Docker image, & local development docker-compose.yml (#2 )

Adds: - a Docker image, which can be used in both development and production - a `docker-compose.yml` file for local development (could probably be adapted for production deployments) Testing: - `git checkout docker` - `docker-compose up` - pray 🙏 - go to http://localhost:5000 ## App architecture I added the ability to load secret config variables (`HUB_TOKEN`, `STRIPE_SECRET_KEY` etc) from files, to support [Docker Secrets](https://docs.docker.com/engine/swarm/secrets/) natively. The code should probably log an error if a specified `HUB_TOKEN_FILE` doesn't exist instead of failing silently.. ## Docker architecture This uses a multi-stage build to reduce the size of the final image -- having pipenv install to a predefined virtualenv, and then copying that over. The compose file doesn't include a definition for a cron runner service, and I haven't tested running one yet. Here be dragons! You can rebuild the image locally using `docker-compose build`, but this isn't required for changes to the app code, only if you edit the `Dockerfile`, or want to publish your image for use on a swarm server (in which case you will need to edit the image name to put in your own Docker hub credentials). Currently, the image is rebuilt (should set up auto-tagging..) and published with every push to this 3wordchant/capsul-flask fork. Reviewed-on: https://git.autonomic.zone/3wordchant/capsul-flask/pulls/2 Co-authored-by: 3wordchant <3wordchant@noreply.git.autonomic.zone> Co-committed-by: 3wordchant <3wordchant@noreply.git.autonomic.zone>
Add custom themes, THEME setting, basic "yolocolo" theme (#7 )
2021-07-22 01:18:10 +02:00 · 2021-07-22 01:15:39 +02:00 · 2021-07-21 16:47:46 -05:00 · 2021-07-21 16:46:50 -05:00 · 2021-07-21 23:46:37 +02:00 · 2021-07-21 16:45:53 -05:00
57 changed files with 1254 additions and 956 deletions
--- a/.drone.yml
+++ b/.drone.yml
@ -0,0 +1,13 @@
 ---
 kind: pipeline
 name: publish docker image
 steps:
  - name: build and publish
    image: plugins/docker
    settings:
      username:
        from_secret: docker_reg_username_3wc
      password:
        from_secret: docker_reg_passwd_3wc
      repo: 3wordchant/capsul-flask
      tags: ${DRONE_COMMIT_BRANCH}
--- a/.gitignore
+++ b/.gitignore
@ -1,5 +1,6 @@
 notes.txt
 .env
 .env.bak
 .vscode
 *.pyc
--- a/48
+++ b/48
@ -0,0 +1,48 @@
 FROM python:3.8-alpine as build
 RUN apk add --no-cache \
    build-base \
    gcc \
    gettext \
    git \
    jpeg-dev \
    libffi-dev \
    libjpeg \
    musl-dev \
    postgresql-dev \
    python3-dev \
    zlib-dev
 RUN mkdir -p /app/{code,venv}
 WORKDIR /app/code
 COPY Pipfile Pipfile.lock /app/code/
 RUN python3 -m venv /app/venv
 RUN pip install pipenv setuptools
 ENV PATH="/app/venv/bin:$PATH" VIRTUAL_ENV="/app/venv"
 RUN pip install wheel cppy
 # Install dependencies into the virtual environment with Pipenv
 RUN pipenv install --deploy --verbose
 FROM python:3.8-alpine
 RUN apk add --no-cache \
    cloud-utils \
    libjpeg \
    libpq \
    libstdc++ \
    libvirt-client \
    openssh-client \
    virt-install
 COPY . /app/code/
 WORKDIR /app/code
 COPY --from=build /app/venv /app/venv
 ENV PATH="/app/venv/bin:$PATH" VIRTUAL_ENV="/app/venv"
 CMD ["gunicorn", "--bind", "0.0.0.0:5000", "-k", "gevent", "--worker-connections", "1000", "app:app"]
 VOLUME /app/code
 EXPOSE 5000
--- a/1
+++ b/1
@ -9,7 +9,6 @@ blinker = "==1.4"
 click = "==7.1.2"
 Flask = "==1.1.2"
 Flask-Mail = "==0.9.1"
 Flask-Testing = "==0.8.1"
 gunicorn = "==20.0.4"
 isort = "==4.3.21"
 itsdangerous = "==1.1.0"
--- a/README.md
+++ b/README.md
@ -1,227 +1,51 @@
-# capsulflask
+# capsul-flask
-Python Flask web application for capsul.org
+![screenshot of capsul.org home page](./docs/capsul.webp)
 Python Flask web application implementing user accounts, payment, and virtual machine management for a smol "virtual machine (vm) as a service" aka "cloud compute" provider.  Originally developed by [Cyberia Computer Club](https://cyberia.club) for https://capsul.org
-## how to run locally
+`capsul-flask` integrates with [Stripe](https://stripe.com/) as a credit card processor, and [BTCPay Server](https://github.com/btcpayserver/btcpayserver-docker) as a cryptocurrency payment processor.
-Ensure you have the pre-requisites for the psycopg2 Postgres database adapter package
+`capsul-flask` invokes [shell-scripts](./capsulflask/shell_scripts/) to create/manage [libvirt/qemu](https://www.libvirt.org/manpages/virsh.html) vms, and it depends on `dnsmasq` to act as the DHCP server for the vms.
 `capsul-flask` has a ["hub and spoke" architecture](./architecture.md). The "Hub" runs the web application and talks to the Postrges database, while the "Spoke"(s) are responsible for creating/managing virtual machines. In this way, capsul can be scaled to span more than one machine. One instance of the capsul-flask application can run in both hub mode and spoke mode at the same time, however there must only be one instance of the app running in "Hub" mode at any given time.
 ## Quickstart (run capsul-flask on your computer in development mode)
 ```
-sudo apt install python3-dev libpq-dev
+# get an instance of postgres running locally on port 5432
-pg_config --version
+# (you don't have to use docker, but we thought this might be the easiest for a how-to example)
-```
+docker run --rm -it -e POSTGRES_PASSWORD=dev -p 5432:5432 postgres &
-Ensure you have the wonderful `pipenv` python package management and virtual environment cli
+# install dependencies 
 sudo apt install pipenv python3-dev libpq-dev
-```
+# download and run
-sudo apt install pipenv
+git clone https://giit.cyberia.club/~forest/capsul-flask
-```
+cd capsul-flask
 Create python virtual environment and install packages
 ```
 # install deps
 pipenv install
 ```
 Run an instance of Postgres (I used docker for this, you can use whatever you want, point is its listening on localhost:5432)
 ```
 docker run --rm -it -e POSTGRES_PASSWORD=dev -p 5432:5432 postgres
 ```
 Run the app 
 ```
 pipenv run flask run
 ```
-Run the app in gunicorn:
+Interested in learning more? How about a trip to the the `docs/` folder:
-
+
-```
+- [**Setting up capsul-flask locally**](./docs/local-set-up.md)
-pipenv run gunicorn --bind 127.0.0.1:5000 -k gevent --worker-connections 1000 app:app
+  - [Manually](./docs/local-set-up.md#manually)
-```
+  - [With docker-compose](./docs/local-set-up.md#docker_compose)
-
+- [**Configuring `capsul-flask`**](./docs/configuration.md)
-Once you log in for the first time, you will want to give yourself some free capsulbux so you can create fake capsuls for testing. 
+  - [Example configuration from capsul.org (production)](./docs/configuration.md#example)
-
+  - [Configuration-type-stuff that lives in the database ](./docs/configuration.md#config_that_lives_in_db)
-Note that by default when running locally, the `SPOKE_MODEL` is set to `mock`, meaning that it won't actually try to spawn vms.
+  - [Loading variables from files (docker secrets)](./docs/configuration.md#docker_secrets)
-
+- [**`capsul-flask`'s relationship to its Database Server**](./docs/database.md)
-```
+  - [Database schema management (schema versions)](./docs/database.md#schema_management)
-pipenv run flask cli sql -c "INSERT INTO payments (email, dollars) VALUES ('<your email address here>', 20.00)"
+  - [Running manual database queries](./docs/database.md#manual_queries)
-```
+- [**`capsul-flask`'s hub-and-spoke architecture**](./docs/architecture.md)
-
+- [**Deploying capsul-flask on a server**](./docs/deployment.md)
-## configuration:
+  - [Installing prerequisites for Spoke Mode](./docs/deployment.md#spoke_mode_prerequisites)
-
+  - [Deploying capsul-flask manually](./docs/deployment.md#deploy_manually)
-Create a `.env` file to set up the application configuration:
+  - [Deploying capsul-flask with coop-cloud's docker-swarm configuration](./docs/deployment.md#coop_cloud_docker)
-
+  - [Deploying capsul-flask with coop-cloud's `abra` deployment tool](./docs/deployment.md#coop_cloud_abra)
-```
+- [**Accepting cryptocurrency payments with BTCPay Server**](./docs/btcpay.md)
-nano .env
+  - [Setting up the BTCPAY_PRIVATE_KEY](./docs/btcpay.md#BTCPAY_PRIVATE_KEY)
-```
+  - [Testing cryptocurrency payments](./docs/btcpay.md#testing)
-
+  - [Sequence diagram explaining how BTC payment process works (how we accept 0-confirmation transactions 😀)](./docs/btcpay.md#0_conf_diagram)
 You can enter any environment variables referenced in `__init__.py` to this file.
 For example you may enter your SMTP credentials like this:
 ```
 MAIL_USERNAME=forest@nullhex.com
 MAIL_DEFAULT_SENDER=forest@nullhex.com
 MAIL_PASSWORD=**************
 ```
 ## how to view the logs on the database server (legion.cyberia.club)
 `sudo -u postgres pg_dump capsul-flask | gzip -9 > capsul-backup-2021-02-15.gz`
 -----
 ## cli 
 You can manually mess around with the database like this:
 ```
 pipenv run flask cli sql -f test.sql
 ```
 ```
 pipenv run flask cli sql -c 'SELECT * FROM vms'
 ```
 This one selects the vms table with the column name header:
 ```
 pipenv run flask cli sql -c "SELECT string_agg(column_name::text, ', ') from information_schema.columns WHERE table_name='vms'; SELECT * from vms"
 ```
 How to modify a payment manually, like if you get a chargeback or to fix customer payment issues:
 ```
 $ pipenv run flask cli sql -c "SELECT id, created, email, dollars, invalidated from payments"
 1, 2020-05-05T00:00:00, forest.n.johnson@gmail.com, 20.00, FALSE
 $ pipenv run flask cli sql -c "UPDATE payments SET invalidated = True WHERE id = 1"
 1 rows affected.
 $ pipenv run flask cli sql -c "SELECT id, created, email, dollars, invalidated from payments"
 1, 2020-05-05T00:00:00, forest.n.johnson@gmail.com, 20.00, TRUE
 ```
 How you would kick off the scheduled task:
 ```
 pipenv run flask cli cron-task
 ```
 -----
 ## postgres database schema management
 capsulflask has a concept of a schema version. When the application starts, it will query the database for a table named
 `schemaversion` that has one row and one column (`version`). If the `version` it finds is not equal to the `desiredSchemaVersion` variable set in `db.py`, it will run  migration scripts from the `schema_migrations` folder one by one until the `schemaversion` table shows the correct version.
 For example, the script named `02_up_xyz.sql` should contain code that migrates the database from schema version 1 to schema version 2. Likewise, the script `02_down_xyz.sql` should contain code that migrates from schema version 2 back to schema version 1.
 **IMPORTANT: if you need to make changes to the schema, make a NEW schema version. DO NOT EDIT the existing schema versions.**
 In general, for safety, schema version upgrades should not delete data. Schema version downgrades will simply throw an error and exit for now. 
 -----
 ## hub-and-spoke architecture
 ![](readme/hub-and-spoke1.png)
 This diagram was created with https://app.diagrams.net/.
 To edit it, download the <a download href="readme/hub-and-spoke.xml">diagram file</a> and edit it with the https://app.diagrams.net/ web application, or you may run the application from [source](https://github.com/jgraph/drawio) if you wish.
 right now I have 2 types of operations, immediate mode and async.
 both types of operations do assignment synchronously. so if the system cant assign the operation to one or more hosts (spokes),
 or whatever the operation requires, then it will fail. 
 some operations tolerate partial failures, like, `capacity_avaliable` will succeed if at least one spoke succeeds.
 for immediate mode requests (like `list`, `capacity_avaliable`, `destroy`), assignment and completion of the operation are the same thing.
 for async ones, they can be assigned without knowing whether or not they succeeded (`create`).
 ![](readme/hub-and-spoke2.png)
 This diagram was created with https://app.diagrams.net/.
 To edit it, download the <a download href="readme/hub-and-spoke.xml">diagram file</a> and edit it with the https://app.diagrams.net/ web application, or you may run the application from [source](https://github.com/jgraph/drawio) if you wish.
 if you issue a create, and it technically could go to any number of hosts, but only one host responds, it will succeed 
 but if you issue a create and somehow 2 hosts both think they own that task, it will fail and throw a big error. cuz it expects exactly 1 to own the create task
 currently its not set up to do any polling.  its not really like a queue at all. It's all immediate for the most part 
 -----
 ## how to setup btcpay server
 Generate a private key and the accompanying bitpay SIN for the btcpay API client. 
  I used this code as an example: https://github.com/bitpay/bitpay-python/blob/master/bitpay/key_utils.py#L6
 ```
 $ pipenv run python ./readme/generate_btcpay_keys.py
 ```
 It should output something looking like this:
 ```
 -----BEGIN EC PRIVATE KEY-----
 EXAMPLEIArx/EXAMPLEKH23EXAMPLEsYXEXAMPLE5qdEXAMPLEcFHoAcEXAMPLEK
 oUQDQgAEnWs47PT8+ihhzyvXX6/yYMAWWODluRTR2Ix6ZY7Z+MV7v0W1maJzqeqq
 NQ+cpBvPDbyrDk9+Uf/sEaRCma094g==
 -----END EC PRIVATE KEY-----
 EXAMPLEwzAEXAMPLEEXAMPLEURD7EXAMPLE
 ```
 In order to register the key with the btcpay server, you have to first generate a pairing token using the btcpay server interface.
 This requires your btcpay server account to have access to the capsul store. Ask Cass about this.
