DEV Community: Aron Schüler The latest articles on DEV Community by Aron Schüler (@thraizz). https://dev.to/thraizz https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F761417%2F98051681-6908-4a0b-841d-7c749d7384a7.jpeg DEV Community: Aron Schüler https://dev.to/thraizz en Using BuildKit for Container Image Building in GitLab CI And Pushing To ECR Aron Schüler Mon, 15 Sep 2025 15:27:35 +0000 https://dev.to/thraizz/using-buildkit-for-container-image-building-in-gitlab-ci-and-pushing-to-ecr-15nk https://dev.to/thraizz/using-buildkit-for-container-image-building-in-gitlab-ci-and-pushing-to-ecr-15nk <h1> Intro </h1> <p>If you're still using Kaniko for building container images in your GitLab CI pipelines, it's time to make a change. Kaniko has been deprecated, and BuildKit has emerged as the modern, efficient alternative for building container images in CI/CD environments. BuildKit offers superior caching capabilities, better performance, and enhanced security features compared to its predecessor. While Gitlab Docs offer examples, I had to spend some time getting our pipelines authenticated for AWS and allowing ECR pushes to work flawlessly.</p> <p>In this post, I'll walk you through migrating your GitLab pipelines from Kaniko to BuildKit, specifically focusing on building images, authenticating against AWS, and then pushing them to AWS Elastic Container Registry (ECR). The migration makes sure your pipelines stay up to date with industry standards. It should also bring improvements in build speed and reliability!</p> <h1> Step-by-Step Guide </h1> <h2> 1. <strong>Understanding the BuildKit Setup</strong> </h2> <p>BuildKit runs in rootless mode for enhanced security, which means it doesn't require privileged access to build container images. The key components of our setup include:</p> <ul> <li> <strong>BuildKit rootless image</strong>: <code>moby/buildkit:rootless</code> </li> <li> <strong>ECR credential helper</strong>: For seamless authentication with AWS ECR</li> <li> <strong>BuildKit daemon</strong>: Running in daemonless mode for GitLab CI compatibility</li> </ul> <h2> 2. <strong>Setting Up the Base Job Configuration</strong> </h2> <p>First, let's create a reusable job template that contains all the common configuration.<br> You can reuse this later for different kind of build, e.g. production vs QA builds, or maybe E2E builds.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">.build backend</span><span class="pi">:</span> <span class="na">stage</span><span class="pi">:</span> <span class="s">build</span> <span class="na">tags</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">medium-runner</span> <span class="na">variables</span><span class="pi">:</span> <span class="na">GIT_STRATEGY</span><span class="pi">:</span> <span class="s">fetch</span> <span class="na">AWS_DEFAULT_REGION</span><span class="pi">:</span> <span class="s">eu-central-1</span> <span class="na">ECR_REPOSITORY</span><span class="pi">:</span> <span class="s">$ECR_REPOSITORY</span> <span class="na">ECR_REGISTRY</span><span class="pi">:</span> <span class="s">$ECR_REGISTRY</span> <span class="na">AWS_ACCESS_KEY_ID</span><span class="pi">:</span> <span class="s">$AWS_ACCESS_KEY_ID</span> <span class="na">AWS_SECRET_ACCESS_KEY</span><span class="pi">:</span> <span class="s">$AWS_SECRET_ACCESS_KEY</span> <span class="na">BUILDKITD_FLAGS</span><span class="pi">:</span> <span class="s">--oci-worker-no-process-sandbox</span> <span class="na">image</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">moby/buildkit:rootless</span> <span class="na">entrypoint</span><span class="pi">:</span> <span class="pi">[</span><span class="s2">"</span><span class="s">"</span><span class="pi">]</span> </code></pre> </div> <p>The <code>BUILDKITD_FLAGS: --oci-worker-no-process-sandbox</code> flag is necessary for running BuildKit in GitLab's shared runners without requiring additional privileges and something I had missing in my first jobs.</p> <h2> 3. <strong>Installing and Configuring ECR Authentication</strong> </h2> <p>The <code>before_script</code> section handles the ECR authentication setup:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">before_script</span><span class="pi">:</span> <span class="c1"># Install ecr login helper</span> <span class="pi">-</span> <span class="s">mkdir credentials-binaries</span> <span class="pi">-</span> <span class="s">wget -O credentials-binaries/docker-credential-ecr-login https://amazon-ecr-credential-helper-releases.s3.us-east-2.amazonaws.com/0.10.0/linux-amd64/docker-credential-ecr-login</span> <span class="pi">-</span> <span class="s">chmod +x credentials-binaries/docker-credential-ecr-login</span> <span class="pi">-</span> <span class="s">chown 1000:1000 credentials-binaries/docker-credential-*</span> <span class="pi">-</span> <span class="s">export PATH="${CI_PROJECT_DIR}/credentials-binaries:$PATH"</span> <span class="c1"># Create docker config for ECR authentication</span> <span class="pi">-</span> <span class="s">mkdir -p ~/.docker</span> <span class="pi">-</span> <span class="pi">|</span> <span class="s">cat &lt;&lt; EOF &gt; ~/.docker/config.json</span> <span class="s">{</span> <span class="s">"credHelpers": {</span> <span class="s">"$ECR_REGISTRY": "ecr-login"</span> <span class="s">}</span> <span class="s">}</span> <span class="s">EOF</span> </code></pre> </div> <p>This setup downloads the ECR credential helper and configures Docker to use it for authentication, using your <code>AWS_ACCESS_KEY_ID</code> and <code>AWS_SECRET_ACCESS_KEY</code> for that.<br> The credential helper also handles token refresh, so you don't need manual <code>docker login</code> commands.</p> <h2> 4. <strong>Building and Pushing Images with BuildKit</strong> </h2> <p>The main build logic uses <code>buildctl-daemonless.sh</code>, which is perfect for CI environments<br> that don't have the docker service available:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">script</span><span class="pi">:</span> <span class="c1"># Build and push image using BuildKit</span> <span class="pi">-</span> <span class="pi">|</span> <span class="s">buildctl-daemonless.sh build \</span> <span class="s">--frontend dockerfile.v0 \</span> <span class="s">--local context=$CI_PROJECT_DIR/backend \</span> <span class="s">--local dockerfile=$CI_PROJECT_DIR/backend \</span> <span class="s">--export-cache type=registry,ref=$ECR_REPOSITORY:buildcache \</span> <span class="s">--import-cache type=registry,ref=$ECR_REPOSITORY:buildcache \</span> <span class="s">--output type=image,name=$ECR_REPOSITORY:$IMAGE_TAG,push=true</span> </code></pre> </div> <p>The build uses registry-based caching for subsequent builds and builds+pushes to ECR in a single operation,<br> based on the <code>backend/</code> folder in this example and the <code>backend/Dockerfile</code>.<br> Of course, this might need adaption in your usecase.</p> <h2> 5. <strong>Creating Environment-Specific Jobs</strong> </h2> <p>Extend the base job for different environments:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">build backend test</span><span class="pi">:</span> <span class="na">extends</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">.build backend</span> <span class="na">environment</span><span class="pi">:</span> <span class="na">name</span><span class="pi">:</span> <span class="s">test</span> <span class="na">variables</span><span class="pi">:</span> <span class="na">IMAGE_TAG</span><span class="pi">:</span> <span class="s">backend-latest</span> <span class="na">rules</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">if</span><span class="pi">:</span> <span class="s">$CI_COMMIT_BRANCH == "main"</span> <span class="na">when</span><span class="pi">:</span> <span class="s">on_success</span> <span class="pi">-</span> <span class="na">when</span><span class="pi">:</span> <span class="s">never</span> </code></pre> </div> <p>This pattern allows you to create jobs for different environments (staging, production) or usecases by extending the base job and overriding necessary variables.</p> <h2> 6. <strong>Required GitLab CI Variables</strong> </h2> <p>Ensure these variables are configured in your GitLab project settings:</p> <ul> <li> <code>ECR_REGISTRY</code>: ECR registry domain (e.g., <code>123456789.dkr.ecr.eu-central-1.amazonaws.com</code>)</li> <li> <code>ECR_REPOSITORY</code>: Full ECR repository URI (e.g., <code>123456789.dkr.ecr.eu-central-1.amazonaws.com/my-app</code>) (could reuse $ECR_REGISTRY lol)</li> <li> <code>AWS_ACCESS_KEY_ID</code>: AWS credentials with ECR push permissions</li> <li> <code>AWS_SECRET_ACCESS_KEY</code>: Corresponding AWS secret key</li> </ul> <h1> Conclusion </h1> <p>The setup shown here provides a solid foundation that you can customize for your specific needs. Migrating from Kaniko is pretty straightforward with this.<br> BuildKit brings your CI/CD pipeline up to date with current best practices. It also brings benefits like improved build speeds through better caching, enhanced security with rootless builds, and more reliable image building.<br> The ECR integration step is something that I needed to pierce together from different sources, but I'm very happy with the setup and the speed.<br> As you implement this in your own projects, you might want to explore additional BuildKit features like multi-platform builds or custom frontend implementations.</p> <p>As always, feel free to share your experiences or ask questions about this migration approach down below :-)</p> docker devops aws gitlab Implementing Stripe Subscriptions with Firebase Cloud Functions and Firestore Aron Schüler Mon, 24 Mar 2025 07:37:29 +0000 https://dev.to/thraizz/implementing-stripe-subscriptions-with-firebase-cloud-functions-and-firestore-4iji https://dev.to/thraizz/implementing-stripe-subscriptions-with-firebase-cloud-functions-and-firestore-4iji <h2> Intro </h2> <p>Adding a subscription to your web application is probably the easiest way to generate a MRR with your new shiny startup idea. And Firebase is probably the fastest way of integrating a lot of functionality like Authentication, a NoSQL database and Cloud Functions into your system. I have done this a couple of times and just did it again for <a href="https://shotmetrics-ai.com" rel="noopener noreferrer">https://shotmetrics-ai.com</a>, I can recommend Stripe. Integrating Stripe with Firebase means that we will create several Cloud Functions to provide all functionality, including a webhook for accepting incoming Stripe data and using these functions in your frontend.</p> <p>Let's go through all steps required to implement stripe subscriptions in Firebase applications, using Firebase Firestore, Firebase Cloud Functions and of course Stripe it self.</p> <h2> Step-by-Step Guide </h2> <h3> Step 1: <strong>Set Up Your Stripe Account</strong> </h3> <p>Before we dive into the necessary code, ensure you have a properly configured Stripe account:</p> <ul> <li>Create a Stripe account if you don't have one already</li> <li>Add your products in the Stripe dashboard</li> <li>Create pricing plans for all products in Stripe's test mode</li> <li>Write down your product and price IDs for later use</li> </ul> <p>Remember to use Stripe's test mode during development so that you don't have to pay for your own services.</p> <h3> Step 2: <strong>Create a Cloud Function that returns Stripe Products and Prices</strong> </h3> <p>The first function we are going to create is a centralized information endpoint about your subscriptions, so that you don't have to redefine this in the frontend too.