[feat] Add Configurable Banner for Signed in Users #168
Description
Because the PARS instance of EMPACT is not yet suitable for hosting UCNI/OUO data (Not certified via valid ATO), and because the intent here is to allow other orgs to self-host EMPACT within their own environments: Proposal to add a banner that appears once on user login. This would be configurable via environment variables. Proposing the following
DISCLAIMER_BANNER_IS_VISIBLE, propose this be a Boolean value with a default of 1/True
DISCLAIMER_BANNER_SUBJECT, propose this be a string value containing the desired text for the subject of the disclaimer/warning banner. Default value of "Data Storage Warning"
DISCLAIMER_BANNER_BODY, propose this be a string value containing the desired text for the body of the disclaimer/warning banner. Default value of "Warning: This system has not be certified for the storage of any sensitive or classified information. You may not upload or storage any: UCNI, OUO, Classified, Secret, or Top-Secret data on this system. Please speak with your security officer for more information."
Intent is that these values are defaults of EMPACT, defined in code, but can be adjusted/configured/changed via environment variables.
Open to discussions/suggestions on how best to implement this, including phrasing for the warning text.