Final deploy #67
Final deploy #67
Conversation
There was a problem hiding this comment.
Pull Request Overview
This PR enhances security and email functionality by integrating SendGrid key management in AWS, enabling dynamic URL construction in emails, and streamlining environment and deployment configurations.
- Add
sendgrid_api_key,email_from_address, andapp_base_urlvariables to Terraform modules and main config - Provision SendGrid API key in AWS Secrets Manager and pass it to ECS task definitions
- Update email service to use
APP_BASE_URLfor constructing links and refresh environment templates and Docker Compose
Reviewed Changes
Copilot reviewed 9 out of 9 changed files in this pull request and generated 2 comments.
Show a summary per file
| File | Description |
|---|---|
| terraform/modules/ecs_cluster/variables.tf | Added new variables for SendGrid key ARN, sender address, base URL |
| terraform/modules/ecs_cluster/main.tf | Updated IAM policy and ECS task definitions to include email vars and secrets |
| terraform/main/variables.tf | Introduced sendgrid_api_key and email_from_address variables |
| terraform/main/main.tf | Provisioned SendGrid secret, updated module invocation |
| docker-compose.yml | Added APP_BASE_URL environment variable to services |
| backend/user_auth_service/.env.template | Removed old placeholder template (must re-add with new vars) |
| backend/event_ticketing_service/app/services/email.py | Integrated APP_BASE_URL, updated link templates, removed param docs |
| backend/event_ticketing_service/.env.template | Removed old placeholder template (should re-add with new vars) |
| .env.template | Refreshed shared environment template with comments and placeholders |
Comments suppressed due to low confidence (2)
backend/user_auth_service/.env.template:1
- The entire
.env.templatefor the auth service was removed. Reintroduce an updated template including new variables like EMAIL_API_KEY, EMAIL_FROM_EMAIL, and APP_BASE_URL to ensure consistent local setup.
DB_URL=localhost
backend/event_ticketing_service/app/services/email.py:55
- [nitpick] The docstring had its
Args:and return documentation removed. Consider restoring parameter and return value descriptions to keep the function self-documented.
"""
| # Fallback to a generic domain if not set, but log an error | ||
| base_url = "http://resellio.com" | ||
| else: | ||
| base_url = APP_BASE_URL.replace('/api', '') # Ensure we have the root URL |
There was a problem hiding this comment.
[nitpick] Using a simple string replace may inadvertently strip valid parts of URLs. Consider using urllib.parse or a similar URL library to reliably construct the root URL.
| # Fallback to a generic domain if not set, but log an error | ||
| base_url = "http://resellio.com" |
There was a problem hiding this comment.
Since APP_BASE_URL has a default non-empty value from os.getenv, this branch will never execute. If you intend to detect a missing environment variable, retrieve the raw environment lookup first, then apply a default only after the check.
| # Fallback to a generic domain if not set, but log an error | |
| base_url = "http://resellio.com" | |
| # Apply default or fallback explicitly | |
| base_url = "http://localhost:8080" # Default for development |
This pull request introduces updates to environment configuration, email service logic, and infrastructure provisioning. The changes aim to enhance security, improve email functionality, and streamline deployment processes. Key updates include replacing placeholder values with secure configurations, adding support for dynamic base URLs in email links, and integrating SendGrid API keys into AWS Secrets Manager.
Environment Configuration Updates:
.env.template: Updated database and security configurations with more secure and descriptive values, including changes toDB_URL,DB_NAME,SECRET_KEY, andEMAIL_API_KEY. AddedAPP_BASE_URLfor constructing verification links.docker-compose.yml: AddedAPP_BASE_URLas an environment variable for services, enabling dynamic URL configuration. [1] [2]Email Service Enhancements:
backend/event_ticketing_service/app/services/email.py: IntroducedAPP_BASE_URLfor constructing dynamic links in ticket confirmation emails. Updated fallback behavior to use a generic domain ifAPP_BASE_URLis not set. Modified email templates to use dynamic links for "View My Tickets," "Terms of Service," "Privacy Policy," and "Contact Us." [1] [2] [3]Infrastructure Changes:
terraform/main/main.tf: Added resources for storing and managing SendGrid API keys in AWS Secrets Manager. Updated ECS cluster module to includesendgrid_api_key_arn,email_from_address, andapp_base_urlvariables for email configuration. [1] [2]terraform/modules/ecs_cluster/main.tf: Updated ECS task definitions to passEMAIL_FROM_EMAILandAPP_BASE_URLas environment variables andEMAIL_API_KEYas a secret. Extended IAM policy to grant access to the SendGrid API key secret. [1] [2] [3]Variable Updates:
terraform/main/variables.tfandterraform/modules/ecs_cluster/variables.tf: Added new variables forsendgrid_api_key,email_from_address, andapp_base_urlto support email configuration and dynamic link generation. [1] [2]