Repository Scanner - Backend
Project description
Repository Scanner Backend (RESC-Backend)
Table of contents
About the component
The RESC-backend component includes database models, RESC Web service, Alembic scripts for database migration, RabbitMQ users, and queue creation.
Getting started
These instructions will help you to get a copy of the project up and running on your local machine for development and testing purposes.
Prerequisites
- Git
- Docker Desktop
- Python (v3.9.0 or higher)
- Install odbc 17 sql server driver for your OS
- Download for Windows
- Download for Mac
- Download for Linux
sudo apt install unixodbc-dev
Run RESC Web service locally
Run RESC Web service locally from source
Preview
Ensure resc database is up and running locally.You can connect RESC web service to database, if you have already deployed RESC through helm in Kubernetes.
Open the Git Bash terminal from /components/resc-backend folder and run below commands.
Create virtual environment:
pip install virtualenv
virtualenv venv
source venv/Scripts/activate
Install resc_backend package:
pip install pyodbc==4.0.32
pip install -e .
Set environment variables:
source db.env
export MSSQL_SCHEMA=master
export MSSQL_DB_PORT=30880
export MSSQL_PASSWORD="<enter password for local database>"
Run Web service:
uvicorn resc_backend.resc_web_service.api:app --workers 1
Open http://127.0.0.1:8000 in a browser to access the API.
Run RESC Web service locally through make
Note: This procedure has been only tested in Linux and Mac. It may not work in machines running the Apple M1 chip due to lack of support from MSSQL docker image.
Prerequisites:
- Install Make on your system.
- Update MSSQL_PASSWORD (password you want to set for local database) in db.env file.
Preview
- Create Python virtual environment and install resc_backend package:
make env
- Run database locally:
make db
This target will run a local MSSQL instance in a container called resc-db. It creates and populates the resc database schema using alembic and the sql script located in test_data/database_dummy_data.sql
Note:: This target will also try to remove the DB container if it already exists.
If you want to remove this container, run: make cleandb
- Run Web service:
make rws
Open http://127.0.0.1:1234 in a browser to access the API.
- Clean up:
make clean
Run locally using docker
Preview
Run the RESC-Backend docker image locally with the following commands:- Pull the docker image from registry:
docker pull rescabnamro/resc-backend:latest
-
Alternatively, build the docker image locally by running following command: Ensure resc database is up and running locally.
You can connect RESC web service to database, if you have already deployed RESC through helm in Kubernetes.Open the Git Bash terminal from /components/resc-backend folder and run below commands.
Update MSSQL_PASSWORD value in the docker run command.
docker build -t rescabnamro/resc-backend:latest .
- Use the following command to run the RESC backend:
source db.env
docker run -p 8000:8000 -e DB_CONNECTION_STRING -e MSSQL_ODBC_DRIVER -e MSSQL_USERNAME -e RESC_REDIS_CACHE_ENABLE -e AUTHENTICATION_REQUIRED -e MSSQL_DB_HOST="host.docker.internal" -e MSSQL_PASSWORD="<enter password for local database>" -e MSSQL_SCHEMA="master" -e MSSQL_DB_PORT=30880 --name resc-backend rescabnamro/resc-backend:latest uvicorn resc_backend.resc_web_service.api:app --workers 1 --host 0.0.0.0 --port 8000
Open http://127.0.0.1:8000 in a browser to access the API.
Testing
Run unit tests, linting and import checks locally:
See below commands for running various (unit/linting) tests locally. To run these tests you need to install tox. This can be done on Linux and Windows with Git Bash.
