feat(env): load env vars at runtime with import-meta-env

[billhimmelsbach]

Allows env variables to be injected in sbl-frontend at runtime by using import-meta-env and a few other tweaks to nginx, which allows for a bunch of fun stuff:

• configmaps can be used to set env vars (feat(frontend): add configmap regtech-deployments#15)
• you can bounce a container to refresh env vars after modifying its configmap
• you can run yarn docker-build-and-run to run just the frontend with env vars injected
• no changes to local dev env work (keep using .env file like normal)
• add sbl-frontend to sbl-project docker-compose.yaml (feat(docker): add sbl-frontend / profile to docker compose sbl-project#211)
• alert users when they're missing env vars

There's a lot more that can be done here (see Future Improvements section), but this should be a good start. 🤞

This PR changes quite a few things, so I listed why I made each change in the section below (starting from the top of files changed list and working my way down) and included a bunch of code comments which I hope is helpful. 🤞

Changes

• add .env to .dockerignore so that .env changes don't trigger image rebuilds
• add .env.example for use by import-meta-env to define required env variables and to make it easy for new users to copy it and create their own .env files
• modify .github/workflows/test.yml to add env variables to github workflows
• modify .gitignore to ignore all .env files except the new .env.example
• install new packages
  • import-meta-env for injecting env vars, flexibility between .env and env variables being passed on the command line, allowing configmaps
    • includes: @import-meta-env/cli, @import-meta-env/unplugin, dotenv
  • dotenv-cli for automating env var injection for yarn docker-run command
• modify Dockerfile for env var injection
  • add import-meta-env
  • copy nginx config to allow for env var injection
  • change CMD to ENTRYPOINT for env var injection and switching to non-root user
• update env-guide with instructions on adding new env vars
• update index.html with a placeholder for injecting env vars for prod builds / cache busting
• add nginx-entrypoint.sh for env var injection and switching to non-root user
• allow for env vars in nginx.conf to modify the CSP to add localhost when serving from docker locally
• modify package.json
  • add new packages (see above)
  • add a few sbl-frontend only ways of running docker (in the future, we'll more often than not use sbl-project, see: feat(docker): add sbl-frontend / profile to docker compose sbl-project#211)
  • modify docker-run to work now
    • removed the && open http://localhost:8080 to docker-run because it caused weird race conditions and made it hard to kill the running container
    • changed the port to 8085 to avoid using the same port as other containers
  • add docker-build-and-run to combine build and run commands
• modify axiosService.ts to change from a proxy based approach for base urls to per API axios instance approach. I talked with @shindigira about this: trying to replicate this kind of behavior in nginx causes some load balancer / upload issues, and causes some weirdness. This is a commonly used approach around these issues.
• modify common.ts to include MAIL_BASE_URL
• lint oidc.ts suggested removing as string now, since these env vars are already typed string
• all API calls in /requests now use an axios instance for their API calls instead of relying on the proxy
• modify vite.config.ts
  • remove proxy
  • add import-meta-env
  • remove envPrefix since import-meta-env handles that now

Future improvements

• [Task] Speed up docker builds #589
• [Nginx] Disable all caching when being served locally #594
• [Env Vars] Standardize env variable names #595
• [Task] Update Yarn and Node #426

How to test

1. If you're missing a variable in your .env file (see .env.example for complete list) do you see an error appear?

2. Are the github actions tests on this PR that now run on env vars passing?

3. Can you run yarn docker-build and yarn docker-run and see the website appear on http://localhost:8085/?

• You may need to refresh the page after everything spins up, also see a future PR: #589
• We'll mostly be using sbl-project to spin up the sbl-frontend container, but this is nice to have for standalone testing

Related PRs

• feat(docker): add sbl-frontend / profile to docker compose sbl-project#211
• feat(frontend): add configmap regtech-deployments#15
• enterprise pr

[meissadia]

Awesome, really appreciate the documentation, and it works!

[shindigira]

Not critical but I think we can include https://import-meta-env.org/guide/tools/typescript.html to package.json with a script instead of relying on the manually created vite-env.d.ts

[billhimmelsbach]

Not critical but I think we can include https://import-meta-env.org/guide/tools/typescript.html to package.json with a script instead of relying on the manually created vite-env.d.ts

I ran this tool to generate that file @shindigira, so I'd be down to generate that file regularly / include it as a package.json script?

EDIT: I did rename it vite-env.d.ts, since that's what the vite docs recommended.

[shindigira]

Two small changes. Really awesome!

[shindigira]

Tested and verified:

• missing environment variables will cause a terminal error
• ensured all environment variables are used in local development
• yarn start will prompt to install a typescript auto-generating package for the env variables
• yarn start conditionally created the vite-env.d.ts