Its content has been merged into the root conf.py file in swh-docs.

Related to T3258

The _hljs_languages* global variables content rely on reading a JSON file
located through Django static finders.

As a side effect, when the module is imported, the JSON file is located
then read.

When the DJANGO_SETTINGS_MODULE environment variable is not set, the
module import will fail as the JSON file could not be located.

So avoid to execute that JSON loading code when importing the module
by turning the global variables into functions.

The purpose is to avoid import errors when running sphinx autodoc.

Related to T3266

Legacy SWHID browse URLs were no more honored, new ones were used
instead resulting in SWHID validation errors.

Related to T3234

Check a SWHID entered in a search input is valid by sending a request
to the resolve endpoint of the Web API.

If the SWHID is not valid, precise parsing error will be extracted from
the Web API response and displayed in the Web UI to indicate the search
form can not be validated.

Related to T3247

It enables to avoid getting an invalid SWHID when removing the
URL prefix.

Related to T3234

```
Defining 'pytest_plugins' in a non-top-level conftest is no longer supported:
It affects the entire test suite instead of just below the conftest as expected.
  /home/dev/swh-environment/swh-web/swh/web/tests/conftest.py
Please move it to a top level conftest file at the rootdir:
  /home/dev/swh-environment/swh-web
For more information, visit:
  https://docs.pytest.org/en/stable/deprecations.html#pytest-plugins-in-non-top-level-conftest-files
```

As a consequence, minimum required node version is now 12.x.

- Add an option to configure a swh-counters backend
- Add an object to choose where to route the counter stats queries

The default behavior is kept as long as the counters_backend property is
not configured

Related to T3231

The data loaded by the webapp is a mix of of static file
issued from an old munin and live data from prometheus.
These points can be added to the static file so the graphs
will only depends of the content of json loaded
at `history_counters_url`

Related to T3232

This only deals with the finalized save code now statuses (succeeded, failed) as it's
the only information referenced in the model.

Related to T1481

A Web API bearer token will expire after 30 days of inactivity.

So when a user tries to display a previously generated token from the
dedicated Web UI, check its validity and display an error message if
the token has expired.

Related to T3121

This is more consistent to organize web assets sources and
configuration this way.

Freshly released docutils 0.17 produces a different HTML output
than its previous version so ensure to have a rst input that
produces the same HTML output with all docutils versions.

When using the PostgreSQL backend for django database, models.BinaryField
colums are typed to memoryview while they are typed to bytes with
SQLite backend.

So handle both token types to fix errors in production since the
move to PostgreSQL backend.

When browsing an object in a revision context without any branch or release
name, set the branches dropdown button text to "Revision: <rev_id>" instead
of "Branch: <rev_id>".

Previously the SWHID resolver was trying to associate a branch name to
a revision by checking tip revisions in snapshot branches list.

That operation is not really needed, can be costly to execute and can
lead to regressions in SWHID resolving so remove it.

Related to T3195

This adapts the production settings to allow the use of the postgresql backend.

This does not touch the development or testing settings module though.

Related to T2945

Django authentication backends and middleware based on the use of
Keycloak and OpenID Connect have been moved to the swh-auth module
and  turned into generic ones in order to easily reuse them in any
Django application.

So remove all code and tests that have been moved in swh-auth and
configure swh-web to use the generic authentication backends and
middleware.

Closes T3150

Loading status for a save code now request is first retrieved from the
scheduler database.

When a visit date for a save code now request has been found, the visit
status is then checked to possibly update the final status of the
request to failed (when an origin is not found for instance).

However to avoid sending too many costly queries to the storage,
the visit date and status are only checked once and stored to
swh-web database.

So ensure to not override a final loading task status (succeeded or
failed) to avoid invalid save code now request reporting.

Use of auto_created flag has been moved to swh-auth which prevents
the model to be saved to database and makes the app_label flag use
now pointless.

Related to T3150

The KeycloakOpenIDConnect class and its mocked version have been moved
to the swh-auth module in order to reuse them across multiple modules.

So remove duplicated code and adapt tests to use the fixture factory
function from swh.auth.pytest_plugin.

Related to T3150

The OIDCUser model has been integrated in swh-auth module so
inherit from it instead of having code duplication.

Related to T3150

Github origins might contain a lot of branches corresponding to pull
requests in their associated snapshots.

Those branches are not really of interest and add a lot of noise in
the branches views of swh-web.

So filter out these branches from snapshots by default in the browse
web application in order to improve the display.

Nevertheless, those branches are not filtered out when querying a
snapshot with the Web API.

Related to T2782

Enable to filter returned branches according to their name in
lookup_snapshot and lookup_snapshot_sizes.

Using the optional branch_name_include_substring parameter will
only return branches whose name contains the provided substring.

Using the optional branch_name_exclude_prefix parameter will
not return branches whose name starts with the provided prefix.

Related to T2782

The cache TTL for storing an OIDC profile must be computed from the
access token renewal date (iat field in decoded token) and not from
the OIDC session opening date (auth_time field in decoded token).

Previous implementation was computing a negative TTL (clamped to 0)
once the first issued refresh token was expired and thus the
authentication process was then failing.

This fixes tests when building buster package for swh-web.

Django per-site caching messes up some page rendering for authenticated
users when used in combination with gunicorn workers and memcached.

So remove per-site caching in production settings as it is not really
needed plus it is redundant with the varnish cache already deployed
in front of swh-web in production.

Update command name for virtualenv.

Use multiple threads and workers.

Recent changes in webpack modified the content of the JSON stats object
when compiling assets in production mode. Notably a module chunk is now
identified by an integer instead of its name.

So add an extra mapping between a chunk id and its name in order to fix
the generated Web Labels table.

This restores the login link to use basic django authentication when
Keycloak is not used, for instance in the docker environment.