I got fed up with (mostly React) starter kits being little more than a demo project - not truly ready to go to production and/or the dev environment ending up too different to the prod environment in ways that could potentially introduce production only issues. This attempts to address this and by way of building the application on top of docker utilising nginx in front of node servers should provide a sound basis for a truly reliable dev AND PRODUCTION ready web application.
Another key motivation was separation of concerns from an infrastructure point of view. Too often I see the same node server doing 3 jobs: 1. being 'the' api server, 2. being the ssr (server side rendering) server AND 3. serving up the assets (static files.) In reality in a large scale web application these 3 jobs will need to be separated for lots of good reasons:
- independent deployability
- independent scaling
- differing security concerns
Therefore this seed project separates these responsibilities out with nginx being in front of everything acting as a reverse proxy (and serving up the static assets) with a node ssr server who's sole responsibility is server side rendering. (Possible api server to come, but not the current focus of this project.)
This repo attempts to give a sensible basis for building a website using:
- Docker containers for hosting
- nginx for serving static files and proxying
- webpack for building client-side assets
- node/express for serving dynamic content
- Container orchestration using Docker compose
- git - to get this repo
- Docker client
- in bash 'dot source' the commands setup:
. ./initto setup the path for the shell commands and ls the list of commands you can run in the shell (this will have to be run for each new shell as we don't want to pollute your system more than we have to) - in bash set the "SITESEEDDOMAIN" environment variable to the local domain name you want to run the site under with the command:
SITESEEDDOMAIN="local.somewhere.com"; export SITESEEDDOMAIN - in bash run:
sudo -E hoststo add the local dns entry (only needs to be run once ever on each system unless you change theSITESEEDDOMAINenvironment variable) - in bash run:
import-certsto add the self-signed root certs into your keychain (so the site self-signed certificate can be trusted)
build- creates the production nginx and node ssr server imagesrun- runs the production nginx and node ssr server containers (nginx serving static/bundle assets + node express - primed for SSR) (no volume mounting - so containers are completely self contained)- browse to https://$SITESEEDDOMAIN/
stop- gracefully shuts down the servers
build-dev- creates the developent nginx, dev ui server and node ssr server imagesrun-dev- runs the development nginx, dev ui server and node ssr server containers (nginx serving static assets, dev ui server running webpack dev server for autoreloading ui assets + node express - primed for SSR - watching file changes and reloading routes) (all 3 containers are volume mounted so able to respond to host filesystem changes) to https://$SITESEEDDOMAIN/stop-dev- gracefully shuts down the servers
The static folder holds files that should be downloaded to the browser 'as is', the assets folder is for generated files that will be downloaded to the browser. No other folder should be available to the browser.
Firstly the build script must be run. This script sets up template files that need the domain name injected in, then creates the certificates for the chosen domain name. Then it builds the 2 prod images (nginx proxy server and node ssr server) by doing a docker-compose build against the prod.docker-compose.yml file.
The nginx image build:
- copies the certs into the right location
- sets up the nginx config so that the static assets (and generated bundle files) are served from disk AND all other requests are sent to the node server (assumed to be requests for index.html which will be ssr'd)
- copies static assets from the
/src/staticfolder into the root of the web app - runs webpack (via
yarn ui) to generate the static production bundle files into the/assetsfolder in the web app
The node server image build:
- installs dependencies using
yarn - copies the whole src into the app ready for execution of the node express server (via the
yarn ssrcommand)
Execute the run script which simply does a docker-compose up against the prod.docker-compose.yml compose file which runs both the nginx and node containers described above in the build step.
- the nginx container will now serve up static files and proxy any other requests to the node web server
- the node server runs express (via
yarn start) which will run SSR to serve up the index.html
Execute the stop script which simply does a docker-compose down against the prod.docker-compose.yml compose file, therefore stopping the 2 docker containers: proxy and ssrserver.
Execute the build-dev script which sets up template files that need the domain name injected in, the creates the certificates for the chosen domain name. Then it builds the 3 dev images (nginx proxy server, node ui assets server and node ssr server) by doing a docker-compose build against the dev.docker-compose.yml file.
Execute the run-dev script which simply does a docker-compose up against the dev.docker-compose.yml compose file which runs the nginx, the ui server and ssr server described above in the build step.
- the nginx container will now serve up static files (volume mounted so will respond to changes in the files on the host machine)
- the nginx container will forward and requests to
/assetsto the ui server container forwebpack-dev-serverto serve up - which is listening via volume mounting to the host machine and recompiling on demand the bundle assets - the nginx container will also forward any hot module replacement requests to the ui server to enable HMR and proxy any other requests to the node web server
- the nginx container will then forward all other requests to the ssr server assuming anything else is a request for an
index.html - the node ssr server runs express (via
yarn dev-ssr) which will run SSR to serve up theindex.htmland is listening to file changes (via volume mounting) and will reload routes on a file change
Execute the stop-dev script which simply does a docker-compose down against the dev.docker-compose.yml compose file, therefore stopping the 3 docker containers: proxy, uiserver and ssrserver.
-
document redux structure/ ssr decisions/ import resolving/ extensions structure
-
add tests around all modules!
-
ensure redux devtools is turned off in production
-
THinking about react app design, read the following:
- https://medium.com/faceyspacey/redux-first-router-data-fetching-solving-the-80-use-case-for-async-middleware-14529606c262
- https://formidable.com/blog/2016/07/11/let-the-url-do-the-talking-part-1-the-pain-of-react-router-in-redux/
- https://formidable.com/blog/2016/07/19/let-the-url-do-the-talking-part-2-bargaining-and-acceptance-with-redux-and-react-router/
- https://formidable.com/blog/2016/07/25/let-the-url-do-the-talking-part-3-empower-the-url-with-redux-little-router/
-
rename prod and dev docker images so they aren't the same name?
-
Get React RHL in
-
Get Redux in?
-
use redux-saga
-
get immutable.js in over redux along with redux-immutable, reselect and a toJS HOC for the dumb components
-
use immutable records
-
use normalizr?
-
bring in reselect for selectors - check reselect with immutable
-
use redux-ui for forms?
-
redux-optimist or something similar for optimistic updates?
-
use FSA (flux standard actions!)
-
the big CSS decision!
-
How to handle HEAD injects in an ssr world (e.g. title in head based on ui code ala Helmet?)
-
get routing in? (start to look at next.js?)
-
get SSR dealing with 404's
-
how to deal with errors?
-
site monitoring/ error uploading/ pinging
-
dealing with render failures - error boundaries
-
ensure we are using the development and production version of react and other libraries etc.
-
ensure we are only yarn installing the production dependencies in the ssr container
-
get asset cache busting into prod build
-
get testing working
- Jest? Enzyme
- e2e testing - how?
-
flow typing
-
ssr: refactor, modularise and folderise the code
-
fix dev ssl
-
get CA and IA setup to be trusted by home mbp
-
remove CA and IA certs from repo and have them autogenerated from scripts (update docs)
-
possibly make the domainname file replacemenets and create-cert part of the
buildscript part of the dockerfile? -
create a node api server?
-
look at how yarn can use it's cache when build is happening in a docker image build
-
rationalise the inheritance of the dockerfiles - make 1 extend the other
-
as part of compilation - create a .zip artefact for the prod container to use?
-
how do we ensure the site stays up? if nginx/node hangs - how do they automatically restart - something in docker?
-
add pm2 for any reason?
-
fix prod ssl
- have added the webpack build into the nginx dockerfile - but there is a better approach described in the answer here that we should move to: https://stackoverflow.com/questions/46191955/how-to-structure-an-nginx-docker-container-and-the-build-of-the-assets-it-serves/46195926#46195926
- the nginx prod config - it should only allow serving static files from /assets and /static - is that happening?
- are any of the container webserver accessibly on port 80 from host (shouldn't be as the node servers should only be accessible from the nginx proxy server and nginx should be available only from 443)