Skip to content

The main webapp of the Private Rented Sector Database service

Notifications You must be signed in to change notification settings

communitiesuk/prsdb-webapp

Repository files navigation

Private Rental Sector Database - Web App

This is the web app code for the Private Rental Sector Database (PRSDB).

Development

The prsdb-webapp is a Spring Boot application written in Kotlin. The following should allow you to get started developing functionality for prsdb-webapp.

Dependencies

For the easiest local development experience, use Intellij, and have a docker daemon running on your machine. The repo includes a local launch configuration in the .run folder which will use docker compose to setup the required local dependencies before starting the application.

A running docker daemon is also required to run the integration tests, which make use of testcontainers.

The application requires Java 17 - Gradle should automatically install this for you the first time you run the application locally.

We are using Ktlint for linting, via the ktlint-gradle plugin and the ktlint Intellij plugin which can be installed from within Intellij.

To ensure that your code meets the linting and formatting rules (as well as checking that the tests pass), we recommend installing the pre-commit hook by running the addKtlintCheckGitPreCommitHook task from Gradle tab in Intellij.

There are also some local secrets that will need to be set up if you need to test integrations with other services when running the project locally. Ask the team lead where these can be found.

When running your build against the integration environment of Gov.UK One Login you will be prompted for credentials to access the integration environment, ask your team lead where these can be found.

Testing

The project uses a combination of unit tests and integration tests. The integration tests use a testcontainer to run a postgres database. This takes extra time to spin up, and spins up a clean container per test, and so should only be used for integration tests that need to interact with a real database - for other tests the relevant repository beans should be mocked instead.

You can run the unit tests by running the verification\test task from the Gradle tab in Intellij.

Code structure

Backend

Controllers can be found in the controllers package, entities and repositories can be found in the database package, configuration classes in the config package and so on.

App configuration can be found in the application.yml and application-local.yml files for deployed and local configuration respectively. For deployed environments configuration that differs between environments should be managed through referencing environment variables in application.yml.

Database migrations can be found in src/main/resources/db.migrations. See section below on database migrations for more information on these.

When developing locally, third party APIs should be stubbed by pointing the requests back at http://localhost:8080 through your local configuration in application-local.yml, and adding an equivalent endpoint to the one you're calling to the local.api package. Those controllers should be annotated by @Profile("local") to ensure that they are not included in any deployed builds.

Frontend

The project uses the Thymeleaf templating engine, combined with the Gov.UK design system. The top-level templates can be found in src/main/resources/templates, while fragments are stored in the fragments subfolder. When a new reusable component is required, use relevant html from the design system to create a fragment.

Static assets should be added to the src/main/resources/assets folder. These will be copied into the src/main/resources/static/assets folder at build time. Assets should not be added to the static/assets folder directly as this is excluded from source control.

Database migrations

The project uses Flyway to manage migrations. To add a migration, create a new SQL file in src/main/resources/db.migrations with a name of the form V<version number>__<migration name>.sql. The version number is in semvar format with underscores separating the major/minor/fix elements. This determines the order in which Flyway runs the migrations.

Database migrations <will be/ are> run at deployment time for all non-local deployments. This is done using the flywayMigrate Gradle task. When developing locally using the local profile the migrations will run at application start up. If you are using the local launch profile in IntelliJ, this will also run the flywayClean task before running the migrations. After the migrations have run Spring Boot will then run the SQL in data-local.sql to populate the database with seed data.

Updating Local Authority Data

The project uses a migration (V1_10_0__populate_la_table.sql) to populate the local_authority table with data from src/main/resources/db/migrations/data/local_authorities/local_authorities.csv. If the CSV file is updated, create a copy of it and call it local_authorities_V<version number>.csv, where version number is one more than the latest version in src/main/resources/db/migrations/data/local_authorities.

Mock One Login Oauth2

For development, we've mocked elements of the governments one login system (that the web app will be using in deployment). When you start the app using the local run configuration, this will be available, when you attempt to login. It will automatically log you in as a user that has every role - and therefore can access all pages.

If you are adding new roles please add the user with the userId set in MockOneLoginHelper to that new role/table.

If you need to be able to login as a user that has specific roles then you can change the userId in MockOneLoginHelper to the id from the one_login_user table of a user that has the permissions you want.

Disabling the mock One Login Oauth2

If you need to disable the mock to run the app with One login's integration system, edit the run configuration so that it uses the local-auth profile instead of the local-no-auth profile.

One Login accounts

When you run the app with the one login mock disabled and try to view pages, you will be prompted to sign in or create a One Login account.

To view most pages, your account will need to have been added to the relevant database (e.g. LandlordUser, LocalAuthorityUser) for you to be able to see the page. It checks the database on login (you can step through getRolesforSubjectId in UserRolesService to test it), so you will need to log in again to see the change in permissions (if logging out is not yet implemented, try running in an incognito tab so you are prompted to log in again).

For local dev, you can add your account by modifying the data-local.sql file. Insert an entry into the one_login_user database with a subject_identifier matching your real one login id (see below). Then you can add entries to any other user database that you need access to (e.g. landlord_user, local_authority_user with is_manager set to true to see local authority admin pages).

Finding your One Login id

One way to find your id is to check the subjectId in getRolesForSubjectId in the UserRolesService while you are logging in.

  • Run the app in debug mode, add a break point in getRolesForSubjectId
  • If you are already logged in it won't hit the breakpoint. Load the app in an incognito tab so that you are prompted to log in again.
  • When you hit the debug point, your one login id should be available in subjectId (it should look like urn:fdc:gov.uk:2022:string-of-characters)

If anyone knows a better way to do this please add it here!

About

The main webapp of the Private Rented Sector Database service

Resources

Stars

Watchers

Forks

Packages

No packages published

Languages