Run below commands to make sure that the unit tests are running and that the code matches quality standards:
pip install tox # install tox locally
tox -v -e sort # Run this command to validate the import sorting
tox -v -e lint # Run this command to lint the code according to this repository's standard
tox -v -e pytest # Run this command to run the unit tests
tox -v # Run this command to run all of the above tests
Run Newman tests locally:
If you don't provide any argument to the script, then the default image value will be used
cd tests/newman_tests
./run_newman_tests.sh
If you can override the images by providing below arguments to the script.
cd tests/newman_tests
./run_newman_tests.sh -b <resc-backend image:tag> -d <resc-database image:tag> -n <newman image:tag>
Example: ./run_newman_tests.sh -b 'rescabnamro/resc-backend:latest' -d 'mcr.microsoft.com/azure-sql-edge:1.0.7' -n 'postman/newman:5.3.1-alpine'
Run OWASP ZAP API Security tests locally:
If you don't provide any argument to the script, then the default image value will be used
cd tests/zap_tests
./run_run_zap_api_tests.sh
If you can override the images by providing below arguments to the script.
cd tests/zap_tests
./run_run_zap_api_tests.sh -b <resc-backend image:tag> -d <resc-database image:tag> -z <zap image:tag>
Example: ./run_newman_tests.sh -b 'rescabnamro/resc-backend:latest' -d 'mcr.microsoft.com/azure-sql-edge:1.0.7' -n 'owasp/zap2docker-weekly'
Create a migration for database changes
Use Alembic to create a new migration script
Preview
This command will create a new revision script in the ./alembic/versions directoryalembic revision -m "<revision summary>"
The filename is prefixed with the revision identifier used by Alembic to keep track of the revision history. Make sure that the down_revision variable contains the identifier of the previous revision. For instance:
#d330d086edfe_first_revision.py
revision = 'd330d086edfe'
down_revision = None
...
#e653f899efgh_second_revision.py
revision = 'e653f899efgh'
down_revision = 'd330d086edfe'
The generated script contains two functions:
- The upgrade function that contains the revision changes.
- The downgrade function that revert these changes.
Use the --autogenerate parameter
Preview
Alembic provide an --autogenerate parameter to help revision scripts creation. It can output the necessary changes to apply, by comparing the current database schema and the model stated in Python. To create that revision make sure you have a connection to a running database with an up-to-date schema version.alembic revision --autogenerate -m "<revision summary>"
Note: Autogenerate cannot detect all the required changes.The created revision script must be carefully checked and tested.
Running migration and rollback
Preview
To upgrade/downgrade the database schema use the following:# Upgrade to specified revision identifier
alembic upgrade <revision_identifier>
# Upgarde to latest
alembic upgrade head
# Upgrade to the next revision
alembic upgrade +1
# Run next revision from a specific revision
alembic upgrade <revision_identifier>+1
# Downgrade to base (no revision applied)
alembic downgrade base
# Downgrade to the previous revision
alembic downgrade -1
Note: A list of needed changes and a table containing alembic revision history are created during the first revision.
You can also check current revision information:
alembic current
And the revision history:
alembic history --verbose
Documentation
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file resc_backend-3.0.0.tar.gz
.
File metadata
- Download URL: resc_backend-3.0.0.tar.gz
- Upload date:
- Size: 65.9 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.2 CPython/3.11.7
File hashes
Algorithm | Hash digest | |
---|---|---|
SHA256 | 5d34c36cb42a695d9175f2eb507059c94885eb3aa7d33e80ddc65de3229c419a |
|
MD5 | 32322c269bc57b392e81b44daadd0673 |
|
BLAKE2b-256 | b49341c0b7648e73717fbe0e43e9e269d690410ea7a0a8d0e2233b70d880fa8f |
File details
Details for the file resc_backend-3.0.0-py3-none-any.whl
.
File metadata
- Download URL: resc_backend-3.0.0-py3-none-any.whl
- Upload date:
- Size: 99.8 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.2 CPython/3.11.7
File hashes
Algorithm | Hash digest | |
---|---|---|
SHA256 | 34c5a64159dc51170d3ea13a95a169c88876f8c3ff94d623f3de1e964841c9be |
|
MD5 | 0a1f39843e7c09010eb3af8c5e2a55f2 |
|
BLAKE2b-256 | a6bbf4e39650f0edc1cdd7a29cd1f40c9d3b21e3ad548c1a9190c39e59a06b0c |