A monorepo for event-search based nextjs applications and common event components
Howtos for monorepo. New to monorepos ? check this FAQ.
The subgraphs of multiple datasources are combined to a one supergraph with an app specific Apollo-Router instance. An application (Events, Hobbies, Sports) uses the app specific Apollo-Router so the app gets all the datasources in use with a single Apollo-Client. All the applications inside the monorepo are sharing the similar Apollo-Router in means of structure, but since there are app specific Headless CMS instances to share app specific data, each of the applications are connected to a unique environment-app-specific router instances.
┌─────────────┐ ┌───────────────┐ ┌── Headless CMS (app specific datasource for the dynamic page and articles content)
│ │ │ │ ├── Unified-Search (Elasticsearch-service for search results scoring)
│ Application ├───────┤ Apollo Router ├───────├── Events GraphQL Proxy (A GraphQL-proxy for the LinkedEvents)
│ │ │ │ └── Venues GraphQL Proxy (A GraphQL-proxy for the Palvelukartta/Servicemap / "TPREK" Toimipaikkarekisteri)
└─────────────┘ └───────────────┘
.
├── proxies
│ ├── events-graphql-federation (Apollo Router and Gateway)
│ ├── venue-graphql-proxy Venue graphql api proxy server
│ └── events-graphql-proxy ("clone of events-helsinki-api-proxy")
│
├── apps
│ ├── hobbies-helsinki (i18n, ssr, api, jest)
│ ├── events-helsinki ("clone of hobbies-helsinki")
│ └── sports-helsinki ("clone of hobbies-helsinki")
└── packages
├── common-i18n (locales...)
├── components (common event components, utils and hooks, storybook, jest)
├── graphql-proxy-server (common code for graphql api-proxy server)
└── eslint-config-bases (to shared eslint configs)
- proxies/events-graphql-federation: The Apollo Router configuration to manage and run subgraphs. README
- proxies/events-graphql-proxy: Clone of events-helsinki-api-proxy. Event Helsinki GraphQL proxy. README
- proxies/venue-graphql-proxy: Venue Helsinki GraphQL proxy. README
- apps/hobbies-helsinki: SSR, i18n, sass, graphQL, rest... README | DEMO | CHANGELOG
- apps/events-helsinki: Clone of Hobbies (SSR, i18n, sass, graphQL, rest...) README | DEMO | CHANGELOG
- apps/sports-helsinki: Clone of Hobbies (SSR, i18n, sass, graphQL, rest...) README | DEMO | CHANGELOG
Apps should not depend on apps, they can depend on packages
The application and proxy configuration is done via the AppConfig -file as much as possible, so there would be a single point for all the configuration.
- packages/eslint-config-bases: README | CHANGELOG
- packages/graphql-proxy-server: README | CHANGELOG
- packages/components: publishable. README | CHANGELOG
- packages/common-i18n: README | CHANGELOG
- packages/common-tests: README | CHANGELOG
Apps can depend on packages, packages can depend on each others...
If needed static resources like images,... can be shared by using symlinks in the repo.
- See the global static folder.
Detailed folder structure
.
├── proxies
│ ├── events-graphql-federation (Apollo Router and Gateway)
│ ├── events-graphql-proxy (Apollo Server to offer Graphql endpoint for the LinkedEvents -service)
│ └── venue-graphql-proxy (Apollo Server to offer Graphql endpoint for the Venue)
│
├── apps
│ └── hobbies-helsinki (NextJS app with api-routes)
│ ├── public/
│ │ ├── shared-assets/ (possible symlink to global assets)
│ │ └── shared-locales/ (possible symlink to global locales)
│ ├── src/
│ │ └── pages/api (api routes)
│ ├── CHANGELOG.md
│ ├── next.config.js
│ ├── next-i18next.config.js
│ ├── package.json (define package workspace:package deps)
│ └── tsconfig.json (define path to packages)
│
├── packages
│ ├── common-i18n
│ │ ├── src/
│ │ ├── CHANGELOG.md
│ │ ├── package.json
│ │ └── tsconfig.json
│ │
│ ├── eslint-config-bases
│ │ ├── src/
│ │ ├── CHANGELOG.md
│ │ ├── package.json
│ │ └── tsconfig.json
│ │
│ └── components (basic design-system in react)
│ ├── src/
│ ├── CHANGELOG.md
│ ├── package.json
│ └── tsconfig.json
│
├── static (no code: images, json, locales,...)
