You need node 12+ to use the app :
Install
The install is done with pnpm from the root of the project
pnpm install
Env variables Copy (or simlink) the .env from the root to here.
cp ../.env.sample ./env
To check everything is fine :
pnpm fullcheck
You can run in watch mode individually :
Unit tests :
pnpm test:unit
Integration tests :
-
Ensure that you have a docker daemon/agent running on your machine.
-
Clear out any old data to ensure you initialize the database with the latest schema and test data.
immersion-facile$ rm -rf docker-data/
-
At the very least you will need to run the
postgrescontainer as well as thebackcontainer which initializes the database at startup:immersion-facile$ docker-compose -f docker-compose.resources.yml up --build
Observe the log output to ensure the database has been properly initialized.
-
Run DB migration :
pnpm run db:up
-
You can run create some data in the database with : You will than have the correct featureFlags and an agency in Paris.
pnpm seed
- Execute the integration tests in a separate shell"
immersion-facile$ cd back back$ pnpm run test:integration
End to end tests :
pnpm run test:e2e
The simplest way to get a back-end up and running is using the command:
immersion-facile$ cd back/
back$ pnpm startIf you're using PG repositories and you're running locally, you need to set DATABASE_URL host to localhost (see commented lines in .env.sample file)
The back-end will be accessible on http://localhost:1234. The default behaviour when no environment variables are specified (see below) is as follows:
- fake in-memory versions of all secondary adapters are used
- event crawling is disabled
- all log messages of level
infoor higher are printed to the console
A pair of asymmetric keys is used for signing JWTs. These are kept in JWT_PRIVATE_KEY and JWT_PUBLIC_KEY env variables (see below). You can use the following command to generate them:
openssl ecparam -name prime256v1 -genkey -noout -out private.ec.key && openssl ec -in private.ec.key -pubout -out public.pem
Note that this requires OpenSSL (brew install openssl); you can generate an EC key pair through any other cryptographic tool.
You can then copy-paste the variable contents into .env, or export it:
export JWT_PRIVATE_KEY=$(cat ./private.ec.key) JWT_PUBLIC_KEY=$(cat ./public.pem)
If the JWT keys need to be changed, it should be done by :
- setting the old keys in the variables
JWT_PREVIOUS_PUBLIC_KEYandJWT_PREVIOUS_PRIVATE_KEY, - creating a new pair of keys (like explained just before), and putting them in the variables :
JWT_PUBLIC_KEYandJWT_PRIVATE_KEY
The back-end behaviour is controlled by environment variables. They can be specified in mulitple ways:
-
in your
back/.envfile (most recommended)back$ cat .env REPOSITORIES=PG JWT_PRIVATE_KEY=... JWT_PUBLIC_KEY=... back$ pnpm run
-
prefixed to the
pnpm startcommandback$ REPOSITORIES=PG pnpm start
-
persistently in your shell (least recommended)
back$ export REPOSITORIES=PG back$ pnpm start
To generate a token for a partner:
- add the partner name to
authorisedNamesin shared/src/apiConsumer/ApiConsumer.ts - run the script
generateApiKeyin Scalingo one-off container :
scalingo --app if-prod-back --region osc-secnum-fr1 run 'pnpm back run generate-api-key <company-name>'-
the JWT token will then be printed on your screen and should be shared to the partner. You can also find it in DB table
api_consumers. -
an sql command to insert data into
api_consumerswill also be printed on screen and should be executed manually. It will authorize this new consumer to access the api.
To change the granularity of the log output, use the LOG_LEVEL environment variable. Valid values in descending order of granularity are: fatal, error, warn, info (default), debug, trace.
See logger.ts for the full logger configuration.
Example:
back$ LOG_LEVEL=debug pnpm startBy default, every log statement is printed on a single line. Setting LOGGER_MULTI_LINE=yes will pretty-print JSON using indentation and line breaks.
Example:
back$ LOGGER_MULTI_LINE=yes pnpm start
[2021-10-19 06:07:54.610] INFO (startServer.ts):
featureFlags: {
"enableAdminUi": false,
}
...SIDE NOTE: This also works during test execution, e.g.
back$ LOG_LEVEL=debug pnpm run test:unit
back$ LOGGER_MULTI_LINE=yes pnpm run test:allWe use the prom-client library for metric exports. See their documentation for thev different metric types (counters, histograms, etc.)
Adding new counters is very simple, just follow the example in merge request 327.
The appConfig.ts file encapsulates all configuration parameters used by the immersion facile back-end, such as feature flags, api keys, signing/encryption keys, etc. Basically anything that we want to be able to modify without code changes or that should remain secret.