</p> <p>Create a Cloud Function that serves as a central repository for your product and pricing information and add all your products and their prices:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="kd">const</span> <span class="nx">getSubscriptionPlans</span> <span class="o">=</span> <span class="p">{</span> <span class="na">basic</span><span class="p">:</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="dl">"</span><span class="s2">basic</span><span class="dl">"</span><span class="p">,</span> <span class="na">name</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Basic Plan</span><span class="dl">"</span><span class="p">,</span> <span class="na">description</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Access to core features</span><span class="dl">"</span><span class="p">,</span> <span class="na">prices</span><span class="p">:</span> <span class="p">{</span> <span class="na">monthly</span><span class="p">:</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="dl">"</span><span class="s2">price_monthly_basic_id_from_stripe</span><span class="dl">"</span><span class="p">,</span> <span class="na">amount</span><span class="p">:</span> <span class="mf">9.99</span><span class="p">,</span> <span class="na">interval</span><span class="p">:</span> <span class="dl">"</span><span class="s2">month</span><span class="dl">"</span><span class="p">,</span> <span class="p">},</span> <span class="na">yearly</span><span class="p">:</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="dl">"</span><span class="s2">price_yearly_basic_id_from_stripe</span><span class="dl">"</span><span class="p">,</span> <span class="na">amount</span><span class="p">:</span> <span class="mf">99.99</span><span class="p">,</span> <span class="na">interval</span><span class="p">:</span> <span class="dl">"</span><span class="s2">year</span><span class="dl">"</span><span class="p">,</span> <span class="p">},</span> <span class="p">},</span> <span class="p">},</span> <span class="na">pro</span><span class="p">:</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="dl">"</span><span class="s2">pro</span><span class="dl">"</span><span class="p">,</span> <span class="na">name</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Pro Plan</span><span class="dl">"</span><span class="p">,</span> <span class="na">description</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Full access to all features</span><span class="dl">"</span><span class="p">,</span> <span class="na">prices</span><span class="p">:</span> <span class="p">{</span> <span class="na">monthly</span><span class="p">:</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="dl">"</span><span class="s2">price_monthly_pro_id_from_stripe</span><span class="dl">"</span><span class="p">,</span> <span class="na">amount</span><span class="p">:</span> <span class="mf">19.99</span><span class="p">,</span> <span class="na">interval</span><span class="p">:</span> <span class="dl">"</span><span class="s2">month</span><span class="dl">"</span><span class="p">,</span> <span class="p">},</span> <span class="na">yearly</span><span class="p">:</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="dl">"</span><span class="s2">price_yearly_pro_id_from_stripe</span><span class="dl">"</span><span class="p">,</span> <span class="na">amount</span><span class="p">:</span> <span class="mf">199.99</span><span class="p">,</span> <span class="na">interval</span><span class="p">:</span> <span class="dl">"</span><span class="s2">year</span><span class="dl">"</span><span class="p">,</span> <span class="p">},</span> <span class="p">},</span> <span class="p">},</span> <span class="p">};</span> </code></pre> </div> <h3> Step 3: <strong>Expose your Stripe Products and Prices to Your Frontend</strong> </h3> <p>Create a Cloud Function that your frontend can call to retrieve product information:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">onRequest</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">firebase-functions/v2</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">getSubscriptionPlans</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">./constants</span><span class="dl">"</span><span class="p">;</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">getStripeProducts</span> <span class="o">=</span> <span class="nf">onRequest</span><span class="p">((</span><span class="nx">_request</span><span class="p">,</span> <span class="nx">response</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">response</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">products</span><span class="p">:</span> <span class="nx">getSubscriptionPlans</span><span class="p">,</span> <span class="p">});</span> <span class="p">});</span> </code></pre> </div> <h3> Step 4: <strong>Create a Stripe Checkout Session Cloud Function</strong> </h3> <p>Next, we want users to be able to start a Checkout Session where they enter payment informations. To do so, create a .env file in your functions folder where you add the stripe secret key like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nv">STRIPE_SECRET_KEY</span><span class="o">=</span>stripe-sk-foobar12345 </code></pre> </div> <p>Then, implement a Cloud Function that creates a Stripe checkout session when a user wants to subscribe:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">getAuth</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">firebase-admin/auth</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">onCall</span><span class="p">,</span> <span class="nx">HttpsError</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">firebase-functions/v2/https</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">Stripe</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">stripe</span><span class="dl">"</span><span class="p">;</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">createSubscriptionCheckout</span> <span class="o">=</span> <span class="nf">onCall</span><span class="p">(</span><span class="k">async </span><span class="p">(</span><span class="nx">request</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">stripe</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Stripe</span><span class="p">(</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">STRIPE_SECRET_KEY</span> <span class="o">||</span> <span class="dl">""</span><span class="p">,</span> <span class="p">{</span> <span class="na">apiVersion</span><span class="p">:</span> <span class="dl">"</span><span class="s2">2025-01-27.acacia</span><span class="dl">"</span><span class="p">,</span> <span class="p">});</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">priceId</span><span class="p">,</span> <span class="nx">successUrl</span><span class="p">,</span> <span class="nx">cancelUrl</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">request</span><span class="p">.</span><span class="nx">data</span> <span class="k">as</span> <span class="nx">CreateCheckoutSessionRequest</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">auth</span> <span class="o">=</span> <span class="nf">getAuth</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">user</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">auth</span><span class="p">.</span><span class="nf">getUser</span><span class="p">(</span><span class="nx">request</span><span class="p">.</span><span class="nx">auth</span><span class="p">?.</span><span class="nx">uid</span> <span class="o">||</span> <span class="dl">""</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">user</span><span class="p">.</span><span class="nx">email</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">HttpsError</span><span class="p">(</span> <span class="dl">"</span><span class="s2">failed-precondition</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">User must have an email to create a subscription</span><span class="dl">"</span><span class="p">,</span> <span class="p">);</span> <span class="p">}</span> <span class="c1">// Get or create Stripe customer</span> <span class="kd">const</span> <span class="nx">customerId</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">getOrCreateStripeCustomer</span><span class="p">(</span> <span class="nx">stripe</span><span class="p">,</span> <span class="nx">user</span><span class="p">.</span><span class="nx">uid</span><span class="p">,</span> <span class="nx">user</span><span class="p">.</span><span class="nx">email</span><span class="p">,</span> <span class="p">);</span> <span class="c1">// Create checkout session</span> <span class="kd">const</span> <span class="nx">checkoutUrl</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">createCheckoutSession</span><span class="p">(</span> <span class="nx">stripe</span><span class="p">,</span> <span class="nx">customerId</span><span class="p">,</span> <span class="nx">priceId</span><span class="p">,</span> <span class="nx">successUrl</span><span class="p">,</span> <span class="nx">cancelUrl</span><span class="p">,</span> <span class="p">);</span> <span class="k">return</span> <span class="p">{</span> <span class="na">url</span><span class="p">:</span> <span class="nx">checkoutUrl</span> <span class="p">};</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="na">error</span><span class="p">:</span> <span class="nx">unknown</span><span class="p">)</span> <span class="p">{</span> <span class="nx">logger</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Error creating subscription checkout:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span><span class="p">);</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">HttpsError</span><span class="p">(</span> <span class="dl">"</span><span class="s2">internal</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span> <span class="k">instanceof</span> <span class="nb">Error</span> <span class="p">?</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span> <span class="p">:</span> <span class="dl">"</span><span class="s2">An error occurred while creating the checkout session</span><span class="dl">"</span><span class="p">,</span> <span class="p">);</span> <span class="p">}</span> <span class="p">});</span> </code></pre> </div> <h3> Step 5: <strong>Connect Your Frontend to Stripe</strong> </h3> <p>In our frontend, we want to display the products and create a checkout session when users click to subscribe. For this, you could create a React component that looks something like this (not checked if this runs, if it does not, comment below please):<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">React</span><span class="p">,</span> <span class="p">{</span> <span class="nx">useState</span><span class="p">,</span> <span class="nx">useEffect</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">react</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">httpsCallable</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">firebase/functions</span><span class="dl">'</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">functions</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">./firebaseConfig</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">SubscriptionPage</span> <span class="o">=</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">products</span><span class="p">,</span> <span class="nx">setProducts</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">([]);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">loading</span><span class="p">,</span> <span class="nx">setLoading</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="nf">useEffect</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// Fetch products from your Cloud Function</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">'</span><span class="s1">/api/getStripeProducts</span><span class="dl">'</span><span class="p">)</span> <span class="p">.