This is the repository for the planning.data.gov.uk application
Prerequisites
- python 3.8 or above
- postgresql 13 or above with postgis extensions enabled
- Node 16
- You can install this with `nvm use 16` if you have nvm installed
- If you don't have nvm installed, you can install it with `brew install nvm` and then run `nvm install 16`
Create a virtualenv, then setup some environment variables. Copy .env.example to .env.
Note that to run tests you'll want a .env.test file as well to override db connection strings for local test. For
example, I have a digital_land_test db to run integration tests with and override *_DATABASE_URL variables using the
.env.test file.
make init
That will install all dependencies, both python and node front end build tools as well as install pre-commit hooks.
The pre commit hooks will lint and run black and abort a commit on failure. This will save you lots of broken builds and subsequent "lint fix" commit messages.
Mac users
-
Install postgres using homebrew (see [https://wiki.postgresql.org/wiki/Homebrew]) or PostgresApp
Note any post install steps for how to get server running and adding command line tools to your path if required.
-
Once installed and running, from a terminal run:
createdb digital_land
Then run the initial database migration from the root of this project (assuming)
python -m alembic upgrade head
Assuming there's a running postgres available locally on localhost with a db called digital_land, you can use https://github.com/digital-land/digital-land-postgres to load entity data into the database.
Run the following command to load data into the database used by docker compose:
make load-db
Note that you will have to be authenticated with AWS ECR in order to pull the digital-land-postgres image. If you are following the AWS Authentication instructions from below, it would be better to run:
aws-vault exec dl-dev -- make load-db
Once the database is loaded, run docker-compose up to start the service with a fresh database
alternately, you can load a smaller set of data for testing purposes by running:
make insertBaseData
which will insert the entities, and datasets specified in tests/test_data/entities.csv and tests/test_data/datasets.csv
you can then clear the database by running:
make emptyDatabase
Setup a test database
createdb digital_land_test
then you can run:
make test
This runs a browser based test of main pages, and a test of a json endpoint for an entity
make test-acceptance
If you want to see the acceptance tests in action run the following:
playwright install chromium
python -m pytest tests/acceptance --headed --slowmo 1000
(--headed opens browser and --slowmo slows down interactions by the specified number of milliseconds)
If you want to step through the acceptance tests line by line using playwrights inspector, you can call
make test-acceptance-debug
Note: if you are using WSL, playwright inspector wont work by default. you will need to disable gpu support in you %UserProfile%/.wslconfig file by adding the following lines:
gpuSupport=false
(you may need to create the file if it doesn't exist)
See tests/load directory for a Locust tests. There are a few make targets with "test-load-" prefix.
Refer to examples below to see how to pass extra parameters to the tests.
Some of the test access randomised URLs, (search for tests with @tag("random"), you can specify which tags to include/exclude when running Locust), others access a limited set of URLs (e.g. tests/load/cache_warmup_test.py) and are good to warm up the cache or can be used as a kind of smoke test. The randomised runs use data "snapshot" from tests/load/data.py and tests/load/data_entity.py which has been extracted from live website.
To point Locust at a particular host, use the environment variable TEST_HOST (see below).
# a limited number of randomised URLs, use the env variable to control the pool size
URL_POOL_SIZE=100 TEST_HOST="https://www.staging.planning.data.gov.uk" make test-load-entity-static-pool
# every URL randomised
TEST_HOST="https://www.staging.planning.data.gov.uk" make test-load-entity-random
# dataset, can be used to warm up the cache
TEST_HOST="https://www.staging.planning.data.gov.uk" make test-load-dataset
# warm up the cache
TEST_HOST=https://www.staging.planning.data.gov.uk make test-load-cache-warmupmake server
To configure the map in your development environment, you need to define the following environment variables in your .env file. This is because the map page uses the OS api for background maps (roads,buildings etc.).
OS_CLIENT_KEY=
OS_CLIENT_SECRET=
OS_CLIENT_KEY and OS_CLIENT_SECRET are necessary for accessing Ordnance Survey (OS) maps. To obtain access, please reach out to Infrastructure team for credentials. They will provide a set of development credentials that are different to the production credentials.
Note: DO NOT push API keys to the repository.