 Navigate to `Manage store: Access Tokens` at: `https://btcpay.cyberia.club/stores/<store-id>/Tokens`
 ![](readme/btcpay_sin_pairing.jpg)
 Finally, send an http request to the btcpay server to complete the pairing:
 ```
 curl -H "Content-Type: application/json" https://btcpay.cyberia.club/tokens -d "{'id': 'EXAMPLEwzAEXAMPLEEXAMPLEURD7EXAMPLE', 'pairingCode': 'XXXXXXX'}"
 ```
 It should respond with a token: 
 ```
 {"data":[{"policies":[],"pairingCode":"XXXXXXX","pairingExpiration":1589473817597,"dateCreated":1589472917597,"facade":"merchant","token":"xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx","label":"capsulflask"}]}
 ```
 And you should see the token in the btcpay server UI:
 ![](readme/paired.jpg)
 Now simply set your `BTCPAY_PRIVATE_KEY` variable in `.env`
 NOTE: make sure to use single quotes and replace the new lines with \n.
 ```
 BTCPAY_PRIVATE_KEY='-----BEGIN EC PRIVATE KEY-----\nEXAMPLEIArx/EXAMPLEKH23EXAMPLEsYXEXAMPLE5qdEXAMPLEcFHoAcEXAMPLEK\noUQDQgAEnWs47PT8+ihhzyvXX6/yYMAWWODluRTR2Ix6ZY7Z+MV7v0W1maJzqeqq\nNQ+cpBvPDbyrDk9+Uf/sEaRCma094g==\n-----END EC PRIVATE KEY-----'
 ```
 -----
 ## testing cryptocurrency payments
 I used litecoin to test cryptocurrency payments, because its the simplest & lowest fee cryptocurrency that BTCPay server supports. You can download the easy-to-use litecoin SPV wallet `electrum-ltc` from [github.com/pooler/electrum-ltc](https://github.com/pooler/electrum-ltc) or [electrum-ltc.org](https://electrum-ltc.org/), set up a wallet, and then either purchase some litecoin from an exchange, or ask Forest for some litecoin to use for testing.
 ## sequence diagram explaining how BTC payment process works
 ![btcpayment_process](readme/btcpayment_process.png)
 This diagram was created with https://app.diagrams.net/.
 To edit it, download the <a download href="readme/btcpayment_process.drawio">diagram file</a> and edit it with the https://app.diagrams.net/ web application, or you may run the application from [source](https://github.com/jgraph/drawio) if you wish.
--- a/app.py
+++ b/app.py
@ -1,4 +1,2 @@
-from capsulflask import create_app
+from capsulflask import app
 create_app()
--- a/capsulflask/init.py
+++ b/capsulflask/init.py
@ -2,13 +2,14 @@ import logging
 from logging.config import dictConfig as logging_dict_config
 import atexit
 import jinja2
 import os
 import hashlib
 import requests
 import sys
 import stripe
-from dotenv import find_dotenv, dotenv_values
+from dotenv import load_dotenv, find_dotenv
 from flask import Flask
 from flask_mail import Mail, Message
 from flask import render_template
@ -22,112 +23,123 @@ from capsulflask import hub_model, spoke_model, cli
 from capsulflask.btcpay import client as btcpay
 from capsulflask.http_client import MyHTTPClient
 class StdoutMockFlaskMail:
    def send(self, message: Message):
      current_app.logger.info(f"Email would have been sent if configured:\n\nto: {','.join(message.recipients)}\nsubject: {message.subject}\nbody:\n\n{message.body}\n\n")
 def create_app():
-  config = {
+load_dotenv(find_dotenv())
      **dotenv_values(find_dotenv()),
      **os.environ,  # override loaded values with environment variables
  }
-  app = Flask(__name__)
+for var_name in [
  "SPOKE_HOST_TOKEN", "HUB_TOKEN", "STRIPE_SECRET_KEY",
  "BTCPAY_PRIVATE_KEY", "MAIL_PASSWORD"
 ]:
  var = os.environ.get(f"{var_name}_FILE")
  if not var:
    continue
-  app.config.from_mapping(
+  if not os.path.isfile(var):
-    TESTING=config.get("TESTING", False),
+    continue
    BASE_URL=config.get("BASE_URL", "http://localhost:5000"),
    SECRET_KEY=config.get("SECRET_KEY", "dev"),
    HUB_MODE_ENABLED=config.get("HUB_MODE_ENABLED", "True").lower() in ['true', '1', 't', 'y', 'yes'],
    SPOKE_MODE_ENABLED=config.get("SPOKE_MODE_ENABLED", "True").lower() in ['true', '1', 't', 'y', 'yes'],
    INTERNAL_HTTP_TIMEOUT_SECONDS=config.get("INTERNAL_HTTP_TIMEOUT_SECONDS", "300"),
    HUB_MODEL=config.get("HUB_MODEL", "capsul-flask"),
    SPOKE_MODEL=config.get("SPOKE_MODEL", "mock"),
    LOG_LEVEL=config.get("LOG_LEVEL", "INFO"),
    SPOKE_HOST_ID=config.get("SPOKE_HOST_ID", "baikal"),
    SPOKE_HOST_TOKEN=config.get("SPOKE_HOST_TOKEN", "changeme"),
    HUB_TOKEN=config.get("HUB_TOKEN", "changeme"),
-    # https://www.postgresql.org/docs/9.1/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS
+  with open(var) as secret_file:
-    # https://stackoverflow.com/questions/56332906/where-to-put-ssl-certificates-when-trying-to-connect-to-a-remote-database-using
+    os.environ[var_name] = secret_file.read().rstrip('\n')
-    # TLS example: sslmode=verify-full sslrootcert=letsencrypt-root-ca.crt host=db.example.com port=5432 user=postgres password=dev dbname=postgres
+  del os.environ[f"{var_name}_FILE"]
    POSTGRES_CONNECTION_PARAMETERS=config.get(
      "POSTGRES_CONNECTION_PARAMETERS", 
      "host=localhost port=5432 user=postgres password=dev dbname=postgres"
    ),
-    DATABASE_SCHEMA=config.get("DATABASE_SCHEMA", "public"),
+app = Flask(__name__)
-    MAIL_SERVER=config.get("MAIL_SERVER", ""),
+app.config.from_mapping(
-    MAIL_PORT=config.get("MAIL_PORT", "465"),
+  BASE_URL=os.environ.get("BASE_URL", default="http://localhost:5000"),
-    MAIL_USE_TLS=config.get("MAIL_USE_TLS", "False").lower() in ['true', '1', 't', 'y', 'yes'],
+  SECRET_KEY=os.environ.get("SECRET_KEY", default="dev"),
-    MAIL_USE_SSL=config.get("MAIL_USE_SSL", "True").lower() in ['true', '1', 't', 'y', 'yes'],
+  HUB_MODE_ENABLED=os.environ.get("HUB_MODE_ENABLED", default="True").lower() in ['true', '1', 't', 'y', 'yes'],
-    MAIL_USERNAME=config.get("MAIL_USERNAME", ""),
+  SPOKE_MODE_ENABLED=os.environ.get("SPOKE_MODE_ENABLED", default="True").lower() in ['true', '1', 't', 'y', 'yes'],
-    MAIL_PASSWORD=config.get("MAIL_PASSWORD", ""),
+  INTERNAL_HTTP_TIMEOUT_SECONDS=os.environ.get("INTERNAL_HTTP_TIMEOUT_SECONDS", default="300"),
-    MAIL_DEFAULT_SENDER=config.get("MAIL_DEFAULT_SENDER", "no-reply@capsul.org"),
+  HUB_MODEL=os.environ.get("HUB_MODEL", default="capsul-flask"),
-    ADMIN_EMAIL_ADDRESSES=config.get("ADMIN_EMAIL_ADDRESSES", "ops@cyberia.club"),
+  SPOKE_MODEL=os.environ.get("SPOKE_MODEL", default="mock"),
-    ADMIN_PANEL_ALLOW_EMAIL_ADDRESSES=config.get("ADMIN_PANEL_ALLOW_EMAIL_ADDRESSES", "forest.n.johnson@gmail.com,capsul@cyberia.club"),
+  LOG_LEVEL=os.environ.get("LOG_LEVEL", default="INFO"),
  SPOKE_HOST_ID=os.environ.get("SPOKE_HOST_ID", default="baikal"),
  SPOKE_HOST_TOKEN=os.environ.get("SPOKE_HOST_TOKEN", default="changeme"),
  HUB_TOKEN=os.environ.get("HUB_TOKEN", default="changeme"),
-    PROMETHEUS_URL=config.get("PROMETHEUS_URL", "https://prometheus.cyberia.club"),
+  # https://www.postgresql.org/docs/9.1/libpq-ssl.html#LIBPQ-SSL-SSLMODE-STATEMENTS
  # https://stackoverflow.com/questions/56332906/where-to-put-ssl-certificates-when-trying-to-connect-to-a-remote-database-using
  # TLS example: sslmode=verify-full sslrootcert=letsencrypt-root-ca.crt host=db.example.com port=5432 user=postgres password=dev dbname=postgres
  POSTGRES_CONNECTION_PARAMETERS=os.environ.get(
    "POSTGRES_CONNECTION_PARAMETERS", 
    default="host=localhost port=5432 user=postgres password=dev dbname=postgres"
  ),
-    STRIPE_API_VERSION=config.get("STRIPE_API_VERSION", "2020-03-02"),
+  DATABASE_SCHEMA=os.environ.get("DATABASE_SCHEMA", default="public"),
    STRIPE_SECRET_KEY=config.get("STRIPE_SECRET_KEY", ""),
    STRIPE_PUBLISHABLE_KEY=config.get("STRIPE_PUBLISHABLE_KEY", ""),
    #STRIPE_WEBHOOK_SECRET=config.get("STRIPE_WEBHOOK_SECRET", "")
-    BTCPAY_PRIVATE_KEY=config.get("BTCPAY_PRIVATE_KEY", "").replace("\\n", "\n"),
+  MAIL_SERVER=os.environ.get("MAIL_SERVER", default=""),
-    BTCPAY_URL=config.get("BTCPAY_URL", "https://btcpay.cyberia.club")
+  MAIL_PORT=os.environ.get("MAIL_PORT", default="465"),
-  )
+  MAIL_USE_TLS=os.environ.get("MAIL_USE_TLS", default="False").lower() in ['true', '1', 't', 'y', 'yes'],
  MAIL_USE_SSL=os.environ.get("MAIL_USE_SSL", default="True").lower() in ['true', '1', 't', 'y', 'yes'],
  MAIL_USERNAME=os.environ.get("MAIL_USERNAME", default=""),
  MAIL_PASSWORD=os.environ.get("MAIL_PASSWORD", default=""),
  MAIL_DEFAULT_SENDER=os.environ.get("MAIL_DEFAULT_SENDER", default="no-reply@capsul.org"),
  ADMIN_EMAIL_ADDRESSES=os.environ.get("ADMIN_EMAIL_ADDRESSES", default="ops@cyberia.club"),
  ADMIN_PANEL_ALLOW_EMAIL_ADDRESSES=os.environ.get("ADMIN_PANEL_ALLOW_EMAIL_ADDRESSES", default="forest.n.johnson@gmail.com,capsul@cyberia.club"),
-  app.config['HUB_URL'] = config.get("HUB_URL", app.config['BASE_URL'])
+  PROMETHEUS_URL=os.environ.get("PROMETHEUS_URL", default="https://prometheus.cyberia.club"),
-  class SetLogLevelToDebugForHeartbeatRelatedMessagesFilter(logging.Filter):
+  STRIPE_API_VERSION=os.environ.get("STRIPE_API_VERSION", default="2020-03-02"),
-    def isHeartbeatRelatedString(self, thing):
+  STRIPE_SECRET_KEY=os.environ.get("STRIPE_SECRET_KEY", default=""),
-      # thing_string = "<error>"
+  STRIPE_PUBLISHABLE_KEY=os.environ.get("STRIPE_PUBLISHABLE_KEY", default=""),
-      is_in_string = False
+  #STRIPE_WEBHOOK_SECRET=os.environ.get("STRIPE_WEBHOOK_SECRET", default="")
      try:
        thing_string = "%s" % thing
        is_in_string = 'heartbeat-task' in thing_string or 'hub/heartbeat' in thing_string or 'spoke/heartbeat' in thing_string
      except:
        pass
      # self.warning("isHeartbeatRelatedString(%s): %s", thing_string, is_in_string )
      return is_in_string
-    def filter(self, record):
+  BTCPAY_PRIVATE_KEY=os.environ.get("BTCPAY_PRIVATE_KEY", default="").replace("\\n", "\n"),
-      if app.config['LOG_LEVEL'] == "DEBUG":
+  BTCPAY_URL=os.environ.get("BTCPAY_URL", default=""),
        return True
-      if self.isHeartbeatRelatedString(record.msg):
+  THEME=os.environ.get("THEME", default="")
-        return False
+)
      for arg in record.args:
        if self.isHeartbeatRelatedString(arg):
          return False
 app.config['HUB_URL'] = os.environ.get("HUB_URL", default=app.config['BASE_URL'])
 class SetLogLevelToDebugForHeartbeatRelatedMessagesFilter(logging.Filter):
  def isHeartbeatRelatedString(self, thing):
    # thing_string = "<error>"
    is_in_string = False
    try:
      thing_string = "%s" % thing
      is_in_string = 'heartbeat-task' in thing_string or 'hub/heartbeat' in thing_string or 'spoke/heartbeat' in thing_string
    except:
      pass
    # self.warning("isHeartbeatRelatedString(%s): %s", thing_string, is_in_string )
    return is_in_string
  def filter(self, record):
    if app.config['LOG_LEVEL'] == "DEBUG":
      return True
-  logging_dict_config({
+    if self.isHeartbeatRelatedString(record.msg):
-    'version': 1,
+      return False
-    'formatters': {'default': {
+    for arg in record.args:
-      'format': '[%(asctime)s] %(levelname)s in %(module)s: %(message)s',
+      if self.isHeartbeatRelatedString(arg):
-    }},
+        return False
-    'filters': {
+
-      'setLogLevelToDebugForHeartbeatRelatedMessages': {
+    return True
-          '()': SetLogLevelToDebugForHeartbeatRelatedMessagesFilter,
+
-      }
+logging_dict_config({
-    },
+  'version': 1,
-    'handlers': {'wsgi': {
+  'formatters': {'default': {
-      'class': 'logging.StreamHandler',
+    'format': '[%(asctime)s] %(levelname)s in %(module)s: %(message)s',
-      'stream': 'ext://flask.logging.wsgi_errors_stream',
+  }},
-      'formatter': 'default',
+  'filters': {
-      'filters': ['setLogLevelToDebugForHeartbeatRelatedMessages']
+    'setLogLevelToDebugForHeartbeatRelatedMessages': {
-    }},
+        '()': SetLogLevelToDebugForHeartbeatRelatedMessagesFilter,
    'root': {
      'level': app.config['LOG_LEVEL'],
      'handlers': ['wsgi']
    }
-  })
+  },
  'handlers': {'wsgi': {
    'class': 'logging.StreamHandler',
    'stream': 'ext://flask.logging.wsgi_errors_stream',
    'formatter': 'default',
    'filters': ['setLogLevelToDebugForHeartbeatRelatedMessages']
  }},
  'root': {
    'level': app.config['LOG_LEVEL'],
    'handlers': ['wsgi']
  }
 })
 # app.logger.critical("critical")
 # app.logger.error("error")
@ -135,122 +147,128 @@ def create_app():
 # app.logger.info("info")
 # app.logger.debug("debug")
-  stripe.api_key = app.config['STRIPE_SECRET_KEY']
+stripe.api_key = app.config['STRIPE_SECRET_KEY']
-  stripe.api_version = app.config['STRIPE_API_VERSION']
+stripe.api_version = app.config['STRIPE_API_VERSION']
-  if app.config['MAIL_SERVER'] != "":
+if app.config['MAIL_SERVER'] != "":
-    app.config['FLASK_MAIL_INSTANCE'] = Mail(app)
+  app.config['FLASK_MAIL_INSTANCE'] = Mail(app)
-  else:
+else:
-    app.logger.warning("No MAIL_SERVER configured. capsul will simply print emails to stdout.")
