Lecture 08 - CI, CD, Staging Environments

posted 7 months ago ⋄ 6 min read

Lecture 08 - CI, CD, Staging Environments#

Lecture 08 - CI, CD, Staging Environments

Links#

Events and Announcements#

I mostly know about Lucid events, but feel free to slack me a day or two before class and I can get things added here.

News#

Flutter fork Flock announced. Right now it’s just a 1:1 copy of Flutter, but it says that it will add new community features.
Svelte 5 has been released.
Oasis, an AI model trained on Minecraft footage, has been released.

Follow-Up from Last Time#

Continuous Integration#

CI is short for Continuous Integration. There are a couple facets to this:

Fast turnaround time on if the code on a branch is working properly (builds, formats, tests)
Code reviews
Incremental changes rather than massive merges

Automated Tests#

I feel like I have beat this horse into the ground. Write tests. They’re a smaller up-front investment for a longer-term benefit of not being able to break things as easily.

Incremental Changes#

Not every issue needs to be solved in one pull request. If you can break things up into smaller changes, both you and your collaborators will have a better time. Smaller changes are easier to review, easier to write tests for, and easier to merge. There’s a balance to find here between PRs and commits as well, but incremental changes are something worth considering as you work with other engineers.

Code Reviews#

Unless you are working alone (and even then, I’m happy to review PRs if you want), you should have another human review your code as well. It’s a fantastic way to make sure that your code can be understood, and fits in both of your mental models of your larger system.

GitHub Actions#

GitHub actions is a CI pipeline, and generally good for running automation on pull requests without needing to set up other automation. Other git providers have similar pipelines as well, or you can use a third party pipeline like Jenkins.

Here is the workflow I am using for my project. It runs with a database, and runs my unit tests, formatter, linting, etc. to make sure that it’s deployed.

.github/workflows/tests.yml

1
name: Build and Deploy (Preview)
2

3
on:
4
  push:
5
    branches: [develop]
6
  pull_request:
7
    branches: [main, develop]
8

9
jobs:
10
  build:
11
    name: Build and Run Tests (Preview)
12
    runs-on: ubuntu-latest
13
    - uses: actions/checkout@v3
14

15
    - uses: supabase/setup-cli@v1
16
      with:
17
        version: latest
18

19
    - name: Install Node.js
20
      uses: actions/setup-node@v3
21
      with:
22
        node-version: 18
23

24
    - name: Install dependencies
25
      run: npm install
26

27
  - name: Lint
28
      run: npm run lint
29

30
    - name: Check Format
31
      run: npm run format
32

33
    - name: Start Supabase API and Database
34
      # exclude these services that I'm not using to make things faster
35
      run: supabase start -x realtime,storage-api,imgproxy,inbucket,edge-runtime,logflare,vector,supavisor
36

37
    - name: Remap Supabase Environment Variables
38
      # `grep NAME` grabs the variable NAME from the supabase env
39
      # `cut -d "=" -f2 <<<` grabs the thing after the equals from the string provided to it
40
      # `echo "NAME=$(...)" >> $GITHUB_ENV` stores the result in the NAME variable
41
      # I have 4 variables I'm interested in from this project.
42
      run: |
43
        echo "NEXT_PUBLIC_SUPABASE_ANON_KEY=$(cut -d "=" -f2 <<< "$(supabase status -o env | grep ANON_KEY)")" >> $GITHUB_ENV
44
        echo "NEXT_PUBLIC_SUPABASE_URL=$(cut -d "=" -f2 <<< "$(supabase status -o env | grep API_URL)")" >> $GITHUB_ENV
45
        echo "SUPABASE_SERVICE_ROLE_KEY=$(cut -d "=" -f2 <<< "$(supabase status -o env | grep SERVICE_ROLE_KEY)")" >> $GITHUB_ENV
46
        echo "DATABASE_URL=$(cut -d "=" -f2 <<< "$(supabase status -o env | grep DB_URL)")" >> $GITHUB_ENV
47

48
    - name: Build
49
      # Next wants the environment variables available at this point. Make that so.
50
      run: npm run build
51

52
    - name: Run unit tests
53
      run: npm run test

Continuous Delivery#

Continuous delivery means automatically releasing your code to your users. Some teams find this fine to do as soon as it is merged and tested. If your app is much more client-focused (and heavy), it might make sense to keep it cached, and release once or twice a day to reduce the amount of bandwidth users need to use loading the code.

On Vercel, this is automatic. When you push to your main branch, it gets deployed to production so long as the build passes. I found that the double build isn’t as useful, so I deploy as a part of my GitHub Actions build process here, but you can do what works best for you.

Some other options:

Build a container on your CI pipeline, deploy it to a container registry (like Google Cloud, or AWS), and trigger a deploy from the container registry.
SSH into your production server, trigger a git pull, and restart the server.

Staging Deploys#

I’ve mentioned this in the past; having a safe environment to test changes that mirrors your production environment can save you a lot of headache in the future. I recommend a workflow that looks like this:

Create a pull request to a next or develop branch that runs tests, format, etc.
Do code review on the pull request
Merge to next or develop
Automatically deploy that to your staging environment
Check the logs for database / build issues (or better yet, create alerts for those things that will notify you if things fail)
Run tests against that environment (optional)
Check that your flow works in that environment
Merge to main

Licensing#

Generally with Licensing, you want a system that can do a couple of things:

Know what license each user or account has
Know what features each license is allowed to use
Know what features each user is allowed to use (normally by proxy to the license)

One way you might model this is like this:

1
export class Feature {
2
  public static readonly ImageUpload = new Feature(
3
    "Image Upload",
4
    "Upload images to your account."
5
  );
6

7
  public static readonly CreateNotes = new Feature(
8
    "Create Notes",
9
    "Create notes and store them in your account."
10
  );
11

12
  public static readonly AICompose = new Feature(
13
    "AI Compose",
14
    "Compose notes using AI."
15
  );
16

17
  constructor(public name: string, public description: string) {}
18
}
19

20
export class License {
21
  static readonly Free = new License(0, "Free", "", [], 100);
22
  static readonly Plus = new License(
23
    1,
24
    "Plus",
25
    "prod_RAbmvCKZ3FEpJD",
26
    [(Feature.ImageUpload, Feature.CreateNotes)],
27
    10000
28
  );
29

30
  static readonly ById = {
31
    [License.Free.id]: License.Free,
32
    [License.Plus.id]: License.Plus,
33
  };
34

35
  static readonly ByProductId = {
36
    [License.Plus.productId]: License.Plus,
37
  };
38

39
  constructor(
40
    public readonly id: number,
41
    public readonly name: string,
42
    public readonly productId: string,
43
    public readonly features: Feature[],
44
    public readonly storage: number
45
  ) {}
46
}

And then in my database:

1
CREATE TABLE public.user_payments (
2
    id UUID PRIMARY KEY DEFAULT uuid_generate_v4(),
3
    user_id UUID REFERENCES auth.users NOT NULL,
4
    license_id INTEGER,
5
    payment_id UUID NOT NULL,
6
    created_at TIMESTAMP WITH TIME ZONE DEFAULT now(),
7
    updated_at TIMESTAMP WITH TIME ZONE DEFAULT now()
8
);
9

10
ALTER TABLE public.user_payments ENABLE ROW LEVEL SECURITY;
11

12
CREATE POLICY "User can read notes."
13
ON public.user_payments FOR SELECT
14
TO authenticated
15
USING (auth.uid() = user_id);
16

17
UPDATE TABLE public.users ADD COLUMN license_id INTEGER;

The users table has a license_id to keep track of their current license, and then the payments table stores their payment history.