jpa03 : Spring Boot / React / OAuth Configuration
num | ready? | description | assigned MW lect | due MW lect | assigned TR lect | due TR lect |
---|---|---|---|---|---|---|
jpa03 | true | Spring Boot / React / OAuth Configuration | Tue 04/12 12:30PM | Thu 04/21 11:59PM |
THIS LAB IS “ALMOST READY”.
You can certainly start working on it.
For the time being, you may complete this lab on either Heroku or Render for full credit (if you just want to get it out of the way and be done with it.)
I’m working on adjusting it so that it will also work on Render.com, which is the platform we are migrating to.
There is also a bit of adjustment for the transition from Gauchospace (Moodle) to Canvas. Please be patient with us :-)
Instructions for jpa03
If you run into problems, let us know on the #jpa03-help
channel on the slack.
This is an individual lab on the topic of deploying Java web apps that use OAuth and Databases, using Heroku.
You may cooperate with one or more pair partners from your team to help in debugging and understanding the lab, but each person should complete the lab separately for themselves.
Preliminaries
We assume that you already created a Heroku account for jpa02
.
We also assume that you are familiar with the material in jpa02
concerning the following items; consult jpa02 if you find
while doing the lab that you need a refresher on any of these:
- Running a Spring Boot app on localhost on port 8080
- Connecting to a server on
localhost:8080
and dealing with the issues that arise if that server is running on CSIL - Creating a new app on Heroku
- Connecting an app on Heroku to a GitHub repo, and deploying a branch of that repo on Heroku
Also, if you are working on your own machine, you need the same
software that was needed for jpa02
, namely:
- Java 17
- Maven
- git
- Heroku CLI
Since this is our first time working with frontend React code, you’ll also need to setup the following:
- Node 14
- npm 8.3
See guides for installing these on your machine at the links shown:
- Windows / WSL / Ubuntu: https://ucsb-cs156.github.io/topics/windows_wsl/
- MacOS: https://ucsb-cs156.github.io/topics/macos/
Step 1: Understanding what we are trying to do
What are we trying to accomplish in this lab?
This lab, similar to jpa02
has no programming; just like
jpa02
the task is simply to deploy an app on localhost
and on Heroku. This time, however, instead of a simple
Hello World
type app, the app you are deploying is a full-stack
web app with:
- A front-end built in React (under the directory
./frontend
) - A back-end built in Spring Boot (the code for this is under the directory
./src
, plus thepom.xml
at the top level - OAuth integration; this allows the app to have a “login/logout” feature based on Google Accounts (e.g. your UCSB Google Account)
- A SQL database, which runs using H2 (an in-memory database) on localhost, and using Postgres when running on Heroku.
The reason we are doing this lab is that before you can work on a full-stack legacy code webapp, you need to know how to deploy such an app, i.e. get it running.
There are quite a few configuration steps that are needed, and we want to get you used to those before we start introducing the coding challenges as well.
Step 2: Create your repo
You should already have a repo under the course organization ucsb-cs156-f22 called jpa03-githubid created for you by the staff, where github is your github id.
If not, create one for yourself following that naming convention;
it should initially be private, and empty (no README
, license or
.gitignore
.)
Clone that repo somewhere and cd into it.
Then add this remote:
git remote add starter https://github.com/ucsb-cs156-f22/STARTER-jpa03
That sets up starter
as a remote with the code from this github repo: https://github.com/ucsb-cs156-f22/STARTER-jpa03
Then do:
git checkout -b main
git pull starter main
git push origin main
Step 3: Configure your app as documented in the README.md
The next step is to read through the README.md and configure your app as indicated there.
This includes configuration for Auth0, and GitHub Actions.
The configuration step includes copying the .env.SAMPLE
file to .env
.
The .env
file should not be committed to GitHub.
The instruction to configure this app for OAuth are linked to from
the README.md
in the starter repo itself, so will not repeat
them here. Follow those instructions (which may, in turn, refer
you to instruction inside the docs
folder of the repo.)
These instructions include setting up OAuth using your UCSB Google Account.
The .env
file should not be committed to GitHub
I already made this point, but I really, really want to emphasize it.
One of the values in the .env
file is called a client secret for a reason.
If it leaks, it can be used for nefarious purposes to compromise the security of your account; so don’t let it leak!
Never, ever, commit those to GitHub, and try to only share them in DMs on Slack (not in public channels).
The same is true with Personal Access Tokens from GitHub (only more so!)
Security starts with making smart choices about how to handle credentials and tokens. The stakes get higher when you start being trusted with credentials and tokens at an employer, so learning how to handle these with care now is a part of developing good developer habits.
The staff reserve the right to deduct points if we find that you have committed your .env
file to GitHub.
About OAuth
OAuth is a protocol that allows you to delegate the login/logout functionality (user authentication) to a third party such as Google, Facebook, GitHub, Twitter, etc. If you’ve ever used a website that allows you to “Login with Google” or “Login With Facebook”, then chances are good that app was built using OAuth.
