Skip to content

graasp/graasp

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1,001 Commits

.aws

.aws

 
 

.devcontainer

.devcontainer

 
 

.github/workflows

.github/workflows

 
 

.husky

.husky

 
 

.vscode

.vscode

 
 

.yarn/releases

.yarn/releases

 
 

API Collections

API Collections

 
 

docker

docker

 
 

docs

docs

 
 

src

src

 
 

test

test

 
 

.dockerignore

.dockerignore

 
 

.editorconfig

.editorconfig

 
 

.eslintignore

.eslintignore

 
 

.eslintrc

.eslintrc

 
 

.gitignore

.gitignore

 
 

.prettierignore

.prettierignore

 
 

.prettierrc

.prettierrc

 
 

.yarnrc.yml

.yarnrc.yml

 
 

CHANGELOG.md

CHANGELOG.md

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

commitlint.config.cjs

commitlint.config.cjs

 
 

jest.config.js

jest.config.js

 
 

package.json

package.json

 
 

renovate.json

renovate.json

 
 

tsconfig.build.json

tsconfig.build.json

 
 

tsconfig.json

tsconfig.json

 
 

yarn.lock

yarn.lock

 
 

Repository files navigation

Graasp Backend

GitHub Release Test CI typescript version

This repository contains the source code and confgurations for the Graasp Backend. Visit the Graasp Platform at graasp.org

❓Looking for our client applications/frontends ? Head over to: Builder, Player, Library, Analytics or Account

Requirements

In order to run the Graasp backend, it requires:

  • Node v20
  • NPM v9
  • Yarn (can be installed through nvm)
  • Docker : Docker is not necessary, it is possible to install everything locally. However it is strongly recommanded to use the Docker installation guide.

Recommended Tools

  • NVM or Volta (recommended) : CLI to manage multiple versions of Node.js and NPM.

  • Postman : Application to explore and test your APIs.

  • Starship: A shell prompt enhancer that shows you the current git branch nvm version and package version, very usefull for quick look at your environment (works on all shells and is super fast), requires you to use a NerdFont

  • VS Code : IDE to manage the database and make changes to the source code.

    • Remote-Containers : A extension for VS Code. It allows to easily setup the dev environnement.

    • SQLTools : A extension for VS Code. It allows easy access to the database.

Installation

Graasp offers two ways to install the Graasp backend :

  • Docker (recommended) : this allows you to run a preconfigured environnement
  • Local : you'll need to install and configure all the required services

Docker installation

We recommend to set up the development environment using Docker, as it allows to use a preconfigured developement environnement.

First open the folder in the dev-container by using the command palette cmd + shift + P (or ctrl instead of cmd), and typing Open Folder in Container.

This will create 10 containers :

  • graasp-core : Node.js backend of Graasp
  • graasp-postgres : PostgreSQL database used by the backend
  • graasp-postgres-test : PostgreSQL database used when running tests
  • graasp-etherpad : Container for the etherpad service
  • graasp-postgres-etherpad : PostgreSQL database used by the etherpad service
  • graasp-meilisearch : Container for the meilisearch service
  • graasp-redis : Redis instance to enable websockets
  • graasp-localstack : Localstack instance use to fake S3 storage locally
  • graasp-iframely : Iframely instance used to get embeds for links
  • mailer-1 : Simple mailer instance used to receive emails locally (see the Utilities section)
  • localfile-1 : Simple static file server to get files stored in graasp when using the local storage otpion (see the Utilities section)

Important To use localstack with the Docker installation, it is necessary to edit your /etc/hosts with the following line 127.0.0.1 localstack. This is necessary because the backend creates signed urls with the localstack container hostname. Without changing the hosts, the developpement machine cannot resolve the http://localstack hostname.

Then install the required npm packages with yarn install. You should run this command in the docker's terminal, because some packages are built depending on the operating system (eg. bcrypt).

Info If the process is killed during the installation of the packages, you'll need to increase the memory limit for docker.
To increase the memory limit, go to Docker > Preferences > Resources and change the memory from default (2 GB) to 8GB.

Local Installation

First a running and accessible instance of PostgreSQL is required.

To enable websockets capabilities, it is required to have a running instance of Redis.

To use the backend with S3, it is required to have a running instance of localstack.

