The API is implemented in python with the flask framework.
Check the design.md file for detailed documentation on the API.
There is a debugging and production docker configuration. The compose-dev.yml builds the dev target for local development running in a docker container. It runs it with the debugpy debugger, which you can attach to on port 5678. You can use the launch configuration in .vscode/launch.json. To start the development environment you can run the bash script start_dev.sh and to stop it you can run stop_dev.sh. This spins up the docker container for the app and continually tries to attach to the log output. To get out you have to Ctrl-C twice, and if you need to stop the container, you can run stop_dev.sh. Hot reload is implemented by restarting the container every time there is a change to the filesystem. However, you need to re-attach your debugger. Breakpoints and the debug console are working on VSCode.
For production there is docker-compose.yml, it runs the API using gunicorn as the WSGI server.
Even though the development environment runs in a container, if we want our IDE to be aware of the different python modules, and if we want to run various commands without spinning up a container, we need to install the packages locally. It's best to create a virtual environment, for example using virtualenv at the repository root:
mkvirtualenv crmapi -p /usr/bin/python3Then install the packages via pip:
pip install -r requirements.txtLastly, install Newman testing tool for running Postman tests:
npm install -g newmanThere is both config_dev.py and config_prod.py configuration files. One for each environment. Please modify the variables according to your liking.
To create the database for development, you need to run the following command in the root directory:
ENV=DEV; flask --app app init-dbThis will create a SQLite database according to the values in your configuration file. It will also create the users marduk and human. Check the file app/db.py for their passwords. Note that in production, the marduk user uses the password set in the config_prod.py file.
Run:
./start_dev.shYou should see flask's log output. Attach to the debugger, for example with VSCode. Breakpoints and the debug console should work. Hot reload is implemented by restarting the container and reattaching the debugger manually.
Should you need to stop the container, do a double Ctrl-C and run:
./stop_dev.shto stop the container.
Alternatively, you can run the application directly on your system without docker. Take a look at the Dockerfile for running the commands. Currently, this is more pragmatic if you are using the hot-reload feature a lot.
To run the tests, make sure you have a running application in 'development environment' mode. The tests are configured for the config_dev.py configuration. By default, the tests will make requests to http://127.0.0.1:5000, but this can be changed by editing the url variable in the CRMAPI.postman_environment.json file.
The tests are using Postman collections & an environment.
To run the tests, go to the tests folder and run:
newman run CRMAPI.postman_collection.json -e CRMAPI.postman_environment.jsonThe results will be displayed on screen.
The file .travis.yml tells Travis CI to run the tests after a commit. The exit code of newman will tell Travis whether the tests succeeded or not.
Follow the getting started guide for the development environment with the following modifications:
- the file config_prod.py needs to be setup for the production environment. Make sure to change the administrator password and the secret key variables
- there is no mounting of repository files like in the debugging container. Two volumes are created instead, one for the database and another for the static files (customer profile pictures), and they are mounted in the corresponding folders.
There are a few missing features from the production environment, namely:
- More scalable persistence, like PostgreSQL instead of SQLite
- Load balancer and better static file serving via NGINX
- HTTPs, certificate from Let's Encrypt and automatic renewal via Certbot
- More OAuth2 flows, currently only uses the resource owner password flow