Indeed, you’ve already encountered two examples of GitHub OAuth earlier in the course:
- when you used your GitHub account to log into the https://ucsb-cs-github-linker.herokuapp.com
Follow the instructions in the README
The instructions in the README include instructions for deploying to both localhost, and to Heroku. Follow those instructions, consulting the material below and the material in jpa02 as needed, until you have the application working on both localhost and Heroku.
You’ll be following this sequence of instructions many times during this course, so this assignment is here to help you get used to that process.
Also set up the GitHub Actions secrets
In the file docs/github-actions.md
there are instructions for configuring
GitHub Actions so that it runs the tests for both the JavaScript and Java code in the repo.
You should follow these instructions to get the CI/CD pipeline set up so that you have a green check, and not a red X, on the main branch of your repo.
Reminder about running your web app on localhost
To get this demo app running on localhost
, we need to do the following:
- Do the OAuth Configuration steps linked to from the README to get a client-id and client-secret
and put them in your
.env
file -
Add your own UCSB email address after
phtcon@ucsb.edu
, and your mentor’s email (see https://ucsb-cs156.github.io/f22/info/teams/) separated by commas (no spaces) like this:ADMIN_EMAILS=phtcon@ucsb.edu,mentorsemail@ucsb.edu,youremail@ucsb.edu
See also: https://ucsb-cs156-f22.slack.com/archives/C03MHLM03TM/p1665530345235669
- Then, use
mvn compile
to make sure that the code compiles. - Next, try
mvn test
to be sure that the test cases pass. - Then, run the following two commands separately in their own shells
- In the first, launch the React frontend using
npm start
in the frontend directory. This should start the frontend on port 3000 - In the second, launch the Spring Boot backend using
mvn spring-boot:run
. This should start a web server on port 8080
- In the first, launch the React frontend using
The mvn spring-boot:run
command is a shortcut that is provided for us to be able to run the jar file. It does pretty much the same thing as
if we ran the .jar
file and specified the class containing our main
on the command line.
When the app is up and running, try logging in with your UCSB Google Account.
Step 4: Create a new Heroku App using the Heroku CLI
In this step, we’ll deploy our Spring Boot application to the public internet using Heroku.
As part of the setup instructions, you likely already set up a Heroku application with the name jpa03-ucsbnetid.
You should now be able to link this app to your repo and deploy the main
branch,
provided you did all the other setup steps correctly.
What if it doesn’t work?
If it doesn’t work, consult the troubleshooting steps in jpa02
and try them before asking a mentor, TA, or instructor for help.
Step 5: Set up Storybook repos
Storybook is a utility that produces documentation sites for React Apps.
We are going to set up two separate repos that have the same name as your repo, but with the suffixes -docs
and -docs-qa
.
For example, if your GitHub id is cgaucho
, you’ll have a main repo:
- jpa03-cgaucho
In this step, you’ll create two additional repos:
- jpa03-cgaucho-docs
- jpa03-cgaucho-docs-qa
There is a script that you can try to run that should create these for you; the script is in the form of a “GitHub Action”.
If the script works, great! (As of this writing, it was not working properly.)
If not, you can create these two repos manually.
Instructions are under the docs
directory in the file storybook.md
. Follow those instructions.
One step that isn’t in the instructions:
-
After you create the
-docs
and-docs-qa
repos, you will need to click to create aREADME.md
in order to establish themain
branch, before you run the Github Actions scripts to populate the repos.Here’s what that looks like:
Click where it says
README
to create aREADME.md
file; then run the scripts.
When you are finished, update the links in the README.md file so that they point to your storybook repos:
Before:
* Production: <https://ucsb-cs156-f22.github.io/demo-spring-react-example-docs/storybook>
* QA: <https://ucsb-cs156-f22.github.io/demo-spring-react-example-docs-qa/storybook>
After (with your URLs)
* Production: <https://ucsb-cs156-f22.github.io/jpa03-cgaucho-docs/>
* QA: <https://ucsb-cs156-f22.github.io/jpa03-cgaucho-docs-qa/>
Make sure that the links work.
Step 6: Submitting your work for grading
When you have a running web app, find the assignment jpa03 on Canvas and make a submission.
- There is no autograder for this assignment on Gradescope!
- This assignment will be manually graded
- Please make it easy for the staff by making clickable URLs in your Canvas submission.
In the text area, enter something like this, substituting your repo name and your Heroku app name:
repo name: https://github.com//jpa03-chrislee123
on heroku: https://jpa03-chrislee123.herokuapp.com
Then, and this is super important, please make both of those URLs clickable urls.
Grading Rubric:
- (20 pts) Basic Logistics
- Having a repo with the correct name in the correct organization with the starter code for this lab
- There is a post on Canvas for this assignment that has the correct content
- The links on Canvas are clickable links (to make it easier to test your app)
- README has a link to your repo.
- (20 pts) Having a running web app at https://jpa03-ucsbnetid.herokuapp.com
- (20 pts) Running web app has the ability to login with OAuth through a Google Account.
- (20 pts) Storybooks for
docs
anddocs-qa
are both set up properly. - (20 pts) GitHub Actions runs correctly and there is a green check (not a red X) on your main branch
Note that the Rubric above is subject to change, but if it does:
- You’ll be notified during a class meeting
- You’ll have an additional week from the date of the announced change to get your repo in shape with the new requirements.