Bring in the Auto-DevOps template from GitLab. We do our own matrix
testing but this brings in the various security, lecence and dependency
scanning tools from Auto-DevOps.

In order to make use of these scanning tools we build a small container
but this is not intended to run the application, just to contain the
source so that the various scanners can scan it. That being said we do
"pip install" within the container so that a basic "pip install" test
must pass before we start all the rest of the test jobs.

Closes #7

Support authenticated connections

Closes #5

See merge request !6

Add support for optional settings that will allow users to authenticate and use django-ucamlookup outside the CUDN.

add GitLab CI configuration for testing

Closes #6

See merge request !5

Add a basic CI configuration which matrix tests against supported
Python and Django versions along with running flake8 and code-coverage.
Coverage information is extracted from the coverage job run.

Closes #6

Add tox support for matrix testing

Dr Rich Wareham authored 6 years ago and Dr Abraham Martin committed 6 years ago

Re-work the tox deployment so that we mount the application directory as
a read-only volume rather than copying the file in when building the
image. This has the following advantages:

1. We do not build a new image each time we run tests. (This is nicer to
   those of us with finite disk space.)
2. Running tests is slightly faster since a new image is not being
   built.
3. The application directory is mounted read-only so we catch code which
   accidentally writes to the current directory.
4. We can use the upstream tox image rather than rolling our own derived
   image.

In order to make to happy to run in a read-only environment, we specify
that a) it does not run sdist to write an .egg-info directory and b)
that coverage data is stored in /tmp rather than the application
directory.

Use themattrix/tox-base docker image. This image contains all versions of python, whuch makes matrix testing very easy.

update ibisclient to 1.2.8 release

Git uis references

bugfix: "single select" control not initialising (introduced single_user on ucamlookup_users.html to initialise "single select")

..and bump version to 1.9.1

The invocation of Jquery select2 to provide searchable dropdowns
didn't sanitise data coming fom lookup, with the result that any
HTML markup it contained, including <script>...</script>, was
interpreted.

The documentation is difficult to follow, but indications are that the
formater functions (at least formatResult and formatSelection), if
overriden have to do their own escaping of data as necessary. They are
however passed the current global 'escapeMarkup' function as their
final parameter.