-block:: console

    pip install django-polaris

Settings
^^^^^^^^

.. _corsheaders signal: https://github.com/adamchainz/django-cors-headers#signals
.. _corsheaders documentation: https://github.com/adamchainz/django-cors-headers

Add the following to ``INSTALLED_APPS`` in settings.py.

.. code-block:: python

    INSTALLED_APPS = [
        ...,
        "corsheaders",
        "rest_framework",
        "polaris",
        "<YOUR APP NAME>"
    ]

Add ``CorsMiddleware`` to your ``settings.MIDDLEWARE``. It should be listed above
other middleware that can return responses such as ``CommonMiddleware``.

.. code-block:: python

    MIDDLEWARE = [
        ...,
        'corsheaders.middleware.CorsMiddleware',
        ...
    ]

Polaris will now accept requests from all origins to its endpoints. It does this
by adding `corsheaders signal`_ that checks the request URI. However this
does not change the CORS policy for any other endpoint on the server. You can change
this functionality using the settings listed in the `corsheaders documentation`_.

Optionally, you can add Polaris' logger to your `LOGGING` configuration. For example:

.. code-block:: python

    LOGGING = {
        'version': 1,
        'disable_existing_loggers': False,
        'formatters': {
            'simple': {
                'format': '{levelname} {message}',
                'style': '{',
            },
        },
        'handlers': {
            'console': {
                'level': 'DEBUG',
                'class': 'logging.StreamHandler',
                'formatter': 'simple'
            }
        },
        'loggers': {
            'myapp': {
                'handlers': ['console'],
                'propogate': True,
                'LEVEL': 'DEBUG'
            },
            'polaris': {
                'handlers': ['console'],
                'propagate': True,
                'LEVEL': 'INFO'
            },
        }
    }

You may want to configure the ``LEVEL`` of the Polaris logger differently depending on whether you're running the service locally or in production. One way to do this by reading a ``POLARIS_LOG_LEVEL`` variable, or something similar, from the project's environment.

Environment Variables
^^^^^^^^^^^^^^^^^^^^^

.. _`environment variables documentation`: https://django-polaris.readthedocs.io/en/stable/#environment-variables

See the `environment variables documentation`_ for a complete list of supported
environment variables. Some environment variables are required for all Polaris
deployments, some are required for a specific set of SEPs, and others are optional.

Environment variables can be set within the environment itelf, in a ``.env`` file,
or specified in your Django settings file.

A ``.env`` file must be within the directory specified by Django's ``BASE_DIR``
setting or specified explitly using the ``POLARIS_ENV_PATH`` setting.

To set the variables in the project's settings file, the variable name must be
prepended with ``POLARIS_``. Make sure not to put sensitive information in the
project's settings file, such as Stellar secret keys, encryption keys, etc.

Endpoints
^^^^^^^^^

Add the Polaris endpoints in ``urls.py``

.. code-block:: python

    import polaris.urls
    from django.urls import path, include

    urlpatterns = [
        ...,
        path("", include(polaris.urls)),
    ]

Database Models
^^^^^^^^^^^^^^^

.. _repository: https://github.com/stellar/django-polaris/issues
.. _Fernet symmetric encryption: https://cryptography.io/en/latest/fernet/
.. _Asset: https://django-polaris.readthedocs.io/en/stable/models/index.html#polaris.models.Asset
.. _`Django-supported databases`: https://docs.djangoproject.com/en/3.2/ref/databases/
.. _`DATABASES setting docs`: https://docs.djangoproject.com/en/3.2/ref/settings/#databases

Polaris works with all `Django-supported databases`_. Install your database driver and see the `DATABASES setting docs`_
for configuring the database connection. If you find Polaris attempts to make queries incompatible with your database,
file an issue in the project's github repository_.

Once configured, run migrations to create these tables in your database.

.. code-block:: console

    python manage.py migrate

Now, create an ``Asset`` database object for each asset you intend to anchor. Get
into your python shell, then run something like this:

.. code-block:: python

    from polaris.models import Asset
    Asset.objects.create(
        code="USD",
        issuer="<the issuer address>",
        distribution_seed="<distribution account secret key>",
        sep24_enabled=True,
        ...
    )

The ``distribution_seed`` and ``channel_seed`` columns are encrypted at the database layer using
`Fernet symmetric encryption`_, and only decrypted when held in memory within an ``Asset`` object.
It uses your Django project's ``SECRET_KEY`` setting to generate the encryption key, **so make sure
its value is unguessable and kept a secret**.

See the Asset_ documentation for more information on the fields used.

At this point, you should configure Polaris for one or more of the
SEPs currently supported. Once configured, check out how to run the
server as described in the next section.

