Skip to content

jessemull/100-letters-project

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

199 Commits
.github/workflows
.github/workflows
 
 
.husky
.husky
 
 
__mocks__
__mocks__
 
 
cloudformation
cloudformation
 
 
cypress/e2e
cypress/e2e
 
 
proxy
proxy
 
 
public
public
 
 
scripts
scripts
 
 
src
src
 
 
.eslintrc.js
.eslintrc.js
 
 
.gitignore
.gitignore
 
 
.lighthouserc.js
.lighthouserc.js
 
 
.prettierrc
.prettierrc
 
 
.sentryignore
.sentryignore
 
 
README.md
README.md
 
 
commitlint.config.js
commitlint.config.js
 
 
cypress.config.js
cypress.config.js
 
 
jest.config.js
jest.config.js
 
 
jest.setup.ts
jest.setup.ts
 
 
next-sitemap.config.js
next-sitemap.config.js
 
 
next.config.ts
next.config.ts
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
postcss.config.mjs
postcss.config.mjs
 
 
sentry.server.config.ts
sentry.server.config.ts
 
 
tailwind.config.ts
tailwind.config.ts
 
 
tsconfig.json
tsconfig.json
 
 

Repository files navigation

100 Letters Project

The 100 Letters Project is driven by the desire to promote real human interaction in an increasingly digital world and create meaningful connections through handwritten communication. Over the course of a year I will write 100 letters to 100 individuals.

The 100 Letters Project website showcases these exchanges, offering a digital display of the letters with details about the recipients and the reasons behind their selection.

This repository is part of the 100 Letters Project which includes the following repositories:

Table of Contents

  1. Project Overview
  2. Environments
  3. Tech Stack
  4. Setup Instructions
  5. Commits & Commitizen
  6. Linting & Formatting
  7. Unit Tests & Code Coverage
  8. Error & Performance Metrics
  9. Development Website Proxy
  10. E2E Tests
  11. Lighthouse
  12. Accessibility
  13. Deep Linking & Cognito Authentication
  14. Build
  15. Deployment Pipelines
  16. Cognito Access Token
  17. Connecting to the Bastion Host
  18. License

Project Overview

This project uses a NextJS static export to an S3 bucket behind AWS Cloudfront. All read data is fetched at build time from the 100 Letters Project API. Write operations and routes are protected via user login and AWS Cognito authentication.

Environments

The 100 Letters Project operates in multiple environments to ensure smooth development, testing, and production workflows. Each environment includes custom DNS and a separate cloudfront distribution.

Test Environment

The test environment is protected via signed cookies and is inaccessible to the public.

  • https://dev.onehundredletters.com
  • https://www.dev.onehundredletters.com

Production Environment

The production environment is open to the public.

  • https://onehundredletters.com
  • https://www.onehundredletters.com

Tech Stack

The 100 Letters Project Website is built using modern web technologies to ensure a fast, scalable and cost-effective site.

  • AWS CloudFormation: Infrastructure as Code (IaC) is used to define and provision AWS resources like S3, CloudFront and IAM roles in a consistent and repeatable manner.

  • Next.js: A React-based framework used to build the website, providing server-side rendering (SSR), static site generation (SSG), and optimized performance for SEO and fast load times.

  • AWS CloudFront: A content delivery network (CDN) used to distribute the website globally, reducing latency and improving load times by caching static assets close to users.

  • AWS S3: Hosts the statically generated website, ensuring high availability, durability, and cost-efficient storage for the project's front-end assets.

  • GitHub Actions: A CI/CD pipeline automating the deployment process, including build verification, static analysis, and rollback capabilities in case of failed deployments.

  • Cypress: An end-to-end (E2E) testing framework that ensures the website functions correctly across different user flows by simulating real interactions with the UI.

  • Lighthouse: A performance and accessibility auditing tool that evaluates site speed, best practices, and SEO, helping optimize the user experience.

  • Jest: A JavaScript testing framework used for unit and integration testing, ensuring code reliability and preventing regressions.

  • ESLint & Prettier: Linting and formatting tools that enforce code consistency, reduce syntax errors, and improve maintainability across the codebase.

  • Commitizen: A tool for enforcing a standardized commit message format, improving version control history and making collaboration more structured.

  • HTTP Proxy: Used to sign cookies and securely proxy requests to the development website, enabling local testing and authentication workflows.

  • AWS Lambda@Edge: Provides authentication and request routing logic at CloudFront's edge locations, enabling low-latency security enforcement.

