This repository contains all the code and documentation necessary to set up and deploy the project. It is organised in 4 main subdirectories, with accompanying documentation inside each.
| Subdirectory name | Description | Documentation | Tech Stack |
|---|---|---|---|
| frontend | Frontend application | frontend/README.md | React 18.3.1, Next.js 14.2.15, Node.js 22.11.0 |
| backend | The Ruby on Rails backend application (API + backoffice) | backend/README.md | Ruby 3.4.4, Rails 7.2.x |
| cloud_functions | cloud functions code folder | cloud_functions/README.md | Various AWS Lambda functions |
| infrastructure | The Terraform project for TiTiler COG tiler as AWS lambda | infrastructure/README.md | Terraform, AWS |
| data | data folder where diverse scripts for data management lives | data/README.md | Various data processing tools |
The project uses GitHub Actions for continuous integration and deployment. The CI/CD workflows are organized into comprehensive testing and deployment categories:
The project implements comprehensive testing with Docker-based workflows:
- Testing: RSpec test suite with PostgreSQL database
- System Tests: Capybara-based browser tests for admin interface using Chrome
- Linting: RuboCop code style checks
- Security: Brakeman security analysis and Bundle Audit for dependency vulnerabilities
- Triggers: Runs on pushes/PRs to the
backend/directory
- Unit Testing: Jest tests for components and utilities
- E2E Testing: Cypress tests on Chrome and Firefox browsers
- Linting: ESLint and TypeScript validation
- Build Verification: Ensures application builds successfully
- Triggers: Runs on pushes/PRs to the
frontend/directory
- Full-Stack Testing: Complete frontend-backend integration testing
- API Testing: Backend integration tests focused on API endpoints
- Performance Testing: Basic response time validation
- Data Consistency: Verifies data flows correctly between systems
- Triggers: Runs on pushes/PRs to
developandmainbranches
Key testing features:
- Docker-based isolated test environments
- Multi-browser E2E testing (Chrome and Firefox)
- System tests for admin interface using Capybara and Chrome
- Comprehensive test reporting with JUnit integration
- Test artifacts collection (screenshots, videos on failure)
- Health checks and service dependency management
The project uses advanced Docker buildx caching strategies to significantly speed up CI/CD builds:
- Content-based cache keys: Cache invalidation based on Dockerfile and dependency file changes
- Multi-level fallback: Progressive cache key fallback for maximum cache reuse
- GitHub Actions cache: Persistent caching across workflow runs (10GB limit)
- Registry-based caching: Future-ready for cross-repository layer sharing
- Coordinated builds: Docker Bake configuration for multi-service coordination
- 50-80% reduction in build times for incremental changes
- 90%+ cache hit rate for dependency-only changes
- Parallel build execution with shared cache layers
- Reduced GitHub Actions minutes consumption
- Cache validation script:
./test-docker-cache.shfor local testing - Cache analytics: Build-time performance monitoring
- Documentation: Comprehensive caching strategy in
.github/DOCKER_CACHE_STRATEGY.md
Cache keys are generated based on:
- Dockerfile content hashes
- Dependency file hashes (Gemfile.lock, package-lock.json)
- Runtime versions (Ruby, Node.js)
- Daily cache refresh for staleness prevention
See .github/TESTING.md for detailed testing documentation.
The project uses AWS EC2 instances for deployment with separate workflows for staging and production:
- Triggers: Pushes to the
developbranch (after tests pass) - Target: staging.resilienceatlas.org
- Features: Deploys directly to EC2 instance using Docker Compose
- Environment: Uses staging-specific environment variables and secrets
- Database Refresh: Automatically copies production database to staging before deployment
- Triggers: Pushes to the
mainbranch (after all tests pass) - Target: resilienceatlas.org
- Features: Deploys directly to EC2 instance using Docker Compose
- Environment: Uses production-specific environment variables and secrets
Key deployment features:
- Direct EC2 deployment using Docker Compose
- Application Load Balancer for traffic routing
- Just-in-time SSH access during deployment
- Automatic database refresh for staging environment
- Health checks and rollback capabilities
- AWS Secrets Manager for secure credential management
- Deployment only proceeds after all relevant tests pass
- Staging database refresh: Production data automatically copied to staging for realistic testing
The TiTiler COGs service has dedicated workflows for AWS Lambda deployment:
- Feature Branch Deployment: Automatically deploys feature branches to isolated AWS stacks for testing
- Production Deployment: Deploys master branch to production stack
- Manual Deployment: Supports workflow dispatch for manual deployments
- Triggers: Runs on pushes to
cloud_functions/titiler_cogs/directory
Key features:
- Uses AWS SAM CLI for serverless application deployment
- Creates isolated stacks for each feature branch with unique FQDNs
- Container-based builds for consistent environments
- Role-based AWS authentication for secure deployments
- Supports custom domain names via Route53
- Automatic Cleanup: Removes AWS stacks when feature branches are deleted
- Manual Cleanup: Supports workflow dispatch for manual stack deletion
- Cost Optimization: Prevents accumulation of unused AWS resources
The TiTiler COGs service provides dynamic tile generation for Cloud Optimized GeoTIFFs (COGs) and is deployed as AWS Lambda functions behind API Gateway. See cloud_functions/titiler_cogs/README.md for detailed deployment and usage instructions.