+  app.logger.warning("No MAIL_SERVER configured. capsul will simply print emails to stdout.")
-    app.config['FLASK_MAIL_INSTANCE'] = StdoutMockFlaskMail()
+  app.config['FLASK_MAIL_INSTANCE'] = StdoutMockFlaskMail()
-  app.config['HTTP_CLIENT'] = MyHTTPClient(timeout_seconds=int(app.config['INTERNAL_HTTP_TIMEOUT_SECONDS']))
+app.config['HTTP_CLIENT'] = MyHTTPClient(timeout_seconds=int(app.config['INTERNAL_HTTP_TIMEOUT_SECONDS']))
 app.config['BTCPAY_ENABLED'] = False
 if app.config['BTCPAY_URL'] != "":
  try:
    app.config['BTCPAY_CLIENT'] = btcpay.Client(api_uri=app.config['BTCPAY_URL'], pem=app.config['BTCPAY_PRIVATE_KEY'])
    app.config['BTCPAY_ENABLED'] = True
  except:
    app.logger.warning("unable to create btcpay client. Capsul will work fine except cryptocurrency payments will not work. The error was: " + my_exec_info_message(sys.exc_info()))
 # only start the scheduler and attempt to migrate the database if we are running the app.
 # otherwise we are running a CLI command.
-  command_line = ' '.join(sys.argv)
+command_line = ' '.join(sys.argv)
-  is_running_server = (
+is_running_server = ('flask run' in command_line) or ('gunicorn' in command_line)
    ('flask run' in command_line) or
    ('gunicorn' in command_line) or
    ('test' in command_line)
  )
-  app.logger.info(f"is_running_server: {is_running_server}")
+app.logger.info(f"is_running_server: {is_running_server}")
-  if app.config['HUB_MODE_ENABLED']:
+if app.config['THEME'] != "":
-    if app.config['HUB_MODEL'] == "capsul-flask":
+  my_loader = jinja2.ChoiceLoader([
-      app.config['HUB_MODEL'] = hub_model.CapsulFlaskHub()
+    jinja2.FileSystemLoader(
      [os.path.join('capsulflask', 'theme', app.config['THEME']),
       'capsulflask/templates']),
  ])
  app.jinja_loader = my_loader
-      # debug mode (flask reloader) runs two copies of the app. When running in debug mode,
+if app.config['HUB_MODE_ENABLED']:
      # we only want to start the scheduler one time.
      if is_running_server and (not app.debug or config.get('WERKZEUG_RUN_MAIN') == 'true'):
        scheduler = BackgroundScheduler()
        heartbeat_task_url = f"{app.config['HUB_URL']}/hub/heartbeat-task"
        heartbeat_task_headers = {'Authorization': f"Bearer {app.config['HUB_TOKEN']}"}
        heartbeat_task = lambda: requests.post(heartbeat_task_url, headers=heartbeat_task_headers)
        scheduler.add_job(name="heartbeat-task", func=heartbeat_task, trigger="interval", seconds=5)
        scheduler.start()
-        atexit.register(lambda: scheduler.shutdown())
+  if app.config['HUB_MODEL'] == "capsul-flask":
    app.config['HUB_MODEL'] = hub_model.CapsulFlaskHub()
-    else:
+    # debug mode (flask reloader) runs two copies of the app. When running in debug mode,
-      app.config['HUB_MODEL'] = hub_model.MockHub()
+    # we only want to start the scheduler one time.
    if is_running_server and (not app.debug or os.environ.get('WERKZEUG_RUN_MAIN') == 'true'):
      scheduler = BackgroundScheduler()
      heartbeat_task_url = f"{app.config['HUB_URL']}/hub/heartbeat-task"
      heartbeat_task_headers = {'Authorization': f"Bearer {app.config['HUB_TOKEN']}"}
      heartbeat_task = lambda: requests.post(heartbeat_task_url, headers=heartbeat_task_headers)
      scheduler.add_job(name="heartbeat-task", func=heartbeat_task, trigger="interval", seconds=5)
      scheduler.start()
-    from capsulflask import db
+      atexit.register(lambda: scheduler.shutdown())
    db.init_app(app, is_running_server)
-  from capsulflask import (
+  else:
-    auth, landing, console, payment, metrics, cli, hub_api, publicapi, admin
+    app.config['HUB_MODEL'] = hub_model.MockHub()
-  )
+
  from capsulflask import db
  db.init_app(app, is_running_server)
  from capsulflask import auth, landing, console, payment, metrics, cli, hub_api, admin
  app.register_blueprint(auth.bp)
  app.register_blueprint(landing.bp)
  app.register_blueprint(auth.bp)
  app.register_blueprint(console.bp)
  app.register_blueprint(payment.bp)
  app.register_blueprint(metrics.bp)
  app.register_blueprint(cli.bp)
  app.register_blueprint(hub_api.bp)
  app.register_blueprint(admin.bp)
  app.register_blueprint(publicapi.bp)
  app.add_url_rule("/", endpoint="index")
  if app.config['SPOKE_MODE_ENABLED']:
    if app.config['SPOKE_MODEL'] == "shell-scripts":
      app.config['SPOKE_MODEL'] = spoke_model.ShellScriptSpoke()
    else:
      app.config['SPOKE_MODEL'] = spoke_model.MockSpoke()
    from capsulflask import spoke_api
    app.register_blueprint(spoke_api.bp)
  @app.after_request
  def security_headers(response):
    response.headers['X-Frame-Options'] = 'SAMEORIGIN'
    if 'Content-Security-Policy' not in response.headers:
      response.headers['Content-Security-Policy'] = "default-src 'self'"
    response.headers['X-Content-Type-Options'] = 'nosniff'
    return response
-  @app.context_processor
+if app.config['SPOKE_MODE_ENABLED']:
-  def override_url_for():
+
-    """
+  if app.config['SPOKE_MODEL'] == "shell-scripts":
-    override the url_for function built into flask 
+    app.config['SPOKE_MODEL'] = spoke_model.ShellScriptSpoke()
-    with our own custom implementation that busts the cache correctly when files change 
+  else:
-    """
+    app.config['SPOKE_MODEL'] = spoke_model.MockSpoke()
-    return dict(url_for=url_for_with_cache_bust)
+
  from capsulflask import spoke_api
  app.register_blueprint(spoke_api.bp)
@app.after_request
 def security_headers(response):
  response.headers['X-Frame-Options'] = 'SAMEORIGIN'
  if 'Content-Security-Policy' not in response.headers:
    response.headers['Content-Security-Policy'] = "default-src 'self'"
  response.headers['X-Content-Type-Options'] = 'nosniff'
  return response
-  def url_for_with_cache_bust(endpoint, **values):
+@app.context_processor
-    """
+def override_url_for():
-    Add a query parameter based on the hash of the file, this acts as a cache bust
+  """
-    """
+  override the url_for function built into flask 
-    
+  with our own custom implementation that busts the cache correctly when files change 
-    if endpoint == 'static':
+  """
-      filename = values.get('filename', None)
+  return dict(url_for=url_for_with_cache_bust)
-      if filename:
+
-        if 'STATIC_FILE_HASH_CACHE' not in current_app.config:
+
-          current_app.config['STATIC_FILE_HASH_CACHE'] = dict()
+def url_for_with_cache_bust(endpoint, **values):
-        
+  """
-        if filename not in current_app.config['STATIC_FILE_HASH_CACHE']:
+  Add a query parameter based on the hash of the file, this acts as a cache bust
-          filepath = os.path.join(current_app.root_path, endpoint, filename)
+  """
-          #print(filepath)
+  
-          if os.path.isfile(filepath) and os.access(filepath, os.R_OK):
+  if endpoint == 'static':
    filename = values.get('filename', None)
    if filename:
      if 'STATIC_FILE_HASH_CACHE' not in current_app.config:
        current_app.config['STATIC_FILE_HASH_CACHE'] = dict()
      if filename not in current_app.config['STATIC_FILE_HASH_CACHE']:
        filepath = os.path.join(current_app.root_path, endpoint, filename)
        #print(filepath)
        if os.path.isfile(filepath) and os.access(filepath, os.R_OK):
          with open(filepath, 'rb') as file:
            hasher = hashlib.md5()
            hasher.update(file.read())
            current_app.config['STATIC_FILE_HASH_CACHE'][filename] = hasher.hexdigest()[-6:]
-            with open(filepath, 'rb') as file:
+      values['q'] = current_app.config['STATIC_FILE_HASH_CACHE'][filename]
              hasher = hashlib.md5()
              hasher.update(file.read())
              current_app.config['STATIC_FILE_HASH_CACHE'][filename] = hasher.hexdigest()[-6:]
        values['q'] = current_app.config['STATIC_FILE_HASH_CACHE'][filename]
-    return url_for(endpoint, **values)
+  return url_for(endpoint, **values)
  return app
--- a/capsulflask/auth.py
+++ b/capsulflask/auth.py
@ -1,4 +1,3 @@
 from base64 import b64decode
 import functools
 import re
@ -25,15 +24,6 @@ def account_required(view):
    @functools.wraps(view)
    def wrapped_view(**kwargs):
        api_token = request.headers.get('authorization', None)
        if api_token is not None:
            email = get_model().authenticate_token(b64decode(api_token).decode('utf-8'))
            if email is not None:
                session.clear()
                session["account"] = email
                session["csrf-token"] = generate()
        if session.get("account") is None or session.get("csrf-token") is None :
            return redirect(url_for("auth.login"))
@ -41,6 +31,7 @@ def account_required(view):
    return wrapped_view
 def admin_account_required(view):
    """View decorator that redirects non-admin users to the login page."""
@ -65,7 +56,7 @@ def login():
        if not email:
            errors.append("email is required")
        elif len(email.strip()) < 6 or email.count('@') != 1 or email.count('.') == 0: 
-            errors.append("enter a valid email address")
+	        errors.append("enter a valid email address")
        if len(errors) == 0:
            result = get_model().login(email)
--- a/capsulflask/console.py
+++ b/capsulflask/console.py
@ -1,9 +1,7 @@
 from base64 import b64encode
 from datetime import datetime, timedelta
 import json
 import re
 import sys
-
+import json
 from datetime import datetime, timedelta
 from flask import Blueprint
 from flask import flash
 from flask import current_app
@ -100,6 +98,7 @@ def index():
@bp.route("/<string:id>", methods=("GET", "POST"))
@account_required
 def detail(id):
  duration=request.args.get('duration')
  if not duration:
    duration = "5m"
@ -189,67 +188,6 @@ def detail(id):
      duration=duration
    )
 def _create(vm_sizes, operating_systems, public_keys_for_account, server_data):
  errors = list()
  size = server_data.get("size")
  os = server_data.get("os")
  posted_keys_count = int(server_data.get("ssh_authorized_key_count"))
  if not size:
    errors.append("Size is required")
  elif size not in vm_sizes:
    errors.append(f"Invalid size {size}")
  if not os:
    errors.append("OS is required")
  elif os not in operating_systems:
    errors.append(f"Invalid os {os}")
  posted_keys = list()
  if posted_keys_count > 1000:
    errors.append("something went wrong with ssh keys")
  else:
    for i in range(0, posted_keys_count):
      if f"ssh_key_{i}" in server_data:
        posted_name = server_data.get(f"ssh_key_{i}")
        key = None
        for x in public_keys_for_account:
          if x['name'] == posted_name:
            key = x
        if key:
          posted_keys.append(key)
        else:
          errors.append(f"SSH Key \"{posted_name}\" doesn't exist")
  if len(posted_keys) == 0:
    errors.append("At least one SSH Public Key is required")
  capacity_avaliable = current_app.config["HUB_MODEL"].capacity_avaliable(
    vm_sizes[size]['memory_mb']*1024*1024
  )
  if not capacity_avaliable:
    errors.append("""
      host(s) at capacity. no capsuls can be created at this time. sorry. 
    """)
  if len(errors) == 0:
    id = make_capsul_id()
    current_app.config["HUB_MODEL"].create(
      email = session["account"],
      id=id,
      os=os,
      size=size,
      template_image_file_name=operating_systems[os]['template_image_file_name'],
      vcpus=vm_sizes[size]['vcpus'],
      memory_mb=vm_sizes[size]['memory_mb'],
      ssh_authorized_keys=list(map(lambda x: x["content"], posted_keys))
    )
    return id, errors
  return None, errors
@bp.route("/create", methods=("GET", "POST"))
@account_required
@ -261,17 +199,6 @@ def create():
  capacity_avaliable = current_app.config["HUB_MODEL"].capacity_avaliable(512*1024*1024)
  errors = list()
  if request.method == "POST":
    if "csrf-token" not in request.form or request.form['csrf-token'] != session['csrf-token']:
      return abort(418, f"u want tea")
    id, errors = _create(
      vm_sizes, 
      operating_systems,
      public_keys_for_account,
      request.form)
    if len(errors) == 0: 
      return redirect(f"{url_for('console.index')}?created={id}")
  affordable_vm_sizes = dict()
  for key, vm_size in vm_sizes.items():
    # if a user deposits $7.50 and then creates an f1-s vm which costs 7.50 a month, 
@ -280,6 +207,70 @@ def create():
    if vm_size["dollars_per_month"] <= account_balance+0.25:
      affordable_vm_sizes[key] = vm_size
  if request.method == "POST":
    if "csrf-token" not in request.form or request.form['csrf-token'] != session['csrf-token']:
      return abort(418, f"u want tea")
    size = request.form["size"]
    os = request.form["os"]
    if not size:
      errors.append("Size is required")
    elif size not in vm_sizes:
      errors.append(f"Invalid size {size}")
    elif size not in affordable_vm_sizes:
      errors.append(f"Your account must have enough credit to run an {size} for 1 month before you will be allowed to create it")
    if not os:
      errors.append("OS is required")
    elif os not in operating_systems:
      errors.append(f"Invalid os {os}")
    posted_keys_count = int(request.form["ssh_authorized_key_count"])
    posted_keys = list()
    if posted_keys_count > 1000:
      errors.append("something went wrong with ssh keys")
    else:
      for i in range(0, posted_keys_count):
        if f"ssh_key_{i}" in request.form:
          posted_name = request.form[f"ssh_key_{i}"]
          key = None
          for x in public_keys_for_account:
            if x['name'] == posted_name:
              key = x
          if key:
            posted_keys.append(key)
          else:
            errors.append(f"SSH Key \"{posted_name}\" doesn't exist")
    if len(posted_keys) == 0:
      errors.append("At least one SSH Public Key is required")
    capacity_avaliable = current_app.config["HUB_MODEL"].capacity_avaliable(vm_sizes[size]['memory_mb']*1024*1024)
    if not capacity_avaliable:
      errors.append("""
        host(s) at capacity. no capsuls can be created at this time. sorry. 
      """)
    if len(errors) == 0:
      id = make_capsul_id()
      # we can't create the vm record in the DB yet because its IP address needs to be allocated first.
      # so it will be created when the allocation happens inside the hub_api.
      current_app.config["HUB_MODEL"].create(
        email = session["account"],
        id=id,
        os=os,
        size=size,
        template_image_file_name=operating_systems[os]['template_image_file_name'],
        vcpus=vm_sizes[size]['vcpus'],
        memory_mb=vm_sizes[size]['memory_mb'],
        ssh_authorized_keys=list(map(lambda x: dict(name=x['name'], content=x['content']), posted_keys)) 
      )
      return redirect(f"{url_for('console.index')}?created={id}")
  for error in errors:
    flash(error)
@ -299,25 +290,23 @@ def create():
    vm_sizes=affordable_vm_sizes
  )
-@bp.route("/keys", methods=("GET", "POST"))
+@bp.route("/ssh", methods=("GET", "POST"))
@account_required
-def ssh_api_keys():
+def ssh_public_keys():
  errors = list()
  token = None
  if request.method == "POST":
    if "csrf-token" not in request.form or request.form['csrf-token'] != session['csrf-token']:
      return abort(418, f"u want tea")
-    action = request.form["action"]
+    method = request.form["method"]
-
+    content = None
-    if action == 'upload_ssh_key':
+    if method == "POST":
      content = None
      content = request.form["content"].replace("\r", " ").replace("\n", " ").strip()
-        
+      
-      name = request.form["name"]
+    name = request.form["name"]
-      if not name or len(name.strip()) < 1:
+    if not name or len(name.strip()) < 1:
      if method == "POST":
        parts = re.split(" +", content)
        if len(parts) > 2 and len(parts[2].strip()) > 0:
          name = parts[2].strip()
@ -325,9 +314,10 @@ def ssh_api_keys():
          name = parts[0].strip()
      else:
        errors.append("Name is required")
-      if not re.match(r"^[0-9A-Za-z_@:. -]+$", name):
+    if not re.match(r"^[0-9A-Za-z_@:. -]+$", name):
-        errors.append(f"Key name '{name}' must match \"^[0-9A-Za-z_@:. -]+$\"")
+      errors.append(f"Key name '{name}' must match \"^[0-9A-Za-z_@:. -]+$\"")
    if method == "POST":
      if not content or len(content.strip()) < 1:
        errors.append("Content is required")
      else:
@ -340,36 +330,24 @@ def ssh_api_keys():
      if len(errors) == 0:
        get_model().create_ssh_public_key(session["account"], name, content)
-    elif action == "delete_ssh_key":
+    elif method == "DELETE":
      get_model().delete_ssh_public_key(session["account"], name)
-    elif action == "generate_api_token":
+      if len(errors) == 0:
-      name = request.form["name"]
+        get_model().delete_ssh_public_key(session["account"], name)
      if name == '':
          name = datetime.utcnow().strftime('%y-%m-%d %H:%M:%S')
      token = b64encode(
        get_model().generate_api_token(session["account"], name).encode('utf-8')
      ).decode('utf-8')
    elif action == "delete_api_token":
      get_model().delete_api_token(session["account"], request.form["id"])
  for error in errors:
    flash(error)
-  ssh_keys_list=list(map(
+  keys_list=list(map(
    lambda x: dict(name=x['name'], content=f"{x['content'][:20]}...{x['content'][len(x['content'])-20:]}"), 
    get_model().list_ssh_public_keys_for_account(session["account"])
  ))
  api_tokens_list = get_model().list_api_tokens(session["account"])
  return render_template(
-    "keys.html", 
+    "ssh-public-keys.html", 
    csrf_token = session["csrf-token"],
-    api_tokens=api_tokens_list, 
+    ssh_public_keys=keys_list, 
-    ssh_public_keys=ssh_keys_list,
+    has_ssh_public_keys=len(keys_list) > 0
    generated_api_token=token,
  )
 def get_vms():
@ -393,6 +371,7 @@ def get_vm_months_float(vm, as_of):
  return days / average_number_of_days_in_a_month
 def get_account_balance(vms, payments, as_of):
  vm_cost_dollars = 0.0
  for vm in vms:
    vm_months = get_vm_months_float(vm, as_of)
@ -405,6 +384,7 @@ def get_account_balance(vms, payments, as_of):
@bp.route("/account-balance")
@account_required
 def account_balance():
  payment_sessions = get_model().list_payment_sessions_for_account(session['account'])
  for payment_session in payment_sessions:
    if payment_session['type'] == 'btcpay':
@ -446,6 +426,7 @@ def account_balance():
    has_vms=len(vms_billed)>0, 
    vms_billed=vms_billed,
    warning_text=warning_text,
    btcpay_enabled=current_app.config["BTCPAY_ENABLED"],
    payments=list(map(
      lambda x: dict(
        dollars=x["dollars"], 
--- a/capsulflask/db.py
+++ b/capsulflask/db.py
@ -33,7 +33,7 @@ def init_app(app, is_running_server):
    result = re.search(r"^\d+_(up|down)", filename)
    if not result:
      app.logger.error(f"schemaVersion {filename} must match ^\\d+_(up|down). exiting.")
-      continue
+      exit(1)
    key = result.group()
    with open(join(schemaMigrationsPath, filename), 'rb') as file:
      schemaMigrations[key] = file.read().decode("utf8")
@ -43,7 +43,7 @@ def init_app(app, is_running_server):
  hasSchemaVersionTable = False
  actionWasTaken = False
  schemaVersion = 0
-  desiredSchemaVersion = 19
+  desiredSchemaVersion = 18
  cursor = connection.cursor()
@ -128,3 +128,4 @@ def close_db(e=None):
  if db_model is not None:
    db_model.cursor.close()
    current_app.config['PSYCOPG2_CONNECTION_POOL'].putconn(db_model.connection)
--- a/capsulflask/db_model.py
+++ b/capsulflask/db_model.py
@ -1,8 +1,8 @@
 import re
 # I was never able to get this type hinting to work correctly 
 # from psycopg2.extensions import connection as Psycopg2Connection, cursor as Psycopg2Cursor
 import hashlib
 from nanoid import generate
 from flask import current_app
 from typing import List
@ -17,6 +17,7 @@ class DBModel:
    self.cursor = cursor
  #     ------    LOGIN     ---------     
@ -42,16 +43,6 @@ class DBModel:
    self.connection.commit()
    return (token, ignoreCaseMatches)
  def authenticate_token(self, token):
    m = hashlib.md5()
    m.update(token.encode('utf-8'))
    hash_token = m.hexdigest()
    self.cursor.execute("SELECT email FROM api_tokens WHERE token = %s", (hash_token, ))
    result = self.cursor.fetchall()
    if len(result) == 1:
      return result[0]
    return None
  def consume_token(self, token):
    self.cursor.execute("SELECT email FROM login_tokens WHERE token = %s and created > (NOW() - INTERVAL '20 min')", (token, ))
@ -141,32 +132,6 @@ class DBModel:
    self.cursor.execute( "DELETE FROM ssh_public_keys where email = %s AND name = %s", (email, name) )
    self.connection.commit()
  def list_api_tokens(self, email):
    self.cursor.execute(
      "SELECT id, token, name, created FROM api_tokens WHERE email = %s", 
      (email, )
    )
    return list(map(
      lambda x: dict(id=x[0], token=x[1], name=x[2], created=x[3]), 
      self.cursor.fetchall()
    ))
  def generate_api_token(self, email, name):
    token = generate()
    m = hashlib.md5()
    m.update(token.encode('utf-8'))
    hash_token = m.hexdigest()
    self.cursor.execute(
      "INSERT INTO api_tokens (email, name, token) VALUES (%s, %s, %s)", 
      (email, name, hash_token)
    )
    self.connection.commit()
    return token
  def delete_api_token(self, email, id_):
    self.cursor.execute( "DELETE FROM api_tokens where email = %s AND id = %s", (email, id_))
    self.connection.commit()
  def list_vms_for_account(self, email):
    self.cursor.execute(""" 
      SELECT vms.id, vms.public_ipv4, vms.public_ipv6, vms.size, vms.os, vms.created, vms.deleted, vm_sizes.dollars_per_month
@ -514,3 +479,8 @@ class DBModel:
    #cursor.close()
    return to_return
--- a/capsulflask/hub_model.py
+++ b/capsulflask/hub_model.py
@ -17,6 +17,10 @@ from capsulflask.http_client import HTTPResult
 from capsulflask.shared import VirtualizationInterface, VirtualMachine, OnlineHost, validate_capsul_id, my_exec_info_message
 class MockHub(VirtualizationInterface):
  def __init__(self):
    self.default_network = "public1"
    self.default_ipv4 = "1.1.1.1"
  def capacity_avaliable(self, additional_ram_bytes):
    return True
@ -29,9 +33,9 @@ class MockHub(VirtualizationInterface):
        {"key_type":"RSA", "content":"ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCvotgzgEP65JUQ8S8OoNKy1uEEPEAcFetSp7QpONe6hj4wPgyFNgVtdoWdNcU19dX3hpdse0G8OlaMUTnNVuRlbIZXuifXQ2jTtCFUA2mmJ5bF+XjGm3TXKMNGh9PN+wEPUeWd14vZL+QPUMev5LmA8cawPiU5+vVMLid93HRBj118aCJFQxLgrdP48VPfKHFRfCR6TIjg1ii3dH4acdJAvlmJ3GFB6ICT42EmBqskz2MPe0rIFxH8YohCBbAbrbWYcptHt4e48h4UdpZdYOhEdv89GrT8BF2C5cbQ5i9qVpI57bXKrj8hPZU5of48UHLSpXG8mbH0YDiOQOfKX/Mt", "sha256":"ghee6KzRnBJhND2kEUZSaouk7CD6o6z2aAc8GPkV+GQ"},
        {"key_type":"ECDSA", "content":"ecdsa-sha2-nistp256 AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBLLgOoATz9R4aS2kk7vWoxX+lshK63t9+5BIHdzZeFE1o+shlcf0Wji8cN/L1+m3bi0uSETZDOAWMP3rHLJj9Hk=", "sha256":"aCYG1aD8cv/TjzJL0bi9jdabMGksdkfa7R8dCGm1yYs"}
      ]""")
-      return VirtualMachine(id, current_app.config["SPOKE_HOST_ID"], ipv4="1.1.1.1", ssh_host_keys=ssh_host_keys)
+      return VirtualMachine(id, current_app.config["SPOKE_HOST_ID"], ipv4=self.default_ipv4, ssh_host_keys=ssh_host_keys)
-    return VirtualMachine(id, current_app.config["SPOKE_HOST_ID"], ipv4="1.1.1.1")
+    return VirtualMachine(id, current_app.config["SPOKE_HOST_ID"], ipv4=self.default_ipv4)
  def list_ids(self) -> list:
    return get_model().all_non_deleted_vm_ids()
@ -40,6 +44,16 @@ class MockHub(VirtualizationInterface):
    validate_capsul_id(id)
    current_app.logger.info(f"mock create: {id} for {email}")
    sleep(1)
    get_model().create_vm(
      email=email, 
      id=id, 
      size=size, 
      os=os,
      host=current_app.config["SPOKE_HOST_ID"],
      network_name=self.default_network,
      public_ipv4=self.default_ipv4,
      ssh_authorized_keys=list(map(lambda x: x["name"], ssh_authorized_keys)),
    )
  def destroy(self, email: str, id: str):
    current_app.logger.info(f"mock destroy: {id} for {email}")
@ -49,7 +63,6 @@ class MockHub(VirtualizationInterface):
 class CapsulFlaskHub(VirtualizationInterface):
  def synchronous_operation(self, hosts: List[OnlineHost], email: str, payload: str) -> List[HTTPResult]:
    return self.generic_operation(hosts, email, payload, True)[1]
@ -262,4 +275,3 @@ class CapsulFlaskHub(VirtualizationInterface):
    if not result_status == "success":
      raise ValueError(f"""failed to {command} vm "{id}" on host "{host.id}" for {email}: {result_json_string}""")
--- a/capsulflask/landing.py
+++ b/capsulflask/landing.py
@ -12,9 +12,11 @@ def index():
@bp.route("/pricing")
 def pricing():
  vm_sizes = get_model().vm_sizes_dict()
  operating_systems = get_model().operating_systems_dict()
  return render_template(
    "pricing.html", 
    vm_sizes=vm_sizes,
    operating_systems=operating_systems
  )
--- a/capsulflask/payment.py
+++ b/capsulflask/payment.py
@ -48,6 +48,10 @@ def validate_dollars():
 def btcpay_payment():
  errors = list()
  if not current_app.config['BTCPAY_ENABLED']:
    flash("BTCPay is not enabled on this server")
    return redirect(url_for("console.account_balance"))
  if request.method == "POST":
    result = validate_dollars()
    errors = result[0]
@ -289,4 +293,4 @@ def success():
 #   except stripe.error.SignatureVerificationError:
 #     print("/payment/stripe/webhook returned 400: invalid signature")
 #     abort(400, "invalid signature")
-      
+      
--- a/capsulflask/publicapi.py
+++ b/capsulflask/publicapi.py
@ -1,40 +0,0 @@
 import datetime
 from flask import Blueprint
 from flask import current_app
 from flask import jsonify
 from flask import request
 from flask import session
 from nanoid import generate
 from capsulflask.auth import account_required
 from capsulflask.db import get_model
 bp = Blueprint("publicapi", __name__, url_prefix="/api")
@bp.route("/capsul/create", methods=["POST"])
@account_required
 def capsul_create():
    email = session["account"]
    from .console import _create,get_account_balance, get_payments, get_vms
    vm_sizes = get_model().vm_sizes_dict()
    operating_systems = get_model().operating_systems_dict()
    public_keys_for_account = get_model().list_ssh_public_keys_for_account(session["account"])
    account_balance = get_account_balance(get_vms(), get_payments(), datetime.datetime.utcnow())
    capacity_avaliable = current_app.config["HUB_MODEL"].capacity_avaliable(512*1024*1024)
    request.json['ssh_authorized_key_count'] = 1
    id, errors = _create(
      vm_sizes, 
      operating_systems,
      public_keys_for_account,
      request.json)
    if id is not None:
        return jsonify(
            id=id,
        )
    return jsonify(errors=errors)
--- a/capsulflask/schema_migrations/19_down_api_tokens.py
+++ b/capsulflask/schema_migrations/19_down_api_tokens.py
@ -1,2 +0,0 @@
 DROP TABLE api_keys;
 UPDATE schemaversion SET version = 18;
--- a/capsulflask/schema_migrations/19_up_api_tokens.py
+++ b/capsulflask/schema_migrations/19_up_api_tokens.py
@ -1,9 +0,0 @@
 CREATE TABLE api_tokens (
  id                 SERIAL PRIMARY KEY,
  email              TEXT REFERENCES accounts(email) ON DELETE RESTRICT,
  name               TEXT NOT NULL,
  created            TIMESTAMP NOT NULL DEFAULT NOW(),
  token              TEXT NOT NULL
 );
 UPDATE schemaversion SET version = 19;
--- a/capsulflask/static/favicon.yolocolo.ico
+++ b/capsulflask/static/favicon.yolocolo.ico
--- a/capsulflask/static/icon.yolocolo.png
+++ b/capsulflask/static/icon.yolocolo.png
--- a/capsulflask/static/style.css
+++ b/capsulflask/static/style.css
@ -241,7 +241,6 @@ thead {
  background: #bdc7b812;
 }
 td, th {
  padding: 0.1em 1em;
 }
 table.small td, table.small th {
@ -378,4 +377,4 @@ footer {
  border: 1px solid rgba(255, 223, 155, 0.8);
  box-sizing: border-box;
  position: relative;
-}
+}
--- a/capsulflask/static/style.yolocolo.css
+++ b/capsulflask/static/style.yolocolo.css
@ -0,0 +1,35 @@
 html {
  color: #241e1e !important;
  background-color: #bdc7b8 !important;
 }
 a {
  color:#00517a !important;
  text-shadow: 1px 1px 0px #eee !important;
 }
 a:hover, a:active, a:visited {
  color: #323417 !important;
 } 
 .nav-links  a {
  text-shadow: 2px 2px 0px #eee !important;
 }
 h1, h2, h3, h4, h5 {