Running the Web Server
======================

Production
^^^^^^^^^^

.. _gunicorn: https://gunicorn.org
.. _example Nginx configuration: https://github.com/stellar/django-polaris/tree/master/example/nginx-letsencrypt.conf

HTTPS
-----

Polaris should only be deployed using HTTPS in production. You should do this
by using a HTTPS web server or running Polaris behind a HTTPS reverse proxy
(see `example Nginx configuration`_).
The steps below outline the settings necessary to ensure your deployment is
secure.

To redirect HTTP traffic to HTTPS, add the following to settings.py:

.. code-block:: python

    SECURE_SSL_REDIRECT = True

And if you're running Polaris behind a HTTPS proxy:

.. code-block:: python

    SECURE_PROXY_SSL_HEADER = ('HTTP_X_FORWARDED_PROTO', 'https')

This tells Django what header to check and what value it should be in
order to consider the incoming request secure.

If you're running SEP-24, add the following

.. code-block:: python

    SESSION_COOKIE_SECURE = True

Polaris requires this setting to be ``True`` for SEP-24 deployments if not in
``LOCAL_MODE``.

Rate Limiting
-------------

.. _`custom middleware`: https://docs.djangoproject.com/en/3.2/topics/http/middleware/#writing-your-own-middleware

It is highly encouraged to employ a rate limiting strategy when running Polaris to ensure the service
remains available for all client applications. Many endpoints retrieve and create database records on
each request, and some endpoints make outgoing web requests to Horizon or a client application's callback
endpoint.

Rate limiting can be particularly important for SEP-6 or SEP-24 deposit requests because the anchor is
expected to poll their off-chain rails to detect if any of the funds from pending transactions initiated
in these requests have arrived in the anchor's account, which can be a resource-intensive process.

Rate limiting can be deployed using a number of strategies that often depend on the anchor's deployment
infrastructure. Optionally, the anchor could also implement a rate limiting policy using Django
`custom middleware`_ support.

Local Development
^^^^^^^^^^^^^^^^^

Locally, Polaris can be run using Django's HTTP development server

.. code-block:: console

    python manage.py runserver

If you're using Polaris' SEP-24 support, you also need to use the following
environment variable:

.. code-block:: console

    LOCAL_MODE=1

This is necessary to disable SEP-24's interactive flow authentication mechanism,
which requires HTTPS. **Do not use local mode in production**.

Contributing
============

.. _this tool: https://github.com/stellar/create-stellar-token

To set up the development environment or run the SDF's reference server, run follow the
instructions below.

.. code-block:: console

    git clone git@github.com:stellar/django-polaris.git
    cd django-polaris

Then, add a ``.env`` file in the ``example`` directory. You'll need to create
a signing account on Stellar's testnet and add it to your environment variables.

.. code-block:: console

    DJANGO_SECRET_KEY="supersecretdjangokey"
    DJANGO_DEBUG=True
    DJANGO_ALLOWED_HOSTS=localhost,0.0.0.0,127.0.0.1
    SIGNING_SEED=<your signing account seed>
    STELLAR_NETWORK_PASSPHRASE="Test SDF Network ; September 2015"
    HORIZON_URI="https://horizon-testnet.stellar.org/"
    SERVER_JWT_KEY="your jwt local secret"
    HOST_URL="http://localhost:8000"
    LOCAL_MODE=True

Next, you'll need to create an asset on the Stellar test network and setup a distribution account.
Polaris comes with a `testnet issue` command to help with this.

Now you're ready to add your asset to Polaris. Run the following commands:

.. code-block:: console

    docker-compose build
    docker-compose up server

Use another process to run the following:

.. code-block:: console

    docker exec -it server python manage.py shell

Once you enter the python console, create the asset database object:

.. code-block:: python

    from polaris.models import Asset

    Asset.objects.create(...)

Enter the code, issuer, and distribution seed for the asset. Enable the SEPs you want to test.

Finally, exit the python console, kill the current ``docker-compose`` process, and run a new one:

.. code-block:: console

    docker-compose up

This will run all processes, and you should now have a anchor server running on port 8000.
When you make changes locally, the docker containers will restart with the updated code.

Testing
^^^^^^^
You can install the dependencies locally in a virtual environment:

.. code-block:: console

    pip install pipenv
    cd django-polaris
    pipenv install --dev
    pipenv run pytest -c polaris/pytest.ini

Or, you can simply run the tests from inside the docker container. However,
this may be slower.

.. code-block:: console

    docker exec -it server pytest -c polaris/pytest.ini

Submit a PR
^^^^^^^^^^^

.. _black: https://pypi.org/project/black/

After you've made your changes, push them to you a remote branch
and make a Pull Request on the stellar/django-polaris master branch.
Note that Polaris uses the `black`_ code formatter, so please format your
code before requesting us to merge your changes.