Then open the folder locally and run the following command to install the required npm packages.

yarn install

Configuration

To configure the application, you'll need to change the values in .env.development. The file should have the following structure :

We provide sample values for development purposes aligned with the devcontainer configuration. Adjust these values as needed.

### Graasp back-end configuration

### Network configuration

# Default protocol is already set
# PROTOCOL=http
# The hostname is set by ./.devcontainer/docker-compose.yml
# HOSTNAME=0.0.0.0
PORT=3000
# The public URL is set by ./.devcontainer/docker-compose.yml
# PUBLIC_URL=
COOKIE_DOMAIN=localhost
CORS_ORIGIN_REGEX=^http?:\/\/(localhost)?:[0-9]{4}$

### Database configuration (set by ./.devcontainer/docker-compose.yml)
# DB_NAME=docker
# DB_USERNAME=docker
# DB_PASSWORD=docker
# DB_HOST=db
# If you use read replicas, set the hostnames here (separated by commas)
# DB_READ_REPLICA_HOSTS=
DATABASE_LOGS=true

### Sessions

# Session cookie key (to generate one: https://github.com/fastify/fastify-secure-session#using-a-pregenerated-key and https://github.com/fastify/fastify-secure-session#using-keys-as-strings)
# TLDR: npx @fastify/secure-session > secret-key && node -e "let fs=require('fs'),file=path.join(__dirname, 'secret-key');console.log(fs.readFileSync(file).toString('hex'));fs.unlinkSync(file)"
SECURE_SESSION_SECRET_KEY=<secret-key>


### Auth

TOKEN_BASED_AUTH=true
# JWT secret (can use the same command as for SECURE_SESSION_SECRET_KEY)
JWT_SECRET=<secret-key>
# Auth JWT secret (can use the same command as for SECURE_SESSION_SECRET_KEY)
AUTH_TOKEN_JWT_SECRET=<secret-key>
AUTH_TOKEN_EXPIRATION_IN_MINUTES=10080
# Refresh JWT secret (can use the same command as for SECURE_SESSION_SECRET_KEY)
REFRESH_TOKEN_JWT_SECRET=<secret-key>
REFRESH_TOKEN_EXPIRATION_IN_MINUTES=86400
# Password reset JWT secret (can use the same command as for SECURE_SESSION_SECRET_KEY)
PASSWORD_RESET_JWT_SECRET=<secret-key>
PASSWORD_RESET_JWT_EXPIRATION_IN_MINUTES=1440


### Mail server configuration

# Mailer config (set by ./.devcontainer/docker-compose.yml)
# Set to random values if you don't want to use the mock mailbox at http://localhost:1080
# MAILER_CONFIG_SMTP_HOST=mailer
# MAILER_CONFIG_USERNAME=graasp
# MAILER_CONFIG_PASSWORD=graasp


### File storages configuration

# If you are using a local installation of localstack replace by http://localhost:4566
# Otherwise this value is already set by ./.devcontainer/docker-compose.yml
# S3_FILE_ITEM_HOST=http://graasp-localstack:4566

# Graasp file item file storage path
# File item storage is set by ./.devcontainer/docker-compose.yml
# FILE_STORAGE_ROOT_PATH=
# FILE_STORAGE_HOST=http://localhost:1081

# Graasp s3 file item
S3_FILE_ITEM_PLUGIN=false
S3_FILE_ITEM_REGION=us-east-1
S3_FILE_ITEM_BUCKET=graasp
S3_FILE_ITEM_ACCESS_KEY_ID=graasp-user
S3_FILE_ITEM_SECRET_ACCESS_KEY=graasp-pwd

# Graasp H5P
H5P_FILE_STORAGE_TYPE=file
H5P_STORAGE_ROOT_PATH=/tmp/graasp-h5p/
H5P_PATH_PREFIX=h5p-content/


### External services configuration

# Graasp Etherpad (set by ./.devcontainer/docker-compose.yml)
# ETHERPAD_URL=http://etherpad:9001
# Optional, if the etherpad server has a different public URL than what the back-end uses to communicate with the service (e.g. private network)
# ETHERPAD_PUBLIC_URL=http://localhost:9001
# Optional, if the etherpad cookie domain is different from the domain of the public URL
# ETHERPAD_COOKIE_DOMAIN=localhost
# Api key is set by ./.devcontainer/etherpad/devApiKey.txt
# ETHERPAD_API_KEY=0123456789abcdef0123456789abcdef0123456789abcdef0123456789abcdef

