Monument
This repository contains 2 services: 1 web application and 1 API service to query the platform data and receiving the location data for the Monument project.
This web application is used to notify caretakers and carecircles of persons living with dementia when they start wandering, get lost or are late for events.
Table of Contents
Requirements
- Auth0 You need to have an Auth0 domain registered.
- docker (>= 18.02.0+) and
docker-compose - nvm or latest version of NodeJS 16-lts
Getting started
Basic Setup
We have two main folders, web and api.
cd into the web folder and create a .env.local file based on the .env.local.template. Then cd into the api folder and once again create a .env file, based on .env.template.
> cd web
> cp .env.local.template .env.local
> cd api
> cp .env.template .envIn the following steps we will gather the necessary environment variables to fill up these files.
Auth0 Configuration
Create a Regular Web Application in the Auth0 Dashboard.
If you're using an existing application, verify that you have configured the following settings in your Regular Web Application:
- Click on the "Settings" tab of your application's page.
- Scroll down and click on the "Show Advanced Settings" link.
- Under "Advanced Settings", click on the "OAuth" tab.
- Ensure that "JsonWebToken Signature Algorithm" is set to
RS256and that "OIDC Conformant" is enabled.
Next, configure the following URLs for your application under the "Application URIs" section of the "Settings" page:
- Allowed Callback URLs:
http://localhost:3000/api/auth/callback - Allowed Logout URLs:
http://localhost:3000/
Take note of the Client ID, Client Secret, and Domain values under the "Basic Information" section. You'll need these values in the upcoming steps.
Next, create a machine to machine application (M2M). Once again take note of the Client ID, Client Secret, and Domain values under the "Basic Information" section.
Next, go to "APIs" and then select your "Auth0 Management API" and authorize your newly created M2M application to access the "Auth0 Management API". You can limit the permissions to the following list:
create:usersdelete:usersread:usersupdate:userscreate:app_meta_datadelete:app_meta_dataread:app_meta_dataupdate:app_meta_data
Also, take note of the API Audience of the "Auth0 Management API".
Finally, create a new Custom API and take note of the "identifier" (or API Audience).
OK, now it's time to actually use all the values you noted down and apply them as environment variables.
For the web we need to provide the following variables:
# The base url of your application
AUTH0_BASE_URL='http://localhost:3000'
# Your Auth0 application's Client ID
AUTH0_CLIENT_ID='YOUR_AUTH0_CLIENT_ID'
# Your Auth0 application's Domain
AUTH0_DOMAIN='https://YOUR_AUTH0_DOMAIN.auth0.com'
# Your Auth0 Custom API Audience
AUTH0_AUDIENCE='YOUR_AUTH0_AUDIENCE'
# Your Auth0 application's Client Secret
AUTH0_CLIENT_SECRET='YOUR_AUTH0_CLIENT_SECRET'
# The url of your Auth0 tenant domain
AUTH0_ISSUER_BASE_URL='https://YOUR_AUTH0_DOMAIN.auth0.com'
# A long, secret value used to encrypt the session cookie
AUTH0_SECRET='LONG_RANDOM_VALUE'You can execute the following command to generate a suitable string for the AUTH0_SECRET value:
node -e "console.log(crypto.randomBytes(32).toString('hex'))"Next, let's configure the api .env file.
We need to provide the following variables:
# The Management API audience
AUTH0_M2M_AUDIENCE='YOUR_AUTH0_M2M_AUDIENCE'
# The url of your Auth0 tenant domain
AUTH0_M2M_BASE_URL='https://YOUR_AUTH0_DOMAIN.auth0.com'
# Your Auth0 M2M application's Client ID
AUTH0_M2M_CLIENT_ID='YOUR_AUTH0_CLIENT_ID'
# Your Auth0 M2M application's Client Secret
AUTH0_M2M_CLIENT_SECRET='YOUR_AUTH0_CLIENT_SECRET'
# Your Auth0 M2M application's Domain
AUTH0_M2M_DOMAIN='https://YOUR_AUTH0_DOMAIN.auth0.com'
# Your Auth0 M2M application's Token URL
AUTH0_M2M_TOKEN_URL='YOUR_AUTH0_TOKEN_URL' # Normally will be your Auth0 tenant domain with /oauth/token appended
# Your Auth0 Custom API Audience
AUTH0_JWT_AUDIENCE='YOUR_AUTH0_AUDIENCE'
# Your Auth0 application's Domain
AUTH0_JWT_DOMAIN='https://YOUR_AUTH0_DOMAIN.auth0.com'Finally, we need to add a custom action that is used to send password reset emails to users when they are invited to the platform.
