Skip to content

Latest commit

 

History

History
288 lines (205 loc) · 8.74 KB

deploy-to-linux-docker.md

File metadata and controls

288 lines (205 loc) · 8.74 KB

Setup and Running locally

Prerequisites

These instructions are given for Linux environments and assume you have the following packages installed on your system and your user is in the sudoers list (can execute commands with root access using sudo). If you plan to contribute to the code, a GitHub account is also required to commit your change and/or make pull requests.

The following packages must be installed

Network Setup

Domain Name / URL

Privacy Sandbox APIs use the domain name in the URL (site origin) to allow/block cross-site data sharing, observe topics, etc. As a result developers cannot rely only on the “localhost” domain for development.

You will re-map individual domain names to loopback address (127.0.0.1), so that each service running on your local environment can be accessed via a URL, such as:

There are 2 ways to achieve remapping on your local development environment. You can choose either of the 2 options below :

  1. Remap hosts to loopback address by editing /etc/hosts on your local machine

Edit /etc/hosts file

# /etc/hosts
127.0.0.1 privacy-sandbox-demos.dev
127.0.0.1 privacy-sandbox-demos-home.dev
127.0.0.1 privacy-sandbox-demos-dsp.dev
127.0.0.1 privacy-sandbox-demos-dsp-a.dev
127.0.0.1 privacy-sandbox-demos-dsp-b.dev
127.0.0.1 privacy-sandbox-demos-shop.dev
127.0.0.1 privacy-sandbox-demos-travel.dev
127.0.0.1 privacy-sandbox-demos-ssp.dev
127.0.0.1 privacy-sandbox-demos-ssp-a.dev
127.0.0.1 privacy-sandbox-demos-ssp-b.dev
127.0.0.1 privacy-sandbox-demos-ad-server.dev
127.0.0.1 privacy-sandbox-demos-news.dev
127.0.0.1 privacy-sandbox-demos-collector.dev

Verifying mapping with :

nslookup privacy-sandbox-demos-news.dev

If the mapping isn’t reflected in Chrome, try clearing your DNS cache

chrome://net-internals/#dns

  1. If you use Google Chrome, --host-resolver-rules flag can be used instead.

Start Google chrome with the following argument

google_chrome --host-resolver-rules="MAP privacy-sandbox-demos-* 127.0.0.1"

HTTP SSL Certificate

https:// protocol requires a valid certificate for your browser. To get a valid certificate, use mkcert to create a local certification authority that will be trusted by your local browser. Later you will be creating a certificate for each of the Privacy Sandbox Demos services and configure nginx to serve those certificates.

Run the command below with your current user (not root !) to create the development Certificate Authority:

mkcert -install

Enrollment & Attestation exception

To access the Privacy Sandbox relevance and measurement APIs on Chrome, developers need to enroll their site with the Privacy Sandbox, pass the verification process, and upload an attestation file on their site.

However you do not need to enroll if you are only testing with local traffic. For local testing, Chrome provides a flag and CLI switch to bypass enrollment on your local browser.

Open chrome://flags/#privacy-sandbox-enrollment-overrides

Under Privacy Sandbox Enrollment Overrides select Enabled and enter your site domain names separated by a coma :

Example :

https://privacy-sandbox-demos-dsp.dev,https://privacy-sandbox-demos-dsp-a.dev,https://privacy-sandbox-demos-dsp-b.dev,https://privacy-sandbox-demos-ssp.dev,https://privacy-sandbox-demos-ssp-a.dev,https://privacy-sandbox-demos-ssp-b.dev,https://privacy-sandbox-demos-ad-server.dev

Build & Run your local development environment

Clone the Privacy Sandbox Demos repository

  1. Fork the repository https://github.com/privacysandbox/privacy-sandbox-demos using the button near the top-right corner.
  2. Clone your fork to your local development environment

Setup .env file

Edit .env file. For each${SERVICE}_HOST key, set a value matching the content of the /etc/hosts configuration. (if you are fine with the default site name, you don’t need to edit the file)

Example with the domain privacy-sandbox-demos-${SERVICE}.dev

#.env

# External Port (bind by Nginx)
EXTERNAL_PORT=443

# Bind by each Application Server (fixed value)
PORT=8080

# home
HOME_HOST=privacy-sandbox-demos-home.dev
HOME_TOKEN=""
HOME_DETAIL="Home page of Privacy Sandbox Demos"

# Publisher
## news
NEWS_HOST=privacy-sandbox-demos-news.dev
NEWS_TOKEN=""
NEWS_DETAIL="Publisher: News media site"

...

Run setup scripts

From the project root folder run :

# Download packages and dependencies :
$ npm install

# Generate the SSL Certificates for Nginx proxy service :
$ npm run cert

Build html documentation

Build the html static files that will be served by the home web server. The build process uses docusaurus.

From the project root folder, navigate to services/home folder and run :

# Download package and dependencies (docusaurus)
npm install

# Build the html static files from the markdown docs.
npm run build

Run start scripts

# Build and run the docker containers (docker must be run with root permission) :
$ sudo npm run start

Open the home page: https://privacy-sandbox-demos-home.dev

Stop your local development environment

To stop your development environment, you will need to stop each container :

Docker-compose can do that in 1 command. In a new terminal run :

sudo docker-compose stop

If for some reason it's not working, you can stop each container manually

# stop containers
sudo docker container stop sandcastle_travel
sudo docker container stop sandcastle_dsp
sudo docker container stop sandcastle_dsp-a
sudo docker container stop sandcastle_dsp-b
sudo docker container stop sandcastle_home
sudo docker container stop sandcastle_ssp-a
sudo docker container stop sandcastle_ssp-b
sudo docker container stop sandcastle_ad-server
sudo docker container stop sandcastle_news
sudo docker container stop sandcastle_proxy
sudo docker container stop sandcastle_shop
sudo docker container stop sandcastle_collector

If you want to clean (remove) the container image in your local registry you can do so by running the command :

sudo docker-compose rm

If for some reason it's not working, you can remove each container image manually

# stop containers
sudo docker container rm sandcastle_travel
sudo docker container rm sandcastle_dsp
sudo docker container rm sandcastle_dsp-a
sudo docker container rm sandcastle_dsp-b
sudo docker container rm sandcastle_home
sudo docker container rm sandcastle_ssp
sudo docker container rm sandcastle_ssp-a
sudo docker container rm sandcastle_ssp-b
sudo docker container rm sandcastle_ad-server
sudo docker container rm sandcastle_news
sudo docker container rm sandcastle_proxy
sudo docker container rm sandcastle_shop
sudo docker container rm sandcastle_collector

Clean your docker images & containers

After node dependency updates or major updates, you will need to clean your container images and volumes. There might be some situation where your local image registry is corrupted, inconsistent, or has accumulated too many unused images. You can take a fresh start by cleaning your local images.

Execute the following commands from the project root directory :

# prune docker images and volumes
sudo npm run clean

if it does not work, you can troubleshoot by running the following commands one at a time.

Remove any stopped containers and all unused images (not just dangling images) :

# Remove any stopped containers and all unused images
sudo docker system prune -a

Stop running containers

# show running containers
sudo docker ps -a

# stop all running containers
sudo docker stop $(sudo docker ps -a -q)

Remove one or more specific containers

# Use the docker ps command with the -a flag to locate
# the name or ID of the containers you want to remove:
sudo docker ps -a

# remove the container
sudo docker container ID_or_Name

# Remove all exited containers
sudo docker rm $(sudo docker ps -a -f status=exited -q)

Remove one or more specific images

# to locate the ID of the images you want to remove.
# This will show you every image, including intermediate image layers
sudo docker images -a

# When you’ve located the images you want to delete,
# you can pass their ID or tag to docker rmi:
sudo docker image rm [image_id]

# Remove all images
sudo docker rmi $(sudo docker images -a -q)