oxcam

Oxford/Cambridge Alumni Group Application - Support Guide

Installation

The oxcam software is held on Github at https://github.com/oxcamne/oxcam. This section assumes that you have read the README displayed there and satisfied the pre-requisites, so that you have a web server successfully running Py4web.

On your server open a bash terminal session at the py4web ‘apps’ directory, issue the commands:

    git clone https://github.com/oxcamne/oxcam.git
    pip install --upgrade -r oxcam/requirements.txt

This clones the software into a new directory apps/oxcam, and ensures that necessary Python packages are installed. You may need to precede ‘pip’ with ‘python ‘ or ‘python3 ‘ depending on your environment.

Note that if you are installing on Pythonanywhere, you can open a bash terminal session (they call this a console) from various places on their site, and that from the ‘Files’ tab you can edit files, such as the settings file described below.

Configure the software for your organization

You next need to create a ‘settings_private.py’ file in apps/oxcam. Customize the contents from the code below, which is taken from the OxCamNE environment (with sensitive keys removed). A copy of this is included in the kit as settings_private_template.py which you can copy or rename:

"""
Configures the app for a particular alumni group/Society,
and for a particular running instance, e.g. production or development
Customize for your organization and instance
"""

# organization name and domain/short_name, etc:
SOCIETY_NAME = 'your_group_name'
SOCIETY_SHORT_NAME = 'your_group_short_name'    #ideally, the domain name omitting the .xxx part
                #also use as your username if using Pythonanywhere server
SOCIETY_LOGO = 'your_logo_file_name'    #should be placed in py4web/apps/oxcam/static directory
                #Your favicon.ico should also be placed in py4web/apps/oxcam/static directory

DB_URL = f'your_database_server_url'   #e.g. https://{SOCIETY_SHORT_NAME}.pythonanywhere.com/oxcam

SUPPORT_EMAIL = 'your_support_email'

# html trailer for email notices:
VISIT_WEBSITE_INSTRUCTIONS = f"<br><br>Visit us at 'your_web_site_url' or your_social_media"
                #your_web_site_url might be www.{SOCIETY_SHORT_NAME}.org or similar, or {DB_URL}/web/home

#localization settings
import locale
from dateutil import tz
locale.setlocale(locale.LC_ALL, '')
"""
as above, takes the default settings for the server. You can check what this is using a 
command line terminal on the server using the "locale" command.
Use "locale -a" to see list of supported locale's.
You can specify by replacing the empty '' above with the preferred locale
"""
DATE_FORMAT = locale.nl_langinfo(locale.D_FMT)
CURRENCY_SYMBOL = locale.nl_langinfo(locale.CRNCYSTR)[1:]
#don't currently deal with currency symbols that follow the amount
TIME_ZONE = tz.gettz('America/New_York')
#see https://en.wikipedia.org/wiki/List_of_tz_database_time_zones

# set True only for live production instance, False for development/testing
IS_PRODUCTION = True
#if False, email is suppressed except to the following listed emails:
ALLOWED_EMAILS = []

from dataclasses import dataclass
import decimal

@dataclass
class Membership:
    category: str
    description: str
    qualification: str = None

"""
list of Membership definitions (may be empty list)
NOTE <dues> in description will be replaced by the figure in e.g. Stripe's dues products.
"""
MEMBERSHIPS = [
    Membership('Full', "all matriculated alumni and members of the Universities of \
Oxford and Cambridge. Annual dues are <dues> payable by subscription. In future years, you'll \
receive a reminder a week before the next auto-payment is made."),
    Membership('Student', "full time students (current or graduated within \
the last 12 months). Annual dues are <dues>, renewable annually",
"Please note details of your full-time course (current or graduated within last 12 months).")
]

@dataclass
class Email_Account:
    server: str
    port: int
    username: str
    password: str

#SMTP host connection for transactional messages (e.g. a gmail account)
SMTP_TRANS = Email_Account('smtp.somewhere.com', 'port', 'username', 'password')

#SMTP host connection for bulk messages (e.g. a mailing service such as mailgun)
SMTP_BULK = Email_Account('smtp.somewhere.com', 'port', 'username', 'password')

class PaymentProcessor:
    def __init__(self, name, public_key, secret_key, dues_products):
        self.name = name    #should be lower case, single word (underscore allowed)
        self.public_key = public_key
        self.secret_key = secret_key
        self.dues_products = dues_products

""" available processors, first is defaault: 
NOTE the local copy in pay_processors module contains the full implementions.
Access using the functions paymentprocessor(name) in the pay_procesors module
"""
PAYMENTPROCESSORS = [
    PaymentProcessor(name = 'stripe',
        public_key = "<-- stripe production public key -->" if IS_PRODUCTION else "<-- stripe test public key -->",
        secret_key = "<-- stripe production secret key -->" if IS_PRODUCTION else "<-- stripe test secret key -->",
        dues_products = {
            'Full': "<-- stripe production product id -->" if IS_PRODUCTION else "<-- stripe test product id -->",
            'Student': "<-- stripe production product id -->" if IS_PRODUCTION else "<-- stripe test product id -->"
        }
    )
]

#Gooogle reCAPTCHA keys (set all to None if not using Captcha)
RECAPTCHA_KEY = "production_recaptcha_site_key" if IS_PRODUCTION else "develomemnt_recaptcha_site_key"
RECAPTCHA_SECRET = "production_recaptcha_secret" if IS_PRODUCTION else "develomemnt_recaptcha_secret"

VERIFY_TIMEOUT = 3  #minutes enforced between verification emails

"""
Review the following settings and adjust as needed, but no changes are likely to be needed
"""

# html web page banner Customize:
PAGE_BANNER = f'<h4><span style="color: blue"><em>{SOCIETY_NAME}</em>\
<img src="{SOCIETY_LOGO}" alt="logo" style="float:left;width:100px" /></span></h4>'

# html letterhead for email/notices:
LETTERHEAD = f'<h2><span style="color: blue"><em>{SOCIETY_NAME}</em></span> \
<img src="{DB_URL}/static/{SOCIETY_LOGO}" alt="logo" style="float:left;width:100px" />\
</h2><br><br>'

# database connection string:
DB_URI = "sqlite://storage.db"
"""
SQLite is built into Py4web and should be adequate except for extremely large groups.
On PythonAnywhere you can alternatively use MySQL, e.g.:
DB_URI = f"mysql://{SOCIETY_SHORT_NAME}:<--- database password here --->@{SOCIETY_SHORT_NAME}.mysql.pythonanywhere-services.com/{SOCIETY_SHORT_NAME}$default"
DB_POOL_SIZE = 10
"""

# if True, run email daemon & daily maintenance in server threads
THREAD_SUPPORT = False
# Note, PythonAnywhere doesn't support threads, must run
# these processes as scheduled tasks. Set True if your
# environment supports threads, e.g. in development environment.

# access levels for group administrators DO NOT CHANGE, used in @checkaccess(None|any)
ACCESS_LEVELS = ['read', 'write', 'accounting', 'admin']

GRACE_PERIOD = 45
"""
Renewal within this number of days after expiration extends membership
continuously from the expiration date.
Also, member can renew this number of days prior to expiration. 
Renewal notices are sent at expiration plus -9, 0, 9, 18 days.
Auto renewal will be attempted multiple times at the anniversary of payment
and during following 3 weeks. So we set the grace period to cover 18+21 \
days.
"""

# logger settings
LOGGERS = [
    "warning:stdout",
    "info:oxcam.log:%(asctime)s - %(levelname)s - %(message)s"
]  # syntax "severity:filename:format" filename can be stderr or stdout

ALLOWED_ACTIONS = []    #disable Py4web's auth

Notes:

1. As shown here, the locale is set to the server default settings. It could be set to any supported locale. The locales supported on the server can be listed using the ‘locale’ terminal command. Setting the locale determines the date format used and the currency symbol.

2. The database is configured to use SQLite - this probably provides adequate performance for all but the largest groups.

3. Setting IS_PRODUCTION False only prevents the daily maintenance process from sending out notices such as membership dues reminders. Any test environment can still send out email, but will suppress all email except to ALLOWED_EMAILS.