# Graasp embedded link item
# Set by ./.devcontainer/docker-compose.yml
# EMBEDDED_LINK_ITEM_IFRAMELY_HREF_ORIGIN=http://graasp-iframely:8061

# Graasp apps
APPS_JWT_SECRET=<secret-key>
APPS_PUBLISHER_ID=<id>

# Graasp websockets
# Redis config set by ./.devcontainer/docker-compose.yml
# REDIS_HOST=redis
# REDIS_PORT=6379
# REDIS_USERNAME=
# REDIS_PASSWORD=

# Graasp Actions
SAVE_ACTIONS=true

# Client hosts
BUILDER_CLIENT_HOST=http://localhost:3111
PLAYER_CLIENT_HOST=http://localhost:3112
LIBRARY_CLIENT_HOST=http://localhost:3005
AUTH_CLIENT_HOST=http://localhost:3001
ACCOUNT_CLIENT_HOST=http://localhost:3114
ANALYTICS_CLIENT_HOST=http://localhost:3113
GRAASP_MOBILE_BUILDER=graasp-mobile-builder

# This is already set in the docker-compose file, un-comment below if you want to override it
# IMAGE_CLASSIFIER_API=<url>

# get a recaptcha secret access key for your hostname at http://www.google.com/recaptcha/admin
RECAPTCHA_SECRET_ACCESS_KEY=<google-recaptcha-key>
# Graasp search
MEILISEARCH_URL=http://graasp-meilisearch:7700
MEILISEARCH_MASTER_KEY=masterKey
MEILISEARCH_REBUILD_SECRET=secret

# Enable job scheduling (for cron based tasks)
JOB_SCHEDULING=true

# OPEN AI
# OPENAI_GPT_VERSION=<DEFAULT_GPT_VERSION> # valid values are gpt-4 or gpt-3.5-turbo
OPENAI_API_KEY=<openai-api-key>

# GEOLOCATION API - this can be empty if you don't use geolocation
GEOLOCATION_API_KEY=

Running

To run the application, use yarn watch. If any file change, the application will automatically reload.

You can also run yarn seed to feed the database with predefined mock data.

Utilities

The development docker-compose.yml provides an instance of mailcatcher, which emulates a SMTP server for sending e-mails. When using the email authentication flow, the mailbox web UI is accessible at http://localhost:1080. If you do not want to use mailcatcher, set the MAILER_CONFIG_SMTP_HOST variable in your .env.development to some random value (e.g. empty string). This will log the authentication links in the server console instead.

The development docker-compose.yml provides a static file server for serving files when using the local storage option (alternative to the s3 option). This option has the added benefit of being persistent when used locally in opposition to localstack (see the known issues section for more informations). The server is available at http://localhost:1081.

Testing

To run the tests locally without obliterating your database you should create a new .env.test file that can contain the same values as your .env.development file. Simply change the config values for the database connection:

DB_NAME=docker-test
DB_USERNAME=docker-test
DB_PASSWORD=docker-test
DB_HOST=graasp-postgres-test

This will ensure your tests run on the second database container. As they will clean the database between test runs you will not loose your development data.

Database and Migrations

The application will run migrations on start.

Create a migration

Migrations are saved in src/migrations/*.ts. They are then transformed into js files so typeorm can run them.

Run the generate and run command to create and apply the migration.

yarn migration:generate
yarn migration:run

If you need to revert

yarn migration:revert

To test your migrations, you can run

yarn migration:fake

Each migration should have its own test to verify the up and down procedures in test/migrations.

Up tests start from the previous migration state, insert mock data and apply the up procedure. Then each table should still contain the inserted data with necessary changes. The down tests have a similar approach.

Known issues

The development environnement uses localstack as a local alternative to AWS s3 storage. But persistence accross restarts is not supported without the premium license. This means that it is expected that you see 404 on uploaded files after a restart of your computer. In details:

  • the items are persisted in the DB
  • the files stored on the fake s3 are not.

In the future we might investigate different solutions to mocking s3 storage, or improve the local storage to provide a durable local storage option.

About

Backend code repository for the Graasp platform

Resources

Readme

License

AGPL-3.0 license
Activity
Custom properties

Stars

3 stars

Watchers

8 watching

Forks

2 forks
Report repository

Releases 82

v1.40.0 Latest
May 30, 2024
+ 81 releases

Contributors 24

+ 10 contributors

Languages