│ ├── assets
│ └── locales
├── .yarnrc.yml
├── .dockerignore
├── docker-compose.nextjs-app.yml (compose specific for nextjs-app)
├── docker-compose.yml (optional: general services like postgresql...)
├── Dockerfile (multistage build suitable for all apps)
├── package.json (the workspace config)
└── tsconfig.base.json (base typescript config)
Some convenience scripts can be run in any folder of this repo and will call their counterparts defined in packages and apps.
| Name | Description |
|---|---|
yarn g:typecheck |
Run typechecks in all workspaces |
yarn g:lint |
Display linter issues in all workspaces |
yarn g:lint --fix |
Attempt to run linter auto-fix in all workspaces |
yarn g:lint-styles |
Display css stylelint issues in all workspaces |
yarn g:lint-styles --fix |
Attempt to run stylelint auto-fix issues in all workspaces |
yarn g:test |
Run unit and e2e tests in all workspaces |
yarn g:test |
Run unit tests in all workspaces |
yarn g:test-e2e |
Run e2e tests in all workspaces |
yarn g:build |
Run build in all workspaces |
yarn g:clean |
Clean builds in all workspaces |
yarn g:check-dist |
Ensure build dist files passes es2017 (run g:build first). |
yarn g:check-size |
Ensure browser dist files are within size limit (run g:build first). |
yarn clean:global-cache |
Clean tooling caches (eslint, jest...) |
yarn deps:check --dep dev |
Will print what packages can be upgraded globally (see also .ncurc.yml) |
yarn deps:update --dep dev |
Apply possible updates (run yarn install && yarn dedupe after) |
yarn check:install |
Verify if there's no peer-deps missing in packages |
yarn dedupe |
Built-in yarn deduplication of the lock file |
yarn build |
Builds application with rollup. |
yarn publish-canary |
Publishes a canary tagged version of the application. CD is configured to run this script on additions to the main branch. |
Why using
:to prefix scripts names ? It's convenient in yarn 3+, we can call those scripts from any folder in the monorepo.g:is a shortcut forglobal:. See the complete list in root package.json.
The global commands yarn deps:check and yarn deps:update will help to maintain the same versions across the entire monorepo.
They are based on the npm-check-updates
(see options, i.e: yarn check:deps -t minor).
After running
yarn deps:update, ayarn installis required. To prevent having duplicates in the yarn.lock, you can runyarn dedupe --checkandyarn dedupeto apply deduplication. The duplicate check is enforced in the example github actions.
While deps:check will give you a detailed info about about dep versions across the project, it doesn't automatically pinpoint mismatching versions between apps in the repo. To automatically find and fix mismatches, run yarn lint:dependency-versions in the root to make sure all deps in the monorepo are updated to the same version. Check the output, and fix issues by running lint:dependency-versions --fix.