Go to actions > Post-User Registration, create a new custom action with the following code.
const auth0 = require('auth0');
/**
* Handler that will be called during the execution of a PostUserRegistration flow.
* We need to send password reset mails to users that were added via the platform itself.
*
* @param {Event} event - Details about the context and user that has registered.
*/
exports.onExecutePostUserRegistration = async (event) => {
if (event.user.app_metadata.signUpInitiatedFromPlatform) {
const authClient = new auth0.AuthenticationClient({
clientId: event.secrets.CLIENT_ID,
domain: event.secrets.DOMAIN,
});
const userAndConnection = {
connection: 'Username-Password-Authentication'
email: event.user.email,
};
await authClient.requestChangePasswordEmail(userAndConnection);
}
};Add auth0@latest as a dependency. And define 2 secret variables CLIENT_ID and DOMAIN.
CLIENT_ID should contain the AUTH0_CLIENT_ID environment variable value, while DOMAIN should be the same as the AUTH0_DOMAIN environment variable value.
Finally, deploy the action and drag it in the Post-User registration flow.
Twilio and SendGrid
To notify users about events this platform allows sending of notifications via emails and/or text messages (SMS/WhatsApp) This platform currently supports email via "SendGrid" and uses "Twilio" to send text messages (SMS) and WhatsApp messages.
You can enable all of them or choose which messaging options you want to enable.
To enable the "SendGrid" provider, provide the following config in the .env file:
SENDGRID_ENABLE=true
SENDGRID_API_KEY=[API_KEY]
SENDGRID_FROM=[[email protected]]You'll have to create an account here (free tier is available) and get yourself an API key and either authenticate a domain or single sender.
Use the email address you authenticated as the SENDGRID_FROM value.
To enable "Twilio" text messages (SMS), provide the following config in the .env file:
# Account credentials
#
TWILIO_ACCOUNT_SID=[ACCOUNT_SID]
TWILIO_AUTH_TOKEN=[AUTH_TOKEN]
# SMS configuration
#
TWILIO_SMS_ENABLE=true
TWILIO_SMS_FROM=[PHONE_NUMBER]You'll have to create an account here (trial account with free credits available) and go through their setup process so you can get the ACCOUNT_SID and AUTH_TOKEN which are necessary to send messages via this provider.
To enable "Twilio" WhatsApp messages, provide the following config in the .env file:
# Account credentials
#
TWILIO_ACCOUNT_SID=[ACCOUNT_SID]
TWILIO_AUTH_TOKEN=[AUTH_TOKEN]
# WhatsApp configuration
#
TWILIO_WHATSAPP_ENABLE=true
TWILIO_WHATSAPP_FROM=[FROM_WHATSAPP]You'll have to create an account here and go through their setup process so you can get the ACCOUNT_SID and AUTH_TOKEN which are necessary to send messages via this provider. Next, you'll have to configure the number you bought to be able to be used by WhatsApp, read the documentation here.
Mapbox and Google Maps API
Mapbox
To enable Mapbox which is used to display the locations on the map you will need to get an access token. Go to Mapbox and sign up with a new account if you don't already have one. Afterwards go into your account Mapbox account and create an access token from the available button. Give it a suitable name and create your token. Once you have your token, you can copy and paste it into the related env variable in your .env file.
NEXT_PUBLIC_MAPBOX_TOKEN=[MAPBOX_TOKEN]Google Maps API
The Google Maps API allows you to use the different location inputs across the platform. To be able to use it you will are also required to create a token. For this you can visit the Google Maps Platform. Create an account if necessary - you will need to use a google account. Once done click on "start" and it will redirect you to the Google Cloud Console. From there you'll have to create a billing account (you can create a free trial but a payment method is required). After the account is created visit the credentials tab to see your api key for Google Maps that you can then paste in your .env file.