</span><span class="nf">then</span><span class="p">(</span><span class="nx">response</span> <span class="o">=&gt;</span> <span class="nx">response</span><span class="p">.</span><span class="nf">json</span><span class="p">())</span> <span class="p">.</span><span class="nf">then</span><span class="p">(</span><span class="nx">data</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">setProducts</span><span class="p">(</span><span class="nx">data</span><span class="p">.</span><span class="nx">products</span><span class="p">);</span> <span class="nf">setLoading</span><span class="p">(</span><span class="kc">false</span><span class="p">);</span> <span class="p">});</span> <span class="p">},</span> <span class="p">[]);</span> <span class="kd">const</span> <span class="nx">handleSubscribe</span> <span class="o">=</span> <span class="k">async </span><span class="p">(</span><span class="nx">priceId</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">createCheckoutSession</span> <span class="o">=</span> <span class="nf">httpsCallable</span><span class="p">(</span><span class="nx">functions</span><span class="p">,</span> <span class="dl">'</span><span class="s1">createSubscriptionCheckout</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">data</span> <span class="p">}</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">createCheckoutSession</span><span class="p">({</span> <span class="nx">priceId</span><span class="p">,</span> <span class="na">successUrl</span><span class="p">:</span> <span class="s2">`</span><span class="p">${</span><span class="nb">window</span><span class="p">.</span><span class="nx">location</span><span class="p">.</span><span class="nx">origin</span><span class="p">}</span><span class="s2">/subscription/success`</span><span class="p">,</span> <span class="na">cancelUrl</span><span class="p">:</span> <span class="s2">`</span><span class="p">${</span><span class="nb">window</span><span class="p">.</span><span class="nx">location</span><span class="p">.</span><span class="nx">origin</span><span class="p">}</span><span class="s2">/subscription/canceled`</span><span class="p">,</span> <span class="p">});</span> <span class="c1">// Redirect to Stripe Checkout</span> <span class="nb">window</span><span class="p">.</span><span class="nx">location</span><span class="p">.</span><span class="nx">href</span> <span class="o">=</span> <span class="nx">data</span><span class="p">.</span><span class="nx">url</span><span class="p">;</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">error</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">'</span><span class="s1">Error creating checkout session:</span><span class="dl">'</span><span class="p">,</span> <span class="nx">error</span><span class="p">);</span> <span class="p">}</span> <span class="p">};</span> <span class="k">if </span><span class="p">(</span><span class="nx">loading</span><span class="p">)</span> <span class="k">return</span> <span class="o">&lt;</span><span class="nx">div</span><span class="o">&gt;</span><span class="nx">Loading</span> <span class="nx">subscription</span> <span class="nx">plans</span><span class="p">...</span><span class="o">&lt;</span><span class="sr">/div&gt;</span><span class="err">; </span> <span class="k">return </span><span class="p">(</span> <span class="o">&lt;</span><span class="nx">div</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">subscription-container</span><span class="dl">"</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">h1</span><span class="o">&gt;</span><span class="nx">Choose</span> <span class="nx">your</span> <span class="nx">plan</span><span class="o">&lt;</span><span class="sr">/h1</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="nx">div</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">plans-grid</span><span class="dl">"</span><span class="o">&gt;</span> <span class="p">{</span><span class="nb">Object</span><span class="p">.</span><span class="nf">values</span><span class="p">(</span><span class="nx">products</span><span class="p">).</span><span class="nf">map</span><span class="p">(</span><span class="nx">product</span> <span class="o">=&gt;</span> <span class="p">(</span> <span class="o">&lt;</span><span class="nx">div</span> <span class="nx">key</span><span class="o">=</span><span class="p">{</span><span class="nx">product</span><span class="p">.</span><span class="nx">id</span><span class="p">}</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">plan-card</span><span class="dl">"</span><span class="o">&gt;</span> <span class="o">&lt;</span><span class="nx">h2</span><span class="o">&gt;</span><span class="p">{</span><span class="nx">product</span><span class="p">.</span><span class="nx">name</span><span class="p">}</span><span class="o">&lt;</span><span class="sr">/h2</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="nx">p</span><span class="o">&gt;</span><span class="p">{</span><span class="nx">product</span><span class="p">.</span><span class="nx">description</span><span class="p">}</span><span class="o">&lt;</span><span class="sr">/p</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="nx">div</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">pricing-options</span><span class="dl">"</span><span class="o">&gt;</span> <span class="p">{</span><span class="nb">Object</span><span class="p">.</span><span class="nf">values</span><span class="p">(</span><span class="nx">product</span><span class="p">.</span><span class="nx">prices</span><span class="p">).</span><span class="nf">map</span><span class="p">(</span><span class="nx">price</span> <span class="o">=&gt;</span> <span class="p">(</span> <span class="o">&lt;</span><span class="nx">button</span> <span class="nx">key</span><span class="o">=</span><span class="p">{</span><span class="nx">price</span><span class="p">.</span><span class="nx">id</span><span class="p">}</span> <span class="nx">onClick</span><span class="o">=</span><span class="p">{()</span> <span class="o">=&gt;</span> <span class="nf">handleSubscribe</span><span class="p">(</span><span class="nx">price</span><span class="p">.</span><span class="nx">id</span><span class="p">)}</span> <span class="nx">className</span><span class="o">=</span><span class="dl">"</span><span class="s2">subscribe-button</span><span class="dl">"</span> <span class="o">&gt;</span> <span class="nx">Subscribe</span> <span class="nx">$</span><span class="p">{</span><span class="nx">price</span><span class="p">.</span><span class="nx">amount</span><span class="p">}</span><span class="sr">/{price.interval</span><span class="err">} </span> <span class="o">&lt;</span><span class="sr">/button</span><span class="err">&gt; </span> <span class="p">))}</span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="p">))}</span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="o">&lt;</span><span class="sr">/div</span><span class="err">&gt; </span> <span class="p">);</span> <span class="p">};</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">SubscriptionPage</span><span class="p">;</span> </code></pre> </div> <h3> Step 6: <strong>Create a Webhook Handler for Stripe Events</strong> </h3> <p>After a user has successfully completed their purchase, we need to update our Firestore database to reflect the new subscription status. We also need to verify the stripe-signature header to make sure that the request actually comes from stripe.</p> <p>For this, we should create a webhook to process subscription events from Stripe and update your Firestore database accordingly:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="o">*</span> <span class="k">as</span> <span class="nx">logger</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">firebase-functions/logger</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">onRequest</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">firebase-functions/v2/https</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="nx">Stripe</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">stripe</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">handleSubscriptionUpdated</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">./handleSubscriptionUpdated</span><span class="dl">"</span><span class="p">;</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">stripeWebhook</span> <span class="o">=</span> <span class="nf">onRequest</span><span class="p">(</span><span class="k">async </span><span class="p">(</span><span class="nx">request</span><span class="p">,</span> <span class="nx">response</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">stripe</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Stripe</span><span class="p">(</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">STRIPE_SECRET_KEY</span> <span class="o">||</span> <span class="dl">""</span><span class="p">,</span> <span class="p">{</span> <span class="na">apiVersion</span><span class="p">:</span> <span class="dl">"</span><span class="s2">2025-01-27.acacia</span><span class="dl">"</span><span class="p">,</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">sig</span> <span class="o">=</span> <span class="nx">request</span><span class="p">.</span><span class="nx">headers</span><span class="p">[</span><span class="dl">"</span><span class="s2">stripe-signature</span><span class="dl">"</span><span class="p">];</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">sig</span><span class="p">)</span> <span class="p">{</span> <span class="nx">response</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">400</span><span class="p">).</span><span class="nf">send</span><span class="p">(</span><span class="dl">"</span><span class="s2">Missing stripe-signature header</span><span class="dl">"</span><span class="p">);</span> <span class="k">return</span><span class="p">;</span> <span class="p">}</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">event</span> <span class="o">=</span> <span class="nx">stripe</span><span class="p">.</span><span class="nx">webhooks</span><span class="p">.</span><span class="nf">constructEvent</span><span class="p">(</span> <span class="nx">request</span><span class="p">.</span><span class="nx">rawBody</span><span class="p">,</span> <span class="nx">sig</span><span class="p">,</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">STRIPE_WEBHOOK_SECRET</span> <span class="o">||</span> <span class="dl">""</span><span class="p">,</span> <span class="p">);</span> <span class="c1">// Handle the event</span> <span class="k">switch </span><span class="p">(</span><span class="nx">event</span><span class="p">.</span><span class="kd">type</span><span class="p">)</span> <span class="p">{</span> <span class="k">case</span> <span class="dl">"</span><span class="s2">customer.subscription.created</span><span class="dl">"</span><span class="p">:</span> <span class="k">case</span> <span class="dl">"</span><span class="s2">customer.subscription.updated</span><span class="dl">"</span><span class="p">:</span> <span class="k">case</span> <span class="dl">"</span><span class="s2">customer.subscription.deleted</span><span class="dl">"</span><span class="p">:</span> <span class="k">case</span> <span class="dl">"</span><span class="s2">customer.subscription.paused</span><span class="dl">"</span><span class="p">:</span> <span class="k">case</span> <span class="dl">"</span><span class="s2">customer.subscription.resumed</span><span class="dl">"</span><span class="p">:</span> <span class="k">await</span> <span class="nf">handleSubscriptionUpdated</span><span class="p">(</span><span class="nx">event</span><span class="p">);</span> <span class="k">break</span><span class="p">;</span> <span class="nl">default</span><span class="p">:</span> <span class="nx">logger</span><span class="p">.</span><span class="nf">info</span><span class="p">(</span><span class="s2">`Unhandled event type </span><span class="p">${</span><span class="nx">event</span><span class="p">.</span><span class="kd">type</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="p">}</span> <span class="nx">response</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">received</span><span class="p">:</span> <span class="kc">true</span> <span class="p">});</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="na">err</span><span class="p">:</span> <span class="nx">unknown</span><span class="p">)</span> <span class="p">{</span> <span class="nx">logger</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Error processing webhook:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">err</span><span class="p">);</span> <span class="nx">response</span> <span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">400</span><span class="p">)</span> <span class="p">.</span><span class="nf">send</span><span class="p">(</span> <span class="s2">`Webhook Error: </span><span class="p">${</span><span class="nx">err</span> <span class="k">instanceof</span> <span class="nb">Error</span> <span class="p">?</span> <span class="nx">err</span><span class="p">.</span><span class="nx">message</span> <span class="p">:</span> <span class="dl">"</span><span class="s2">Unknown error</span><span class="dl">"</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="p">);</span> <span class="p">}</span> <span class="p">});</span> </code></pre> </div> <p>You can either test this webhook locally with the Stripe CLI or deploy it to Firebase and add the webhook URL to your Stripe account.<br> Documentation on how to test this locally can be found <a href="https://docs.stripe.com/webhooks" rel="noopener noreferrer">here</a>.</p> <p>And here's the implementation of the <code>handleSubscriptionUpdated</code> function:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="kd">type</span> <span class="nx">Stripe</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">stripe</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">getFirestore</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">firebase-admin/firestore</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="o">*</span> <span class="k">as</span> <span class="nx">logger</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">firebase-functions/logger</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">getSubscriptionPlans</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../config/constants</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">db</span> <span class="o">=</span> <span class="nf">getFirestore</span><span class="p">();</span> <span class="k">export</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">handleSubscriptionUpdated</span><span class="p">(</span><span class="nx">event</span><span class="p">:</span> <span class="nx">Stripe</span><span class="p">.</span><span class="nx">Event</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">subscription</span> <span class="o">=</span> <span class="nx">event</span><span class="p">.</span><span class="nx">data</span><span class="p">.</span><span class="nx">object</span> <span class="k">as</span> <span class="nx">Stripe</span><span class="p">.</span><span class="nx">Subscription</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">customerId</span> <span class="o">=</span> <span class="nx">subscription</span><span class="p">.</span><span class="nx">customer</span> <span class="k">as</span> <span class="kr">string</span><span class="p">;</span> <span class="c1">// Get the Firebase user ID from Stripe metadata</span> <span class="kd">const</span> <span class="nx">customerData</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">stripe</span><span class="p">.</span><span class="nx">customers</span><span class="p">.</span><span class="nf">retrieve</span><span class="p">(</span><span class="nx">customerId</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">userId</span> <span class="o">=</span> <span class="nx">customerData</span><span class="p">.</span><span class="nx">metadata</span><span class="p">.</span><span class="nx">firebaseUID</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">userId</span><span class="p">)</span> <span class="p">{</span> <span class="nx">logger</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">No Firebase UID found in customer metadata</span><span class="dl">"</span><span class="p">);</span> <span class="k">return</span><span class="p">;</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">db</span> <span class="o">=</span> <span class="nf">getFirestore</span><span class="p">();</span> <span class="c1">// Update user subscription data in Firestore</span> <span class="k">await</span> <span class="nx">db</span> <span class="p">.</span><span class="nf">collection</span><span class="p">(</span><span class="dl">"</span><span class="s2">users</span><span class="dl">"</span><span class="p">)</span> <span class="p">.</span><span class="nf">doc</span><span class="p">(</span><span class="nx">userId</span><span class="p">)</span> <span class="p">.</span><span class="nf">update</span><span class="p">({</span> <span class="na">subscription</span><span class="p">:</span> <span class="p">{</span> <span class="na">id</span><span class="p">:</span> <span class="nx">subscription</span><span class="p">.</span><span class="nx">id</span><span class="p">,</span> <span class="na">status</span><span class="p">:</span> <span class="nx">subscription</span><span class="p">.</span><span class="nx">status</span><span class="p">,</span> <span class="na">priceId</span><span class="p">:</span> <span class="nx">subscription</span><span class="p">.</span><span class="nx">items</span><span class="p">.</span><span class="nx">data</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">price</span><span class="p">.</span><span class="nx">id</span><span class="p">,</span> <span class="na">productId</span><span class="p">:</span> <span class="nx">subscription</span><span class="p">.</span><span class="nx">items</span><span class="p">.</span><span class="nx">data</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">price</span><span class="p">.</span><span class="nx">product</span><span class="p">,</span> <span class="na">currentPeriodEnd</span><span class="p">:</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">(</span><span class="nx">subscription</span><span class="p">.</span><span class="nx">current_period_end</span> <span class="o">*</span> <span class="mi">1000</span><span class="p">),</span> <span class="na">cancelAtPeriodEnd</span><span class="p">:</span> <span class="nx">subscription</span><span class="p">.</span><span class="nx">cancel_at_period_end</span><span class="p">,</span> <span class="na">createdAt</span><span class="p">:</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">(</span><span class="nx">subscription</span><span class="p">.</span><span class="nx">created</span> <span class="o">*</span> <span class="mi">1000</span><span class="p">),</span> <span class="na">updatedAt</span><span class="p">:</span> <span class="k">new</span> <span class="nc">Date</span><span class="p">(),</span> <span class="p">},</span> <span class="p">});</span> <span class="nx">logger</span><span class="p">.</span><span class="nf">info</span><span class="p">(</span><span class="s2">`Updated subscription for user </span><span class="p">${</span><span class="nx">userId</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h3> Step 7: <strong>Create a Customer Portal Function</strong> </h3> <p>Even if your service is amazing, some users will inevitably cancel their subscriptions. Or maybe just update their payment method. But we need some kind of subscription management. For this, we have to create a links so they can manage their subscription through Stripe. Stripe calls this a "Customer Portal session".</p> <p>Implement a function that creates a Stripe Customer Portal session to allow users to manage their subscriptions:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="kd">const</span> <span class="nx">createCustomerPortal</span> <span class="o">=</span> <span class="nf">onCall</span><span class="p">(</span><span class="k">async </span><span class="p">(</span><span class="nx">request</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">stripe</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Stripe</span><span class="p">(</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">STRIPE_SECRET_KEY</span> <span class="o">||</span> <span class="dl">""</span><span class="p">,</span> <span class="p">{</span> <span class="na">apiVersion</span><span class="p">:</span> <span class="dl">"</span><span class="s2">2025-01-27.acacia</span><span class="dl">"</span><span class="p">,</span> <span class="p">});</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">returnUrl</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">request</span><span class="p">.</span><span class="nx">data</span> <span class="k">as</span> <span class="nx">ManageSubscriptionRequest</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">auth</span> <span class="o">=</span> <span class="nf">getAuth</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">user</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">auth</span><span class="p">.</span><span class="nf">getUser</span><span class="p">(</span><span class="nx">request</span><span class="p">.</span><span class="nx">auth</span><span class="p">?.</span><span class="nx">uid</span> <span class="o">||</span> <span class="dl">""</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">user</span><span class="p">.</span><span class="nx">email</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">HttpsError</span><span class="p">(</span> <span class="dl">"</span><span class="s2">failed-precondition</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">User must have an email to access the customer portal</span><span class="dl">"</span><span class="p">,</span> <span class="p">);</span> <span class="p">}</span> <span class="c1">// Get or create Stripe customer</span> <span class="kd">const</span> <span class="nx">customerId</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">getOrCreateStripeCustomer</span><span class="p">(</span> <span class="nx">stripe</span><span class="p">,</span> <span class="nx">user</span><span class="p">.</span><span class="nx">uid</span><span class="p">,</span> <span class="nx">user</span><span class="p">.</span><span class="nx">email</span><span class="p">,</span> <span class="p">);</span> <span class="c1">// Create portal session</span> <span class="kd">const</span> <span class="nx">portalUrl</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">createPortalSession</span><span class="p">(</span><span class="nx">stripe</span><span class="p">,</span> <span class="nx">customerId</span><span class="p">,</span> <span class="nx">returnUrl</span><span class="p">);</span> <span class="k">return</span> <span class="p">{</span> <span class="na">url</span><span class="p">:</span> <span class="nx">portalUrl</span> <span class="p">};</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="na">error</span><span class="p">:</span> <span class="nx">unknown</span><span class="p">)</span> <span class="p">{</span> <span class="nx">logger</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Error creating customer portal session:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span><span class="p">);</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">HttpsError</span><span class="p">(</span> <span class="dl">"</span><span class="s2">internal</span><span class="dl">"</span><span class="p">,</span> <span class="nx">error</span> <span class="k">instanceof</span> <span class="nb">Error</span> <span class="p">?</span> <span class="nx">error</span><span class="p">.</span><span class="nx">message</span> <span class="p">:</span> <span class="dl">"</span><span class="s2">An error occurred while creating the portal session</span><span class="dl">"</span><span class="p">,</span> <span class="p">);</span> <span class="p">}</span> <span class="p">});</span> </code></pre> </div> <h3> Step 8: <strong>Retrieve Stripe Subscription Data via Cloud Function</strong> </h3> <p>Create a function that allows users to check their current subscription status:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">export</span> <span class="kd">const</span> <span class="nx">getSubscription</span> <span class="o">=</span> <span class="nf">onCall</span><span class="p">(</span><span class="k">async </span><span class="p">(</span><span class="nx">request</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">stripe</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Stripe</span><span class="p">(</span><span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">STRIPE_SECRET_KEY</span> <span class="o">||</span> <span class="dl">""</span><span class="p">,</span> <span class="p">{</span> <span class="na">apiVersion</span><span class="p">:</span> <span class="dl">"</span><span class="s2">2025-01-27.acacia</span><span class="dl">"</span><span class="p">,</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">auth</span> <span class="o">=</span> <span class="nf">getAuth</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">user</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">auth</span><span class="p">.</span><span class="nf">getUser</span><span class="p">(</span><span class="nx">request</span><span class="p">.</span><span class="nx">auth</span><span class="p">?.</span><span class="nx">uid</span> <span class="o">||</span> <span class="dl">""</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">user</span><span class="p">.</span><span class="nx">email</span><span class="p">)</span> <span class="p">{</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">HttpsError</span><span class="p">(</span> <span class="dl">"</span><span class="s2">failed-precondition</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">User must have an email to get subscription details</span><span class="dl">"</span><span class="p">,</span> <span class="p">);</span> <span class="p">}</span> <span class="c1">// Get or create Stripe customer</span> <span class="kd">const</span> <span class="nx">customerId</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">getOrCreateStripeCustomer</span><span class="p">(</span> <span class="nx">stripe</span><span class="p">,</span> <span class="nx">user</span><span class="p">.</span><span class="nx">uid</span><span class="p">,</span> <span class="nx">user</span><span class="p">.</span><span class="nx">email</span><span class="p">,</span> <span class="p">);</span> <span class="c1">// Get subscription details</span> <span class="kd">const</span> <span class="nx">subscription</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">getCustomerSubscription</span><span class="p">(</span><span class="nx">stripe</span><span class="p">,</span> <span class="nx">customerId</span><span class="p">);</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">subscription</span> <span class="p">};</span> <span class="p">});</span> </code></pre> </div> <h3> Step 9: <strong>Frontend Integration of Stripe Subscription Data and Management</strong> </h3> <p>You should now integrate both the <code>createCustomerPortal</code> and <code>getSubscription</code> functions into your frontend and show this information to your user and offer the option to manage their subscription, if they have an active subscription.</p> <h3> Step 10: <strong>Update Firestore Rules</strong> </h3> <p>Of course, we need to make sure that no users with ill intent can just tell your system that they have a valid subscription. For this, we need to restrict the access to the <code>subscription</code> attribute of our <code>/user/{userId}</code> document. This can be done by Firestore rules, which I hope you have configured properly already! If you did not, I have a <a href="https://aronschueler.de/blog/2024/01/13/securing-firebase-firestore-with-basic-security-rules/" rel="noopener noreferrer">tutorial available on basic Firestore rules</a>.</p> <p>Extend your Firestore rules with this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>rules_version = '2'; service cloud.firestore { match /databases/{database}/documents { match /users/{userId} { allow read: if request.auth.uid == userId; allow update: if request.auth.uid == userId &amp;&amp; request.resource.data.keys().hasOnly(['name', 'email', 'preferences']); } match /{document=**} { allow read, write: if false; } } } </code></pre> </div> <p>This will only allow <code>update</code> operations on the name, email and preferences attributes of your user document - this is what I use to hold various informations, but you get the idea.</p> <h3> Step 11: <strong>Test everything and enable live mode</strong> </h3> <p>After deploying your functions and your frontend, test everything carefully. Everything! Subscription cancel cases, payment updates, aborted checkout sessions etc. If everything works and you're happy with it, disable Stripe test mode and you are ready to process your first subscriptions!</p> <h2> Conclusion </h2> <p>As you can see, you really only need a handful of new Firebase Cloud Functions to integrate Stripe with Firebase applications.<br> We have created functions to retrieve product and pricing information, create a checkout session, handle Stripe webhooks, create a customer portal session, and retrieve subscription data. We also updated Firestore rules to secure the subscription data.<br> I hope this guide was helpful to you and your products and that your launch is a great success! Feel free to share whatever you are building down below, I am interested to see your projects!</p> webdev javascript paymentprocessing firebase Publish Playwright Test Reports with GitLab CI/CD Artifacts Aron Schüler Wed, 11 Dec 2024 08:42:46 +0000 https://dev.to/thraizz/publish-playwright-test-reports-with-gitlab-cicd-artifacts-2d3m https://dev.to/thraizz/publish-playwright-test-reports-with-gitlab-cicd-artifacts-2d3m <h2> Introduction </h2> <p>Testing is a critical part of web development, and tools like Playwright make it easier to automate end-to-end testing for web applications.<br> Especially with their <a href="https://playwright.dev/docs/codegen" rel="noopener noreferrer">codegen</a> feature, I enjoy writing tests with Playwright and prefer it over tools like Cypress or Selenium.</p> <p>However, debugging e2e tests can be a hassle. If you run them in a pipeline, it can be quite hard to debug failing tests without proper reports.<br> Sharing test results with your team to collaborate on fixing issues can also be a challenge.</p> <p>Luckily, Gitlab CI/CD allows us to easily publish HTML output as artifacts, making it easy to share test results with your peers.</p> <p>In this guide, I'll walk you through configuring Playwright and GitLab CI/CD to generate and publish HTML test reports, making debugging and team collaboration much smoother.</p> <h2> Step-by-Step Guide </h2> <h3> Configure Playwright to Generate HTML Reports </h3> <p>Playwright supports various reporters for its test results. <br> To generate an HTML report, you'll need to configure the <code>playwright.config.ts</code> or <code>playwright.config.js</code> file to use the <code>html</code> reporter.</p> <p>Here’s how your configuration should look:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// playwright.config.js or playwright.config.ts</span> <span class="kd">const</span> <span class="nx">config</span> <span class="o">=</span> <span class="p">{</span> <span class="c1">// Other configurations...</span> <span class="na">reporter</span><span class="p">:</span> <span class="p">[[</span><span class="dl">"</span><span class="s2">html</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">outputFolder</span><span class="p">:</span> <span class="dl">"</span><span class="s2">out/report</span><span class="dl">"</span><span class="p">,</span> <span class="na">open</span><span class="p">:</span> <span class="dl">"</span><span class="s2">never</span><span class="dl">"</span> <span class="p">}]],</span> <span class="p">};</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">config</span><span class="p">;</span> </code></pre> </div> <p>This will generate an HTML report in the <code>out/report</code> directory after running the Playwright tests. The <code>open: "never"</code> option prevents the report from opening in the browser automatically, which would block the CI/CD pipeline and cause timeouts.</p> <h3> Set Up GitLab CI/CD Pipeline </h3> <p>Next, configure your <code>.gitlab-ci.yml</code> file to run the Playwright tests and provide the generated report as an artifact.<br> Here’s a sample pipeline configuration:</p> <h4> Code Block for Gitlab CI </h4> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">stages</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">e2e</span> <span class="na">playwright</span><span class="pi">:</span> <span class="na">stage</span><span class="pi">:</span> <span class="s">e2e</span> <span class="na">image</span><span class="pi">:</span> <span class="s">mcr.microsoft.com/playwright:v1.49.0-noble</span> <span class="na">script</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">npx playwright test</span> <span class="na">except</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">release</span> <span class="na">after_script</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">echo "Report will be available at https://$CI_PROJECT_ROOT_NAMESPACE.$CI_PAGES_DOMAIN/-/$CI_PROJECT_NAME/-/jobs/$CI_JOB_ID/artifacts/out/report/index.html"</span> <span class="na">artifacts</span><span class="pi">:</span> <span class="na">paths</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">out/report/</span> <span class="na">when</span><span class="pi">:</span> <span class="s">on_failure</span> </code></pre> </div> <h4> Explanation of Gitlab CI configuration </h4> <ul> <li> <code>image</code>: Specifies the container image with Playwright pre-installed.</li> <li> <code>script</code>: Runs the Playwright tests using npx.</li> <li> <code>except</code>: Excludes the pipeline stage for specific branches like release.</li> <li> <code>after_script</code>: Outputs a clickable URL to the report in the job logs.</li> <li> <code>artifacts</code>: Stores the <code>out/report</code> directory with the playwright content as a pipeline artifact, making it available as Gitlab Pages content.</li> </ul> <p>The pipeline will generate the HTML report and make it accessible as an artifact link in the GitLab job interface.</p> <h3> View the Report </h3> <p>Once the pipeline completes (successful or failed), you’ll find a link to the report in the pipeline job’s logs. The output you will look for looks something like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>Report will be available at "https://&lt;namespace&gt;.&lt;domain&gt;/-/&lt;project_name&gt;/-/jobs/&lt;job_id&gt;/artifacts/out/report/index.html" </code></pre> </div> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Faronschueler.de%2F_astro%2Ffailed_pipeline.C_qgqL0H_29zxvv.webp" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Faronschueler.de%2F_astro%2Ffailed_pipeline.C_qgqL0H_29zxvv.webp" alt="GitLab job output of failed pipeline with link to Playwright report" width="800" height="400"></a></p> <p>Clicking the link will open the Playwright HTML report, allowing you to inspect test results, trace failures, and debug issues effectively. I also like the playwright's <a href="https://playwright.dev/docs/test-snapshots" rel="noopener noreferrer">Visual Comparison</a> features, as it's great to use paired with these test reports.</p> <h3> Optional: Publish Report with GitLab Pages </h3> <p>If you’d like to make the report persistently accessible via GitLab Pages, extend the <code>.gitlab-ci.yml</code> configuration like this:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">pages</span><span class="pi">:</span> <span class="na">stage</span><span class="pi">:</span> <span class="s">deploy</span> <span class="na">script</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">mkdir -p public</span> <span class="pi">-</span> <span class="s">cp -r out/report/* public/</span> <span class="na">artifacts</span><span class="pi">:</span> <span class="na">paths</span><span class="pi">:</span> <span class="pi">-</span> <span class="s">public</span> </code></pre> </div> <p>This step deploys the report to GitLab Pages under your project’s domain, making it publicly or privately accessible depending on your repository settings.<br> But this is probably something that you'd rather use for feature branches or other test deployments of e. g. your SPA.<br> If you'd like to know more about this, leave a comment down below, and I'll happily provide a tutorial for that, too!</p> <h2> Conclusion </h2> <p>By following these steps, you can integrate Playwright’s reporting features with GitLab CI/CD, making it easy to debug failing pipelines. Especially when combined with Playwrights screenshot matching, you'll end up with a nice way of debugging your end-to-end tests.</p> <p>If you have questions or want to share your experience setting this up, feel free to drop a comment below. Happy testing 😸!</p> gitlab webdev playwright e2e Using Cloudflare Workers as a Proxy for Firebase Authentication Aron Schüler Sun, 02 Apr 2023 10:43:38 +0000 https://dev.to/thraizz/using-cloudflare-workers-as-a-proxy-for-firebase-authentication-388j https://dev.to/thraizz/using-cloudflare-workers-as-a-proxy-for-firebase-authentication-388j <h2> Setting Up Cloudflare Workers </h2> <p>Firebase is a popular platform for building web and mobile applications. One of the most commonly used authentication methods in Firebase is <code>signInWithRedirect</code>. However, there is a known issue with this function on Safari browsers where cross-domain cookies do not work. This means that the authentication cannot be done in the Firebase project's URL, which will be something like <code>myapp-123asdf.firebaseapp.com/</code>, and we have to serve the authentication handlers ourselves. </p> <p>To resolve this issue, we can use Cloudflare Workers as a proxy for Firebase authentication, so we can serve the authentication on the same domain as our application. This way, we can set the cookies for e.g. <code>app.example.com</code> and use it in the application after the redirect. This will allow any user to authenticate with the <code>signInWithRedirect</code> function. In this blog post, I will guide you through the process of setting up Cloudflare Workers for Firebase authentication.</p> <p>Note that this guide requires that you maintain your DNS records with Cloudflare already. As we will register a serverless function running on the same domain as your application, Cloudflare needs to be able to register a new record pointing to your function.</p> <h3> Register a Cloudflare Worker </h3> <p>The first step is to register a Cloudflare Worker. If you don't already have a Cloudflare account, you will need to create one and add your domain to it, so that we can register a route for the domain later on. Once you have logged in to your Cloudflare account, click on the Workers section in the sidebar.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Flakur.tech%2F2023%2F04%2Fcreate-worker.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Flakur.tech%2F2023%2F04%2Fcreate-worker.png" title="Creating a Cloudflare Worker to proxy requests to Firebase Authentication" alt="Creating a Cloudflare Worker to proxy requests to Firebase Authentication" width="800" height="461"></a></p> <p>Next, you should give the worker a good name so that it is easy recognizable. You can pick any of the code examples.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Flakur.tech%2F2023%2F04%2Fname-worker.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Flakur.tech%2F2023%2F04%2Fname-worker.png" title="Name your worker so you will recognize it in the future." alt="Naming a Cloudflare Worker to proxy requests to Firebase Authentication" width="800" height="459"></a></p> <p>Confirm the Creation and you will be greeted with an overview of the just created service. By clicking "Quick Edit" we can jump straight into a code editor for the Worker and start implementing necessary logic to proxy the requests to Firebase Authentication.</p> <h3> Implementing the Worker to proxy requests to Firebase Authentication </h3> <p>To implement the actual code that proxies requests from our <code>app.example.com</code> domain (where your application is running) to the external Firebase Authentication system, we will define some logic for our Worker using JavaScript. The first step is to define the project URL of your Firebase project. It is in the format <code>https://project-id.firebaseapp.com</code>. Your project ID can be found in the Firebase console under Project settings &gt; General &gt; Project ID.</p> <p>If your project ID would be <code>myapp-1dg8y9</code>, your project URL would be <code>https://myapp-1dg8y9.firebaseapp.com</code> </p> <p>Define your project URL as <code>firebaseProjectUrl</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">firebaseProjectUrl</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">https://myapp-1dg8y9.firebaseapp.com</span><span class="dl">'</span><span class="p">;</span> </code></pre> </div> <p>We can then define the Cloudflare Worker to listen for requests on <code>/__/auth/</code> and proxy them to the Firebase authentication URL.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">firebaseProjectUrl</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">https://myapp-1dg8y9.firebaseapp.com</span><span class="dl">'</span><span class="p">;</span> <span class="k">export</span> <span class="k">default</span> <span class="p">{</span> <span class="k">async</span> <span class="nf">fetch</span><span class="p">(</span><span class="nx">request</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">requestUrl</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">URL</span><span class="p">(</span><span class="nx">request</span><span class="p">.</span><span class="nx">url</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">requestUrl</span><span class="p">.</span><span class="nx">pathname</span><span class="p">.</span><span class="nf">startsWith</span><span class="p">(</span><span class="dl">"</span><span class="s2">/__/auth/</span><span class="dl">"</span><span class="p">))</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">transformedUrl</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">URL</span><span class="p">(</span> <span class="nx">firebaseProjectUrl</span> <span class="o">+</span> <span class="nx">requestUrl</span><span class="p">.</span><span class="nx">pathname</span> <span class="o">+</span> <span class="nx">requestUrl</span><span class="p">.</span><span class="nx">search</span> <span class="p">);</span> <span class="kd">const</span> <span class="nx">newRequest</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Request</span><span class="p">(</span><span class="nx">transformedUrl</span><span class="p">.</span><span class="nf">toString</span><span class="p">(),</span> <span class="p">{</span> <span class="na">method</span><span class="p">:</span> <span class="nx">request</span><span class="p">.</span><span class="nx">method</span><span class="p">,</span> <span class="na">headers</span><span class="p">:</span> <span class="nx">request</span><span class="p">.</span><span class="nx">headers</span><span class="p">,</span> <span class="p">});</span> <span class="k">return</span> <span class="nf">fetch</span><span class="p">(</span><span class="nx">newRequest</span><span class="p">);</span> <span class="p">}</span> <span class="k">return</span> <span class="k">new</span> <span class="nc">Response</span><span class="p">(</span><span class="dl">"</span><span class="s2">Not found</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="mi">404</span> <span class="p">});</span> <span class="p">},</span> <span class="p">};</span> </code></pre> </div> <p>This code listens for requests on <code>/__/auth/</code> and rewrites the request to be directed to your Firebase project URL. Then, it creates a new request object with the rewritten URL and forwards the original request's headers and method. Finally, it returns the response from Firebase.</p> <p>With this code, we have successfully set up a Cloudflare Worker to proxy our app's Firebase authentication requests. In the next section, we will guide you through the process of setting up the routing for this Worker.</p> <h3> Configure the Cloudflare Worker </h3> <p>Now that we have created a new Worker, we need to configure it to be reachable under our app's domain, so that it can rewrite requests to Firebase Authentication for us.</p> <p>First, go to your Cloudflare dashboard and navigate to the Workers section. Click on the worker you just created to open its settings page. There, select Triggers to configure the Worker's triggers.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Flakur.tech%2F2023%2F04%2Fworker-configure-triggers.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Flakur.tech%2F2023%2F04%2Fworker-configure-triggers.png" title="Configure the trigger so a request to your app domain gets proxied to Firebase Authentication" alt="Configure the trigger so a request to your app domain gets proxied to Firebase Authentication" width="800" height="458"></a><br> Under the "Routes" section, click "Add route" to add a new route with the Route <code>app.example.com/__/auth/*</code>, where you . This tells Cloudflare to use the Cloudflare Worker for any requests that start with <code>/__/auth/</code>. <br> Then select the fitting Zone / Domain for your worker.