Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/hmcts/darts-api

jenkins-sds

Last synced: about 2 months ago
JSON representation

Host: GitHub
URL: https://github.com/hmcts/darts-api
Owner: hmcts
License: mit
Created: 2023-03-07T14:23:01.000Z (almost 2 years ago)
Default Branch: master
Last Pushed: 2024-10-29T09:46:15.000Z (2 months ago)
Last Synced: 2024-10-29T09:46:54.727Z (2 months ago)
Topics: jenkins-sds
Language: Java
Homepage:
Size: 209 MB
Stars: 3
Watchers: 16
Forks: 2
Open Issues: 28
Metadata Files:
- Readme: README.md
- Contributing: .github/CONTRIBUTING.md
- License: LICENSE
- Codeowners: .github/CODEOWNERS

Awesome Lists containing this project

README

# darts-api

# Modernised DARTS SwaggerUI

* To View the embedded Swagger UI in Github Pages: https://hmcts.github.io/darts-api/
* The settings for the repository uses the master branch for Github Pages.
* Use the top bar to "Select a definition" e.g. Transcriptions
* The `darts-api/index.html` file should be updated to include any new OAS definitions in the urls parameter under
SwaggerUIBundle.
* The application [swagger-ui](http://localhost:4550/swagger-ui/index.html) can be used for "Try it out" functionality
using the Authorization Button Padlock and presenting a valid access token (JWT).

# Building and deploying the application

## Prerequisites

- [Java 21](https://www.oracle.com/java)
- ffmpeg

### Environment variables

To run the functional tests locally, you must set the following environment variables on your machine.
The required value of each variable is stored in Azure Key Vault as a Secret.

| Environment Variable Name
|----------------------
| GOVUK_NOTIFY_API_KEY
| FUNC_TEST_ROPC_USERNAME
| FUNC_TEST_ROPC_PASSWORD
| AAD_B2C_TENANT_ID
| AAD_B2C_CLIENT_ID
| AAD_B2C_CLIENT_SECRET
| AAD_B2C_ROPC_CLIENT_ID
| AAD_B2C_ROPC_CLIENT_SECRET
| AZURE_STORAGE_CONNECTION_STRING
| AAD_TENANT_ID
| AAD_CLIENT_ID
| AAD_CLIENT_SECRET
| XHIBIT_USER_NAME
| XHIBIT_PASSWORD
| CPP_USER_NAME
| CPP_PASSWORD
| DARPC_USER_NAME
| DARPC_PASSWORD
| SYSTEM_USER_EMAIL
| DAR_MIDTIER_USER_NAME
| DAR_MIDTIER_PASSWORD
| AZURE_AD_FUNCTIONAL_T
| AZURE_AD_FUNCTIONAL_T
| AZURE_AD_FUNCTIONAL_TEST_USERNAME
| AZURE_AD_FUNCTIONAL_TEST_PASSWORD
| ARM_SAS_ENDPOINT
| DETS_SAS_URL_ENDPOINT
| ARM_USERNAME
| ARM_PASSWORD
| AAD_TENANT_ID_JUSTICE
| AAD_CLIENT_ID_JUSTICE
| AAD_CLIENT_SECRET_JUSTICE
| DARTS_INBOUND_STORAGE_SAS_URL
| DARTS_UNSTRUCTURED_STORAGE_SAS_URL
| ARM_SERVICE_PROFILE
| ARM_SERVICE_ENTITLEMENT
| ARM_STORAGE_ACCOUNT_NAME | Corresponding Azure Key Vault Secret Name | --------------------|-------------------------------------------| | GovukNotifyTestApiKey | | AzureAdB2CFuncTestROPCUsername | | AzureAdB2CFuncTestROPCPassword | | AzureAdB2CTenantId | | AzureAdB2CClientId | | AzureAdB2CClientSecret | | AzureAdB2CFuncTestROPCClientId | | AzureAdB2CFuncTestROPCClientSecret | | AzureStorageConnectionString | | AzureADTenantId | | AzureADClientId | | AzureADClientSecret | | XhibitUserName | | XhibitPassword | | CppUserName | | CppPassword | | DarPcUserName | | DarPcPassword | | DartsSystemUserEmail | | DarMidTierUserName | | DarMidTierPassword | EST_GLOBAL_USERNAME | AzureAdB2CFuncTestROPCGlobalUsername | EST_GLOBAL_PASSWORD | AzureAdB2CFuncTestROPCGlobalPassword | | AzureADFunctionalTestUsername | | AzureADFunctionalTestPassword | | ARMSasEndpoint | | DETSSasURLEndpoint | | ArmUsername | | ArmPassword | | AzureADTenantIdJustice | | AzureADClientIdJustice | | AzureADClientSecretJustice | | DartsInboundStorageSasUrl | | DartsUnstructuredStorageSasUrl | | ArmServiceProfile | | ArmServiceEntitlement | | ArmStorageAccountName |