This project uses pip-tools to manage requirements files. https://pypi.org/project/pip-tools/
When using fresh checkout of this repository, then make init will take care of the initial of packages from the checked in requirements and dev-requirements files. These instructions are only for when you add new libraries to the project.
To add a production dependency to the main aapplication, add the package to requirements.in
python -m piptools compile requirements/requirements.in
That will generate a new requirements.txt file
To add a development library, add a line to dev-requirements.in. Note that the first line of that file is: "-c requirements.txt" which constrains the versions of dependencies in the requirements.txt file generated in previous step.
python -m piptools compile requirements/dev-requirements.in
Then run
python -m piptools sync requirements/requirements.txt requirements/dev-requirements.txt
Note that the Dockerfile for this application uses a multi-stage build. The production version can be built using the
target production. The target dev can be used to build a version for local development and is the version the
docker-compose file builds.
The docker container for use in production can be built with the following command (NB this tag can be anything):
In order to push the application container or deploy to the Planning Data AWS infrastructure you'll need to be authenticated.
For the steps below aws-vault is used in order to assume the correct role for accessing our AWS environment.
It is recommended to set something like this up, but you can get by with manual authentication or other tooling.
Just ensure that the various AWS env vars are setup such that you can use the aws cli as the developer role.
You can check this with the following command:
aws sts get-caller-identityIf everything is configured correctly this should return the details of the developer role (account 955696714113 at time of writing)
{
"UserId": <REDACTED>,
"Account": "955696714113",
"Arn": "arn:aws:sts::955696714113:assumed-role/developer/<REDACTED>"
}Once you are authenticated you can manage the application and container in ECR.
docker build --target production -t digital-land-info .Tag our build:
docker tag digital-land-info:latest 955696714113.dkr.ecr.eu-west-2.amazonaws.com/digital-land-info:latestYou need to have authenticated with AWS (see above) in order for docker push to work:
aws-vault exec dl-dev -- aws ecr get-login-password --region eu-west-2 | docker login --username AWS --password-stdin 955696714113.dkr.ecr.eu-west-2.amazonaws.comThen we're finally ready to push the image:
docker push 955696714113.dkr.ecr.eu-west-2.amazonaws.com/digital-land-infoThe deploy workflow should handle deploying to aws however any deployment will require approval before being pushed into the production environmnet.
If you have pushed a new container, and want to initiate a deployment of the ECS service in order to start using it, you can do so directly with an AWS command.
The command is:
aws-vault exec dl-dev -- aws ecs update-service --force-new-deployment --service development-web-service --cluster development-web-clusterThe containers are configured to send their logs to AWS Cloudwatch. The log group is called /development/digital-land-info.
Logging configuration can be found in log_config.yml. Here you can change log level of each of the loggers independently, change the log format,
or redirect specific/all logs to file.
Docker compose can be used to run the application + database.
The docker-compose file uses the build target of dev for the main application, which has a multistage Dockerfile.
If you want to run tests using docker-compose, then a .env.test file may conflict with env vars in docker-compose file,
so it's probably best to make a decision about whether to run fully within the docker world locally or not, and stick
with one or the other.
Build the containers:
docker-compose build
Run up/down migrations:
docker-compose run --rm web python -m alembic upgrade head
Downgrade last migration:
docker-compose run --rm web python -m alembic downgrade -1
Run integration tests:
docker-compose run --rm db web python -m pytest tests/integration
Run everything:
docker-compose up
There are a set of workflows for continuous integration and running scans on the repository.
- Test - Used to run the unit, integration and acceptance tests for the application. This can be manually triggered and is automatically ran on branches when they are pushed up. It must pass for PRs to be merged into main
- Publish - Used to publish container images to our ECR repos. This triggers continuous deployments that are handled by CodeDeploy in AWS. This can be manually ran on branches before they are merged in, this is primarily used to deploy for manual testing in the development environment. It is automatically ran when changes are merged into main via a PR. You will need to have an approver release the image to the production environment.
- Security Scan - runs both dynamic and static security audits in our code base. Can be triggered manually but is automatically ran once a week.
- Load Test - runs performance based testing for the application. As it's performance it needs to be ran against a live version of the service in staging or production hence it asks for a url to use.
- Deploy Smoke Test - experimental action to deploy unique canaries in AWS to monitor the site.