The application is deployed directly to AWS EC2 instances using Docker Compose for both staging and production environments:
- Staging: staging.resilienceatlas.org (deployed from
developbranch) - Production: resilienceatlas.org (deployed from
mainbranch)
- Hosting: EC2 instances running Docker Compose
- Load Balancing: Application Load Balancer for traffic distribution and SSL termination
- Secret Management: Environment variables and AWS Secrets Manager for secure configuration
- SSH Access: Just-in-time SSH access during deployments for security
- Monitoring: CloudWatch logs and instance metrics
-
Prerequisites: AWS account with appropriate IAM permissions, Python 3.8+, AWS CLI configured
-
Infrastructure Setup:
cd scripts pip install -r requirements.txt ./setup_complete_infrastructure.sh -
Configure GitHub Actions: Set up repository secrets for automatic deployments
-
Environment Configuration: Update environment files and AWS secrets with real values
See scripts/README.md for detailed setup instructions and script documentation.
The project includes Docker configuration for easy development and deployment. There are three Docker Compose configurations:
docker-compose.yml- Production setup (frontend + backend only)docker-compose.dev.yml- Development setup (includes PostgreSQL database)docker-compose.test.yml- Test environment for running automated tests
-
Clone the repository and navigate to the project root
-
Set up environment variables
cp .env.example .env # Edit .env with your configuration values -
For development (includes database):
docker compose -f docker-compose.dev.yml up --build
This will start:
- PostgreSQL database on port 5432
- Backend API on http://localhost:3001
- Frontend application on http://localhost:3000
-
For production:
docker compose up --build
This will start:
- Backend API on http://localhost:3001
- Frontend application on http://localhost:3000
Note: For production, you need to provide your own PostgreSQL database via the
DATABASE_URLenvironment variable.
# Run all backend tests (linting, security, unit tests - excludes system tests by default)
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test
# Run all tests including system tests
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test rspec
# Run specific test commands
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test rspec
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test lint
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test security
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test audit
# Run specific test file
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test rspec spec/models/user_spec.rb
# Show all available commands
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test help# Run all frontend checks (linting, type-check, prettier, build)
docker compose -f docker-compose.test.yml run --rm --no-deps frontend-test ./bin/test
# Run specific test commands
docker compose -f docker-compose.test.yml run --rm --no-deps frontend-test ./bin/test lint
docker compose -f docker-compose.test.yml run --rm --no-deps frontend-test ./bin/test type-check
docker compose -f docker-compose.test.yml run --rm --no-deps frontend-test ./bin/test prettier
docker compose -f docker-compose.test.yml run --rm --no-deps frontend-test ./bin/test build
# Run Cypress e2e tests (requires backend services)
docker compose -f docker-compose.test.yml run --rm frontend-test ./bin/test cypress
# Show all available commands
docker compose -f docker-compose.test.yml run --rm --no-deps frontend-test ./bin/test helpSystem tests use Capybara with Chrome to test the admin interface and user interactions:
# Run system tests only (with Chrome verification)
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test system
# Run system tests (skip Chrome verification)
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test system-force
# Verify Chrome setup for system tests
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test verify-chrome
# Run specific system test file
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test system spec/systems/admin/auth_spec.rbSystem tests cover:
- Admin authentication and authorization
- CRUD operations for all admin models (layers, indicators, journeys, etc.)
- File uploads and data management
- User interface interactions
- Browser-based workflows
Note: System tests require Chrome and Xvfb for headless browser testing. They are excluded from the default test run due to longer execution time.
docker compose -f docker-compose.test.yml up --abort-on-container-exitThe project uses ESLint and RuboCop for code quality enforcement. Common issues and their fixes:
# Auto-fix most RuboCop issues
docker compose -f docker-compose.test.yml run --rm backend-test bash -c "bundle exec rubocop -A"
# Run specific checks
docker compose -f docker-compose.test.yml run --rm backend-test ./bin/test lintCommon ESLint warnings and fixes:
- Console statements: Add
// eslint-disable-next-line no-consolebefore console statements in development code - Unused variables: Remove unused imports and variables, or prefix with underscore if needed for interface compliance
- React Hook dependencies: Add missing dependencies to useEffect, useCallback, and useMemo dependency arrays
- TypeScript any types: Add `// eslint-disable-next-line @typescript-eslint/no-explicit