Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Make EvaP pip-installable and publish to PyPI #2328

Draft
wants to merge 37 commits into
base: main
Choose a base branch
from
Draft

Make EvaP pip-installable and publish to PyPI #2328

wants to merge 37 commits into from

Conversation

niklasmohrin
Copy link
Member

@niklasmohrin niklasmohrin commented Nov 4, 2024
edited
Loading

Closes #2303

Since we don't want to use nix in production (for example because security updates might take a long time to propagate through nixpkgs / through our github release cycle), pip install . or pip install evap seems to be the most canonical way. This allows us to install security patches via pip install --upgrade evap.

If we really need to override a dependency version beyond the allowed range in pyproject.toml, we can install EvaP from sources outside of PyPI. The script to build the release artifacts is available as nix run .#build-dist. It is possible to run this on a development machine and copy the .whl file over to the server.

The release wheel includes compiled TypeScript, SCSS and translation files, so there is no need to install NodeJS or gettext on the production server.

The new release workflow is:

  1. Add translations and commit them.
  2. Bump version in pyproject.toml, run nix develop .#impure --command uv lock, commit it, tag it, push it.
  3. Create Github Release.
  4. Github Actions will be triggered when the Github release is published and publish to PyPI.

The versioning scheme we agreed on is year-month-patch, for example "2024.11.0". I suppose we should take care that we don't necessarily push breaking changes like updating the Python version in a new patch.

Since upgrading to the next stable revision of EvaP is handled by pip, there is no need for the release branch anymore.

See

@niklasmohrin niklasmohrin mentioned this pull request Nov 4, 2024
Closed
@niklasmohrin
Copy link
Member Author

niklasmohrin commented Nov 4, 2024
edited
Loading

See https://test.pypi.org/project/evap/ and https://pypi.org/project/evap/

@niklasmohrin
Copy link
Member Author

@richardebeling Thoughts? Furthermore, if you create a PyPI account, I can add you as a co-owner of the package. (I also requested the creation of an e-valuation organization on PyPI, not sure if it will be nicer / needed, we'll see once it's processed)

niklasmohrin
niklasmohrin commented Nov 4, 2024
View reviewed changes
pyproject.toml Outdated Show resolved Hide resolved
@niklasmohrin
Copy link
Member Author

niklasmohrin commented Nov 4, 2024
edited
Loading

One thing we discussed in person was that we now don't really need a full checkout of the EvaP repository on production. In fact, this is a chance to move most of the (apache-)deployment files out of the main repository and into a separate repository in the e-valuation organization. @janno42 agreed that this would be a nice (while not really needed) change. The only drawback seems to be that testing the backup process in the EvaP repository will be more complicated. Currently, I believe that we would want to pin a commit of the deployment repository, for example through flake.lock, and run the tests here. I believe that we could add the backup process test logic through nix in the deployment repository and then import this test in the EvaP repository to use the updated source of EvaP. In particular, this would allow us to share the test definition and "easily" run the same tests in both repos. I am not too settled on this approach though.

Thoughts @richardebeling ?

@richardebeling
Copy link
Member

richardebeling commented Nov 4, 2024
edited
Loading

@richardebeling Thoughts? Furthermore, if you create a PyPI account, I can add you as a co-owner of the package. (I also requested the creation of an e-valuation organization on PyPI, not sure if it will be nicer / needed, we'll see once it's processed)

While certainly unexpected, I think it's a funny and efficient solution, and I don't have any reasons against doing this.

One thing we discussed in person was that we now don't really need a full checkout of the EvaP repository on production. In fact, this is a chance to move most of the (apache-)deployment files out of the main repository and into a separate repository in the e-valuation organization. janno42 agreed that this would be a nice (while not really needed) change. The only drawback seems to be that testing the backup process in the EvaP repository will be more complicated.

Why? "Backup" essentially is "Dump database via dumpdata", isn't it? This would be separate from apache and all the other deployment aspects. I can see that the "Upgrade" part of the script wouldn't be testable -- we can compromise on that, I think. It's important that backup and especially restore is tested.

Re (separate repo, version pinning): Adds complexity, but if there is a need for this or it helps in any way, I guess we won't die 🤷‍♂️

A proper release procedure with some github magic action could also be used to deliver compiled TS and SCSS files automatically, something that I dislike a bit about our current approach (necessity to have npm somewhere). (We should keep in mind though: Automation is always nice up to the point where it stops working)

@niklasmohrin niklasmohrin mentioned this pull request Nov 25, 2024
Merged
@niklasmohrin
Fix test fixture
9320421
@niklasmohrin
format
bb888c0
@niklasmohrin
more BASE_DIR
c98ad0a
@niklasmohrin
fix more tests
adc5ab4
@niklasmohrin
bump version
ab479e5
@niklasmohrin
build ts and scss before publishing release
a9dcc6b
@niklasmohrin
bump version
29b735e
@niklasmohrin
create data dir?
5feadc2
@niklasmohrin
submodules
8460cf8
@niklasmohrin
use build settings for every target
a2db711
@niklasmohrin
include stuff, bump
1f5c358
@niklasmohrin
remove script
076c860
@niklasmohrin
include correct files
1aae902
@niklasmohrin
is this correct syntax?
d1d596a
@niklasmohrin
use skip-excluded-dirs option to speed up build
24d12c6
@niklasmohrin
build wheel in nix script
4cf93ff 
this is mainly so that we have the commands written down outside of
github actions, so we can easily build a hotfix wheel locally
@niklasmohrin
bump version
47dd540
@niklasmohrin
actually correct build config, this time surely
0281e63
@niklasmohrin
don't run compilation steps in update_production, the artifacts are i…
cd629cf 
…ncluded in the wheel
@niklasmohrin
bump version
973032d 
bump version
@niklasmohrin
play around with apache a bit
e27dfc9
@niklasmohrin
fix ci, bump version
2e24d3d
@niklasmohrin
Move localsettings.template.py and manage_autocompletion.sh to `e…
9adb9b4 
…vap/development/`
@niklasmohrin
Delete remaining files from deployment; moved to evap-deployment repo
93879f4 
remove maintenance mode files
@niklasmohrin
yeah
f9422b0 
yaml

yaml?

yamll

yaaaaaaml

bash

bashc

dirs

-dir

aaaaaaaaa

bbbbbbbbb

?

mmmmmmmmmmm

afopajdadjladadoi

updated other

fix
@niklasmohrin
check if permission thingy is still needed
0cbe22d
@niklasmohrin
add workflow_dispatch trigger in case we want to test changes in othe…
29ce739 
…r repo
@niklasmohrin niklasmohrin mentioned this pull request Jan 20, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@richardebeling richardebeling richardebeling left review comments

@janno42 janno42 Awaiting requested review from janno42

@Kakadus Kakadus Awaiting requested review from Kakadus

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

"Official" production setup / Nix usage / Migration Plan
2 participants
@niklasmohrin @richardebeling