 	text-shadow: 2px 2px 0px #eee;
 }
 main {
  border: 1px dashed #241e1e !important;
 }
 input, select, textarea {
  color: #241e1e !important;
 }
 th {
  border-right: 1px solid #eee !important;
  text-align: left !important;
 }
--- a/capsulflask/templates/account-balance.html
+++ b/capsulflask/templates/account-balance.html
@ -46,7 +46,9 @@
            <a href="/payment/stripe">Add funds with Credit/Debit (stripe)</a>
            <ul><li>notice: stripe will load nonfree javascript </li></ul>
          </li>
          {% if btcpay_enabled %}
          <li><a href="/payment/btcpay">Add funds with Bitcoin/Litecoin/Monero (btcpay)</a></li>
          {% endif %}
          <li>Cash: email <a href="mailto:treasurer@cyberia.club">treasurer@cyberia.club</a></li>
        </ul>
--- a/capsulflask/templates/base.html
+++ b/capsulflask/templates/base.html
@ -31,7 +31,7 @@
    {% if session["account"] %} 
      <a href="/console">Capsuls</a>
-      <a href="/console/keys">SSH &amp; API Keys</a>
+      <a href="/console/ssh">SSH Public Keys</a>
      <a href="/console/account-balance">Account Balance</a>
    {% endif %}
--- a/capsulflask/templates/capsul-detail.html
+++ b/capsulflask/templates/capsul-detail.html
@ -101,7 +101,7 @@
      </div>
      <div class="row justify-start">
        <label class="align" for="ssh_authorized_keys">SSH Authorized Keys</label>
-        <a id="ssh_authorized_keys" href="/console/keys">{{ vm['ssh_authorized_keys'] }}</a>
+        <a id="ssh_authorized_keys" href="/console/ssh">{{ vm['ssh_authorized_keys'] }}</a>
      </div>
    </div>
--- a/capsulflask/templates/create-capsul.html
+++ b/capsulflask/templates/create-capsul.html
@ -31,7 +31,7 @@
    <p>(At least one month of funding is required)</p>
  {% elif no_ssh_public_keys %}
    <p>You don't have any ssh public keys yet.</p> 
-    <p>You must <a href="/console/keys">upload one</a> before you can create a Capsul.</p>
+    <p>You must <a href="/console/ssh">upload one</a> before you can create a Capsul.</p>
  {% elif not capacity_avaliable %}
    <p>Host(s) at capacity. No capsuls can be created at this time. sorry. </p> 
  {% else %}
--- a/capsulflask/templates/faq.html
+++ b/capsulflask/templates/faq.html
@ -23,6 +23,7 @@
     How do I log in?
     <p>ssh to the ip provided to you using the cyberian user.</p>
     <pre class='code'>$ ssh cyberian@1.2.3.4</pre>
     <p>For more information, see <a href="/about-ssh">Understanding the Secure Shell Protocol (SSH)</a>.</p>
   </li>
   <li>
     How do I change to the root user?
--- a/capsulflask/templates/pricing.html
+++ b/capsulflask/templates/pricing.html
@ -6,21 +6,37 @@
  <div class="row third-margin">
    <h1>CAPSUL TYPES & PRICING</h1>
  </div>
  <div class="row half-margin">
    <table>
      <thead>
        <tr>
          <th>type</th>
          <th>monthly*</th>
          <th>cpus</th>
          <th>mem</th>
          <th>ssd</th>
          <th>net</th>
        </tr>
      </thead>
      <tbody>
      {% for vm_size_key, vm_size in vm_sizes.items() %}
        <tr>
          <td>{{ vm_size_key }}</td>
          <td>${{ vm_size['dollars_per_month'] }}</td>
          <td>{{ vm_size['vcpus'] }}</td>
          <td>{{ vm_size['memory_mb'] }}</td>
          <td>25G</td>
          <td>{{ vm_size['bandwidth_gb_per_month'] }}</td>
        </tr>
      {% endfor %}
      </tbody>
    </table>
  </div>
  <div class="row half-margin">
    <pre>
    type     monthly*  cpus  mem     ssd   net*
    -----    -------   ----  ---     ---   ---
    f1-xs    $5.00     1     512M    25G   .5TB
    f1-s     $7.50     1     1024M   25G   1TB
    f1-m     $12.50    1     2048M   25G   2TB
    f1-l     $20.00    2     3072M   25G   3TB
    f1-x     $27.50    3     4096M   25G   4TB
    f1-xx    $50.00    4     8192M   25G   5TB
    * net is calculated as a per-month average
    * vms are billed for a minimum of 24 hours upon creation
    * all VMs come standard with one public IPv4 address
    SUPPORTED OPERATING SYSTEMS:
--- a/capsulflask/templates/ssh-public-keys.html
+++ b/capsulflask/templates/ssh-public-keys.html
@ -1,18 +1,17 @@
 {% extends 'base.html' %}
-{% block title %}SSH &amp; API Keys{% endblock %}
+{% block title %}SSH Public Keys{% endblock %}
 {% block content %}
 <div class="row third-margin">
  <h1>SSH PUBLIC KEYS</h1>
 </div>
 <div class="row third-margin"><div>
-    {% if ssh_public_keys|length > 0 %} <hr/> {% endif %}
+  {% if has_ssh_public_keys %} <hr/> {% endif %}
  {% for ssh_public_key in ssh_public_keys %}
    <form method="post">
      <input type="hidden" name="method" value="DELETE"></input> 
      <input type="hidden" name="action" value="delete_ssh_key"></input>
      <input type="hidden" name="name" value="{{ ssh_public_key['name'] }}"></input> 
      <input type="hidden" name="csrf-token" value="{{ csrf_token }}"/>
      <div class="row">
@ -23,14 +22,13 @@
    </form>
  {% endfor %}
-  {% if ssh_public_keys|length > 0 %} <hr/> {% endif %}
+  {% if has_ssh_public_keys %} <hr/> {% endif %}
  <div class="third-margin">
    <h1>UPLOAD A NEW SSH PUBLIC KEY</h1>
  </div>
  <form method="post">
    <input type="hidden" name="method" value="POST"></input>
    <input type="hidden" name="action" value="upload_ssh_key"></input>
    <input type="hidden" name="csrf-token" value="{{ csrf_token }}"/>
    <div class="row justify-start">
      <label class="align" for="content">File Contents</label>
@ -56,51 +54,6 @@
    </div>
  </form>
 </div></div>
 <hr/>
 <div class="row third-margin">
  <h1>API KEYS</h1>
 </div>
 <div class="row third-margin"><div>
  {% if generated_api_token %}
    <hr/>
    Generated key:
    <span class="code">{{ generated_api_token }}</span>
  {% endif %}
  {% if api_tokens|length >0 %} <hr/>{% endif %}
  {% for api_token in api_tokens %}
    <form method="post">
      <input type="hidden" name="method" value="DELETE"></input> 
      <input type="hidden" name="action" value="delete_api_token"></input>
      <input type="hidden" name="id" value="{{ api_token['id'] }}"></input> 
      <input type="hidden" name="csrf-token" value="{{ csrf_token }}"/>
      <div class="row">
        <span class="code">{{ api_token['name'] }}</span>
        created {{ api_token['created'].strftime("%b %d %Y") }}
        <input type="submit" value="Delete">
      </div>
    </form>
  {% endfor %}
  {% if api_tokens|length >0 %} <hr/>{% endif %}
  <div class="third-margin">
    <h1>GENERATE A NEW API KEY</h1>
  </div>
  <form method="post">
    <input type="hidden" name="method" value="POST"></input>
    <input type="hidden" name="action" value="generate_api_token"></input>
    <input type="hidden" name="csrf-token" value="{{ csrf_token }}"/>
    <div class="smalltext">
      <p>Generate a new API key, to integrate with other systems.</p>
    </div>
    <div class="row justify-start">
      <label class="align" for="name">Key Name</label>
      <input type="text" id="name" name="name"></input> (defaults to creation time)
    </div>
    <div class="row justify-end">
      <input type="submit" value="Generate">
    </div>
  </form>
 </div></div>
 {% endblock %}
 {% block pagesource %}/templates/ssh-public-keys.html{% endblock %}
--- a/capsulflask/tests/init.py
+++ b/capsulflask/tests/init.py
--- a/capsulflask/tests/test_auth.py
+++ b/capsulflask/tests/test_auth.py
@ -1,23 +0,0 @@
 from flask import url_for, session
 from capsulflask.db import get_model
 from capsulflask.tests_base import BaseTestCase
 class LoginTests(BaseTestCase):
    render_templates = False
    def test_login_request(self):
        with self.client as client:
            response = client.get(url_for("auth.login"))
            self.assert_200(response)
            # FIXME test generated login link
    def test_login_magiclink(self):
        token, ignoreCaseMatches = get_model().login('test@example.com')
        with self.client as client:
            response = client.get(url_for("auth.magiclink", token=token))
            self.assertRedirects(response, url_for("console.index"))
            self.assertEqual(session['account'], 'test@example.com')
--- a/capsulflask/tests/test_console.py
+++ b/capsulflask/tests/test_console.py
@ -1,170 +0,0 @@
 from unittest.mock import patch
 from flask import url_for
 from capsulflask.hub_model import MockHub
 from capsulflask.db import get_model
 from capsulflask.tests_base import BaseTestCase
 class ConsoleTests(BaseTestCase):
    capsul_data = {
        "size": "f1-xs",
        "os": "debian10",
        "ssh_authorized_key_count": 1,
        "ssh_key_0": "key"
    }
    ssh_key_data = {
        "name": "key2",
        "action": "upload_ssh_key",
        "content": "ssh-rsa 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"
    }
    def test_index(self):
        self._login('test@example.com')
        with self.client as client:
            response = client.get(url_for("console.index"))
            self.assert_200(response)
    def test_create_loads(self):
        self._login('test@example.com')
        with self.client as client:
            response = client.get(url_for("console.create"))
            self.assert_200(response)
    def test_create_fails_capacity(self):
        with self.client as client:
            client.get(url_for("console.create"))
            csrf_token = self.get_context_variable('csrf_token')
            data = self.capsul_data
            data['csrf-token'] = csrf_token
            # Override MockHub.capacity_avaliable to always return False
            with patch.object(MockHub, 'capacity_avaliable', return_value=False) as mock_method:
                self.app.config["HUB_MODEL"] = MockHub()
                client.post(url_for("console.create"), data=data)
                capacity_message = \
                    '\n      host(s) at capacity. no capsuls can be created at this time. sorry. \n    '
                self.assert_message_flashed(capacity_message, category='message')
                self.assertEqual(
                    len(get_model().list_vms_for_account('test@example.com')),
                    0
                )
            mock_method.assert_called_with(512 * 1024 * 1024)
    def test_create_fails_invalid(self):
        with self.client as client:
            client.get(url_for("console.create"))
            csrf_token = self.get_context_variable('csrf_token')
            data = self.capsul_data
            data['csrf-token'] = csrf_token
            data['os'] = ''
            client.post(url_for("console.create"), data=data)
            self.assert_message_flashed(
                'OS is required', 
                category='message'
            )
            self.assertEqual(
                len(get_model().list_vms_for_account('test@example.com')),
                0
            )
    def test_create_succeeds(self):
        with self.client as client:
            client.get(url_for("console.create"))
            csrf_token = self.get_context_variable('csrf_token')
            data = self.capsul_data
            data['csrf-token'] = csrf_token
            response = client.post(url_for("console.create"), data=data)
            # FIXME: mock create doesn't create, see #83
            # vms = get_model().list_vms_for_account('test@example.com')
            # self.assertEqual(
            #     len(vms),
            #     1 
            # )
            #
            # vm_id = vms[0].id
            #
            # self.assertRedirects(
            #     response, 
            #     url_for("console.index") + f'?{vm_id}'
            # )
    def test_keys_loads(self):
        self._login('test@example.com')
        with self.client as client:
            response = client.get(url_for("console.ssh_api_keys"))
            self.assert_200(response)
            keys = self.get_context_variable('ssh_public_keys')
            self.assertEqual(keys[0]['name'], 'key')
    def test_keys_add_ssh_fails_invalid(self):
        self._login('test@example.com')
        with self.client as client:
            client.get(url_for("console.ssh_api_keys"))
            csrf_token = self.get_context_variable('csrf_token')
            data = self.ssh_key_data
            data['csrf-token'] = csrf_token
            data_invalid_content = data
            data_invalid_content['content'] = 'foo'
            client.post(
                url_for("console.ssh_api_keys"),
                data=data_invalid_content
            )
            self.assert_message_flashed(
                'Content must match "^(ssh|ecdsa)-[0-9A-Za-z+/_=@:. -]+$"',
                category='message'
            )
            data_missing_content = data
            data_missing_content['content'] = ''
            client.post(url_for("console.ssh_api_keys"), data=data_missing_content)
            self.assert_message_flashed(
                'Content is required', category='message'
            )
    def test_keys_add_ssh_fails_duplicate(self):
        self._login('test@example.com')
        with self.client as client:
            client.get(url_for("console.ssh_api_keys"))
            csrf_token = self.get_context_variable('csrf_token')
            data = self.ssh_key_data
            data['csrf-token'] = csrf_token
            data['name'] = 'key'
            client.post(url_for("console.ssh_api_keys"), data=data)
            self.assert_message_flashed(
                'A key with that name already exists',
                category='message'
            )
            data = self.ssh_key_data
            data['csrf-token'] = csrf_token
            data['name'] = 'key'
            client.post(url_for("console.ssh_api_keys"), data=data)
            self.assert_message_flashed(
                'A key with that name already exists',
                category='message'
            )
    def setUp(self):
        self._login('test@example.com')
        get_model().create_ssh_public_key('test@example.com', 'key', 'foo') 
    def tearDown(self):
        get_model().delete_ssh_public_key('test@example.com', 'key') 
--- a/capsulflask/tests/test_landing.py
+++ b/capsulflask/tests/test_landing.py
@ -1,14 +0,0 @@
 from capsulflask.tests_base import BaseTestCase
 class LandingTests(BaseTestCase):
    #: Do not render templates, we're only testing logic here.
    render_templates = False
    def test_landing(self):
        pages = ['/', 'pricing', 'faq', 'about-ssh', 'changelog', 'support']
        with self.client as client:
            for page in pages:
                response = client.get(page)
                self.assert_200(response)
--- a/capsulflask/tests/test_publicapi.py
+++ b/capsulflask/tests/test_publicapi.py
@ -1,45 +0,0 @@
 from base64 import b64encode
 import requests
 from flask import url_for
 from capsulflask.db import get_model
 from capsulflask.tests_base import BaseLiveServerTestCase
 class PublicAPITests(BaseLiveServerTestCase):
    def test_server_is_up_and_running(self):
        response = requests.get(self.get_server_url())
        self.assertEqual(response.status_code, 200)
    def test_capsul_create_succeeds(self):
        response = requests.post(
            self.get_server_url() +
            url_for('publicapi.capsul_create'),
            headers={'Authorization': self.token},
            json={
                'size': 'f1-xs',
                'os': 'openbsd68',
                'ssh_key_0': 'key'
            }
        )
        self.assertEqual(response.status_code, 200)
        # FIXME: mock create doesn't create, see #83
        # vms = get_model().list_vms_for_account('test@example.com')
        # 
        # self.assertEqual(
        #     len(vms),
        #     1
        # )
    def setUp(self):
        get_model().create_ssh_public_key('test@example.com', 'key', 'foo') 
        self.token = b64encode(
            get_model().generate_api_token('test@example.com', 'apikey').encode('utf-8')
        ).decode('utf-8')
    def tearDown(self):
        get_model().delete_ssh_public_key('test@example.com', 'key') 
        get_model().delete_api_token('test@example.com', 1)
--- a/capsulflask/tests_base.py
+++ b/capsulflask/tests_base.py
@ -1,35 +0,0 @@
 import os
 from nanoid import generate
 from flask_testing import TestCase, LiveServerTestCase
 from capsulflask import create_app
 from capsulflask.db import get_model
 class BaseSharedTestCase(object):
    def create_app(self):
        # Use default connection paramaters
        os.environ['POSTGRES_CONNECTION_PARAMETERS'] = "host=localhost port=5432 user=postgres password=dev dbname=capsulflask_test"
        os.environ['TESTING'] = '1'
        os.environ['SPOKE_MODEL'] = 'mock'
        os.environ['HUB_MODEL'] = 'mock'
        return create_app()
    def setUp(self):
        pass
    def tearDown(self):
        pass
 class BaseTestCase(BaseSharedTestCase, TestCase):
    def _login(self, user_email):
        get_model().login(user_email)
        with self.client.session_transaction() as session:
            session['account'] = user_email
            session['csrf-token'] = generate()
 class BaseLiveServerTestCase(BaseSharedTestCase, LiveServerTestCase):
    pass
--- a/capsulflask/theme/yolocolo/account-balance.html
+++ b/capsulflask/theme/yolocolo/account-balance.html
@ -0,0 +1,94 @@
 {% extends 'base.html' %}
 {% block title %}Account Balance{% endblock %}
 {% block content %}
 <div class="row third-margin">
  <h1>Account Balance: ${{ account_balance }}</h1>
 </div>
 <div class="half-margin">
  {% if has_vms and has_payments and warning_text != "" %}
  <div class="row">
    <pre class="wrap">{{ warning_text }}</pre>
  </div>
  {% endif %}
  <div class="row">
    {% if has_payments %}
    <div>
      <div class="row third-margin">
        <h1>Payments</h1>
      </div>
      <table>
        <thead>
          <tr>
            <th>amount</th>
            <th>date</th>
          </tr>
        </thead>
        <tbody>
          {% for payment in payments %}
            <tr>
              <td class="{{ payment['class_name'] }}">${{ payment["dollars"] }}</td>
              <td class="{{ payment['class_name'] }}">{{ payment["created"] }}</td>
            </tr>
          {% endfor %}
        </tbody>
      </table>
    </div>
    {% endif %}
    <ul>
      <li>
        <h1>PAYMENT OPTIONS</h1>
        <ul>
          <li>
            <a href="/payment/stripe">Add funds with Credit/Debit (stripe)</a>
            <ul><li>notice: stripe will load nonfree javascript </li></ul>
          </li>
          {% if btcpay_enabled %}
          <li><a href="/payment/btcpay">Add funds with Bitcoin/Litecoin/Monero (btcpay)</a></li>
          {% endif %}
        </ul>
      </li>
    </ul>
  </div>
  {% if has_vms %}
  <div class="row third-margin">
    <h1>Capsuls Billed</h1>
  </div>
  <div class="row">
    <table class="small">
      <thead>
        <tr>
          <th>id</th>
          <th>created</th>
          <th>deleted</th>
          <th>$/month</th>
          <th>months</th>
          <th>$ billed</th>
        </tr>
      </thead>
      <tbody>
        {% for vm in vms_billed %}
          <tr>
            <td>{{ vm["id"] }}</td>
            <td>{{ vm["created"] }}</td>
            <td>{{ vm["deleted"] }}</td>
            <td>${{ vm["dollars_per_month"] }}</td>
            <td>{{ vm["months"] }}</td>
            <td>${{ vm["dollars"] }}</td>
          </tr>
        {% endfor %}
      </tbody>
    </table>
  </div>
  {% endif %}
 </div>
 {% endblock %}
 {% block pagesource %}/templates/create-capsul.html{% endblock %}
--- a/capsulflask/theme/yolocolo/base.html
+++ b/capsulflask/theme/yolocolo/base.html
@ -0,0 +1,60 @@
 <html lang="en">
 <head>
  <!-- Namecoin Address: N2aVL6pHtBp7EtNGb3jpsL2L2NyjBNbiB1 -->
  <link href="{{ url_for('static', filename='favicon.yolocolo.ico') }}" rel="icon">
  <title>{% block title %}{% endblock %}{% if self.title() %} - {% endif %}Capsul</title>
  <meta charset="utf-8">
  <meta name="viewport" content="width=device-width,initial-scale=1.0">
  <meta name="Description" content="Cyberia Capsul">
  {% block head %}{% endblock %}
  <link rel="stylesheet" href="{{ url_for('static', filename='style.css') }}">
  <link rel="stylesheet" href="{{ url_for('static', filename='style.yolocolo.css') }}">
 </head>
 <body>
 <nav>
  <div class="row justify-space-between half-margin">
    <div>
      🦉 <a href="/"><b>YOLOCOLO</b></a>
    </div>
    <div>
      &nbsp;
      {% if session["account"] %} 
        { {{ session["account"] }} <a href="{{ url_for('auth.logout') }}">Log Out</a> } 
      {% else %} 
        <a href="{{ url_for('auth.login') }}">Login</a>
      {% endif %}
    </div>
  </div>
  <div class="row justify-center half-margin wrap nav-links">
    <a href="/pricing">Pricing</a>
    <a href="/faq">FAQ</a>
    {% if session["account"] %} 
      <a href="/console">Capsuls</a>
      <a href="/console/ssh">SSH Public Keys</a>
      <a href="/console/account-balance">Account Balance</a>
    {% endif %}
    <a href="/support">Support</a>
  </div>
 </nav>
 {% for message in get_flashed_messages() %}
  <div class="flash">{{ message }}</div>
 {% endfor %}
 {% block custom_flash %}{% endblock %}
 <main>
  {% block content %}{% endblock %}
 </main>
 {% block subcontent %}{% endblock %}
 <footer>
  This server runs <a
    href="https://giit.cyberia.club/~forest/capsul-flask">capsul-flask</a> by
  Cyberia Computer Club, available under the <a
    href="https://creativecommons.org/licenses/by-sa/4.0/">Attribution-ShareAlike
    4.0 International</a> licence.<br/><br/>
  <a href="https://git.autonomic.zone/3wordchant/capsul-flask/src/branch/yolocolo/capsulflask{% block pagesource %}{% endblock %}">View page source</a>
 </footer>
 </body>
 </html>
--- a/capsulflask/theme/yolocolo/capsuls.html
+++ b/capsulflask/theme/yolocolo/capsuls.html
@ -0,0 +1,68 @@
 {% extends 'base.html' %}
 {% block title %}Capsuls{% endblock %}
 {% block custom_flash %}
 {% if created  %} 
  <div class="flash green">{{ created }} successfully created!</div>
 {% endif %}
 {% endblock %}
 {% block content %}
 <div class="row third-margin">
  <h1>Capsuls</h1>
 </div>
 <div class="third-margin">
  {% if has_vms %} 
  <div class="row third-margin justify-end">
    <a href="/console/create">Create Capsul</a>
  </div>
  <div class="row">
    <table>
      <thead>
        <tr>
          <th class="heart-icon">❦</th>
          <th>id</th>
          <th>size</th>
          <th>cpu</th>
          <th>mem</th>
          <th>ipv4</th>
          <th>os</th>
          <th>created</th>
        </tr>
      </thead>
      <tbody>
        {% for vm in vms %}
          <tr>
            {% if vm['state'] == 'starting' or vm['state'] == 'stopping'  %}
              <td class="capsul-status waiting-pulse">•</td>
            {% elif vm['state'] == 'crashed' or vm['state'] == 'blocked' or vm['state'] == 'stopped'  %}
              <td class="capsul-status red">•</td>
            {% elif vm['state'] == 'unknown' %}
              <td class="capsul-status-questionmark">?</td>
            {% else  %}
              <td class="capsul-status green">•</td>
            {% endif  %}
            <td><a class="no-shadow" href="/console/{{ vm['id'] }}">{{ vm["id"] }}</a></td>
            <td>{{ vm["size"] }}</td>
            <td class="metrics"><img src="/metrics/cpu/{{ vm['id'] }}/5m/s"/></td>
            <td class="metrics"><img src="/metrics/memory/{{ vm['id'] }}/5m/s"/></td>
            <td class="{{ vm['ipv4_status'] }}">{{ vm["ipv4"] }}</td>
            <td>{{ vm["os"] }}</td>
            <td>{{ vm["created"] }}</td>
          </tr>
        {% endfor %}
      </tbody>
    </table>
  </div>
  {% else %} 
  <div class="row">
    <p>You don't have any Capsuls running. <a href="/console/create">Create one</a> today!</p>
  </div>
  {% endif %}
 </div>
 {% endblock %}
 {% block pagesource %}/templates/capsuls.html{% endblock %}
--- a/capsulflask/theme/yolocolo/faq.html
+++ b/capsulflask/theme/yolocolo/faq.html
@ -0,0 +1,46 @@
 {% extends 'base.html' %}
 {% block title %}FAQ{% endblock %}
 {% block content %}
  <div class="row full-margin"><h1>Frequently Asked Questions</h1></div>
 {% endblock %}
 {% block subcontent %}
 <p>
 <ul>
   <li>
     What is this?
     <p>
      This is a <strong>technical demo</strong> of <a
       href="https://giit.cyberia.club/~forest/capsul-flask">Capsul</a>, for the
      as-yet-untitled <a href="https://coops.tech">Cotech</a> server hosting
      initiative, which you can <a
      href="https://community.coops.tech/t/call-for-input-v2-co-op-vps-survey/2802/9">read
     about on the Cotech forum</a>.
     </p>
   </li>
   <li>
     What do you mean, "technical demo"?
     <p>No backups</p>
     <p>No service level agreement</p>
     <p>"Best effort" support</p>
   </li>
   <li>
     Where can I get this, but, more reliable?
     <p>Cyberia, the authors of this platform, run the canonical instance, <a
      href="https://capsul.org">Capsul.org</a>, on hardware they own. Please
     send them your money! (cash, crypto, or card accepted).</p>
   </li>
   <li>
     How do I use this system?