There are few attributes which doesn't use Azure Keyvault secrets. Those environment variable values are controlled dynamically via Flux config

| Environment Variable Name | Value |
|-------------------------------|------------------------------------------------------------------|
| ACTIVE_DIRECTORY_B2C_BASE_URI | https://hmctsstgextid.b2clogin.com |
| ACTIVE_DIRECTORY_B2C_AUTH_URI | https://hmctsstgextid.b2clogin.com/hmctsstgextid.onmicrosoft.com |
| ARM_URL | |

To obtain the secret value, you may retrieve the keys from the Azure Vault by running the `az keyvault secret show`
command in the terminal. E.g. to obtain the value for `GOVUK_NOTIFY_API_KEY`, you should run:

You may need to install Azure CLI, jq and postgres you can do this by running
```
brew update
brew install azure-cli
brew install jq
brew install postgresql@16
az login
```

```
az keyvault secret show --name GovukNotifyTestApiKey --vault-name darts-stg
```

and inspect the `"value"` field of the response.

Alternatively, you can log into the [Azure home page](https://portal.azure.com/#home), and navigate to
`Key Vault -> darts-stg -> Secrets`. Note in your Portal Settings you must have the `CJS Common Platform` directory
active for the secrets to be visible.

> Note: there is also a convenient script for exporting all these secret values from the key-vault, ensure you have the Azure CLI, `az`, installed and have
> run `az login`.
> ```bash
> source bin/secrets-stg.sh
> ```

> If you want to set the environment properties at project level instead of system level (for example using InteliJ Edit configurations) you can run
>```bash
> source bin/secrets-stg-environment.sh
>```

Once you have obtained the values, set the environment variables on your system. E.g. On Mac, you may run this command
in the terminal, replacing `<>` and `<>` as necessary:

```
launchctl setenv <> <>
```

You will then need to restart intellij/terminal windows for it to take effect.

The below step only required if you use system level environment properties and want to make the changes permanent, make a `.zshrc` file in your users folder
and populate it with this and their values:

```
export GOVUK_NOTIFY_API_KEY=
export FUNC_TEST_ROPC_USERNAME=
export FUNC_TEST_ROPC_PASSWORD=
export AAD_B2C_TENANT_ID=
export AAD_B2C_CLIENT_ID=
export AAD_B2C_CLIENT_SECRET=
export AAD_B2C_ROPC_CLIENT_ID=
export AAD_B2C_ROPC_CLIENT_SECRET=
export AAD_TENANT_ID=
export AAD_CLIENT_ID=
export AAD_CLIENT_SECRET=
export XHIBIT_USER_NAME=
export XHIBIT_PASSWORD=
export CPP_USER_NAME=
export CPP_PASSWORD=
export DARPC_USER_NAME=
export DARPC_PASSWORD=
export SYSTEM_USER_EMAIL=
export DAR_MIDTIER_USER_NAME=
export DAR_MIDTIER_PASSWORD=
export AZURE_AD_FUNCTIONAL_TEST_GLOBAL_USERNAME=
export AZURE_AD_FUNCTIONAL_TEST_GLOBAL_PASSWORD=
export AZURE_AD_FUNCTIONAL_TEST_USERNAME=
export AZURE_AD_FUNCTIONAL_TEST_PASSWORD=
export ARM_SAS_ENDPOINT=
export ARM_URL=
export ARM_USERNAME=
export ARM_PASSWORD=
export DARTS_INBOUND_STORAGE_SAS_URL=
export DARTS_UNSTRUCTURED_STORAGE_SAS_URL=
export ARM_SERVICE_PROFILE=
export ARM_SERVICE_ENTITLEMENT=
export ARM_STORAGE_ACCOUNT_NAME=
```

### Storage Account

Some functional tests require a storage account to complete. Locally, this can be achieved by installing and running the
Azurite open-source emulator which provides a free local environment for testing any Azure Blob, Queue or Table storage.

#### Install Azurite

Use DockerHub to pull the latest Azurite image by using the following command:

```bash
docker pull mcr.microsoft.com/azure-storage/azurite
```

#### Run Azurite

The following command runs the Azurite Docker image. The -p 10000:10000 parameter redirects requests from host machine's
port 10000 to the Docker instance.

```bash
docker run -p 10000:10000 -p 10001:10001 -p 10002:10002 \
mcr.microsoft.com/azure-storage/azurite
```

#### Install ffmpeg

This is used to trim, merge, concatenate and convert audio files, so run this in a mac terminal:-

```
brew install ffmpeg
```

#### Connection String Configuration

The application obtains the connection string from the key vault. However, locally the default Azurite account details
are required. Therefore, you will need to add its connection string as an environment variable .

Environment Variable Name: AZURE_STORAGE_CONNECTION_STRING

Environment Variable Value:

```
DefaultEndpointsProtocol=http;AccountName=devstoreaccount1;AccountKey=Eby8vdM02xNOcqFlqUwJPLlmEtlCDXJ1OUzFT50uSRZ6IFsuFq2UVErCz4I6tq/K1SZFPTOtr/KBHBeksoGMGw==;BlobEndpoint=http://127.0.0.1:10000/devstoreaccount1;
```

## Building the application

The project uses [Gradle](https://gradle.org) as a build tool. It already contains
`./gradlew` wrapper script, so there's no need to install gradle.

To build the project execute the following command:

```bash
./gradlew build
```

### Jacoco Coverage Report

A local jacoco coverage report can be generated using the following command:-

```bash
./gradlew jacocoTestReport
```

The report will be available under ./build/jacocoHtml/index.html. The report incorporates both unit test
and integration test coverage

### Running the application locally in docker (without darts-gateway & darts-stub-services)

Create the image of the application by executing the following command:

```bash
./gradlew assemble
```

Create docker image:

```bash
docker-compose -f docker-compose-local.yml build
```

Run the distribution (created in `build/install/darts-api` directory) by executing the following command:

```bash
docker-compose -f docker-compose-local.yml up darts-api darts-db darts-redis

```

This will start the API container exposing the application's port
(set to `4550` in this template app). It will also start a postgres container
and run any new flyway migrations. If you need to start from a clean database
you will need to delete the docker volume `darts-api_darts-db`

In order to test if the application is up, you can call its health endpoint:

```bash
curl http://localhost:4550/health
```

You should get a response similar to this:

```
{"status":"UP","diskSpace":{"status":"UP","total":249644974080,"free":137188298752,"threshold":10485760}}
```

### Running the application in docker with darts-gateway & darts-stub-services

Currently, to run the full suite of services we need to check out and build the darts-gateway
and darts-stub-services. A convenience script has been added `./bin/dcup` to automate this.

To run all services use:

```bash
./bin/dcup
```

If you want to run the darts-api outside of docker and run only the dependant services in docker use:

```bash
./bin/dcup noapi
```

To stop all services, use:

```bash
./bin/dcdown
```

### Running the application locally - (this can be used to debug the application through intellij if required)

1. Ensure the environments variables are set, as described in the 'Environment variables' section. Set the 'spring.profiles.active' to 'local'

2. Start the service as follows:

```bash
docker compose -f docker-compose-local.yml up darts-redis
```

3. Start the darts-api either through Intellij selecting the appropriate run configuration or through gradle.

### Alternative script to run application

To skip all the setting up and building, just execute the following command:

```bash
./bin/run-in-docker.sh
```

For more information:

```bash
./bin/run-in-docker.sh -h
```

Script includes bare minimum environment variables necessary to start api instance. Whenever any variable is changed or
any other script regarding docker image/container build, the suggested way to ensure all is cleaned up properly is by
this command:

```bash
docker-compose rm
```

It clears stopped containers correctly. Might consider removing clutter of images too, especially the ones fiddled with:

```bash
docker images

docker image rm
```

There is no need to remove postgres and java or similar core images.

## Spring Profiles

The following Spring Profiles are defined. "External Components" are defined as any service upon which the application
is dependent, such as database servers, web services etc.

| Profile | Config Location | Purpose | External Components |
|------------------|----------------------------------------------------------------|------------------------------------------------------------------------------------------------|---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
| `local` | `src/main/resources/application-local.yaml` | For running the application locally as a docker compose stack with `docker-compose-local.yml`. | Provided as needed by `docker-compose-local.yml`. No external connectivity permitted outside the network boundary of the stack. |
| `intTest` | `src/integrationTest/resources/application-intTest.yaml` | For running integration tests under `src/integrationTest`. | No interaction required or permitted, all external calls are mocked via embedded wiremock (for HTTP requests), an embedded database (for db queries) or `@MockBeans` for anything else. Spring Security is explicitly disabled. |
| `functionalTest` | `src/functionalTest/resources/application-functionalTest.yaml` | For running functional tests under `src/functionalTest`. | Functional tests execute API calls against the application deployed in the PR environment. That application is deployed with the `dev` profile (see below). |
| `dev` | `src/main/resources/application-dev.yaml` | For running the application in the Pull Request (dev) environment. | Interaction permitted with "real" components, which may be services deployed to a test environment. |

## Automated Tasks

The automated tasks use spring cron expressions which differ from linux cron expressions. To find out more, go to:

https://docs.spring.io/spring-framework/reference/integration/scheduling.html#scheduling-cron-expression

## Functional testing

The functional tests module is run by default in the dev and staging environments. Unlike the integration tests the
functional tests will hit the deployed darts-api and postgres database. This requires some management of the data
created by these tests. To this end the following conventions should be used:

- If a courthouse needs to pre-exist for a functional test it can be created from within the tests
using `/functional-tests/courthouse/{courthouse_name}/courtroom/{courtroom_name}`. The courthouse_name must be
prefixed with `func-`. This data will be cleaned after the test has executed.
- If a case needs to pre-exist for a functional test then however it is created the case_number should also pre-fixed
with `func-`. There is a random case_number generator that will provide case_numbers with this prefix. These cases and
their associated hearings and events will be cleaned up automatically after the test has executed.

## Caching

Redis has been configured as the default caching provider. When running docker-compose with the local configuration a
Redis container will be started. If starting the darts-api from Intellij or the command line you have the following
options:

1. Follow instructions under 'Running the application locally'

2. Alternatively the darts-api can be run using a simple in-memory cache by starting the application with the
profile `in-memory-caching`.

To view the cache - when running against local Redis - Intellij has a free plugin called `Redis Helper`. However, if you
want to view the cache in staging the plugin doesn't support SSL. Instead, install:

```bash
brew install --cask another-redis-desktop-manager
sudo xattr -rd com.apple.quarantine /Applications/Another\ Redis\ Desktop\ Manager.app
```

## Restoring the Staging database locally

This can be useful for debugging issues locally, or for testing new flyway scripts.

To restore the staging database, tables and data, into a locally running database, use the following command:

```bash
./bin/db-stg-to-local.sh
```

The script will check for required executables and prompt before continuing.

_Disclaimer: The script has been written to work using `bash`._

## Dev/PR environments

Please see the separate [Dev environment](https://tools.hmcts.net/confluence/display/DMP/Dev+environment) page on confluence for details.

This repo contains overrides for the default dev environment configuration, controlled by PR labels.

### Supported labels

| Label | Usages |
|------------------------|--------------------------------------------------------------------------------------------------|
| enable_darts_portal | Deploys a DARTS portal instance alongside the API in the dev environment |
| enable_darts_fullstack | Not yet supported, but will deploy the full DARTS stack alongside the API in the dev environment |

## License

This project is licensed under the MIT License - see the [LICENSE](LICENSE) file for details