/membership-frontend

Guardian events and masterclasses

Primary LanguageScala

DEPRECATION NOTICE

This software was decommissioned on 23 November 2023.

Old Event detail URLs (/event/... and /masterclass/...) redirect to https://www.eventbrite.co.uk/e/[\d+].

/patrons redirects to patrons.theguardian.com.

All other URLs redirect to wherever https://theguardian.live redirects to. (theguardian.live is parked over the https://github.com/guardian/domains-platform)

Membership Frontend

https://membership.theguardian.com/. Bringing the Guardian to life through live events and meet-ups.

Table of Contents

  1. Getting Started
  2. Setup
  3. Run
  4. Tests
  5. Deployment
  6. Test Users
  7. Security
  8. Additional Documentation

Getting Started

To get started working on Membership you will need to complete the following steps:

  1. Work through the Setup instructions for this project
  2. Work through the setup instructions for the identity frontend. This provides a frontend for sign-up and registration.
  3. Optional: If you need to have a local instance of the Identity API, follow the instructions in Running Identity API locally
  4. Start up Membership by running the commands in the Run section of this README

Setup

Requirements

We require the following to be installed:

Setup AWS credentials

Install the awscli:

brew install awscli

Setup membership developer AWS credentials using Janus (you will need access to the Janus repo).

Setup NGINX

Follow the instructions in /nginx/README.md in this project.

Install client-side dependencies

cd frontend/
yarn install
yarn devSetup

A good way to check everything is setup correctly is to run the tests

yarn test

For development you'll also need the following commands:

Compile assets
yarn compile
Watch files for changes
yarn watch

Note: We use grunt and bower behind the scenes but provide facades for common tasks to make setup easier and reduce the number of tools needed for most developers. If you want to work with the full set of build tools install grunt-cli and run grunt --help to see the list of available tasks.

Client-side Principles

See client-side-principles.md for high-level client-side principles for Membership.

Pattern Library

A library of common patterns used across the membership site is available at membership.theguardian.com/patterns.

Download private keys

Download our private keys from the membership-private S3 bucket. If you have the AWS CLI set up you can run:

sudo aws s3 cp s3://membership-private/DEV/membership.private.conf /etc/gu/ --profile membership

Ubuntu setup

In an ideal world, your Ubuntu package install would be:

sudo apt-get install nginx openjdk-8-jdk nodejs npm yarn

See Joyent's instructions on installing Node & NPM on Ubuntu. If the available nodejs or NPM package for your version of Ubuntu is old, you'll probably want to install chris-lea's PPA, which includes both Node.js and NPM.

Yarn

For yarn you may have to add the package repository.

Run

Start the app as follows:

./start-frontend.sh

This will start the Play application, which usually listens on port 9100. Making a request to localhost:9100 should give you the homepage.

To make the site reachable as mem.thegulocal.com (necessary for register/sign-in functionality) you then need to make sure NGINX is configured and running as described in /nginx/README.md.

Testing

Manual

See here for details of how we do test users. Note that we read the shared secret for these from the identity.test.users.secret property in membership.private.conf.

Automated

JavaScript unit tests

cd frontend/
yarn test

Scala unit tests

sbt fast-test

All tests

sbt test

Deployment

We use continuous deployment of the main branch to Production (https://membership.theguardian.com/). See fix-a-failed-deploy.md for what to do if a deploy goes bad.

Security

Committing config credentials

For the Membership project, we put both DEV and PROD credentials in membership.private.conf files in the private S3 bucket membership-private, and if private credentials need adding or updating, they need to be updated there in S3.

You can download and update credentials like this

aws s3 cp s3://membership-private/DEV/membership.private.conf /etc/gu --profile membership
aws s3 cp /etc/gu/membership.private.conf s3://membership-private/DEV/ --profile membership

For a reminder on why we do this, here's @tackley on the subject:

NEVER commit access keys, passwords or other sensitive credentials to any source code repository*.

That's especially true for public repos, but also applies to any private repos. (Why? 1. it's easy to make it public and 2. every person who ever worked on your project almost certainly has a copy of your repo somewhere. It's too easy for a subsequently-disaffected individual to take advantage of this.)

For AWS access keys, always prefer to use instance profiles instead.

For other credentials, either use websys's puppet based config distribution (for websys managed machines) or put them in a configuration store such as DynamoDB or a private S3 bucket.

Running Identity API locally

By default the Identity frontend in theguardian.com (which handles sign-in and registration) will talk to a staging instance of the Identity API called CODE. If you need a local instance of the Identity API, follow the instructions below.

Identity repo: https://github.com/guardian/identity

Run through the set up instructions; once complete you will need to run:

 nginx/setup.sh
 ./start-api.sh

Then point your frontend project at your local Identity, not the CODE Identity, which means modifying your ~/.gu/frontend.properties as follows:

id.apiRoot=https://idapi.thegulocal.com
id.apiClientToken=frontend-dev-client-token

Once complete you will need to run the following instructions on the frontend project

nginx/setup.sh
./sbt
project identity
idrun

Additional Documentation

Further documentation notes and useful items can be found in docs.