     <p>Please see <a href="https://capsul.org/faq">the official Capsul FAQ
       page</a>.</p>
   </li>
 </ul>
 </p>
 {% endblock %}
 {% block pagesource %}/templates/faq.html{% endblock %}
--- a/capsulflask/theme/yolocolo/index.html
+++ b/capsulflask/theme/yolocolo/index.html
@ -0,0 +1,28 @@
 {% extends 'base.html' %}
 {% block content %}
  <h1>
  <pre>
             _                 _
 _   _  ___ | | ___   ___ ___ | | ___
 | | | |/ _ \| |/ _ \ / __/ _ \| |/ _ \
 | |_| | (_) | | (_) | (_| (_) | | (_) |
 \__, |\___/|_|\___/ \___\___/|_|\___/
 |___/
  </pre>
  <span>Co-operative hosting using <a href="https://cyberia.club">Cyberia</a>'s Capsul</span>
 {% endblock %}
 {% block subcontent %}
 <p>
 <ul>
   <li>Sign up for an account!</li>
   <li>Add some funds!</li>
   <li>Create a VPS!</li>
   <li>Give your feedback!</li>
 </ul>           
 </p>
 {% endblock %}
 {% block pagesource %}/templates/index.html{% endblock %}
--- a/capsulflask/theme/yolocolo/pricing.html
+++ b/capsulflask/theme/yolocolo/pricing.html
@ -0,0 +1,23 @@
 {% extends 'base.html' %}
 {% block title %}Pricing{% endblock %}
 {% block content %}
  <div class="row third-margin">
    <h1>CAPSUL TYPES & PRICING</h1>
  </div>
  <div class="row half-margin">
    <p>
      Rates for this service aren't set yet. You can see Cyberia's Capsul pricing
      on <a href="https://capsul.org/pricing">their website</a>.
    </p>
  </div>
  <div>
    <pre>
      SUPPORTED OPERATING SYSTEMS:
      {% for os_id, os in operating_systems.items() %}   - {{ os.description }} 
      {% endfor %}
    </pre>
  </div>
 {% endblock %}
--- a/capsulflask/theme/yolocolo/support.html
+++ b/capsulflask/theme/yolocolo/support.html
@ -0,0 +1,21 @@
 {% extends 'base.html' %}
 {% block title %}Support{% endblock %}
 {% block content %}
  <div class="row half-margin">
    <h1>SUPPORT</h1>
  </div>
  <div class="row half-margin">
    <a href="mailto:yolocolo@doesthisthing.work?subject=Please%20help!">yolocolo@doesthisthing.work</a> 
  </div>
 {% endblock %}
 {% block subcontent %}
 <p>
  You can also find us on Matrix: <a
    href="https://matrix.to/#/#untitled-hosting.public:autonomic.zone">#untitled-hosting.public:autonomic.zone</a>.
 </p>
 {% endblock %}
 {% block pagesource %}/templates/support.html{% endblock %}
--- a/docker-compose.yml
+++ b/docker-compose.yml
@ -0,0 +1,36 @@
 ---
 version: "3.8"
 services:
  app:
    image: 3wordchant/capsul-flask:latest
    build: .
    volumes:
      - "./:/app/code"
      - "../tank:/tank"
      # - "/var/run/libvirt/libvirt-sock:/var/run/libvirt/libvirt-sock"
    depends_on:
      - db
    ports:
      - "5000:5000"
    environment:
      - "POSTGRES_CONNECTION_PARAMETERS=host=db port=5432 user=capsul password=capsul dbname=capsul"
      - SPOKE_MODEL=shell-scripts
        #- FLASK_DEBUG=1
      - BASE_URL=http://localhost:5000
      - ADMIN_PANEL_ALLOW_EMAIL_ADDRESSES=3wc.capsul@doesthisthing.work
      - VIRSH_DEFAULT_CONNECT_URI=qemu:///system
    # The image uses gunicorn by default, let's override it with Flask's
    # built-in development server
    command: ["flask", "run", "-h", "0.0.0.0", "-p", "5000"]
  db:
    image: "postgres:9.6.5-alpine"
    volumes:
      - "postgres:/var/lib/postgresql/data"
    environment:
      POSTGRES_USER: capsul
      POSTGRES_PASSWORD: capsul
      POSTGRES_DB: capsul
 volumes:
  postgres:
--- a/docs/architecture.md
+++ b/docs/architecture.md
@ -0,0 +1,30 @@
 # hub-and-spoke architecture
 The "Hub" runs the web application and talks to the Postrges database, while the "Spoke"s are responsible for creating/managing virtual machines. One instance of the capsul-flask application can run in hub mode and spoke mode at the same time. 
 The Hub and the Spoke must be configured to communicate securely with each-other over HTTPS. They both have to be able to dial each-other directly.  The URLs / auth tokens they use are configured both in the config file (`HUB_URL`, `SPOKE_HOST_ID`, `SPOKE_HOST_TOKEN` and `HUB_TOKEN`) and in the database (the `id`, `https_url`, and `token` columns in the `hosts` table).
 ![](images/hub-and-spoke1.png)
 This diagram was created with https://app.diagrams.net/.
 To edit it, download the <a download href="readme/hub-and-spoke.xml">diagram file</a> and edit it with the https://app.diagrams.net/ web application, or you may run the application from [source](https://github.com/jgraph/drawio) if you wish.
 right now I have 2 types of operations, immediate mode and async.
 both types of operations do assignment synchronously. so if the system cant assign the operation to one or more hosts (spokes),
 or whatever the operation requires, then it will fail. 
 some operations tolerate partial failures, like, `capacity_avaliable` will succeed if at least one spoke succeeds.
 for immediate mode requests (like `list`, `capacity_avaliable`, `destroy`), assignment and completion of the operation are the same thing.
 for async ones, they can be assigned without knowing whether or not they succeeded (`create`).
 ![](images/hub-and-spoke2.png)
 This diagram was created with https://app.diagrams.net/.
 To edit it, download the <a download href="readme/hub-and-spoke.xml">diagram file</a> and edit it with the https://app.diagrams.net/ web application, or you may run the application from [source](https://github.com/jgraph/drawio) if you wish.
 if you issue a create, and it technically could go to any number of hosts, but only one host responds, it will succeed 
 but if you issue a create and somehow 2 hosts both think they own that task, it will fail and throw a big error. cuz it expects exactly 1 to own the create task
 currently its not set up to do any polling.  its not really like a queue at all. It's all immediate for the most part 
--- a/docs/btcpay.md
+++ b/docs/btcpay.md
@ -0,0 +1,68 @@
 ## <a name="BTCPAY_PRIVATE_KEY"></a>Setting up the BTCPAY_PRIVATE_KEY 
 Generate a private key and the accompanying bitpay SIN for the btcpay API client. 
 I used this code as an example: https://github.com/bitpay/bitpay-python/blob/master/bitpay/key_utils.py#L6
 ```
 $ pipenv run python ./readme/generate_btcpay_keys.py
 ```
 It should output something looking like this:
 ```
 -----BEGIN EC PRIVATE KEY-----
 EXAMPLEIArx/EXAMPLEKH23EXAMPLEsYXEXAMPLE5qdEXAMPLEcFHoAcEXAMPLEK
 oUQDQgAEnWs47PT8+ihhzyvXX6/yYMAWWODluRTR2Ix6ZY7Z+MV7v0W1maJzqeqq
 NQ+cpBvPDbyrDk9+Uf/sEaRCma094g==
 -----END EC PRIVATE KEY-----
 EXAMPLEwzAEXAMPLEEXAMPLEURD7EXAMPLE
 ```
 In order to register the key with the btcpay server, you have to first generate a pairing token using the btcpay server interface.
 This requires your btcpay server account to have access to the capsul store. Ask Cass about this.
 Navigate to `Manage store: Access Tokens` at: `https://btcpay.cyberia.club/stores/<store-id>/Tokens`
 ![](images/btcpay_sin_pairing.jpg)
 Finally, send an http request to the btcpay server to complete the pairing:
 ```
 curl -H "Content-Type: application/json" https://btcpay.cyberia.club/tokens -d "{'id': 'EXAMPLEwzAEXAMPLEEXAMPLEURD7EXAMPLE', 'pairingCode': 'XXXXXXX'}"
 ```
 It should respond with a token: 
 ```
 {"data":[{"policies":[],"pairingCode":"XXXXXXX","pairingExpiration":1589473817597,"dateCreated":1589472917597,"facade":"merchant","token":"xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx","label":"capsulflask"}]}
 ```
 And you should see the token in the btcpay server UI:
 ![](images/paired.jpg)
 Now simply set your `BTCPAY_PRIVATE_KEY` variable in `.env`
 NOTE: make sure to use single quotes and replace the new lines with \n.
 ```
 BTCPAY_PRIVATE_KEY='-----BEGIN EC PRIVATE KEY-----\nEXAMPLEIArx/EXAMPLEKH23EXAMPLEsYXEXAMPLE5qdEXAMPLEcFHoAcEXAMPLEK\noUQDQgAEnWs47PT8+ihhzyvXX6/yYMAWWODluRTR2Ix6ZY7Z+MV7v0W1maJzqeqq\nNQ+cpBvPDbyrDk9+Uf/sEaRCma094g==\n-----END EC PRIVATE KEY-----'
 ```
 -----
 ## <a name="testing"></a>testing cryptocurrency payments
 I used litecoin to test cryptocurrency payments, because its the simplest & lowest fee cryptocurrency that BTCPay server supports. You can download the easy-to-use litecoin SPV wallet `electrum-ltc` from [github.com/pooler/electrum-ltc](https://github.com/pooler/electrum-ltc) or [electrum-ltc.org](https://electrum-ltc.org/), set up a wallet, and then either purchase some litecoin from an exchange, or [ask Forest for some litecoin](https://sequentialread.com/capsul-rollin-onwards-with-a-web-application/#sqr-comment-container) to use for testing.
 ## <a name="0_conf_diagram"></a>sequence diagram explaining how BTC payment process works (how we accept 0-confirmation transactions 😀)
 ![btcpayment_process](images/btcpayment_process.png)
 This diagram was created with https://app.diagrams.net/.
 To edit it, download the <a download href="readme/btcpayment_process.drawio">diagram file</a> and edit it with the https://app.diagrams.net/ web application, or you may run the application from [source](https://github.com/jgraph/drawio) if you wish.
--- a/docs/capsul.webp
+++ b/docs/capsul.webp
--- a/docs/configuration.md
+++ b/docs/configuration.md
@ -0,0 +1,89 @@
 # Configuring Capsul-Flask
 Create a `.env` file to set up the application configuration:
 ```
 nano .env
 ```
 You can enter any environment variables referenced in [`__init__.py`](../capsulflask/__init__.py) to this file.
 For example you may enter your SMTP credentials like this:
 ```
 MAIL_USERNAME=forest@nullhex.com
 MAIL_DEFAULT_SENDER=forest@nullhex.com
 MAIL_PASSWORD=**************
 ```
 ## <a name="example"></a>Example configuration from capsul.org (production):
 ```
 #LOG_LEVEL=DEBUG
 BASE_URL="https://capsul.org"
 # hub url is used by the SPOKE_MODE to contact the hub. Since this server is the hub,
 # this is fine. In fact it runs into problems (routing related?) when I set it to capsul.org.
 # similarly the baikal "spoke" (set up in the hosts table in the db) has "http://localhost:5000" as the https_url
 HUB_URL="http://localhost:5000"
 HUB_MODE_ENABLED="t"
 SPOKE_MODE_ENABLED="t"
 HUB_MODEL="capsul-flask"
 SPOKE_MODEL="shell-scripts"
 SPOKE_HOST_ID="baikal"
 SPOKE_HOST_TOKEN="<redacted>"
 HUB_TOKEN="<redacted>"
 # smtp.. see https://flask-mail.readthedocs.io/en/latest/#configuring-flask-mail
 MAIL_SERVER="smtp.nullhex.com"
 # MAIL_USE_SSL means SMTP with STARTTLS
 MAIL_USE_SSL=true
 # MAIL_USE_TLS means SMTP wrapped in TLS
 MAIL_USE_TLS=false
 MAIL_PORT="465"
 MAIL_USERNAME="capsul@nullhex.com"
 MAIL_PASSWORD="<redacted>"
 MAIL_DEFAULT_SENDER="capsul@nullhex.com"
 # stripe
 STRIPE_SECRET_KEY="sk_live_<redacted>"
 STRIPE_PUBLISHABLE_KEY="pk_live_tGDHY7kBwqC71b4F0N7LZdGl00GZOw0iNJ"
 # internal
 SECRET_KEY="<redacted>"
 POSTGRES_CONNECTION_PARAMETERS="sslmode=verify-full sslrootcert=letsencrypt-root-ca.crt host=postgres.cyberia.club port=5432 ...<redacted>"
 # btcpay server
 BTCPAY_URL="https://beeteeceepae2.cyberia.club"
 BTCPAY_PRIVATE_KEY='-----BEGIN EC PRIVATE KEY-----\n<redacted>\n-----END EC PRIVATE KEY-----'
 ```
 ## <a name="config_that_lives_in_db"></a>Configuration-type-stuff that lives in the database 
  - `hosts` table:
    - `id` (corresponds to `SPOKE_HOST_ID` in the config)
    - `https_url`
    - `token` (corresponds to `SPOKE_HOST_TOKEN` in the config)
  - `os_images` table:
    - `id` 
    - `template_image_file_name`
    - `description`
    - `deprecated`
  - `vm_sizes` table:
    - `id` 
    - `dollars_per_month`
    - `memory_mb`
    - `vcpus`
    - `bandwidth_gb_per_month`
 ## <a name="docker_secrets"></a>Loading variables from files (docker secrets)
 To support [Docker Secrets](https://docs.docker.com/engine/swarm/secrets/), you can also load secret values from files – for example, to load `MAIL_PASSWORD` from `/run/secrets/mail_password`, set
 ```sh
 MAIL_PASSWORD_FILE=/run/secrets/mail_password
 ```
--- a/docs/database.md
+++ b/docs/database.md
@ -0,0 +1,50 @@
 # capsul-flask's relationship to its Database Server
 Capsul has a ["hub and spoke" architecture](./architecture.md). The "Hub" runs the web application and talks to the Postrges database, while the "Spoke"s are responsible for creating/managing virtual machines. One instance of the capsul-flask application can run in both hub mode and spoke mode at the same time, however there must only be one instance of the app running in "Hub" mode at any given time.
 The Postgres connections parameters are [configurable](./configuration.md).
 ## <a name="schema_management"></a>Database schema management (schema versions)
 capsul-flask has a concept of a schema version. When the application starts, it will query the database for a table named `schemaversion` that has one row and one column (`version`). If the `version` it finds is not equal to the `desiredSchemaVersion` variable set in `db.py`, it will run  migration scripts from the `schema_migrations` folder one by one until the `schemaversion` table shows the correct version.