In normal operation (i.e. normal server startup outside of automated tests), the config is read from environment variables, which can be defined in .env files or in as CI/CD variables in the GitLab settings.
This mechanism allows us to provide different server settings in different environments:
- production systems (prod, staging, dev)
- local server runs
- e2e and integration tests
Simply add a new getter method to this class, using this.env to access the environment variables. There are a number of helper function available to input formats (e.g. parseStringList) or to validate the input values (e.g. throwIfNotInArray).
It is strongly recommended to create a getter method rather than declaring a public readonly field that's initialized at construction time, especially when using a throwIf...() method to read the parameter. Using lazy fetching ensures that a missing variable in a test or local environment doesn't causes a failure unless that variable is actually read.
Example usages:
private get myNewOptionalParameter() {
return this.env.MY_NEW_OPTIONAL_PARAMETER || "default_value";
}
private get myNewRequiredParameter() {
return this.throwIfNotDefined("MY_NEW_REQUIRED_PARAMETER");
}
private get myNewMultipleChoiceParameter() {
return throwIfNotInArray({
processEnv: this.env,
variableName: "MY_NEW_MULTIPLE_CHOICE_PARAMETER",
authorizedValues: ["CHOICE_A", "CHOICE_B", "CHOICE_C"],
defaultValue: "CHOICE_A",
});
}An AppConfig instance must be provided to createApp() (in server.ts) in order to create a new instance of the back-end server. This is typically done as follows:
-
Server startup: startServer.ts creates an instance that populated from the environment variables after taking into account the
back/.envfile.Example usage:
const appConfig = AppConfig.createFromEnv(); const { app } = await createApp(appConfig); app.listen(port);
-
e2e tests: The test files use AppConfigBuilder.ts to create one or more server instances with custom configurations as needed for the test.
Example usage:
beforeEach(async () => { const config = new AppConfigBuilder().enableAdminUi().build(); const { app } = await createApp(config); request = supertest(app); });
NOTE: AppConfigBuilder.ts initializes the config with test-specific defaults, such backoffice credentials and JWT keys.
-
integration tests (special case): These sometimes rely on environment variables to create secondary adapters (e.g. a
PgConventionRepository).Example usage:
beforeEach(() => { const appConfig = AppConfig.createFromEnv(); repositoryUnderTest = new PgEstablishmentAggregateRepository( new Client({ config.pgImmersionDbUrl }) ); });
Use the appropriate with...() or enable...() method in AppConfigBuilder.ts, or create a new one if the one you need doesn't exist yet. Note that the variable name used in AppConfigBuilder.ts must match the one used in appConfig.ts. (We couldn't think of a simple way to avoid this. :-( Suggestions are welcome.)
Example usage:
// in AppConfigBuilder.ts:
public withMyNewOptionalParameter(value: string): AppConfigBuilder {
return new AppConfigBuilder({
...this.config,
MY_NEW_OPTIONAL_PARAMETER: value,
});
}
// In the e2e test:
beforeEach(async () => {
const config = new AppConfigBuilder()
.withMyNewOptionalParameter("test-value")
.build();
const { app } = await createApp(config);
request = supertest(app);
});This section describes the workings of our event processing setup and explains how to perform various operations relating to it.
TODO(jburkhard/jfmacresy): Describe the architecture and how to schedule events.
Quarantined events are recorded in the outbox just like regular events, but the EventBus will make no attempt to publish them.
There is currently only one way to quarantine events:
-
If the event's domain topic is included in the
QUARANTINED_TOPICSenvironment variable, all newly created events will automatically be marked as quarantined.This is meant for dealing with production issues: if we find that certain events causes bugs crashes, we can quickly disable their processing until we have fixed the bug.
Quarantining could be used in other scenarios in the future, e.g. individual events could be quarantined after 3 unsuccessful processing attempts.
This section describes how to work with our cron jobs, both locally and remotely. We will use the trigger-update-establishments-from-sirene job as an example throughout this section:
The source code is located in back/src so that it can take advantage of the adapters and other helpers implemented there.
We use the Scalingo Scheduler to schedule the execution of the cron jobs. The configuration is defined in back/scalingo/cron.json.
Logs for scheduled tasks are included in the application logs.
Each cron job has its own pnpm start script with which it can be started:
back$ pnpm run trigger-update-establishments-from-sirene
As with the back-end, we use environment variables for parametrization.
scalingo --region {region-name} --app {app-name} run bash
pnpm back trigger-update-establishments-from-sirene