| title | description |
|---|---|
Template for a Magic App |
This architecture ensures that frontend developers focus solely on building the user interface and client-side logic, without direct access to production data. Backend developers manage data processing and API creation, maintaining strict access controls through the MagicPot. The use of GitHub Actions for continuous integration and deployment automates the process of building and publishing Docker images, while the PowerShell script facilitates seamless deployment to Kubernetes. |
The architecture of the KOKSMAT framework ensures a clear separation between frontend and backend developers, with specific roles and access levels.
- Technologies Used: Next.js 14, TypeScript, Tailwind CSS, shadcn-ui components
- Location:
.koksmat/web - Responsibilities:
- Developing user interfaces and client-side logic
- Handling user authentication via Microsoft Online
- Consuming backend APIs (MagicPot) for all data interactions
- Never interacting directly with production data
- Technologies Used: Go, Postgres, Kubernetes
- Location:
.koksmat/app - Responsibilities:
- Handling business logic, data processing, and storage
- Ensuring data integrity and security
To start a new project using the KOKSMAT framework, follow these steps:
-
Decide on a Project Name: Choose a subject matter for the project, formatted as two words separated by a dash (e.g.,
intranet-tools). -
Create a New Repository:
- Use the master template repository: magic-master
- Name the new repository according to the project subject (e.g.,
intranet-tools).
-
Set Up the Repository:
- Clone the new repository to your local machine or open it in GitHub Codespaces.
- Rename the project folder to match the subject (e.g.,
tools).
-
Update Configuration:
- Open
.koksmat/web/app/global.ts. - Update the
APPNAMEvariable to match your project name (e.g.,tools). - Change the
clientIdandauthorityvalues to match your Azure tenant configuration:export const APPNAME = "tools"; export const CLARITY = "your-clarity-key"; export const MSAL = { clientId: "your-client-id", authority: "https://login.microsoftonline.com/your-tenant-id", redirectUri: "/", postLogoutRedirectUri: "/", };
- Open
-
Change name
- Search and replace "magicbutton/magic-master" with your repos name "owner/repo"
The KOKSMAT framework leverages GitHub Actions for continuous integration and deployment, specifically for publishing Docker images and deploying them to Kubernetes. This process is triggered whenever a new release is made.
-
Configuration File:
- The release tag and image name are controlled by the
.koksmat/koksmat.jsonfile:{ "version": { "minor": 0, "build": 5, "patch": 5, "major": 0 }, "appname": "magic-people", "dnsprod": "people.intra.nexigroup.com", "dnstest": "people-test.intra.nexigroup.com", "imagename": "ghcr.io/magicbutton/magic-people", "port": 4444 }
- The release tag and image name are controlled by the
-
GitHub Actions Workflow:
-
The workflow is triggered on creating a new release, building the Docker image, and pushing it to the GitHub Container Registry:
name: Build and Publish Docker Image on: release: types: [published] jobs: build: runs-on: ubuntu-latest steps: - name: Checkout code uses: actions/checkout@v2 - name: Set up Docker Buildx uses: docker/setup-buildx-action@v1 - name: Login to GitHub Container Registry uses: docker/login-action@v1 with: registry: ghcr.io username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} - name: Extract version id: extract_version run: | version=$(jq -r '.version.major+"."+ .version.minor+"."+ .version.patch+"."+ .version.build' .koksmat/koksmat.json) echo "::set-output name=version::$version" - name: Build and push Docker image run: | imagename=$(jq -r '.imagename' .koksmat/koksmat.json) version=${{ steps.extract_version.outputs.version }} docker build -t $imagename:$version . docker push $imagename:$version
-
The deployment manifest is generated and published to Kubernetes using a PowerShell script located at 60-provision/10-web.ps1.
-
PowerShell Script:
-
This script reads the
koksmat.jsonfile, generates a Kubernetes manifest, and applies it:<#--- title: Web deploy to production tag: webdeployproduction api: post ---#> if ((Split-Path -Leaf (Split-Path -Parent -Path $PSScriptRoot)) -eq "sessions") { $path = join-path $PSScriptRoot ".." ".." } else { $path = join-path $PSScriptRoot ".." ".koksmat/" } $koksmatDir = Resolve-Path $path $inputFile = join-path $koksmatDir "koksmat.json" if (!(Test-Path -Path $inputFile) ) { Throw "Cannot find file at expected path: $inputFile" } $json = Get-Content -Path $inputFile | ConvertFrom-Json $version = "v$($json.version.major).$($json.version.minor).$($json.version.patch).$($json.version.build)" $port = "$($json.port)" $appname = $json.appname $imagename = $json.imagename $dnsname = $json.dnsprod $image = "$($imagename)-web:$($version)" $config = @" apiVersion: v1 kind: PersistentVolumeClaim metadata: name: pvc-$appname spec: accessModes: - ReadWriteMany resources: requests: storage: 1Gi storageClassName: azurefile --- apiVersion: apps/v1 kind: Deployment metadata: name: $appname spec: selector: matchLabels: app: $appname replicas: 1 template: metadata: labels: app: $appname spec: containers: - name: $appname image: $image ports: - containerPort: $port env: - name: NATS value: nats://nats:4222 - name: DATAPATH value: /data volumeMounts: - mountPath: /data name: data volumes: - name: data persistentVolumeClaim: claimName: pvc-$appname --- apiVersion: v1 kind: Service metadata: name: $appname labels: app: $appname service: $appname spec: ports: - name: http port: 5301 targetPort: $port selector: app: $appname --- apiVersion: networking.k8s.io/v1 kind: Ingress metadata: name: $appname spec: rules: - host: $dnsname http: paths: - path: / pathType: Prefix backend: service: name: $appname port: number: 5301 "@ write-host "Applying config" -ForegroundColor Green write-host $config -ForegroundColor Gray $config | kubectl apply -f -
-