 For example, the script named `02_up_xyz.sql` should contain code that migrates the database from schema version 1 to schema version 2. Likewise, the script `02_down_xyz.sql` should contain code that migrates from schema version 2 back to schema version 1.
 **IMPORTANT: if you need to make changes to the schema, make a NEW schema version. DO NOT EDIT the existing schema versions.**
 In general, for safety, schema version upgrades should not delete data. Schema version downgrades will simply throw an error and exit for now. 
 ## <a name="manual_queries"></a>Running manual database queries
 You can manually mess around with the database like this:
 ```
 pipenv run flask cli sql -f test.sql
 ```
 ```
 pipenv run flask cli sql -c 'SELECT * FROM vms'
 ```
 This one selects the vms table with the column name header:
 ```
 pipenv run flask cli sql -c "SELECT string_agg(column_name::text, ', ') from information_schema.columns WHERE table_name='vms'; SELECT * from vms"
 ```
 How to modify a payment manually, like if you get a chargeback or to fix customer payment issues:
 ```
 $ pipenv run flask cli sql -c "SELECT id, created, email, dollars, invalidated from payments"
 1, 2020-05-05T00:00:00, forest.n.johnson@gmail.com, 20.00, FALSE
 $ pipenv run flask cli sql -c "UPDATE payments SET invalidated = True WHERE id = 1"
 1 rows affected.
 $ pipenv run flask cli sql -c "SELECT id, created, email, dollars, invalidated from payments"
 1, 2020-05-05T00:00:00, forest.n.johnson@gmail.com, 20.00, TRUE
 ```
 ## how to view the logs on the database server (legion.cyberia.club)
 `sudo -u postgres pg_dump capsul-flask | gzip -9 > capsul-backup-2021-02-15.gz`
--- a/docs/deployment.md
+++ b/docs/deployment.md
@ -0,0 +1,87 @@
 # Deploying Capsul on a server
 Capsul has a ["hub and spoke" architecture](./architecture.md). The "Hub" runs the web application and talks to the Postrges database, while the "Spoke"s are responsible for creating/managing virtual machines. One instance of the capsul-flask application can run in both hub mode and spoke mode at the same time, however there must only be one instance of the app running in "Hub" mode at any given time.
 ## <a name="spoke_mode_prerequisites"></a>Installing prerequisites for Spoke Mode
 On your spoke (see [Architecture](./architecture.md) You'll need `libvirtd`, `dnsmasq`, and `qemu-kvm`, plus a `/tank` diectory with some operating system images in it:
 ```
 sudo apt install libvirt-daemon-system virtinst git dnsmasq qemu qemu-kvm
 sudo mkdir -p /var/www /tank/{vm,img,config}
 sudo mkdir -p /tank/img/debian/10
 cd !$
 sudo wget https://cloud.debian.org/images/cloud/buster/20201023-432/debian-10-genericcloud-amd64-20201023-432.qcow2 -O root.img.qcow2
 ```
 TODO: network set-up
 TODO: cyberia-cloudinit.yml
 ## Deploying capsul-flask
 ### <a name="deploy_manually"></a>Manually
 Follow the [local set-up instructions](./local-set-up.md) on your server. 
 Make sure to set `BASE_URL` correctly, generate your own secret tokens, and
 configure your own daemon management for the capsul-flask server (e.g. writing
 init scripts, or SystemD unit files).
 Use the suggested `gunicorn` command (with appropriately-set address and port),
 instead of `flask run`, to launch the server.
 For example, here is the SystemD service unit file we use in production for `capsul.org`:
 ```
 [Unit]
 Description=capsul-flask virtual machines as a service
 After=network.target
 [Service]
 ExecStart=/usr/local/bin/pipenv run gunicorn --bind 127.0.0.1:5000 -k gevent --worker-connections 1000 app:app
 Restart=on-failure
 WorkingDirectory=/opt/capsul-flask
 [Install]
 WantedBy=multi-user.target
 ```
 TODO: cron runner is required to run maintenance tasks for now, but in the future we want to build this into the python based task scheduler. 
 ### <a name="coop_cloud_docker"></a> Using Co-op Cloud's vanilla Docker Swarm configuration
 Download the Co-op Cloud swarm `compose.yml`:
 ```sh
 wget https://git.autonomic.zone/coop-cloud/capsul/src/branch/main/compose.yml
 ```
 Optionally, download add-on compose files for Stripe, BTCPay, and Spoke Mode:
 ```sh
 wget https://git.autonomic.zone/coop-cloud/capsul/src/branch/main/compose.{stripe,btcpay,spoke}.yml
 ```
 Then, create a `.env` file and configure appropriately -- you probably want to
 define most settings in [the Co-op Cloud `.envrc.sample`
 file](https://git.autonomic.zone/coop-cloud/capsul/src/branch/main/.envrc.sample).
 Load the environment variables (using Python `direnv`, or a manual `set -a && source .env && set +a`), insert any necessary secrets, then run the deployment:
 ```sh
 docker stack deploy -c compose.yml -c compose.stripe.yml your_capsul
 ```
 (where you'd add an extra `-c compose.btcpay.yml` for each optional compose file
 you want, and set `your_capsul` to the "stack name" you want).
 TODO: cron runner
 ### <a name="coop_cloud_abra"></a> Using Co-op Cloud's `abra` deployment tool
 Follow [the guide in the README for the Co-op Cloud capsul package](https://git.autonomic.zone/coop-cloud/capsul/).
 ### Using docker-compose
 TODO
--- a/docs/images/btcpay_sin_pairing.jpg
+++ b/docs/images/btcpay_sin_pairing.jpg
--- a/docs/images/btcpayment_process.drawio
+++ b/docs/images/btcpayment_process.drawio
--- a/docs/images/btcpayment_process.png
+++ b/docs/images/btcpayment_process.png
--- a/docs/images/generate_btcpay_keys.py
+++ b/docs/images/generate_btcpay_keys.py
--- a/docs/images/hub-and-spoke.xml
+++ b/docs/images/hub-and-spoke.xml
--- a/docs/images/hub-and-spoke1.png
+++ b/docs/images/hub-and-spoke1.png
--- a/docs/images/hub-and-spoke2.png
+++ b/docs/images/hub-and-spoke2.png
--- a/docs/images/paired.jpg
+++ b/docs/images/paired.jpg
--- a/docs/local-set-up.md
+++ b/docs/local-set-up.md
@ -0,0 +1,68 @@
 # How to run Capsul locally
 ## <a name="manually"></a>Manually
 Ensure you have the pre-requisites for the psycopg2 Postgres database adapter package:
 ```sh
 sudo apt install python3-dev libpq-dev
 pg_config --version
 ```
 Ensure you have the wonderful `pipenv` python package management and virtual environment cli:
 ```sh
 sudo apt install pipenv
 ```
 Create python virtual environment and install packages:
 ```sh
 pipenv install
 ```
 Run an instance of Postgres (I used docker for this, you can use whatever you want, point is its listening on `localhost:5432`):
 ```sh
 docker run --rm -it -e POSTGRES_PASSWORD=dev -p 5432:5432 postgres
 ```
 Run the app 
 ```sh
 pipenv run flask run
 ```
 or, using Gunicorn:
 ```sh
 pipenv run gunicorn --bind 127.0.0.1:5000 -k gevent --worker-connections 1000 app:app
 ```
 Note that by default when running locally, the `SPOKE_MODEL` is set to `mock`, meaning that it won't actually try to spawn vms.
 ## Crediting your account
 Once you log in for the first time, you will want to give yourself some free capsulbux so you can create fake capsuls for testing. 
 ```sh
 pipenv run flask cli sql -c "INSERT INTO payments (email, dollars) VALUES ('<your email address here>', 20.00)"
 ```
 ## Running scheduled tasks:
 ```sh
 pipenv run flask cli cron-task
 ```
 ## <a name="docker_compose"></a>Run locally with docker-compose
 If you have Docker and Docker-Compose installed, you can use the
 `3wordchant/capsul-flask` Docker image to launch capsul-flask, and a Postgres
 database server, for you:
 ```sh
 docker-compose up
 ```
 `capsul-flask` will read settings from your `.env` file as usual; you can set any of the options mentioned in the [configuration documentation](./configuration.md).
Author	SHA1	Message	Date
3wordchant	72c04d8495	Docker image, & local development docker-compose.yml (#2 ) All checks were successful continuous-integration/drone/push Build is passing Details Adds: - a Docker image, which can be used in both development and production - a `docker-compose.yml` file for local development (could probably be adapted for production deployments) Testing: - `git checkout docker` - `docker-compose up` - pray 🙏 - go to http://localhost:5000 ## App architecture I added the ability to load secret config variables (`HUB_TOKEN`, `STRIPE_SECRET_KEY` etc) from files, to support [Docker Secrets](https://docs.docker.com/engine/swarm/secrets/) natively. The code should probably log an error if a specified `HUB_TOKEN_FILE` doesn't exist instead of failing silently.. ## Docker architecture This uses a multi-stage build to reduce the size of the final image -- having pipenv install to a predefined virtualenv, and then copying that over. The compose file doesn't include a definition for a cron runner service, and I haven't tested running one yet. Here be dragons! You can rebuild the image locally using `docker-compose build`, but this isn't required for changes to the app code, only if you edit the `Dockerfile`, or want to publish your image for use on a swarm server (in which case you will need to edit the image name to put in your own Docker hub credentials). Currently, the image is rebuilt (should set up auto-tagging..) and published with every push to this 3wordchant/capsul-flask fork. Reviewed-on: https://git.autonomic.zone/3wordchant/capsul-flask/pulls/2 Co-authored-by: 3wordchant <3wordchant@noreply.git.autonomic.zone> Co-committed-by: 3wordchant <3wordchant@noreply.git.autonomic.zone>	2021-07-22 01:18:10 +02:00
3wordchant	5bb76173dd	Add custom themes, THEME setting, basic "yolocolo" theme (#7 ) Specify `THEME=yourtheme`, add some HTML files in `capsulflask/theme/yourtheme` 👌 We probably want to reduce copypasta in the current `yolocolo` theme by using template inheritance, at some point. Reviewed-on: https://git.autonomic.zone/3wordchant/capsul-flask/pulls/7 Co-authored-by: 3wordchant <3wordchant@noreply.git.autonomic.zone> Co-committed-by: 3wordchant <3wordchant@noreply.git.autonomic.zone>	2021-07-22 01:15:39 +02:00
forest	8c0c613392	Merge remote-tracking branch 'threewordchant/master'	2021-07-21 16:47:46 -05:00
forest	50ee1144f9	Merge remote-tracking branch 'threewordchant/master'	2021-07-21 16:46:50 -05:00
3wc	c4ba5ea197	Merge branch 'master' of ssh://git.autonomic.zone:2222/3wordchant/capsul-flask	2021-07-21 23:46:37 +02:00
forest	08eb38dc57	correctly enforce affordable_vm_sizes post form submission	2021-07-21 16:45:53 -05:00
3wc	33f4551cf4	Merge branch 'docs-reshuffle'	2021-07-21 23:44:42 +02:00
3wc	0fa7fb28b5	Split README up into separate files, plus: * forest's ReadMe docs changes * add Configuration-type-stuff that lives in the database	2021-07-21 23:43:44 +02:00
forest	be6e72028c	define BTCPAY_ENABLED based on URL and btcpay key, pass it explicitly	2021-07-21 23:43:44 +02:00
3wc	bf7487f4f0	Don't load /btcpay if BTCPAY_PRIVATE_KEY un-set	2021-07-21 23:43:44 +02:00
3wc	8b0ce0ba71	Hide the BTCPay link if BTCPAY_PRIVATE_KEY un-set	2021-07-21 23:43:44 +02:00
3wc	bca570882e	Add load_config_vars context processor.. ..to allow accessing config variables in the templates. This removes the need for adding config variables manually to template contexts.	2021-07-21 23:43:44 +02:00
forest	f3ae9aae23	remove class="small" from pricing table cuz normal size fits fine	2021-07-21 23:43:44 +02:00
3wc	827ca4a50b	Auto-generate the pricing table from the database	2021-07-21 23:43:44 +02:00
3wordchant	f999adaf71	Add VMs to the database even with HUB_MODE=mock (#6 ) https://todo.cyberia.club/~cyberia/services/83 Co-authored-by: 3wc <3wc.cyberia@doesthisthing.work> Co-authored-by: forest <forest.n.johnson@gmail.com> Reviewed-on: https://git.autonomic.zone/3wordchant/capsul-flask/pulls/6 Co-authored-by: 3wordchant <3wordchant@noreply.git.autonomic.zone> Co-committed-by: 3wordchant <3wordchant@noreply.git.autonomic.zone>	2021-07-21 23:26:10 +02:00
3wc	8f2becb9ee	Fix SyntaxWarning on `is not ""` `capsulflask/__init__.py:143: SyntaxWarning: "is not" with a literal. Did you mean "!="?`	2021-07-21 21:51:50 +02:00
3wordchant	f848eda931	Merge pull request 'Disable BTCPay in the interface, if BTCPAY_PRIVATE_KEY is un-set' (#3 ) from optional-btcpay into master Reviewed-on: https://git.autonomic.zone/3wordchant/capsul-flask/pulls/3	2021-07-21 20:20:40 +02:00
3wordchant	46f49e8d8f	Merge pull request 'Auto-generate the pricing table from the database' (#4 ) from generated-prices into master Reviewed-on: https://git.autonomic.zone/3wordchant/capsul-flask/pulls/4	2021-07-21 19:32:09 +02:00
forest	36329796f0	define BTCPAY_ENABLED based on URL and btcpay key, pass it explicitly	2021-07-21 12:12:41 -05:00
forest	28271ee852	remove class="small" from pricing table cuz normal size fits fine	2021-07-21 11:53:44 -05:00
3wc	7923f3a99f	Auto-generate the pricing table from the database	2021-07-21 12:19:28 +02:00
3wc	7ed847251f	Don't load /btcpay if BTCPAY_PRIVATE_KEY un-set	2021-07-21 00:22:58 +02:00
3wc	e3a4776a5d	Hide the BTCPay link if BTCPAY_PRIVATE_KEY un-set	2021-07-21 00:20:38 +02:00
3wc	357d99cb91	Add load_config_vars context processor.. ..to allow accessing config variables in the templates. This removes the need for adding config variables manually to template contexts.	2021-07-21 00:19:38 +02:00
forest	b8279d7491	add about ssh link to faq	2021-07-19 18:09:02 -05:00
`@ -1,4 +1,2 @@`

	`from capsulflask import create_app`	`from capsulflask import app`

	`create_app()`
		`@ -1,2 +0,0 @@`
			`DROP TABLE api_keys;`
			`UPDATE schemaversion SET version = 18;`