  • Sentry.io: Monitors the website for runtime errors and performance issues in production, helping quickly identify and fix bugs that occur in users' browsers.

This tech stack ensures that the 100 Letters Project website remains performant, secure, and easily maintainable while leveraging AWS infrastructure for scalability and reliability.

Setup Instructions

To clone the repository, install dependencies, and run the project locally follow these steps:

  1. Clone the repository:

    git clone https://github.com/jessemull/100-letters-project.git

  2. Navigate into the project directory:

    cd 100-letters-project

  3. Install the root dependencies:

    npm install

  4. Set environment variables:

    The development server has a predev script that will check for static data loaded during the build at public/data/data.json. If the file is missing, the script will fetch the data required to run the application. The predev script uses machine user credentials to grab a cognito token using the following environment variables set in a .env.test and .env.production files in the root of the project:

    COGNITO_USER_POOL_USERNAME=cognito-user-pool-username
COGNITO_USER_POOL_PASSWORD=cognito-user-pool-password
NEXT_PUBLIC_COGNITO_USER_POOL_CLIENT_ID=cognito-user-pool-client-id

  5. Start the dev server:

    npm run dev

Commits & Commitizen

This project uses Commitizen to ensure commit messages follow a structured format and versioning is consistent. Commit linting is enforced via a pre-commit husky hook.

Making a Commit

To make a commit in the correct format, run the following command. Commitzen will walk the user through the creation of a structured commit message and versioning:

npm run commit

Linting & Formatting

This project uses ESLint and Prettier for code quality enforcement. Linting is enforced during every CI/CD pipeline to ensure consistent standards.

Linting Commands

Run linting:

npm run lint

Formatting Commands

Format using prettier:

npm run format

Pre-Commit Hook

Lint-staged is configured to run linting before each commit. The commit will be blocked if linting fails, ensuring code quality at the commit level.

Unit Tests & Code Coverage

Unit Tests

This project uses Jest for testing. Code coverage is enforced during every CI/CD pipeline. The build will fail if any tests fail or coverage drops below 80%.

Run tests:

npm run test

Run tests in watch mode:

npm run test:watch

Fishery Factories

Fishery factory functions to provide mock data are available for all of the models used by the 100 letters project. Factories are located at src/factories:

  • Correspondences
  • Letters
  • Recipients

Code Coverage

Coverage thresholds are enforced at 80% for all metrics. The build will fail if coverage drops below this threshold.

Error & Performance Metrics

This project uses Sentry.io for client-side error and performance monitoring. Since the website is statically built with Next.js, only the browser runtime is instrumented.

Configuration

Sentry is initialized in the browser with environment-specific settings. Errors and performance data are reported to Sentry’s test or production environments based on the active deployment stage.

Source Maps

Sourcemaps are uploaded during the build process to allow for readable stack traces in the Sentry dashboard. NextJS static export requires manual upload.

Development Website Proxy

The development/test website environment is protected via signed cookies. The proxy server signs cookies and then proxies to the development domain.

Environment Variables

The following environment variables must be set in a .env.local file in the root of the project to run the proxy:

CLOUDFRONT_KEY_PAIR_ID=cloudfront-key-pair-id
CLOUDFRONT_DOMAIN=test-domain
CLOUDFRONT_PRIVATE_KEY_PATH=path-to-private-key

Running The Proxy

To run the proxy and access the test website:

npm run proxy

E2E Tests

This project uses Cypress for end to end testing. The build will fail on end to end test failure.

Configuration

Lighthouse tests for the development/test domain must be run through the proxy server with the appropriate environment variables set (see running the proxy).

In order to have the proxy work as expected and not impact performance, throttling has been set to devtools in the lighthouse config and the proxy is set up to cache files and use a temporary redirect after setting signed cookies (307).

Running E2E Tests - Development

Start the dev server:

npm run dev

Run E2E tests:

npm run e2e

Running E2E Tests - Test

Start the proxy server:

npm run proxy

Run E2E tests:

NODE_ENV=test npm run e2e

Running E2E Tests - Production

Run E2E tests:

NODE_ENV=production npm run e2e

Lighthouse

Lighthouse is used for performance, SEO and accessibility metrics. It is fully integrated into the CI/CD pipeline and runs on pull-request, merge and deployment.

Configuration

Lighthouse tests for the development/test domain must be run through the proxy server with the appropriate environment variables set (see running the proxy).

In order to have the proxy work as expected and not impact performance, throttling has been set to devtools in the lighthouse config and the proxy is set up to cache files and use a temporary redirect after setting signed cookies (307).

