1. Introduction
2. Branches
3. Deployment
4. Caching
5. Load Balancing
6. Database
7. API Flow
8. Authentication
9. Security
10. Email Generation
11. Directories Explained
12. Run Locally
13. Tech Stack
14. Authors
ChaturMail is a an AI Email Generator application that generates emails based on Subject and Keywords provided by the user.
The application has premade prompts/templates for emails like Request Email, Announcement Email, Intern Application Email, Job Search Email and many more to ease out the process of generation for the user.
The application has tutorials that guide for excellent use of the application.
Users can view their previously generated emails and incase they want to regenerate the same email with some changes then they can do so.
Users can launch their email application which allows them to send them the generated emails hassle free.
Users can also copy the generated email body.
This repo is the backend system written in NodeJS 16.4.0
There are 3 branches:
master: The main branch where the stable code resides.This branch is used majorly for deployment.stage: The staging branch where all code for testing is pusheddocker: This branch hasDockersetup & config used in deployment. Read branch specificReadMefor deployment commands.
Deployment is done on 2 platforms as follows:
Heroku: There are 2 pipelines watching themasterandstagebranches.- Custom CI/CD pipeline deployed on private VM.
The stage branch is auto deployed on commit by the pipeline. Without any errors a build takes 30 seconds at max to be deployed.
Any commits to stage are shown as ready to be deployed in the production pipeline on herok, however production pipeline is never depployed from heroku on the stage repo.
It is always from the master repo which upon merger from stage shows up in heroku pipeline deployment section.
Known Issues: Heroku API's are cold started, meaning if API's aren't hit for a while the system is removed from execution and is started again when a request for it arrives. This is handled automatically by heroku.
Due to this initial API call takes upto 8 seconds to respond
The VPS is a Debian 11 Server with 4 Threads Intel Xeon Processor, 8GB RAM & 170GB Server Grade SSD Storage.
The master branch has 2 GitHub actions as follows:
- Build
dockerimage and push it toHarbor - Update YAML configs watched by ArgoCD to trigger a deployment
On commit/merge to the master branch, a GitHub action builds docker image and uploads it to self hosted registry harbor on the VPS.
Another action updates the image details in YAML config being watched by ArgoCD. A sync is triggerd in ArgoCD which initiates a deploy process on the VPS.
The image is pulled locally from Harbor by Kubernetes and new containers are deployed.
Note: The ArgoCD config YAML files repository is not public since it contains env secrets.
The connections to the server are reverse proxied via NGINX to the appropriate service.
The server has many other applications hosted like my Personal Portfolio, Opencart Ecommerce, MySQL DB Server. All of these deployments are handled by NGINX.
More about NGINX further on.
Heroku deployment is not cached.
Custon deployment is cached using Redis.
There is a Redis docker container that caches user authentication data.
Then there are NodeJS containers that are connected to it. These containers are load balanced and are scaled automatically by Kubernetes.
Kubernetes Pods are auto scaled and managed.
A common database among pods is complicated to setup so each pod has it's own Redis container running, this works fine with the current use of the caching needs however might need change in future.
There is no Load Balancing on Heroku.
On Custom Deployment:
Initially the Load Balancing was handeled by NGINX.
NGINX has 2 docker containers listening connected to common caching and primary databases.
Now it's moved to Kubernetes.
Primary database for the application is MongoDB Atlas.
There are staging and production databases.
The staging database is in Mumbai, India and production is in Frankfurt, Germany.
production DB is in Europe for compliance with the European Union (EU) data storage policy.
The production environments from Heroku and Custom Deployment use the same database.
Currently I'm exploring Appwrite to bring database and authentication at one place and self provided hosting.
Note: All API requests are HTTP POST requests. More on this further on.
- Server is listening at port.
- Requested endpoint by incoming requests is looked up in predefined routes and requested is routed accordingly. This is done automatically by
express. - Endpoint not found is handeled by
express. - The user is first authenticated by
middlewarefor every request except for the one that sendsJWTtoken. - After the user is authenticated, their details are stored in
request.userobject and are used by API's for their purposes. - The API code then does it's work and sends response with proper HTTP status code and response body.
- API response body follows a fixed format as follows:
status:0: Failure,1: Success -> Indicate success in operation.
message: String message regarding the operation performed.
payload: Is a list[]of objects. Any data being sent by the server will be in form of objects in the list.nullif no payload is returned.
Note: payload will never be empty list [], handle it on basis of null.
Every request is authenticated.
Authentication is achieved in 2 stages:
JWTToken: At the time of login each user is provided with aJWTtoken with 30 days validity. This is received in every request asBearer Tokenin request headers.- Database check: For admin or any other changes, database is checked for every request, however hitting
MongoDBfor every request is not efficient.
To solve this user details are cached in Redis.
Note: Databse validation is not available on heroku.
SSL is used to encrypt all communication.
ToDo: Implement RSA encryption on API body
The real sauce.
It is done by using OpenAI's GTP3 NLP Processing model.
The model is a paid service and cost is being attempted to be recovered from Ads running in the Flutter app.
I'm exploring migration to Meta (Facebook)'s Open-Pre-Trained Transformer OPT model.
Might have both running in conjunction.
index.js: Main entry point of application
Dockerfile, docker-compose-yml: Dockerfiles
config: Has configuration files as follows:
db.js: Connects toMongoDB.openai.js: Connects toopenaiand exports is object for global use.redisConfig.js: Has redis config. Found only indockerbranch
middleware: Has middlewares as follows:
authFunctions.js: Has user authentication functions.
models: Has MongoDB models
prompts: Has email template/prompts. All prompts are provided by masterPrompt.js file as a list of objects.
routes: Has API endpoint routes as follows:
email.js: Handles main email related endpoints likegenerateEmail,getGeneratedEmail,deleteEmailprompt.js: Handles prompt endpoints :getPromptstutorial.js: Handles tutorial endpoints:getTutorialsuser.js: Handles user & auth related endpoints:getUserData,getJWTToken,deleteUsermisc.js: Handles misc endpoints
tmp: Has temporary data that dets deleted after usage
tutorials: Has tutorials texts and objects.
utils: Has utility stuff like constants for API status codes
.env file is needed with following config:
OPENAI_API_KEY
DB_URI
JWT_KEY
From Firebase Service Account:
TYPE
PROJECT_ID
PRIVATE_KEY_ID
PRIVATE_KEY
CLIENT_EMAIL
CLIENT_ID
AUTH_URI
TOKEN_URI
AUTH_PROVIDER_X509_CERT_URL
CLIENT_X509_CERT_URL
For Docker:
OS_ENV
.env-docker:
OPENAI_API_KEY
DB_URI
JWT_KEY
From Firebase Service Account:
TYPE
PROJECT_ID
PRIVATE_KEY_ID
PRIVATE_KEY
CLIENT_EMAIL
CLIENT_ID
AUTH_URI
TOKEN_URI
AUTH_PROVIDER_X509_CERT_URL
CLIENT_X509_CERT_URL
For Docker:
REDIS_IP
REDIS_PORT
Client: Flutter, Firebase
Server: Node, Express, Docker, NGINX, Kubernetes
Flutter 3.0.4 • channel stable • https://github.com/flutter/flutter.git
Framework • revision 85684f9300
Engine • revision 6ba2af10bb
Tools • Dart 2.17.5 • DevTools 2.12.2
Node 16.4.0