๐Ÿ“ฆ Adib234 / shopify-fall-2021

The backend developer challenge for Shopify fall 2021 in FastAPI

โ˜… 0 stars โ‘‚ 0 forks ๐Ÿ‘ 0 watching
shopify-fall-2021
๐Ÿ“ฅ Clone https://github.com/Adib234/shopify-fall-2021.git
HTTPS git clone https://github.com/Adib234/shopify-fall-2021.git
SSH git clone git@github.com:Adib234/shopify-fall-2021.git
CLI gh repo clone Adib234/shopify-fall-2021
ZIP Desktop VS Code
Adib234 Adib234 to have 100% on tests 069e3b7 4 years ago ๐Ÿ“ History
๐Ÿ“‚ main View all commits โ†’
๐Ÿ“ .vscode
๐Ÿ“ backend
๐Ÿ“„ .gitignore
๐Ÿ“„ DIRECTORY.md
๐Ÿ“„ README.md
๐Ÿ“„ README.md

Shopify Fall 2021 Backend Challenge

Table of Contents

Getting started

Having the Python 3.9+ and the latest PostgreSQL version is required (other versions might work but there is no guarantee). MacOS is the operating system I'm using.

After cloning this repo, to get started from the project's root directory run

python3 -m pip install poetry # installing our dependency manager
poetry --version # verifying that it has been successful
createdb shopify-image
touch .env # and fill in this file with AWS credientials and database url
cd backend
poetry shell # activate virutal environment
poetry install  # install dependencies
export DATBASE_URL=... AWS_SERVER_PUBLIC_KEY=... AWS_SERVER_SECRET_KEY=... REGION_NAME=... # exporting environment variables to establish the connection to our database on the startup of our backend
uvicorn app.main:app --reload
Database should be in this format postgresql://localhost/mydb

You can get your keys by creating a user in IAM on AWS

Now if you go to http://127.0.0.1:8000, you should see {"Hello":"Adib!"}, (bonus : FastAPI has built-in documentation for this project, so by going to http://127.0.0.1:8000/docs you will see all routes, descriptions of it and can even interact with it since you can specifiy any variables or parameters )

Note your API key is your username plus password after you hit \create_user\ endpoint. DIRECTORY.md contains an overview of the files in this repo

Running tests

To run tests

Make sure to create an api key with username string and password string for the tests to work and set that user to id of 1

After running add.py you might have to manually set username string private_images and public_images to 0 in database and delete the images in your S3 bucket if you plan on rerunning the tests

cd backend/app/tests
pytest create_user.py my_info.py root.py delete.py my_images.py add.py search.py
# or
pytest * -vv # however this runs tests in add.py twice for some reason

For one my_images.py test you may need to change the configuration of the templates route since it uses absolute path and not relative because the tests weren't working with relative paths at first.

If that does happen go to my_images.py in controllers, not in tests and change this on line 10

templates = Jinja2Templates(
    directory="/Users/admin/shopify-app-fall/backend/app/templates") #put directory as whatever the result is after running pwd command when you're in templates directory

Features

  • Search
> Supported using full-text search in PostgreSQL using two endpoints /search/text/ (a search based on what the user entered when the uploaded the image) and /search/characteristics/ which are labels that have been applied after being uploaded by AWS Rekcognition. I've looked into searching images with images, and I came across TinEye, but it was too expensive.
  • Add
> Supported using AWS S3 to store images, and all images are encrypted to provide an additional layer of security. All image names are unique using Python's module UUID (see notes for how rare a duplicate might occur with UUID). Single and bulk uploads are supported thanks to List[UploadFile] in FastAPI
  • Delete
> Users can delete a single or in bulk. They can find their unique images names from /my_images/ endpoint and pass the unique image names a query parameter for the /delete/ endpoint. Access control is done through API keys, users with an API key can only delete the images that they have uploaded in their repository or in the public repository.