Monorepo uses symbolic links to share assets, locales and GraphQL schema generation related code between apps and packages, e.g.:
Shared assets:
- apps/events-helsinki/public/shared-assets → static/assets/
- apps/hobbies-helsinki/public/shared-assets → static/assets/
- apps/sports-helsinki/public/shared-assets → static/assets/
Locales:
- packages/common-i18n/src/locales/default → packages/common-i18n/src/locales/fi/
GraphQL schema generation related code:
- apps/events-helsinki/pascalCaseWithUnderscoreBeforeLeadingDigit.js → packages/components/src/codegen/pascalCaseWithUnderscoreBeforeLeadingDigit.js
- apps/hobbies-helsinki/pascalCaseWithUnderscoreBeforeLeadingDigit.js → packages/components/src/codegen/pascalCaseWithUnderscoreBeforeLeadingDigit.js
- apps/sports-helsinki/pascalCaseWithUnderscoreBeforeLeadingDigit.js → packages/components/src/codegen/pascalCaseWithUnderscoreBeforeLeadingDigit.js
- packages/components/pascalCaseWithUnderscoreBeforeLeadingDigit.js → packages/components/src/codegen/pascalCaseWithUnderscoreBeforeLeadingDigit.js
You can find all used symbolic links in the monorepo by running in the monorepo's root:
find -L ./ -xtype l -not -path */node_modules/*or using PowerShell:
Get-ChildItem ./ -recurse | ?{ $_.PsIsContainer -and $_.FullName -notmatch 'node_modules' } | ?{$_.LinkType} | select FullName,LinkType,TargetTo enable the support for symbolic links on Windows 10 you need to:
- Configure your git to support symbolic links by setting
core.symlinkstotrue- Git has many configuration scopes, we'll consider system, global and local here.
- The order of precedence is
system < global < locali.e. local overrides global, global overrides system
- The order of precedence is
- You can check the current setting by
git config --show-origin --show-scope --get-all core.symlinks - Set the
core.symlinkstotruein global scope to make it affect also new clones of git repositories:git config --global core.symlinks true
- Git has many configuration scopes, we'll consider system, global and local here.
- If using MSYS e.g. via Git for Windows
- Set MSYS=winsymlinks:nativestrict
by adding line
export MSYS=winsymlinks:nativestrictto the system-widebashrcfile normally atC:\Program Files\Git\etc\bash.bashrcusing administrative privileges
- Set MSYS=winsymlinks:nativestrict
by adding line
- Either enable Developer Mode
in Windows 10 to enable creation of symbolic links without administrative privileges
or run the terminal (e.g. Command Prompt or PowerShell) as administrator at least
when cloning the repository.
- Neither of these are without security risks, so use them with caution, but no
other options are known. You can mitigate some of these security risks by not
enabling Developer Mode and only running the terminal with administrative
privileges when absolutely needing the creation of symbolic links to work, e.g.
when cloning a repository that uses symbolic links and whenever new symbolic links
are created e.g. by
git pullcontaining new symbolic links.
- Neither of these are without security risks, so use them with caution, but no
other options are known. You can mitigate some of these security risks by not
enabling Developer Mode and only running the terminal with administrative
privileges when absolutely needing the creation of symbolic links to work, e.g.
when cloning a repository that uses symbolic links and whenever new symbolic links
are created e.g. by
- (Re)clone the repository in question either with Developer Mode enabled or with administrative privileges to make sure the symbolic links are created correctly.
- Check that the symbolic links were created correctly (See Symbolic links above)
Some Helsinki Design System (HDS) CSS styles are critically needed and luckily the HDS exposes a tool for extracting the used critical styles of HDS components. The HDS team recommends using their getCriticalHdsRules tool with the _document.tsx file of the Next JS, but when using NextJS with Static Site Generation (SSG) and Incremental Static Regeneration (ISR), it would mean that the inline style-block would be cloned again and again in every statically generated page and it would not be cached any how by the client (browser). Because of that, we have a custom script in the monorepo root that we can use to create a CSS file to all the monorepo apps (and also in common packages where it is needed).
By executing yarn g:hds-critical-styles:create, the critical-hds-styles.css file will be created. The root package.json uses the static asssets styles path (./static/assets/styles/critical-hds-styles.css) to offer the same file for every application. The critical-hds-styles.css is then used by the app's _document.tsx which creates a <link rel="stylesheet">-tag out of it.
Static pages are not revalidated automatic due issues on production. It can be done manually via 'api/revalidate'. OpenShift environments have a cronjob to trigger revalidation.
The requests are JSON-POST-calls and the secret parameter that needs to be used in it, can be found from the Azure Portal key vault.
