Expose v2/v3 Onion URLs to webapp code

[conorsch]

Status

Ready for review.

Description of Changes

Fixes #4631. Fixes #4674.

Changes proposed in this pull request:

• Writes plaintext files to disk, readable by the www-data user, containing Onion URL info. Separate files are used for each URL.
• Updates documentation with a quick tip about running a subset of testinfra tests for developer velocity.

Files will exist only if the relevant generation of Onion URLs are configured in site-specific vars. That means that future implementations consuming these files must not assume file existence, and shold also validate the strings inside the files.

Testing

CI will validate that the staging setup works well. Bust out your Tails/prod VM setup.

• Configure site-specific vars so that only v2 URLs are enabled, install
• Log into app server (ssh app), confirm that /var/lib/securedrop/source_v2_url exists and matches the contents of /var/lib/tor/services/source/hostname.
• Confirm /var/lib/securedrop/source_v3_url does not exist
• Re-configure site-specific vars to enable v3 Onions, re-install
• Log into app server (ssh app), confirm that /var/lib/securedrop/source_v2_url exists and matches the contents of /var/lib/tor/services/source/hostname.
• Log into app server (ssh app), confirm that /var/lib/securedrop/source_v3_url exists and matches the contents of /var/lib/tor/services/sourcev3/hostname.

Deployment

These changes are intended to enable future user-facing messaging regarding URL transitions. We aim to ship them in 1.0 to take advantage of the Admin process of enabling v3 URLs, which requires running the playbooks, to create these files.

Checklist

If you made changes to the server application code:

• Linting (make lint) and tests (make -C securedrop test) pass in the development container

If you made changes to securedrop-admin:

• Linting and tests (make -C admin test) pass in the admin development container

If you made changes to the system configuration:

• Configuration tests pass

If you made non-trivial code changes:

• I have written a test plan and validated it for this PR

If you made changes to documentation:

• Doc linting (make docs-lint) passed locally

[codecov-io]

Codecov Report

Merging #4718 into develop will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff            @@
##           develop    #4718   +/-   ##
========================================
  Coverage    81.61%   81.61%           
========================================
  Files           49       49           
  Lines         3416     3416           
  Branches       391      391           
========================================
  Hits          2788     2788           
  Misses         535      535           
  Partials        93       93

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update d3d3ab7...f6b0a69. Read the comment docs.

[redshiftzero]

accidentally committed?

[conorsch]

Thanks, addressed!

[conorsch]

Rebased to remove the dependency on #4715. Ready for review.

[redshiftzero]

can you elaborate why you think prod VMs/Tails testing should be done here? (slower to test). it seems like the main thing we might to verify would be that for v2 only things work as expected (since the logic is straightforward I'm inclined to just rely on the testinfra tests passing for v2/v3)

[conorsch]

can you elaborate why you think prod VMs/Tails testing should be done here?

Good point, I'm fine with staging VMs being used here. Bear in mind that this step:

Configure site-specific vars so that only v2 URLs are enabled, install

Requires editing (and generating a diff that should not be committed) install_files/ansible-base/group_vars/staging.yml for the various setups.

[conorsch]

python3-app-tests failing in CI with timeouts: https://circleci.com/gh/freedomofpress/securedrop/32940 Appears unrelated to changes in this PR, let's bounce a few times, then raise timeout if still unresolved.

[redshiftzero]

ah that is #4691

[conorsch]

Rebased on top of latest develop (d3d3ab7) in an attempt to satisfy CI; as @redshiftzero points out, we've seen this before, so we may need to raise the timeouts here.

[kushaldas]

• Configure site-specific vars so that only v2 URLs are enabled, install
• Log into app server (ssh app), confirm that /var/lib/securedrop/source_v2_url exists and matches the contents of /var/lib/tor/services/source/hostname.
• Confirm /var/lib/securedrop/source_v3_url does not exist
• Re-configure site-specific vars to enable v3 Onions, re-install
• Log into app server (ssh app), confirm that /var/lib/securedrop/source_v2_url exists and matches the contents of /var/lib/tor/services/source/hostname.
• Log into app server (ssh app), confirm that /var/lib/securedrop/source_v3_url exists and matches the contents of /var/lib/tor/services/sourcev3/hostname.