This README contains information on working with the front end code. For higher level project documentation, see te-canvas/doc.md.
The front end can run either as a standalone website, or as an LTI 1.3 application embedded in Canvas. It is configured using the environment variables listed under Configuration.
This method will use the Parcel dev server to run our React app. This supports hot reloading and is very convenient for development. The only configuration needed in this case is API_URL, which is the location of a te-canvas back end.
Get dependencies:
npm install
Start Parcel dev server:
npm run start-parcel
In this scheme, the front end will consist of two parts. One is the client-side React app, and the other is an LTI server which handles authentication and forwards API requests to a set of back ends. This is different from the standalone mode, where API requests are made to a single back end server directly. For more detail on this setup, see te-canvas/doc.md.
Besides the environment variables listed under Configuration, you also need the following files at repo root:
- platforms.json
- ssl.crt
- ssl.key
Start Nginx:
nginx -p . -c nginx.conf
Start MongoDB:
docker-compose up -d mongo
Get dependencies:
npm install
Compile React app:
npm run build
Start LTI server:
npm run start
The main Docker compose file comes with an override file, which exposes ports for all containers and builds images locally. This is convenient to use during development but not safe in production. Note that
docker-compose.override.ymlis enabled by default and simply doingdocker-compose upin this repo will start in unsafe dev mode.To use only the production-ready
docker-compose.yml, you can dodocker-compose -f docker-compose.yml up. But since we use Puppet for all this anyway,docker-compose.override.ymlshould never be near our production environment.
Start LTI server, MongoDB, and Nginx:
docker-compose -f docker-compose.yml up
Start in dev mode, with exposed ports (not safe in production) and using locally built images:
docker-compose up
| Environment variable | Description | Predefined in docker-compose file? |
|---|---|---|
API_URL |
Location of API server, used in fetch requests from the React app. In standalone mode this is a single back end server. In LTI mode this should point to the LTI server, which acts as reverse proxy for multiple back ends. | |
LTI_URL |
LTI server location (same as API_URL). |
|
LTI_PORT |
LTI server port. | |
MONGO_URL |
Location of MongoDB, used by ltijs library. | ✅ |
MONGO_USERNAME |
MongoDB username. | |
MONGO_PASSWORD |
MongoDB password. | |
ENCRYPTION_KEY |
A random string used by ltijs to sign cookies and tokens. | |
TAG_NODE |
Tag to use for docker.sunet.se/te-canvas-front. |
✅ |
This file contains information about each Canvas instance (platform). This is not a file format specified by the ltijs library, though many of the keys are passed directly to Provider.registerPlatform.
[
{
"api_url" : "http://127.0.0.1:6000",
"authorized_roles" : [
"http://purl.imsglobal.org/vocab/lis/v2/institution/person#Administrator",
"http://purl.imsglobal.org/vocab/lis/v2/institution/person#Instructor"
],
"canvas_auth" : "https://canvas.instructure.com/api/lti/authorize_redirect",
"canvas_jwk" : "https://canvas.instructure.com/api/lti/security/jwks",
"canvas_token" : "https://canvas.instructure.com/login/oauth2/token",
"canvas_url" : "https://canvas.instructure.com",
"client_id" : "1000001",
"name" : "My Canvas Instance"
}
]
api_url: URL to back end server, where the LTI server will forward API requests for this particular platform.authorized_roles: Any user which has one of these roles (defined in LTI standars) is allowed access to the back end. If the user does not have an authorized role, the server will reply with an error message including the current user's actual roles (also printed in the server logs). This can be used to find out which roles a given user has, i.e. setauthorized_rolesto[].
Rest of the keys are passed to ltijs as mentioned above. The Canvas URLs will be the same for every instance in Canvas's production environment (also exists: beta and test).
This file is used by Canvas to configure te-canvas as an LTI tool. Documentation here.
We serve this at te-canvas.sunet.se/lti.json so we only need to paste this URL in Canvas.
The key extensions.settings.placements.visibility decides which type of Canvas users get a te-canvas button in the course navigation sidebar. Note that admins is not the same as "admins" on Canvas, but rather seems to include anyone who has edit rights on the course. I.e. Canvas admins, but also teachers and TAs.
The key custom_fields specifies a set of Canvas variables to add to the JWT passed with each request. In our case we want to get the course ID.
The way we use this to pass data to the back end is implemented in a general way in src/lti.js (the LTI server's start point). If the front end receives a request with query parameter x=LTI_CUSTOM_PROPERTY, we look up key x in the JWT Canvas gave us and replace LTI_CUSTOM_PROPERTY with the real value, before forwarding the request to the back end.