This is an example of a backend CRM Service that is composed of:
- Server: developed in Python 3.7 with the Flask framework
- Database: a MySQL 5.7 database
This service can manage customers and users. The users can manage the customers and there are some special users with admin privileges that can manage the users.
As special things to be aware of:
- The server is able to store customer profile images in a Google Cloud Storage Bucket.
- The server implements Oauth2 autentication with Google and Facebook.
In the Obtain credentials section there is some information about how to obtain the necessary credentials.
You need to have installed:
- docker
- docker-compose
Here are some links to install Docker in Ubuntu, Mac and Windows.
In this link there is information about how to install docker-compose in the Ubuntu, Mac and Windows OS.
- Google Cloud Storage Bucket
You can create the bucket in the cloud console, in the storage section.
In there you can click the button for create a new bucket and follow the instructions. The name of the bucket is globally unique, take note of it and of the Google Cloud Platform project id you are working on because you will define two environment variables with it later on.
- Google service accounts
The server need some privileges to be able to upload images to the Google Cloud Storage Bucket. To do so, it needs a Google Service Account.
You have to go to the service account section.
Click on Create a Service Account, put a name and choose the role Storage Object Creator. In the next section you have to Create a key and select JSON.
It will automatically download a file. Rename it as crm-service-storage-key.json and put it in app/.credentials/crm-service-storage-key.json
- Google Oauth2
You can obtain the credentials here.
You have to select the Web application option and provide a name. Then you have to set the Authorized JavaScript origins to https://127.0.0.1:5000 and Authorized redirect URIs to https://127.0.0.1:5000/login/google/callback.
Finally, hit Create and take note of the client ID and client secret because you will define a environment variable with its name later on.
- Facebook Oauth2
You can obtain the credentials here.
You have to select Add a New App in the Apps dropdown. Pick a name and create the identifier.
Once the application if created you have to go to the App Configuration section and set the URL of the application to https://localhost:5000.
To facilitate the configuration of the app for development and production (using 12-factor principles), the server takes some environment variables from and .env file located in the app directory.
The file should look something like this:
# DEFAULT VARIABLES
# ---------------------------------------------------------------------
# Server variables for development
FLASK_APP=main
FLASK_ENV=development
CONFIG_MODE='config.Dev'
PYTHONUNBUFFERED=1
# Google credentials service key
GOOGLE_APPLICATION_CREDENTIALS=.credentials/crm-service-storage-key.json
# Default Oauth variables
GOOGLE_DISCOVERY_URL=https://accounts.google.com/.well-known/openid-configuration
FACEBOOK_AUTHORIZE_URL=https://graph.facebook.com/oauth/authorize
FACEBOOK_ACCESS_TOKEN_URL=https://graph.facebook.com/oauth/access_token
FACEBOOK_USER_INFO_URL=https://graph.facebook.com/me?fields=email
# USER DEFINED VARIABLES
# ---------------------------------------------------------------------
# User defined Oauth variables
GOOGLE_CLIENT_ID=YOUR_CLIENT_ID
GOOGLE_CLIENT_SECRET=YOUR_GOOGLE_CLIENT_SECRET
FACEBOOK_CLIENT_ID=YOUR_FACEBOOK_CLIENT_ID
FACEBOOK_CLIENT_SECRET=YOUR_FACEBOOK_CLIENT_SECRET
# Production database URI
DATABASE_URI=YOUR_MYSQL_URI
# Bucket variables
GOOGLE_PROJECT=YOUR_GOOGLE_PROJECT
GOOGLE_BUCKET=YOUR_GOOGLE_BUCKET
If you run make setup-environment from the development_environmet directory you will get a file like this one. Then, you just have to change the values in the #USER DEFINED VARIABLES section.
This file is in the gitignore, so no credentials are going to be uploaded to the repository.
The last command will also configure the githook, see the Githooks section to see more information about it.
The DATABASE_URI is just for production, the config.Dev configuration configures by default the URI to the local database declared in the docker-compose, so you can leave it like this in the example.
To start it, you have to run (from the development_environmet directory):
docker-compose up
This project uses Flask SQL Alchemy as ORM and flask-Migrate to control the migrations in the database. The first time you run the server you have to upgrade your database.
To do so, you can just execute (from the development_environmet directory):
make db-upgrade
The test are run in a test database, to run them you can just execute (from the development_environmet directory):
make backend-tests
This project is build in a dockerized environment and it has some peculiarities. Everything the developer needs is inside the backend container.
As you will see, there is a githook configured and all the actions the githooks does are run in the container.
To interact with this dockerized environment, you can use some make commands. There is a Makefile in the development_environment directory with a few make commands that will help the developer. As everything must be done inside the container this Makefile simplifies each action that must be done.
In this project I have configured a githook that is run before each commit to ensure that the code to be commited passes all the test, has no codestyle errors (regarding the PEP8) and in the end, if everything has gone ok, it generates the API documentation with Sphinx. After all this, the commit is done.
This githook is configured the first time when you run make setup-environment.
The modules have to be installed in the server that is inside the container, so if a developer needs to install a new module, it must be installed with the following command:
make backend-install-module module='Name of the module'
This will install the module in the container and it will be added to the Pipfile which is shared with the host and tracked in the repository.
There is a docker-compose file that inits the server in a debug mode with the ptvsd module. Then you have to configure your environment to be able to connect with the server. Here I show an example of the launch.json for Visual Studio Code:
{
// Use IntelliSense to learn about possible attributes.
// Hover to view descriptions of existing attributes.
// For more information, visit: https://go.microsoft.com/fwlink/?linkid=830387
"version": "0.2.0",
"configurations": [
{
"name": "Remote App",
"type": "python",
"request": "attach",
"pathMappings": [
{
"localRoot": "${workspaceFolder}/app/server/",
"remoteRoot": "/app/server/"
}
],
"port": 5678,
"host": "localhost"
}
]
}
To debug you must first init the debug server:
make debug-backend
Then you have to start the Visual Studio Code Debugger. Once started you can interact with the server through the 5001 port and set some breakpoints in your code.
Beware that you must have the same version of the ptvsd module installed in your host.
As you can see in the GitHooks section, this proyect is configured to automatically generate the documentation for the API with Sphinx before each commit. The generated html code is in app/docs/_build/html/ you can open the index.html and navigate through the documentation.
If you want to see the documentation without doing any commit you can run (from the development_environment):
make documentation
This repository is integrated within a CI/CD jenkins pipeline. This pipeline builds the environment for the tests and runs them, also, when changes are made in the master branch it deploys the code to App Engine Flexible.
This server is prepared to be deployed in Google App Engine Flexible, if you wish to deploy it manually, you need to configure the app.yaml file and generate the latest requirements.txt.
In the repository there is an app.yaml example, in this file you have to change the environment variables for the real ones. For security, to avoid uploading credentials to the repository, you should create a copy of the file and call it real_app.yaml which is already in the .gitignore, put the real environment variables there and deploy it with this file.
To generate the latest requirements.txt, you have to get into the container:
make access-backend
and generate the file:
pipenv lock -r > requirements.txt
it is also needed the gunicorn module:
echo "gunicorn==19.9.0" >> requirements.txt
we have to remove the first line created by the pipenv lock -r
echo "$(tail -n +2 requirements.txt)" > requirements.txt
This file will be created inside the container and in the folder shared with the host.
Once you have it, you can deploy the app by running: gcloud app deploy real_app.yaml in the app directory. Beware that you have to have initiated the cloud SDK