Questions

  • How to run all tests in pytest instead of specifying the file. Also, why does pytest * run twice?
  • How to test upload of multiple files with FastAPI?
  • How to inject my authenticate function in all my routes?
  • If tests fail how do I roll back my changes made during tests

Things I learned

  • FastAPI offers two ways of handling file uploads by clients: File and UploadFile function. For this project I chose to work with UploadFile because there's no specification for image file sizes for this challenge. Therefore it would be best to work with UploadFile since it uses a "spooled" file meaning that the file will be stored in memory, but if it exceeds the limit, then additional memory is stored in disk. File only stores files in memory.
  • If your tests need to use the database, connect to it and then disconnect it so that you won't have any running processes which may interfere with other tests.
  • Finally understood relative imports and how to gain access to variables in a file in Python from a different file
  • I learned the value of having migrations. I changed the columns of my tables multiple times, and it wouldn't update for some reason, so I had to destroy the entire database and work from scratch again.

Challenges

  • Figuring out a file structure for FastAPI was challenging, especially configuring the database since this was my first time doing this. However, I came across this link which is what my file structure is modelled after.
  • Test coverage in asynchronous code (which is what most of my code is) doesn't get reported with the tool that I use called coverage, and from my research this is what seems to be the standard for finding out about test coverage. A solution to this is provided in this gist, and I tried coverage run --src=app --concurrency=gevent, but nothing happened. This is isn't urgent now I'll come back to it later.
  • So I tried to use a ORM, but for some reason one table wouldn't have any of my columns which was not good, so after a few hours and countless Stack Overflow posts, I still couldn't get it to work. Eventually, what I decided to do was create one models file and have all my models there. Also, I can't use any queries from the ORM because it can't find where my model is even though people have told me that I imported it correctly. Raw SQL queries it is then. (My only usage of the ORM is the initial setup of the databases)
  • I spent a lot of time figuring out a cryptic error message that said the data I was giving as an input was invalid. After posting a Github issue for help, I found out that if I were to have form data, I can't have a request body since this is a limitation in the HTTP protocol. So this is why add route has a lot of parameters. Before I was passing down a schema, but a schema is considered a request body and therefore is not allowed.
  • I struggled with my attempt of storing images in PostgreSQL database, so after spending two days and posting a Github issue and a Stack Overflow post with no answers I decided to store and retrieve images on AWS S3 and to keep the filename and it's access control in the database.
  • Testing multiple uploads is not possible according to a FastAPI expert while using the httpx client to send requests but single files is doable. However that would require duplication of my current implementation and I don't know if this is something that's acceptable. (Update: I solved this by just executing a cURL command using Python with the necessary information!)

Notes

On migrations, which I was unable to do but in the future I will choose a framework that has built in support for migrations

From FastAPI docs

In this case, we are creating the tables in the same Python file, but in production, you would probably want to create them with Alembic, integrated with migrations, etc.

From some Discord user on testing

my two cents, approach your tests with the SLA in mind and validate response structure, edge cases and side effects Tests count as documentation for other devs. Dont over mock things. Dont make your test know too much about implementation (otherwise, it's going to be a pain to maintain). Use factories pattern for mock data. See factory-boy and pytest_factoryboy

On UUID to generate random filenames from this SO post

This is a valid choice, given that an UUID generator is extremely unlikely to produce a duplicate identifier (a file name, in this case):
Only after generating 1 billion UUIDs every second for the next 100 years, the probability of creating just one duplicate would be about 50%. The probability of one duplicate would be about 50% if every person on earth owns 600 million UUIDs.
  • No route based middleware in FastAPI means that I can't reduce the first two lines of routes that require authentication
await authenticate(api_key)
result = await request_user("---------", api_key)

What I used

  • FastAPI for backend framework, PostgreSQL for database, SQLAlchemy for ORM, databases for asynchronous query building, pytest-asyncio and httpx for asynchronous testing, Poetry for package management, AWS S3 for storing images and AWS Rekcognition for identifying images

Checks

Works root.py create_user.py add.py my_info.py delete.py

my_images.py search.py