4. Set THREAD_SUPPORT True only if your environment supports threading. PythonAnywhere does not, but typically a desktop development environment does. If set True, then the email daemon is started in its own thread whenever py4web/oxcam is started, and in turn spawns the daily_maintenance job in its own thread at midnight.

5. There are various ‘branding’ elements such as logo, organization name, web site addresses, help site address (for volunteers), support email, etc. The help site might embed the User Guide and possible also this support guide as well as including organization specific information.

6. In the prototype membership categories are included for full and student members, as used by OxCamNE. Adjust as needed. If you do not have paid memberships MEMBERSHIPS should be an empty list, ‘[]’.

7. The email settings configure two SMTP servers. One is used for transactional emails, such as login email verification, transaction confirms, and emails addressed explicitly, the other for bulk emails, sent to mailing list or filtered sets of members. OxCamNE uses an email service provider which, among other things, ensures that messages are authenticated by SPF and DKIM records. Small groups could use, e.g. a gmail address with an app password. In production, for transactional messages we use our google workspace account directly, whereas bulk messages are sent via our email service provider, mailgun. These settings should be present even if you are not using mailing list functionality.

8. PaymentProcessor is a base class for all payment processors that might be supported. Each supported payment processor will be implemented as a subclass of PaymentProcessor. PAYMENTPROCESSORS is a list of payment processor instances, currently only Stripe has been written. The first one in the list is the default for new customers. The implementations are in pay_processors.py. Go here for more information on setting up and using Stripe.

9. You can set up Google reCaptcha for production and development. Once a user successfully signs in, the IP address will be trusted for 90 days and Captcha will not be enforced during that period.

10. Setting VERIFY_TIMEOUT to a non-zero value enforces a time-out between sending verification emails to a particular email address or IP address. Like reCaptcha, this is an anti-spammer tool.

Start the database

Once the app is installed and your settings_private.py file is configured you should restart py4web using the big green button on the Pythonanywhere console Web tab.

When first started the app creates an empty database in a databases/ folder in the py4web/apps/oxcam directory.

Load a Minimal Database

Browse to the database at <your_py4web_url>/oxcam. You will be asked to login using your email. Oxcam sends a one-time link to your email. The link opens a new tab ready for you to upload a copy of database contents:

The kit contains a file, db_oxcam_minimal.csv in the py4web/apps/oxcam directory. Csv files are used to backup and restore the contents of the database.

The minimal database initializes the content copied from our OxCamNE database in the tables: Colleges, Email_Lists, Pages, CoA, Bank_Accounts, and Bank_Rules. Any and all of these tables you may wish to edit once your are up and running, for example many of the web pages may be inapplicable or need modification for your group.

To use the minimal database file, copy it from the kit to your local device where you browser is running. Click Browse and find the .csv file, then click restore. You will then need to login once more, and will be taken to the index page:

Add yourself to the database

The database does not contain any member records so can not do anything very interesting. If you do not have membership configured, you’ll see only the mailing list option. Either joining the mailing list or as a member creates a member record. The form to join the mailing list looks like:

Once you have created your own record, as it is first into the database it is automatically assigned ‘admin’ access and all the function links appear on the navigation bar:

If your group is for alumni of only one of the Universities, you may wish to eliminate the irrelevant Colleges. You can use db_tool to do this.

Scheduled Tasks

Oxcam uses two additional tasks that run separately from the web server. If your environment supports threads, and you configure ‘THREAD_SUPPORT = True’, nothing more is needed:

• the email daemon runs all the time in its own thread. It’s role is to spool out notices to a mailing list or other selection of members. These emails may be customized with a greeting or other information, such as registration details.

• the daily maintenance task is triggered at midnight local time each day. It’s role is to send out any necessary membership renewal reminders, and to generate a database backup .csv file. It retains on the local drive the last month’s daily files, and files from the 1st of each month for a year.

In the PythonAnywhere enviroment, the email daemon is configured as a ‘run forever’ task, and the daily maintenance job is scheduled at a fixed UTC time daily. The commands to use are:

py4web/py4web.py call py4web/apps oxcam.email_daemon.email_daemon

py4web/py4web.py call py4web/apps oxcam.daily_maintenance.daily_maintenance

This site is open source. Improve this page.