Trigger revalidation requires secret token value on POST body. Correct secret token value found from keyvault.
curl -X POST https://tapahtumat.test.hel.ninja/api/revalidate -H "Content-Type: application/json" -d '{"secret":"secretrevalidationtoken"}'Optinally it is possible revalidate one selected uri. Uri have to be exactly correct.
curl -X POST https://tapahtumat.test.hel.ninja/api/revalidate -H "Content-Type: application/json" -d '{"secret": "secretrevalidationtoken", "uri": "/fi"}'See in ./apps/hobbies-helsinki/.eslintrc.js and eslint-config-bases.
Check the .husky folder content to see what hooks are enabled. Lint-staged is used to guarantee that lint and prettier are applied automatically on commit and/or pushes.
Tests relies on ts-jest or vitest depending on the app. All setups supports typescript path aliases. React-testing-library is enabled whenever react is involved.
Configuration lives in the root folder of each apps/packages. See
There are also some K6 performance testing scripts. The K6 package is included in the applications of the apps-folder. To get more familiar with the K6 library, read the docs from https://k6.io/docs/.
CI is running on Platta (Azure DevOps & OpenShift). DevOps has projects for harrastukset, tapahtumat and liikunta. Proxies are included to liikunta project.
Each DevOps project has 4 OpenShift environments: development, testing, staging and production. Review builds are running on development environment. It is cleaned automatically every Sunday night.
Test, build and deploy pipelines located on Azure DevOps
Static tests are run as part of pipelines. They will ensure that
- You don't have package duplicates.
- You don't have typecheck errors.
- You don't have linter / code-style errors.
- Your test suite is successful.
- Your apps or packages can be successfully built.
- Basic check-size.
Each of those steps can be opted-out.
Pipeline trigger files located in the root of this repository. Pipeline trigger files are named 'azure-pipelines--<pipeline_type>.yml'
To ensure decent performance, those features are present in the example actions:
-
Caching of packages (node_modules...) - install around 25s
-
Caching of nextjs previous build - built around 20s
-
Triggered when changed using pipeline paths, ie:
paths: - "apps/hobbies-helsinki/**" - "packages/**" - "package.json" - "tsconfig.base.json" - "yarn.lock" - ".yarnrc.yml" - ".github/workflows/**" - ".eslintrc.base.json" - ".eslintignore"
Pipeline configurations located in DevOps repositories
Pipelines variables are defined as parameter on trigger pipeline or as variable template on DevOps pipeline repository
- build arguments and config map variables can be set on trigger pipeline as pipeline parameter (example below)
- common variable template file (variables/-variables-common.yml)
- environment specific variable template file (variables/-variables-.yml)
Secrets are defined on Azure key vault
- secrets are imported to pipelines via variable group (Pipelines/Library on DevOps menu)
- variable groups are named -kv
- secrets have to add manually to secret configuration
-
NOTE: required name conversion from keyvault '-' to environment variable '_' needs to be done on pipeline
How to set build arguments and/or config map variables (pod runtime environment variables) on trigger pipeline as key value pairs:
template: azure-pipelines-harrastukset-review.yml@harrastukset-pipelines
parameters:
buildArgs:
NEXTJS_DISABLE_SENTRY: 1
CMS_ORIGIN: https://harrastus.hkih.stage.geniem.io
configMap:
DEBUG: 1
MATOMO_ENABLED: 0
CMS_ORIGIN: https://harrastus.hkih.stage.geniem.io
The ESLint plugin requires that the eslint.workingDirectories setting is set:
"eslint.workingDirectories": [
{
"pattern": "./apps/*/"
},
{
"pattern": "./packages/*/"
}
],
More info here
Building a docker image, read the docker doc.
Apps and proxies use automatic semantic versions and are released using Release Please.
Release Please is a GitHub Action that automates releases for you. It will create a GitHub release and a GitHub Pull Request with a changelog based on conventional commits.
Each time you merge a "normal" pull request, the release-please-action will create or update a "Release PR" with the changelog and the version bump related to the changes (they're named like release-please--branches--main--components--[APP NAME]).
To create a new release for an app, this release PR is merged, which creates a new release with release notes and a new tag. This tag will be picked by Azure pipeline and trigger a new deployment to staging. From there, the release needs to be manually released to production.
When merging release PRs, make sure to use the "Rebase and merge" (or "Squash and merge") option, so that Github doesn't create a merge commit. This is important, because the release-please-action does not work correctly with merge commits (there's an open issue you can track: Chronological commit sorting means that merged PRs can be ignored ).
See Release Please Implementation Design for more details.
And all docs are available here: release-please docs.
Use Conventional Commits to ensure that the changelogs are generated correctly.
Release please goes through commits and tries to find "releasable units" using commit messages as guidance - it will then add these units to their respective release PR's and figures out the version number from the types: fix for patch, feat for minor, feat! for major. None of the other types will be included in the changelog. So, you can use for example chore or refactor to do work that does not need to be included in the changelog and won't bump the version.
The release-please workflow is located in the release-please.yml file.
The configuration for release-please is located in the release-please-config.json file. See all the options here: release-please docs.
The manifest file is located in the release-please-manifest.json file.
When adding a new app, add it to both the release-please-config.json and release-please-manifest.json file with the current version of the app. After this, release-please will keep track of versions with release-please-manifest.json.
If you were expecting a new release PR to be created or old one to be updated, but nothing happened, there's probably one of the older release PR's in pending state or action didn't run.
- Check if the release action ran for the last merge to main. If it didn't, run the action manually with a label.
- Check if there's any open release PR. If there is, the work is now included on this one (this is the normal scenario).
- If you do not see any open release PR related to the work, check if any of the closed PR's are labeled with
autorelease: pending- ie. someone might have closed a release PR manually. Change the closed PR's label toautorelease: tagged. Then go and re-run the last merge workflow to trigger the release action - a new release PR should now appear. - Finally check the output of the release action. Sometimes the bot can't parse the commit message and there is a notification about this in the action log. If this happens, it won't include the work in the commit either. You can fix this by changing the commit message to follow the Conventional Commits format and rerun the action.
Important! If you have closed a release PR manually, you need to change the label of closed release PR to autorelease: tagged. Otherwise, the release action will not create a new release PR.
Important! Extra label will force release-please to re-generate PR's. This is done when action is run manually with prlabel -option
Sometimes there might be a merge conflict in release PR - this should resolve itself on the next push to main. It is possible run release-please action manually with label, it should recreate the PR's. You can also resolve it manually, by updating the release-please-manifest.json file.
- Open release-please github action
- Click Run workflow
- Check Branch is main
- Leave label field empty. New label is not needed to fix merge issues
- Click Run workflow -button
There's also a CLI for debugging and manually running releases available for release-please: release-please-cli
This monorepo structure is based on the Nextjs Monorepo Example: https://github.com/belgattitude/nextjs-monorepo-example.
Apps dependencies and devDependencies are pinned to exact versions. Packages deps will use semver compatible ones. For more info about this change see reasoning here and our renovabot.json5 configuration file.
To help keeping deps up-to-date, see the yarn deps:check && yarn deps:update scripts and / or use the renovatebot.
When adding a dep through yarn cli (i.e.: yarn add something), it's possible to set the save-exact behaviour automatically by setting
defaultSemverRangePrefix: ""in yarnrc.yml. But this would make the default for packages/* as well. Better to handleyarn add something --exacton per-case basis.
While deps:check will give you a detailed info about about dep versions across the project, it doesn't automatically pinpoint mismatching versions between apps in the repo. To automatically find and fix mismatches, run yarn lint:dependency-versions in the root to make sure all deps in the monorepo are updated to the same version. Check the output, and fix issues by running lint:dependency-versions --fix.
Note about updating deps across the monorepo: when updating a dep, it's important to update it in all the packages that use it, and make sure every dep is updated to the same version. Version differences can cause all kinds of hard-to-debug issues.