Running Lighthouse - Development

Start the dev server:

npm run dev

Run lighthouse:

npm run lighthouse

Running Lighthouse - Test

Start the proxy server:

npm run proxy

Run lighthouse:

NODE_ENV=test npm run lighthouse

Running Lighthouse - Production

Run lighthouse:

NODE_ENV=production npm run lighthouse

Code Coverage

Coverage thresholds are enforced at 80% for all metrics. The build will fail if coverage drops below this threshold.

Accessibility

Accessibility metrics are measured using lighthouse. All components are unit tested using the jest-axe library.

Deep Linking & Cognito Authentication

This project uses Lambda@Edge to enable deep linking and secure access control for /admin routes, optimizing performance and security.

Deep Linking

Lambda at Edge allows direct access to routes like /login, enabling deep linking without redirects. The function runs at CloudFront edge locations to reduce latency.

Cognito Authentication

For /admin routes, the Lambda function checks for a Cognito auth token in request cookies. If valid, access is granted; otherwise, it's denied, ensuring secure access without unnecessary overhead.

Build

This project uses a static export of NextJS. Prior to the build step, a pre-build script is run to fetch any read data from the 100 letters API. A post build script uses next-sitemap to generate robots.txt and site maps. The actual build is run using NextJS internals.

Environment Variables

The following environment variables must be set in .env.test and env.production files in the root of the project:

API_URL=one-hundred-letters-api-url
NEXT_PUBLIC_COGNITO_USER_POOL_CLIENT_ID=cognito-user-pool-client-id
COGNITO_USER_POOL_PASSWORD=cognito-user-pool-password
COGNITO_USER_POOL_USERNAME=cognito-user-pool-username

Pre-build Script

The pre-build script generates a cognito token using machine user credentials, fetches the read data and writes to a static file public/data/data.json.

To run the pre-build script:

npm run prebuild

Post-build script

The post-build script uses the next-sitemap package to generate sitemaps and robots.txt for SEO purposes.

To run the post-build script:

npm run postbuild

Build

To build the project using the test environment:

NODE_ENV=test npm run build

To build the project using the production environment:

NODE_ENV=production npm run build

Building The Development Server

The development server has a predev script that will check for static data loaded during the build at public/data/data.json. If the file is missing, the script will fetch the data and write it. The predev script uses machine user credentials to grab a cognito token.

The following environment variables must be set in .env.test and env.production files in the root of the project:

NEXT_PUBLIC_COGNITO_USER_POOL_CLIENT_ID=cognito-user-pool-client-id
COGNITO_USER_POOL_PASSWORD=cognito-user-pool-password
COGNITO_USER_POOL_USERNAME=cognito-user-pool-username

To run the pre-dev script:

npm run predev

To run the development server:

npm run dev

Deployment Pipelines

This project uses automated deployment pipelines to ensure a smooth and reliable deployment process utilizing AWS CloudFormation, GitHub Actions and S3.

Deployment Strategy

The deployment process for this project ensures reliability and consistency through a combination of versioned artifacts, automated deployments, and rollback mechanisms. The strategy involves the following key components:

  • Versioned Artifacts: Every deployment is tied to a unique timestamped backup stored in Amazon S3. These backups allow for easy restoration and rollback to a previous state if necessary.

  • GitHub Actions Pipelines: Automated deployment workflows are used to manage the build, test, and deployment processes. These workflows ensure that each change is properly validated, tested, and deployed to either the test or production environment based on user input. Manual deployment and rollback are also supported through GitHub Actions.

  • CloudFormation: Infrastructure management is handled via AWS CloudFormation, which enables version-controlled deployments and updates. This tool helps ensure that infrastructure changes, such as bucket configurations or IAM roles, are consistently applied across environments.

  • Backup and Rollback: Each deployment to S3 includes a backup of the previous state, enabling easy rollback if any issues arise. If Lighthouse performance tests fail after deployment, the previous version is automatically restored from the backup, and CloudFront cache is invalidated to immediately reflect the changes.

  • Manual and Automated Triggers: Deployments are typically triggered by pushes to the main branch, but manual triggers (via GitHub Actions) are also available for both deployments and rollbacks. This provides flexibility in controlling the deployment process based on the current needs of the team or project.

This strategy ensures that the deployment process is automated, reliable, and easy to manage, with robust rollback options to handle any issues that may arise during deployment.

Tools Used

  • AWS CLI: Configures the AWS environment for deployments.
  • GitHub Actions: Automates and schedules the deployment and rollback pipelines.
  • CloudFormation: Orchestrates infrastructure changes, including deployments and rollbacks.
  • S3: Stores function packages for deployment and rollback.