NEXT_PUBLIC_GOOGLE_MAPS_API_KEY=[GOOGLE_MAPS_API_KEY]Postgis
This project uses postgis for calculating distances and storing coordinates within postgres.
There are multiple ways to get such a container up-and-running but we're going to use Docker and docker-compose.
If you're using Apple silicon you'll need to build the image yourself since postgis does not host any ARM-64 builds on their Docker repository yet. Read here how to do this.
Make sure that POSTGRES_DB, POSTGRES_PASSWORD, POSTGRES_USER, POSTGRES_HOST and POSTGRES_PORT in the API .env file are correctly set before continuing - for local development the values copied from the .env.template should suffice to get started.
Next, run the command below in your terminal:
# Pulls a postgis image and starts the container
> docker-compose upThe first time executing this command you could get a warning from Docker that the volume folder is missing - you can dismiss this by typing
y[es]in the terminal.
After a few seconds the container should be up-and-running - you should see a database system is ready to accept connections log statement that confirms this. The container's volume data is stored in a .volumes folder.
Postgis (Apple silicon)
Postgis does not have an official ARM build for the docker image available on their Docker repository (see: postgis/docker-postgis#216).
To circumvent this issue you can build the image yourself as described below.
# Clone the repository locally
> git clone [email protected]:postgis/docker-postgis.git
> cd postgis
# This project uses postgres@11 and [email protected]
> cd 11-3.2
> docker build -t postgis/postgis:11-3.2-alpine -f Dockerfile .
# Finally run a container based on the built image
> docker-compose upAPI application
Finally, we're going to start up the actual application.
If you're using nvm then you can execute the following command to make sure that you use the minimum required NodeJS version that this project requires.
> nvm useOtherwise make sure that the latest NodeJS 16-lts version is available on your machine (as specified in the requirements).
Next, run the following 2 commands to get the api application started.
> npm install
> npm run devIf all went well you should see the following appear in the terminal: Development Server Started.
Great, the api is now up-and-running!
Web application
To start the web application we need to do a few small things first.
Verify that you provided all the environment variables in the .env.local file. If not, then go back to the auth0 configuration step.
cd into the web folder and execute the following commands:
> npm install
> npm run devAfter a few seconds the following log should appear in the terminal compiled client and server successfully.
The web application should now be available here.
Documentation
Terminology
- PLWD: person with disablity
- Primary caretaker: The primary person who is taking care of the person with disabilities, this person has access to everything on the platform
- Caretaker: A person who is taking care of the person with disabilities added by the primary caretaker, those persons have an account created on Auth0 and can connect to the platform, their permissions on the platform will be restricted to what the primary caretaker decides
- Carecircle: The group of caretakers related to the person with disabilities
- External Contact: A person that can be contacted in case of an emergency during an event but who is not part of the carecircle and so cannot connect to the platform
Location tracking
For this project it is critical to track the realtime location of a person living with disability (PLWD). For this we opted to use a smartwatch called the Kompy watch.
Each watch has a built-in e-sim that allows constant communication and location updates be sent to their server, which in turn sends those location updates to our backend which we then use to determine if a PLWD is - for example - late for an event.
Since each Kompy watch has their own e-sim, they all have their own IMEI number as well. This IMEI number is used as the unique identifier and can be linked to a single PLWD.
Within this project when a primary caretaker does the sign-up he will have the opportunity to fill in an IMEI number for a Kompy watch and link it to the PLWD he or she is taking care of.
It is of course possible to add other watches or location tracking devices to fill in your needs but currently within this codebase only the Kompy watches are supported by default.
Notifications
Notifications are sent when a PLWD is not within the specified geofence radius at the time of an ongoing event.
A cronjob runs each minute to check if a PLWD is too late for an ongoing event.
Testing
This project includes some integration tests, you can find them here. These tests use jest as their test-runner and testcontainers to spin up a fresh postgis container for each test suite.
The environment variables used by the tests are configured here.
You can run the tests via the commands below:
> cd api # make sure to run the tests from the api folder
> npm run testContributing
Please refer to the CONTRIBUTING.MD file in this repo for how to contribute.
Code of conduct
Please refer to the CODE_OF_CONDUCT.MD file in this repo for the code of conduct.
License
See License
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot]")
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent