To see the readme about the Sonatype Nexus implementation, see this file.
Buy-02 is the continuation of the buy-01 project in the Java track of 01Edu's curriculum. It consists of creating one more microservice, which handles orders and shopping carts. All the previous requirements about security, Jenkins, SonarQube, etc. are still standing.
Users registered as clients can add products to their cart, and when they are ready to order, they can confirm it. Both the shopping carts and the previous orders are saved into the database for persistence. If a client changes their mind, they can cancel orders before they are confirmed. They are also able to reorder products if they are still available.
Sellers can confirm or cancel pending orders, and see their previous transactions.
Users can see their best products (most sold/bought), also search through previous orders.
Safe-Zone is the fifth project in the java track of 01Edu's curriculum. The goal of the project is to set up SonarQube for static code analysis for the buy-01 project we created earlier and implement it in the Jenkins CI/CD pipeline. We also had to implement the quality gate functionality and make sure that when we introduce new code into the code base that is not up to the quality gate requirements, it will trigger a failure in the pipeline, so it doesn't make it into production.
- Access to the SonarQube dashboard
After logging in on the SonarQube dashboard you can check out the analysis of all the current backend microservices (user-service, product-service, media-service) and the frontend. If there are any potential bugs, security vulnerabilities, hotspots or code smells recognized, you can see them under the 'overall code' tab in each project. You can also see the percentage of duplicated lines and test coverage.
SonarQube is running on a Digital Ocean droplet. For this entire project (buy-01, Jenkins and SonarQube) we have three separate droplets set up.
Mr-jenk is the fourth project in the java track of 01Edu's curriculum. The goal of the project is to create a CI/CD pipeline for the buy-01 project we created earlier. The project uses Jenkins, JUnit, Karma, Jasmine, Github webhooks and Docker to fully automate the process of testing and deploying the code to production environment.
To run and view the project you'll need:
- Access to the Jenkins dashboard
- Access to the repository, to push changes to main branch
- You can go to Jenkins dashboard to manually trigger build & deployment
- You can make changes to the codebase and push the changes to main to trigger the build & deployment
- When there's a push to main, github sends notification to the Jenkins server and that triggers the build
- You can see all the steps in the Jenkinsfile
- First step is to pull the new code from the repo
- Then run the tests to make sure everything works
- If tests pass, Jenkins switches to deploy server, pulls the code, builds the images and spins up the containers
- Deploy server waits that all the containers are up and running (healthy), before marking the build succesfull.
- If something goes wrong in deployment, the rollback will kick in and build the images and spin up containers from the last succesfull build
- After build has completed, Jenkins will send email notifications to team members, with the status of the build
- For this fairly simple pipeline, we are using two Digital Ocean Droplets. One for the Jenkins and one for the deployment. All communication between the machines take place using SSH.
--- tvntvn and petervekony
Buy-01 is the third project in the java track of 01Edu's curriculum. The goal of the project is to create a mini e-commerce site using MongoDB, the Spring Boot java framework and Angular, where sellers can add products they want to sell, add images to them, while users can browse the products and contact the seller if they want to buy something. The backend has to be separated into microservices (user, product and media at least).
To run the project on your own machine, you need:
- Docker installed
- access to a MongoDB cluster
To run the project with your own database, you either need to have access to a cluster on Atlas, run mongoDB on your machine, or uncomment the mongo service in the docker-compose.yml file.
Either way you choose, you have to configure your own database connection URI in the docker-compose file for each of the backend services.
You need to provide an environment file to the docker-compose command for the cookies and the ssl certificate to work. A self signed certificate to run it locally is provided, run these commands in the terminal from the project's root directory:
Building the images:
docker-compose --env-file .env.dev buildRunning them:
docker-compose --env-file .env.dev upIf you are running the project on an Apple Silicon (M1, M2, M3), because of the lack of the imageio-webp support, only jpeg file upload works. On any other architecture jpeg, png and webp files can be uploaded.
Backend microservices communicate with each other via Apache Kafka to handle JWT token validation. Validated tokens are cached for a short time to save time. Some other actions also depend on Kafka:
- Media deletion upon product or user deletion
- Product deletion upon user deletion
- Authorization checks for media and product creation, update and deletion
The angular frontend runs on port 443 using HTTPS. From localhost the API endpoints are also accessible using an API tool like Postman. An nginx reverse proxy handles the routing of the request towards the proper microservices.
The main endpoints are
- /api/auth
- /api/users
- /api/products
- /api/media
{
"name": "chosenName",
"email": "[email protected]",
"password": "yourPassword",
"role": "CLIENT/SELLER"
}{
"name": "chosenName",
"password": "yourPassword"
}An empty post request with the buy-01 cookie in the "Cookie" header sends an immediately expiring cookie in the response, thus forcing the browser to delete the existing cookie. Since the API is stateless, it doesn't keep any blacklists, so the original token still works until the original expiry date.
All these endpoints require a cookie with a valid JWT token in the "Cookie" header.
Gets all the users in the database.
Gets the user specified by the {id}
Users can update their own user details by sending a json object in the request body and specifying the {id}. The fields are the same as in the authentication signup request, excluding the role. Only the fields to be updated are necessary, null fields are ignored. Users cannot update their role, it is ignored. Users can only update their own details.
Users can delete their account by specifying their {id}. When a user is deleted, all products (if there is any) and all media belonging to the user is deleted.
All these endpoints require a cookie with a valid JWT token in the "Cookie" header.
Gets all the products in the database.
Gets a product specified by the {id}.
Product update works the same way as the user update, null fields are ignored. UserId cannot be updated.
Sellers can delete their own products by specifying the {id}. All media belonging to a product is deleted upon product deletion.
All these endpoints require a cookie with a valid JWT token in the "Cookie" header.
Gets all the media belonging to the product specified by the {productId}.
Gets a thumbnail image (the first media stored in the database belonging to the product resized to a maximum 400x400 size). Previous thumbnail requests are cached in the backend to save processing time.
Gets the avatar of the user specified by the {userId}.
Media can be created belonging to the user (avatar) or product. For product, 6 images can be uploaded. Supported file types are jpeg, png and non-animated webp. Gif files can be uploaded, but all file types are converted into jpeg to save storage space. From the query parameters, only one can be specified, the other has to be left out.
The image has to be submitted as form-data, as a Multipart File with 'image' as name.
Deletes media specified by {id}. Users can only delete media belonging to them.
Deletes all media belonging to either the user specified by {userId} or the product specified by {productId}. Only one can be specified, the other has to be left out.
tvntvn and petervekony