Pull Request

This pipeline automates the validation process for pull requests targeting the main branch. It ensures that new changes are properly built, linted, tested and evaluated for performance before merging.

The pipeline performs the following steps:

  1. Build Next.js – Checks out the code, installs dependencies, builds the Next.js application, and archives the output.
  2. Lint Code – Runs ESLint to check for syntax and style issues.
  3. Run Unit Tests – Executes Jest tests, uploads a coverage report, and ensures test coverage meets the required threshold.
  4. Run E2E & Lighthouse Tests – Starts a local server, runs Cypress end-to-end tests, and performs Lighthouse performance checks.

This pipeline is defined in the .github/workflows/pull-request.yml file.

Deploy

This pipeline automates the deployment of the Next.js application to an S3 bucket using a static export. It supports deployment to either the test or production environment based on user input.

The pipeline performs the following steps:

  1. Build Next.js – Checks out the code, installs dependencies, builds the Next.js application, and archives the output.
  2. Run Unit Tests – Executes Jest tests, uploads a coverage report, and ensures test coverage meets the required threshold.
  3. Backup S3 – Creates a timestamped backup of the existing deployment in S3 before deploying new changes.
  4. Deploy to S3 – Downloads the built application and syncs it to the designated S3 bucket.

This workflow is triggered manually via GitHub Actions using workflow_dispatch, allowing users to specify the target environment. The pipeline is defined in the .github/workflows/deploy.yml file.

Deploy On Merge

This workflow runs automatically when changes are pushed to the main branch. It builds, tests, deploys the Next.js application to an S3 bucket, and runs end-to-end (E2E) and Lighthouse tests. If Lighthouse tests fail, the deployment is rolled back.

The workflow performs the following steps:

  1. Build Next.js – Checks out the code, installs dependencies, builds the application, and archives the output.
  2. Run Unit Tests – Executes Jest tests, uploads a coverage report, and ensures test coverage meets the required threshold.
  3. Backup S3 – Creates a timestamped backup of the current deployment before uploading the new build.
  4. Deploy to S3 – Downloads the archived build output, syncs it to the S3 bucket, and invalidates the CloudFront cache.
  5. Run E2E Tests – Executes Cypress tests against the deployed site.
  6. Run Lighthouse Tests – Performs performance and accessibility audits using Lighthouse.
  7. Rollback Deployment – If Lighthouse tests fail, the workflow restores the previous deployment from the backup.

This workflow is defined in the .github/workflows/merge.yml file.

Rollback Deployment

This workflow allows manual rollback of a deployed Next.js application by restoring a selected backup from S3. It is triggered via GitHub Actions' workflow dispatch and requires specifying a backup timestamp and environment.

The workflow performs the following steps:

  1. Restore Selected Backup – Synchronizes the selected backup from the S3 backup bucket to the main deployment bucket, deleting any newer files.
  2. Invalidate CloudFront Cache – Clears the CloudFront cache to ensure users receive the restored version immediately.

This workflow is defined in the .github/workflows/rollback.yml file.

Cognito Access Token

All write routes are protected via Cognito User Pools. A valid access token is required to use these endpoints and access the UI.

Generating An Access Token

To generate a valid Access token:

npm run token

Using An Access Token

To use the API add the token to the Authorization request header:

curl -X POST "https://bgv89ajo02.execute-api.us-west-2.amazonaws.com/<stage>/<route>"  -H "Authorization: Bearer <token>"

Environment Variables

The following environment variables must be set in a .env file in the root of the project to generate a token:

COGNITO_USER_POOL_ID=cognito-user-pool-id
COGNITO_USER_POOL_USERNAME=cognito-user-pool-username
COGNITO_USER_POOL_PASSWORD=cognito-user-pool-password
COGNITO_USER_POOL_CLIENT_ID=cognito-user-pool-client-id

Connecting to the Bastion Host

To connect to the AWS EC2 bastion host and access AWS resources, you can use the following command:

npm run bastion

Environment Variables

The following environment variables must be set in a .env.local file in the root of the project:

SSH_PRIVATE_KEY_PATH=/path/to/your/private/key
SSH_USER=your-ssh-username
SSH_HOST=your-ec2-instance-hostname-or-ip

Ensure you have the appropriate permissions set on your SSH key for secure access.

License

Apache License
Version 2.0, January 2004
http://www.apache.org/licenses/

Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at

http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License.

About

100 letters, 100 people, 1 year.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages