![\"\"](\"//i.imgur.com/nQjRqXe.png\")
Most of the web has transitioned into client-side heavy development using\nvarious JavaScript frameworks. More and more sites are being built in\nthe “Single Page Application” (SPA) fashion. This puts more work on the user’s browser\nand less work on the servers. The shift keeps front-end and back-end development\nseparate and isolated, allowing clients to present information in different ways without\nrelying on server-side rendering. Additionally, most of smartphones these days\nare more powerful than servers that serve thousands of users.
\n\n[ Source Code\n| Demo ]
\n\nOne of the most common issues with this paradigm is the slow initial load time\nof the page. Typically, the page is loaded very quickly only to show a spinning\nicon for some time until the actual content is loaded. Here’s the diagram\nthat explains the request cycle:
\n\n
These steps are sequential. As one can imagine, the initial load time\ncan be very slow if the user has a slow internet connection and/or the user\nis far away from the website data centers.
\n\nBy looking at the diagram, let’s assume the api/products/123 is the highest\npriority HTTP call. We want to show the result of it as soon as it is ready\nwhile other HTTP calls may still be pending. If we somehow include the response of\nthis endpoint with the initial HTML page or app.js, the extra HTTP call\nwould not be necessary.
AngularJS is a popular and somewhat opinionated\nJavaScript framework that is backed by Google.\n(Fun fact: the Angular team sat one floor below my team at Google!)
\n\n\n\n\nAngularJS lets you write client-side web applications as if you had a smarter browser.\nIt lets you use good old HTML (or HAML, Jade and friends!) as your template language and\nlets you extend HTML’s syntax to express your application’s components clearly and succinctly.\nIt automatically synchronizes data from your UI (view) with your JavaScript objects (model)\nthrough 2-way data binding.
\n
If you are building an AngularJS 1.x app, you probably are already familiar with\nAngularUI Router. It is generally\nmore flexible than the standard $route\nservice. I suggest looking into it if you have not done so.\nThe example in this post uses AngularUI Router.
A typical application route setup might look something like this:
\n\n$stateProvider\n .state('main', {\n abstract: true,\n resolve: {\n user: function (UserService) {\n return UserService.me();\n }\n }\n .state('main.product', {\n url: '/products/{id}'\n resolve: {\n product: function ($stateParams, ItemService) {\n return ItemService.get($stateParams.id);\n }\n }\nThe user and product properties are “resolved” (by making HTTP calls for example)\nbefore the state transition happens.
The solution I propose is simple but somewhat ugly to implement.\nIt minimizes the initial load time, which is the best user experience.
\n\nwebsite.com/products/123, it makes\nan API call to api/products/123 on behalf of the client.\nThis will be significantly faster than the client calling the API endpoint because\nthe data centers are typically close to each other with much faster network speeds.api/products/123 is appended to the original as URL parameter\n(let’s call it _data). The URL change to: website.com/products/123?_data={...}Important: In order for the proposed solution to work, the application\nneeds to have\nhtml5Mode\nenabled. This is because anything after the # portion of the URL is not sent\nto the server (read more: fragment identifier).\nThe default hashbang method uses the #. You should have strong reasons if\nyou do not already have html5Mode enabled.
In this scenario, we are only working with api/products/123. The solution\ncan be used in 100 different ways, including but not limited to calling multiple APIs or\nincluding some placeholder data.
First, let’s make that URL parameter an optional parameter (_data).
class Config {\n constructor($locationProvider, $stateProvider, $urlRouterProvider) {\n $locationProvider.html5Mode(true);\n\n $urlRouterProvider.otherwise('/');\n\n $stateProvider\n .state('default', {\n url: '/',\n templateUrl: 'main.html'\n })\n .state('item', {\n url: '/items/{id}?_data',\n controller: 'Item as item',\n templateUrl: 'item.html',\n reloadOnSearch: false\n });\n }\n}\nIt makes sense to remove the _data parameter from the URL as soon as the\napplication reads so the user does not share or bookmark the full URL\n(and to make the URL look pretty). The reloadOnSearch: false option prevents\nthe state from being reloaded when this happens.
Now, the client logic skips the API call to get product information\nwhen the _data parameter is present.
class Item {\n constructor($log, $state, $stateParams, ItemService) {\n this.title = 'Loading..';\n this._log = $log;\n this._state = $state;\n this._stateParams = $stateParams;\n this._ItemService = ItemService;\n\n this.init();\n }\n\n init() {\n let context = this;\n\n this._log.debug(this._stateParams);\n\n // Pre-fetched data can come as a URL parameter (`_data`).\n var data = angular.fromJson(this._stateParams._data);\n\n if (data) {\n // Remove `_data` parameter from URL.\n this._state.go('.', {_data: null}, {location: 'replace'});\n\n return ready(data);\n }\n\n this._ItemService.fetchItem(this._stateParams.id).then(ready, ready);\n\n function ready(data) {\n context.title = data.name;\n context.item = data;\n } \n }\n}\n\nclass ItemService {\n constructor($timeout) {\n this._timeout = $timeout;\n }\n\n fetchItem(id) {\n return this._timeout(() => {\n return {id: id, name: 'TV', description: 'Fetched from the backend'};\n }, 1500);\n }\n}\nThis method reduces the number of HTTP requests made by the application.\nHowever, I do not recommend doing this everywhere in the application as it\nintroduces logic code both in the back-end endpoint and in the Angular\napplication.
\n\nFull source and demo can be found here.
\n\nWe have looked at one of the biggest concerns against modern client-side heavy\ndevelopment – slower initial load times. We proposed a back-end agnostic solution\nfor the problem in AngularJS that makes use of URL parameters. Code samples for\nboth front-end and back-end have been provided.
\n\nBelow is the quick implementation of step-1 and step-2 of the proposed solution above,\nin Flask.\nI’m sure a similar approach can be implemented in other frameworks.
\n\ntry:\n from urllib.parse import urlencode\nexcept:\n from urllib import urlencode\n\nimport re\nimport flask as f\n\napp = f.Flask(__name__)\nITEMS_RE = re.compile(r'^items/(\\d+)')\n\n@app.route('/app/', defaults={'path': ''})\n@app.route('/app/<path:path>')\ndef index(path):\n """Main application entry. Let's assume our app is served at `/app`."""\n m = ITEMS_RE.match(path)\n if m and not f.request.args.get('_data'):\n data = get_item(int(m.groups()[0]))\n args = dict(f.request.args)\n args['_data'] = f.json.dumps(data)\n url = '{}?{}'.format(f.request.base_url, urlencode(args, doseq=True))\n return f.redirect(url)\n return 'return index.html'\n\n\ndef get_item(ident):\n return {'id': ident, 'name': 'fake', 'description': 'fake api return'}\n\n\nif __name__ == '__main__':\n app.run(debug=True)\nThe WTForms library is great for\nworking with forms and validations. However, it does not work well with\nJSON form data. Specifically, fields that were not provided in the request\nare assigned default values. This causes problems when you expect PATCH-like\nrequests. Example:
The WTForms library is great for\nworking with forms and validations. However, it does not work well with\nJSON form data. Specifically, fields that were not provided in the request\nare assigned default values. This causes problems when you expect PATCH-like\nrequests. Example:
import wtforms\n\nclass MyBaseForm(wtforms.Form):\n pass\n\nclass FooForm(MyBaseForm):\n foo = wtforms.StringField('Foo')\n bar = wtforms.IntegerField('Bar')\n is_baz = wtforms.BooleanField('IzBaz')\n\nfd = DummyMultiDict({'foo': 'ayy'})\nf = FooForm(fd)\n\nprint(f.data)\n\n# # # # #\nclass DummyMultiDict(dict):\n def getlist(self, key):\n v = self[key]\n return v if isinstance(v, (list, tuple)) else [v]\nThe above produces:
\n\n{'is_baz': False, 'foo': 'ayy', 'bar': None}\nThis is not necessarily what you want when working with REST APIs or PATCH-like\nrequests. (Again, wtforms is not really meant for that). The default values your\ncode expects may be different from the default values wtforms assigns.
\n\nSuppose you have:
\n\ndef save(foo='No name', bar=42, is_baz=True):\n return db.save(Object(foo=foo, bar=bar, is_baz=is_baz))\n\nfd = DummyMultiDict({'foo': 'ayy'})\nf = Foo(fd)\n\nsave(**f.data)\nIn this case, you would expect a new entry in the “database” to be\nObject(foo='ayy', bar=42, is_baz=True). But the actual entry saved is\n Object(foo='ayy', bar=None, is_baz=False).\n All your unit tests fail, your users are confused, and your manager is mad.
Here is a small wrapper around wtforms.Form to better handle the above problem. (There is also wtforms-json,\nbut its interface is quite different and feels wrong.)
import wtforms\n\n\nclass JForm(wtforms.Form):\n\n def process(self, *args, **kwargs):\n if args:\n formdata = args[0]\n else:\n formdata = kwargs.get('formdata', None)\n self._formdata = formdata\n super(JForm, self).process(*args, **kwargs)\n\n @property\n def data(self):\n """Returns form data with fields that were not in request popped."""\n d = super(JForm, self).data\n if self._formdata is None:\n return d\n keys = d.keys()\n keys = keys if isinstance(keys, list) else list(keys)\n for k in keys:\n if k not in self._formdata:\n del d[k]\n return d\nWhen form.data is requested, JForm ignores any property that was not\nincluded in the original form creation.
import wtforms\n\nclass MyBaseForm(JForm):\n pass\n\nclass FooForm(MyBaseForm):\n foo = wtforms.StringField('Foo')\n bar = wtforms.IntegerField('Bar')\n is_baz = wtforms.BooleanField('IzBaz')\n\nfd = DummyMultiDict({'foo': 'ayy'})\nf = Foo(fd)\n\nprint(f.data) # {'foo': 'ayy'}\nHappy coding. It also works nicely with other wrappers such as flask-wtf. Simply change to
\n\nclass MyBaseForm(JForm, flask_wtf.Form):\n pass\nUpdate: I did not want to publish this as a pip-package because … I is lazy.
\n", "tags": null, "published": "2015-11-13 00:00:00 +0000", "url": "https://bekt.net/p/wtforms-patch/" }, { "title": "Sharing AWS Credentials Between Users On a Docker Container", "excerpt": "TL;DR:\nAWS CLI configurations and credentials are stored in the user’s home directory by\ndefault (~/.aws). This becomes a problem when other users such as\nroot, www-data, nobody, or cron jobs need access to these credentials.\nThis post shows how to get around this in a Docker environment.
TL;DR:\nAWS CLI configurations and credentials are stored in the user’s home directory by\ndefault (~/.aws). This becomes a problem when other users such as\nroot, www-data, nobody, or cron jobs need access to these credentials.\nThis post shows how to get around this in a Docker environment.
Docker is a great application containment tool for\nbuilding and shipping software of any type. You can learn more about Docker\nhere. We love and use Docker at\nHumanlink with\nAWS Elastic Beanstalk.
\n\nBeing on Elastic Beanstalk means utilizing other amazing Amazon services as well.\nAWS CLI and boto\n(for Python developers) are the de-facto tools for interacting with AWS.
\n\nThere are a few ways to provide credentials to these tools.\nOn production, it is a good idea to serve them as environment\nvariables (such as AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY).\nDuring development, however, it is recommended that these values are set via\nthe aws configure command, which in turn places config files under ~/.aws/.
I was planning on having a full-blown example with detailed explanations,\nbut that quickly became a long post and lost its focus.
\n\nIn short, we do not want to pollute the Dockerfile just for the development environment. When running the Docker image locally, we can mount the ~/.aws directory AND set the $HOME environment variable. Otherwise, $HOME defaults\nto /root which causes permission problems for non-root users.
Since mounted file permissions are copied over to the Docker container, we\nneed to give read permissions to everyone (on your host machine).
\n\n$ chmod 644 ~/.aws/*\nWe can now run the container:
\n\n$ docker run -it --rm \\\n -e "HOME=/home" \\\n -v $HOME/.aws:/home/.aws \\\n myapp\nNow the credentials are available system-wide in the Docker container for any\nuser to use and communicate with AWS.
\n", "tags": null, "published": "2015-07-18 00:00:00 +0000", "url": "https://bekt.net/p/docker-aws-credentials/" }, { "title": "Automatically Download the Latest App Engine SDK", "excerpt": "TL;DR:\nGoogle doesn’t provide a permanent link to the latest SDK;\nupdate check endpoint is not reliable;\nI provide a snippet (view)\nto work around this.
\n", "content": "TL;DR:\nGoogle doesn’t provide a permanent link to the latest SDK;\nupdate check endpoint is not reliable;\nI provide a snippet (view)\nto work around this.
\n\nGoogle provides an SDK for interacting with App Engine. dev_appserver.py\nsimulates the App Engine Python runtime environment locally.\nappcfg.py is used to interact with App Engine to do tasks such as deploying\na new version of the application.
For continuous deployment / integration scripts such as those for\nCircleCI,\nTravis CI,\nor Jenkins CI, it is usually necessary to download\nthe latest version of the Google App Engine SDK. Unfortunately, Google does not\nprovide a permanent link to the latest version for easy download.\nIt seems like a basic need. I talk about how to programatically get the latest\nSDK in this post.
\n\nIn appengine/tools/sdk_update_checker.py, I found the API endpoint for\nchecking for updates to the SDK: https://appengine.google.com/api/updatecheck.
$ curl https://appengine.google.com/api/updatecheck\n\nrelease: "1.9.19"\ntimestamp: 1424415497\napi_versions: ['1']\nsupported_api_versions:\n python:\n api_versions: ['1']\n python27:\n api_versions: ['1']\n go:\n api_versions: ['go1']\n java7:\n api_versions: ['1.0']\nGreat, this is all we need. Not so fast! But it is useful.
\n\nOn the App Engine SDK downloads,\nthe only link to the latest SDK is something like:
\n\nhttps://storage.googleapis.com/appengine-sdks/featured/google_appengine_1.9.20.zip
Notice the version number is 1.9.20, not 1.9.19.
\n\nUsing the Google Cloud Storage API, we can list all the files in the\nappengine-sdks/featured bucket:
https://www.googleapis.com/storage/v1/b/appengine-sdks/o?prefix=featured
Given the two points from above, we can can automatically check for the latest SDK\nversion and download the zip with that version.
\n\n# script.bash\n# DON'T COPY-PASTE, READ BELOW.\n\n#!/usr/bin/env bash\n\nAPI_CHECK=https://appengine.google.com/api/updatecheck\nSDK_VERSION=$(curl -s $API_CHECK | awk -F '\\"' '/release/ {print $2}')\nSDK_URL=https://storage.googleapis.com/appengine-sdks/featured/google_appengine_$SDK_VERSION.zip\n\nfunction download_sdk {\n echo ">>> Downloading..."\n curl -fo $HOME/gae.zip $SDK_URL || exit 1\n unzip -qd $HOME $HOME/gae.zip\n}\n\nfunction upload {\n $HOME/google_appengine/appcfg.py \\\n --oauth2 update my-app\n}\n\ndownload_sdk\nupload\nEasy, right? Ehhhh.
\n\n./script.bash\n\n>>> Downloading...\n % Total % Received % Xferd Average Speed Time Time Time Current\n Dload Upload Total Spent Left Speed\n 0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0\n\ncurl: (22) The requested URL returned error: 404 Not Found\nApparently, the UpdateCheck endpoint does not always have the latest\nversion. Like wut. From my experience, it can take anywhere from 1-7 days for the\nendpoint to return the latest version.\nAdditionally, once a new version becomes available,\nprevious download links become unavailable. The App Engine team acknowledged the issue\nfive months ago but still has not addressed it.
\n\nWell, obviously at this point the only way to get the latest SDK version is to\nparse the HTML content of the download page. We could also look through all\nthe files in the featured bucket and find the one correct file to download.\nHowever, nobody should do that!\nSince we don’t necessarily need the latest version to simply deploy the project,\nwe can fallback to a slightly older SDK version (the one UpdateCheck returns).
As indicated on the downloads page, deprecated SDK downloads can be found at\nthe following link:
\n\nhttps://console.developers.google.com/m/cloudstorage/b/appengine-sdks/o/deprecated/1919/google_appengine_1.9.19.zip
which I found out is the same as:
\n\nhttps://storage.googleapis.com/appengine-sdks/deprecated/1919/google_appengine_1.9.19.zip
So now we can write a script that fall-backs to the deprecated SDK URL if the first\nURL does not work.
\n\n# script.bash\n\n#!/usr/bin/env bash\n\nAPI_CHECK=https://appengine.google.com/api/updatecheck\nSDK_VERSION=$(curl -s $API_CHECK | awk -F '\\"' '/release/ {print $2}')\n# Remove the dots.\nSDK_VERSION_S=${SDK_VERSION//./}\n\nSDK_URL=https://storage.googleapis.com/appengine-sdks/\nSDK_URL_A="${SDK_URL}featured/google_appengine_${SDK_VERSION}.zip"\nSDK_URL_B="${SDK_URL}deprecated/$SDK_VERSION_S/google_appengine_${SDK_VERSION}.zip"\n\nfunction download_sdk {\n echo ">>> Downloading..."\n curl -fo $HOME/gae.zip $SDK_URL_A || \\\n curl -fo $HOME/gae.zip $SDK_URL_B || \\\n exit 1\n unzip -qd $HOME $HOME/gae.zip\n}\n\nfunction upload {\n echo ">>> Deploying..."\n $HOME/google_appengine/appcfg.py \\\n --oauth2 update my-app\n}\n\ndownload_sdk\nupload\nIf we run the script again, it works as expected:
\nfeatures folder firstdeprecated folderWe came up with script.bash that automatically downloads the “latest”\nGoogle App Engine Python/PHP SDK to make life easier. This is especially useful\nduring automated builds and deployments.
0: https://code.google.com/p/googleappengine/issues/detail?id=11604
\n", "tags": null, "published": "2015-05-20 00:00:00 +0000", "url": "https://bekt.net/p/gae-sdk/" }, { "title": "App Engine and SSL", "excerpt": "Google App Engine is a great platform for getting things done quickly.\nHowever, it can be very unpleasant to work with due to its sandboxed environment\nand close source code. Basic needs such as installing third-party\nlibraries can be tricky to install as well.
\n", "content": "Google App Engine is a great platform for getting things done quickly.\nHowever, it can be very unpleasant to work with due to its sandboxed environment\nand close source code. Basic needs such as installing third-party\nlibraries can be tricky to install as well.
\n\nGetting one of the most\npopular python libraries, python-requests,\nwas particularly tricky to get it running and working with SSL connections.\nI’ll walk through how I fixed the issue.
\n\nStart by adding the library to the project:
\n\n# From project root.\npip install -t lib/ requests\nThe above command pip-installs the requests library into the lib\ndirectory. This is where all the third-party libraries can be placed.
Now we need to let App Engine know about this. Create or modify the file\nappengine_config.py in the root of the project.
from google.appengine.ext import vendor\nvendor.add('lib')\nappengine_config.py runs when a new instance is created. vendor.add adds the specified path to $PYTHONPATH.
At this point, most third-party libraries work just fine. However,\nthere’s a bit of work that needs to be done to get requests working.
Head over to http://localhost:8000/console and execute:
\n\nimport requests\n\nr = requests.get('https://httpbin.org/status/200')\nprint(r.status_code)\nIn a normal Python environment, the code executes just fine printing a\n200 status. But on GAE, the following exception occurs:
\n\nTraceback (most recent call last):\n File\n"/Applications/GoogleAppEngineLauncher.app/Contents/Resources/GoogleAppEngine-default.bundle/Contents/Resources/google_appengine/google/appengine/tools/devappserver2/python/request_handler.py",\nline 225, in handle_interactive_request\n exec(compiled_code, self._command_globals)\n File "<string>", line 1, in <module>\n File ".../lib/requests/__init__.py", line 58, in <module>\n from . import utils\n File ".../lib/requests/utils.py", line 26, in <module>\n from .compat import parse_http_list as _parse_list_header\n File ".../lib/requests/compat.py", line 42, in <module>\n from .packages.urllib3.packages.ordered_dict import OrderedDict\n File ".../lib/requests/packages/__init__.py", line 95, in load_module\n raise ImportError("No module named '%s'" % (name,))\nImportError: No module named 'requests.packages.urllib3'\nThe issue goes away once the\nssl library is included in app.yaml:
\nlibraries:\n- name: ssl\n version: latest\n\n\nBut wait, there’s more! The code should now work remotely.\nHowever, it still doesn’t work on the development server.
\n\nTraceback (most recent call last):\n File "/Applications/GoogleAppEngineLauncher.app/Contents/Resources/GoogleAppEngine-default.bundle/Contents/Resources/google_appengine/google/appengine/tools/devappserver2/python/request_handler.py", line 225, in handle_interactive_request\n exec(compiled_code, self._command_globals)\n File "<string>", line 3, in <module>\n File ".../lib/requests/api.py", line 68, in get\n return request('get', url, **kwargs)\n File ".../lib/requests/api.py", line 50, in request\n response = session.request(method=method, url=url, **kwargs)\n [...]\n File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/ssl.py", line 387, in wrap_socket\n ciphers=ciphers)\n File "/System/Library/Frameworks/Python.framework/Versions/2.7/lib/python2.7/ssl.py", line 141, in __init__\n ciphers)\nTypeError: must be _socket.socket, not socket\nThe problem is GAE has a “whitelist” of select standard libraries.\nSSL (_ssl, _socket) is not one of them.\nSo, we need to tweak the sandbox environment (dangerous) carefully.\nThe below code uses the standard Python socket library instead of the GAE-provided\nin the development environment. Modify appengine_config.py:
import os\n\n# Workaround the dev-environment SSL\n# http://stackoverflow.com/q/16192916/893652\nif os.environ.get('SERVER_SOFTWARE', '').startswith('Development'):\n import imp\n import os.path\n from google.appengine.tools.devappserver2.python import sandbox\n\n sandbox._WHITE_LIST_C_MODULES += ['_ssl', '_socket']\n # Use the system socket.\n psocket = os.path.join(os.path.dirname(os.__file__), 'socket.py')\n imp.load_source('socket', psocket)\nINFO 2015-04-04 06:57:28,449 module.py:737] default: "POST / HTTP/1.1" 200 4\nINFO 2015-04-04 06:57:46,868 connectionpool.py:735] Starting new HTTPS connection\n (1): httpbin.org\nThis solution mostly works, except for non-blocking sockets.\nI haven’t had a need for that yet :)
\n\n0: Open issue that is 2 years old
\n\n1: http://stackoverflow.com/q/16192916/893652
\n", "tags": null, "published": "2015-04-05 00:00:00 +0000", "url": "https://bekt.net/p/gae-ssl/" } ] }