ChemistryCafe is a web application built with React, Vite, and TypeScript. The app uses various libraries and frameworks such as MUI, Axios, and styled-components to provide a seamless and modern user experience. This README provides information about the application and how to run the code locally.
The backend of Chemistry Cafe requires certain secrets that cannot be stored in version control. These secrets are stored in environment variables that are either on the machine or loaded on runtime. Before running the application, make sure to define these variables ahead of time.
To define required environment variables, a .env file should be created with the following schema:
# Required
GOOGLE_CLIENT_ID=<client_id>
GOOGLE_CLIENT_SECRET=<client_secret>
MYSQL_USER=chemistrycafedev
MYSQL_PASSWORD=chemistrycafe
MYSQL_DATABASE=chemistry_db
# Optional with defaults
MYSQL_SERVER=localhost
MYSQL_PORT=3306
FRONTEND_HOST=http://localhost:5173
BACKEND_BASE_URL=/In order to use Google Authentication, a Google Cloud OAuth 2.0 project must be used with a client id and client secret. When creating the project, http://localhost:8080/signin-google should be added to the list of "Authorized redirect URIs" for testing.
FRONTEND_HOST and BACKEND_BASE_URL are required in a production environment. FRONTEND_HOST contains where the frontend is served and BACKEND_BASE_URL specifies what the backend urls should be prefixed with (eg. "/api/").
Note:
- When running locally, the
.envfile must be in the/backenddirectory.- This includes when running database migrations locally
- When running with docker, the
.envfile should be in the root directory unless otherwise specified. If it is in another directory, simply usedocker compose --env-file <path/to/.env> upinstead of the default.
You must have Docker Desktop installed and running. With Docker Desktop running, open a terminal window. To build the project run:
$ docker compose up --build
To run project in background:
$ docker compose up -d
When finished, run:
$ docker compose down
To view logs for backend/frontend/sql:
$ docker compose logs backend
$ docker compose logs frontend
$ docker compose logs sql
To view logs for all services:
$ docker compose logs -f
Note: To view changes, you must run the docker compose down and then run the project again.
-
Clone the repository: Open a terminal window, navigate to a folder where you would like the Chemistry Cafe files to exist, and run the following commands:
$ git clone https://github.com/NCAR/chemistry-cafe.git $ cd chemistrycafe -
Install dependencies for frontend:
$ cd frontend $ npm install $ cd ..
-
Install dependencies for backend
$ cd backend $ dotnet restore
The database comes with a provided init.sql which creates all of the database tables. To create the migrations, we use a tool called dotnet-ef of which the documentation can be found here.
To install the tool:
$ dotnet tool install --global dotnet-efThe following commands are useful when developing the application. All of these must be executed in the ./backend directory.
To create a migration:
$ dotnet ef migrations add <migration-name>To apply migrations without generating a script:
$ dotnet ef database updateTo generate a new init.sql script:
$ dotnet ef migrations script --idempotent -o init.sqlcd frontend
npm run test:coverage
If all tests past, the coverage report will generate in frontend/coverage/index.html
docker compose up mysql -d
dotnet test backend --collect:"Code Coverage;Format=cobertura"
docker compose down
reportgenerator -reports:"backend/TestResults/**/**.cobertura.xml" -targetdir:coveragereport -reporttypes:Html,lcov -classfilters:"-MySqlConnector.*;-ChemistryCafeAPI.Migrations.*" -filefilters:-/_/src/MySqlConnector/*,-backend/TestResults/**/coverage.cobertura.xml; rm -r ./backend/TestResults
If all tests run, the coverage report will generate index.html and lcov.info under backend/coveragereport/.
To build for production, there is a provided docker-compose.production.yml file. A .env file in the root directory is required to specify environment variables of the production containers. The .env file should look like the following:
# Required
MYSQL_USER=chemistrycafe
MYSQL_PASSWORD=very_strong_mysqlpassw0rd # Needless to say, do not use this as the actual password
MYSQL_DATABASE=chemistry_db
MYSQL_ROOT_PASSWORD=dontsharethiswithanyonebecausethatwouldbebad
GOOGLE_CLIENT_ID=<client_id>
GOOGLE_CLIENT_SECRET=<client_secret>
FRONTEND_HOST=https://<domain>
BACKEND_BASE_URL=/api # This would be / if testing on localhost:8080
#Optional with defaults
MYSQL_SERVER=mysql
MYSQL_PORT=3306- Note: compared to the development environment, the frontend requires more variables to be specified. This is to ensure less implicit functionality.
- The
FRONTEND_HOSTvariable should not have a trailing slash. This is because CORS policies treathttps://<domain>andhttps://<domain>/as different routes.
The frontend requires a file named .env.production in its directory. This is because the final container will serve a static site to the user and it pastes the variables inline with the static code.
VITE_BASE_URL=http://localhost:8080/api # Backend API endpoint
VITE_AUTH_URL=http://localhost:8080/auth # Backend auth endpointFor Contributors: Do not put secrets in this environment file. These environment variables are served directly to the web browser meaning they are public. Any functionality requiring API keys should solely be dealt with in the backend.
- It's very easy to be tempted with an npm package that uses environment variables to call an external API. Many have fallen victim to this security vulnerability in the past.
docker compose -f ./docker-compose.production.yml up -d
After each container is built and running, the backend will be served in port 8080 and the frontend will be served on port 5173 just like the development environment.
To actually serve these containers to the world, use a reverse proxy like NGINX or Apache httpd to redirect traffic to the different services.
When serving on the same dns, it's generaly a good idea to put the frontend on / and the backend on something unique like /api. Though, if you use /api, do note that some routes in the backend may look like https://<host>/api/api/<route>.
Copyright (C) 2018-2024 National Center for Atmospheric Research