<br> <a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Flakur.tech%2F2023%2F04%2Fadd-route-to-worker.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Flakur.tech%2F2023%2F04%2Fadd-route-to-worker.png" title="Configure the route for your Cloudflare Worker request proxy" alt="Configure the route for your Cloudflare Worker request proxy" width="800" height="458"></a></p> <p>That was the Cloudflare part, nice!</p> <h2> Setting Up Your App </h2> <h3> Registering the new authorized domain in Firebase Authentication </h3> <p>Next, we need to add the app's domain (<code>app.example.com</code>) to our Firebase project's Authorized domains. Go to the Firebase console and navigate to Authentication &gt; Settings. Under Authorized domains, add your app's domain + <code>/__/auth/handle</code>, so for our <code>app.example.com</code> application you would add <code>https://app.example.com/__/auth/handle</code>. The Firebase Settings UI does not show the pathname entered here, but it matters, so be sure to add it this way.</p> <h3> Changing your firebase configuration </h3> <p>Finally, we need to update our Firebase configuration to use the new authentication domain. In your app's Firebase configuration, update the <code>authDomain</code> property to use your Cloudflare worker domain.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">firebaseConfig</span> <span class="o">=</span> <span class="p">{</span> <span class="c1">// [...]</span> <span class="na">authDomain</span><span class="p">:</span> <span class="dl">'</span><span class="s1">app.example.com</span><span class="dl">'</span> <span class="p">};</span> </code></pre> </div> <p>With these configurations, we have successfully set up our Cloudflare Worker to proxy Firebase authentication requests and configured our Firebase project to use the new authentication domain. In the next section, we will guide you through the process of testing this setup.</p> <h2> Testing </h2> <p>To test if your setup is working as expected, you can navigate to <code>https://app.example.com/__/auth/handle</code>. If you see a "Site Not Found" Firebase error, your project was configured correctly, as the default action for GET requests to the auth handle is what's currently displayed. You can deploy your change now, the sign in will work under Safari now!</p> <h2> Conclusion </h2> <p>By using Cloudflare Workers as a proxy for Firebase authentication, we can ensure that any user can authenticate with the <code>signInWithRedirect</code> function. The process involves registering a Cloudflare Worker and configuring it to resolve the requests as a proxy, configuring your Firebase project to allow the authentication domain, configuring your application, and then testing the Cloudflare Worker and Firebase authentication to ensure this works before deploying.</p> javascript webdev firebase cloudflare Fix slow ZSH startup due to NVM Aron Schüler Thu, 02 Feb 2023 11:04:23 +0000 https://dev.to/thraizz/fix-slow-zsh-startup-due-to-nvm-408k https://dev.to/thraizz/fix-slow-zsh-startup-due-to-nvm-408k <p>NVM can really be helpful when dealing with older projects. But there’s a problem, still. The nvm installation adds a portion of code to your .zshrc to enable autocompletion. This, in turn, slows the startup of your shell quite a lot.</p> <p>But we can easily fix this slow zsh startup! Instead of always loading your nvm autocompletion, we can command oh-my-zsh to just load nvm ressources on-demand, also known as lazy-loading.</p> <h2> How do I check if just NVM slows my ZSH startup? </h2> <p>That’s easy. In your <code>~/.zshrc</code> you can simply add <code>zmodload zsh/zprof</code> as first line and <code>zprof</code> as last line. This will prove you a nice output on which plugin caused what delay.</p> <p>So go ahead, add these both lines to your shell startup script and time your shell startup with <code>time zsh -i -c exit</code>. This will start your ZSH and execute the <code>exit</code> command.<br> Scroll a bit up and your zsh output should blame nvm:</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5uzl611no4332l2i4uz6.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F5uzl611no4332l2i4uz6.png" alt="Slow startup on ZSH after installing NVM" width="800" height="393"></a></p> <p>Bad, right? That’s almost 90% startup time caused by a single tool I<br> don’t use <em>that much</em>. So let’s fix this!</p> <h2> How do I fix the slow zsh startup? </h2> <p>As the average ZSH user, you probably already have different plugins provided by <a href="https://github.com/ohmyzsh/ohmyzsh" rel="noreferrer noopener">oh-my-zsh</a>. If not, really, go ahead and get yourself some nice plugins! It’s a community driven aggregator of many many great plugins.</p> <p>The plugin we need now is the <code>nvm</code> plugin. It’s already included in <code>oh-my-zsh</code> and should be activated in your plugins array somewhere in your <code>.zshrc</code>. </p> <p>But you also want to add the line <code>zstyle ':omz:plugins:nvm' lazy yes</code>, which enables the<br> lazy-loading mode. This mode defers the load of the nvm plugin and activates the script when using it.<br> To further optimize your startup you can replace that line with <code>zstyle ':omz:plugins:nvm' autoload yes</code>.<br> This will only source the plugin in directories that contain a .nvmrc file. So, in conclusion,<br> add/modify the following in your zsh startup script:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>zstyle <span class="s1">':omz:plugins:nvm'</span> lazy <span class="nb">yes</span> <span class="c"># Alternative:</span> <span class="c"># zstyle ':omz:plugins:nvm' autoload yes</span> <span class="nv">plugins</span><span class="o">=(</span> nvm // <span class="o">[</span>...] <span class="o">)</span> // <span class="o">[</span>...] </code></pre> </div> <p>Also, be sure to remove the lines added by nvm, they should be somewhere at the bottom of your script, mine looked like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">export </span><span class="nv">NVM_DIR</span><span class="o">=</span><span class="s2">"</span><span class="nv">$HOME</span><span class="s2">/.nvm"</span> <span class="o">[</span> <span class="nt">-s</span> <span class="s2">"</span><span class="nv">$NVM_DIR</span><span class="s2">/nvm.sh"</span> <span class="o">]</span> <span class="o">&amp;&amp;</span> <span class="se">\.</span> <span class="s2">"</span><span class="nv">$NVM_DIR</span><span class="s2">/nvm.sh"</span> <span class="c"># This loads nvm</span> <span class="o">[</span> <span class="nt">-s</span> <span class="s2">"</span><span class="nv">$NVM_DIR</span><span class="s2">/bash_completion"</span> <span class="o">]</span> <span class="o">&amp;&amp;</span> <span class="se">\.</span> <span class="s2">"</span><span class="nv">$NVM_DIR</span><span class="s2">/bash_completion"</span> <span class="c"># This loads nvm bash_completion</span> </code></pre> </div> <h2> Checking fixed startup times </h2> <p>Now, go to any directory that shouldn’t autostart nvm and check your timings again. Mine looked like this:</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2julfgkswpcz51xaubxn.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2F2julfgkswpcz51xaubxn.png" alt="Improved startup times after nvm lazy-loading" width="800" height="292"></a></p> <p>As you can see above, nvm support takes now much less time to start, while still being available “on-call”.</p> <h2> Done! </h2> <p>Now you can safely remove the debugging lines we introduced to our <code>.zshrc</code> earlier.</p> <p>Hopefully I could help you a bit with this short post, see you around for the<br> next one 🙂</p> crypto cryptocurrency blockchain offers Serve your React build locally with nginx through docker Aron Schüler Thu, 02 Feb 2023 10:55:03 +0000 https://dev.to/thraizz/serve-your-react-build-locally-with-nginx-through-docker-2pdb https://dev.to/thraizz/serve-your-react-build-locally-with-nginx-through-docker-2pdb <p>Sometimes, there are build differences between your development server and your build outcome. To debug this, you have to somehow host your build outcome locally. This can be done really easy, just mount your build into a nginx container!</p> <h2> Creating the build </h2> <p>As a first step, you have to build and bundle your JavaScript / TypeScript by running the build command. You can find that command in your package.json. For a React App, created with create-react-app this would be <code>react-scripts build</code>, accessible in the most projects over the script build. This script can be executed through e.g. <code>npm run build</code>, depending on your node package manager.</p> <p>This provides us our static files in <code>/build</code>. We will have to start a container and mount that directory next.</p> <h2> Creating the container </h2> <p>The second step starts a container and mounts the built files as the default served directory. For the <a href="https://hub.docker.com/_/nginx/" rel="noopener noreferrer">default nginx image</a>, this is the path <code>/usr/share/nginx/html</code>, which provides the famous <code>Welcome to nginx!</code> default page.<br><br> Mounting our build output into this folder makes nginx serve the build instead of its default pages.</p> <p>Start the container with the following command from your project root:<br><br> <code>docker run -p 8082:80 -v $(pwd)/build:/usr/share/nginx/html nginx</code></p> <p>Your built files will be available under port 8082.</p> <h2> Done! </h2> <p>Really easy, wasn’t it? If there’s any feedback, problems, or just a quick “Thanks, works” – be sure to comment below.</p> web3 blockchain crypto offers Meaningful Sentry issues with react-query + axios Aron Schüler Thu, 02 Feb 2023 10:39:26 +0000 https://dev.to/thraizz/meaningful-sentry-issues-with-react-query-axios-564n https://dev.to/thraizz/meaningful-sentry-issues-with-react-query-axios-564n <p>One of our products just went live, wohoo! But we are using external backend servers, which are not monitored by us, the frontend development team. To gain more insight into application behaviour, we are monitoring the web app through <a href="https://sentry.io" rel="noopener noreferrer">Sentry</a>. This works well and already provided a lot of informations on legacy issues, such as missing <code>ResizeObserver</code>, clients that use browsers without <code>window.matchMedia</code> and so on.</p> <p>But one issue really stood out. We were not able to gather <em>anything useful</em> for errors produced by axios. And as we are not able to debug this backend-side, this was a big no-no.</p> <p>So I went to optimize the way how our errors are handled with <a href="https://tanstack.com/query/v4/docs/react/overview" rel="noopener noreferrer">react-query</a>, <a href="https://github.com/axios/axios" rel="noopener noreferrer">axios</a> and <a href="https://sentry.io" rel="noopener noreferrer">Sentry</a>. Let's have a look!</p> <h2> The initial problem </h2> <p>Like any sane web app, we catch exceptions for requests on a query level using <code>onError</code> and display errors in a toast, so the user knows something went wrong and what they can do about it. Then we pass the exception into Sentry.<br> Often, we enrich the exception further with informations that might be useful for debugging later, for example, a selected product or what payment provider the user tried to use.</p> <p>An example would look like:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight tsx"><code><span class="kd">const</span> <span class="p">{</span> <span class="nx">isLoading</span><span class="p">,</span> <span class="nx">error</span><span class="p">,</span> <span class="nx">data</span> <span class="p">}</span> <span class="o">=</span> <span class="nf">useQuery</span><span class="p">({</span> <span class="na">queryKey</span><span class="p">:</span> <span class="p">[</span><span class="dl">'</span><span class="s1">repoData</span><span class="dl">'</span><span class="p">],</span> <span class="na">queryFn</span><span class="p">:</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nf">myQueryFn</span><span class="p">(),</span> <span class="na">onError</span><span class="p">:</span> <span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">showAlert</span><span class="p">({</span> <span class="na">text</span><span class="p">:</span> <span class="nf">t</span><span class="p">(</span><span class="dl">"</span><span class="s2">Error.repoData.failed</span><span class="dl">"</span><span class="p">),</span> <span class="na">type</span><span class="p">:</span> <span class="nx">AlertTypes</span><span class="p">.</span><span class="nx">error</span><span class="p">,</span> <span class="p">});</span> <span class="nf">withScope</span><span class="p">((</span><span class="nx">scope</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">scope</span><span class="p">.</span><span class="nf">setTag</span><span class="p">(</span><span class="dl">"</span><span class="s2">section</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">repoData</span><span class="dl">"</span><span class="p">);</span> <span class="nf">captureException</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="p">});</span> <span class="p">}</span> </code></pre> </div> <p>But what if we don't want to do this with every component, what if we have a lot of queries and mutations that should just display a general error and capture the exception afterwards?</p> <p>Well, that's definitely possible in the <code>defaultOptions</code> while setting up your <a href="https://tanstack.com/query/v4/docs/react/reference/QueryClient" rel="noopener noreferrer"><code>QueryClient</code></a>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight tsx"><code> <span class="kd">const</span> <span class="nx">queryClient</span> <span class="o">=</span> <span class="nf">useMemo</span><span class="p">(</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="k">new</span> <span class="nc">QueryClient</span><span class="p">({</span> <span class="na">defaultOptions</span><span class="p">:</span> <span class="p">{</span> <span class="na">queries</span><span class="p">:</span> <span class="p">{</span> <span class="na">onError</span><span class="p">:</span> <span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">captureException</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="nf">showAlert</span><span class="p">();</span> <span class="p">},</span> <span class="p">},</span> <span class="na">mutations</span><span class="p">:</span> <span class="p">{</span> <span class="na">onError</span><span class="p">:</span> <span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">captureException</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="nf">showAlert</span><span class="p">();</span> <span class="p">},</span> <span class="p">},</span> <span class="p">},</span> <span class="p">}),</span> <span class="p">[</span><span class="nx">showAlert</span><span class="p">]</span> <span class="p">);</span> </code></pre> </div> <p>Cool, right? Yeah, well, not really. There are three big issues with this.</p> <h3> Missing information </h3> <p>Both usages of <code>captureException</code> above just brings us the stack trace and the <code>error.response.message</code> in Sentry, so all information we would have on a response with a <code>500</code> status would be:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>AxiosError: Request failed with status code 500 at AxiosError(../node_modules/axios/lib/core/AxiosError.js:22:23) at settle(../node_modules/axios/lib/core/settle.js:19:16) at onloadend(../node_modules/axios/lib/adapters/xhr.js:103:7) </code></pre> </div> <p>To be fair, in the breadcrumbs you can see what the requests were before that.<br> But this is not much info either, you can just say what URL the user tried to reach, not what exception occurred or what the request and response looked like.</p> <h3> Missing grouping of issues </h3> <p>Handling exceptions this way will cause the same queries and exceptions to raise new issues. This is because Sentry groups issues by their stack trace and the point in your app where these exceptions were found. This is called "Fingerprinting" in Sentry. You can read more about this here: <a href="https://docs.sentry.io/product/data-management-settings/event-grouping/fingerprint-rules/" rel="noopener noreferrer">Fingerprinting Rules in Sentry</a>. </p> <h3> Totally not DRY when using query-level <code>onError</code> </h3> <p>If you want to handle certain errors on a query level as well, you will have many places with custom logic that looks like the first example. Using <code>defaultOptions</code>, you cannot configure your queries to share a common <code>onError</code> behaviour and then implement e.g. a custom alert themselves. It is just the <em>default option</em> if no <code>onError</code> callback was defined.</p> <h2> The solution </h2> <p>Now, we are really searching for two things:</p> <ol> <li>Setting up a global <code>captureException</code>, which works even with query-level <code>onError</code> handlers defined</li> <li>Enriching issues with more informations about the exception</li> </ol> <h3> Step 1: Global <code>captureException</code> handlers </h3> <p>Instead of capturing exceptions on a query-based level, I discovered the ability to configure error handling on a more global level. This is done by configuring the <code>MutationCache</code> and <code>QueryCache</code> used by your <code>QueryClient</code>. You can set <code>onError</code> handlers for these, which will then trigger always, even when query-level <code>onError</code> handlers are present.<br> As you have access to the <code>muation</code> or <code>query</code> object there, you can even extract more informations and send them with the exception!</p> <p>Let's have a look at the new <code>queryClient</code> I came up with:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight tsx"><code><span class="kd">const</span> <span class="nx">queryClient</span> <span class="o">=</span> <span class="nf">useMemo</span><span class="p">(</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="k">new</span> <span class="nc">QueryClient</span><span class="p">({</span> <span class="na">mutationCache</span><span class="p">:</span> <span class="k">new</span> <span class="nc">MutationCache</span><span class="p">({</span> <span class="na">onError</span><span class="p">:</span> <span class="p">(</span><span class="nx">err</span><span class="p">,</span> <span class="nx">_variables</span><span class="p">,</span> <span class="nx">_context</span><span class="p">,</span> <span class="nx">mutation</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">withScope</span><span class="p">((</span><span class="nx">scope</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">scope</span><span class="p">.</span><span class="nf">setContext</span><span class="p">(</span><span class="dl">"</span><span class="s2">mutation</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">mutationId</span><span class="p">:</span> <span class="nx">mutation</span><span class="p">.</span><span class="nx">mutationId</span><span class="p">,</span> <span class="na">variables</span><span class="p">:</span> <span class="nx">mutation</span><span class="p">.</span><span class="nx">state</span><span class="p">.</span><span class="nx">variables</span><span class="p">,</span> <span class="p">});</span> <span class="k">if </span><span class="p">(</span><span class="nx">mutation</span><span class="p">.</span><span class="nx">options</span><span class="p">.</span><span class="nx">mutationKey</span><span class="p">)</span> <span class="p">{</span> <span class="nx">scope</span><span class="p">.</span><span class="nf">setFingerprint</span><span class="p">(</span> <span class="c1">// Duplicate to prevent modification</span> <span class="nb">Array</span><span class="p">.</span><span class="k">from</span><span class="p">(</span><span class="nx">mutation</span><span class="p">.</span><span class="nx">options</span><span class="p">.</span><span class="nx">mutationKey</span><span class="p">)</span> <span class="k">as</span> <span class="kr">string</span><span class="p">[]</span> <span class="p">);</span> <span class="p">}</span> <span class="nf">captureException</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="p">});</span> <span class="p">},</span> <span class="p">}),</span> <span class="na">queryCache</span><span class="p">:</span> <span class="k">new</span> <span class="nc">QueryCache</span><span class="p">({</span> <span class="na">onError</span><span class="p">:</span> <span class="p">(</span><span class="nx">err</span><span class="p">,</span> <span class="nx">query</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">withScope</span><span class="p">((</span><span class="nx">scope</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">scope</span><span class="p">.</span><span class="nf">setContext</span><span class="p">(</span><span class="dl">"</span><span class="s2">query</span><span class="dl">"</span><span class="p">,</span> <span class="p">{</span> <span class="na">queryHash</span><span class="p">:</span> <span class="nx">query</span><span class="p">.</span><span class="nx">queryHash</span> <span class="p">});</span> <span class="nx">scope</span><span class="p">.</span><span class="nf">setFingerprint</span><span class="p">([</span><span class="nx">query</span><span class="p">.</span><span class="nx">queryHash</span><span class="p">.</span><span class="nf">replaceAll</span><span class="p">(</span><span class="sr">/</span><span class="se">[</span><span class="sr">0-9</span><span class="se">]</span><span class="sr">/g</span><span class="p">,</span> <span class="dl">"</span><span class="s2">0</span><span class="dl">"</span><span class="p">)]);</span> <span class="nf">captureException</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="p">});</span> <span class="p">},</span> <span class="p">}),</span> <span class="na">defaultOptions</span><span class="p">:</span> <span class="p">{</span> <span class="na">queries</span><span class="p">:</span> <span class="p">{</span> <span class="na">onError</span><span class="p">:</span> <span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">showAlert</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="p">},</span> <span class="p">},</span> <span class="na">mutations</span><span class="p">:</span> <span class="p">{</span> <span class="na">onError</span><span class="p">:</span> <span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nf">showAlert</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="p">},</span> <span class="p">},</span> <span class="p">},</span> <span class="p">}),</span> <span class="p">[</span><span class="nx">showAlert</span><span class="p">]</span> <span class="p">);</span> </code></pre> </div> <p>We capture exceptions for <strong>every query and mutation</strong> now and we use <code>scope.setFingerprint</code> to define, <strong>what fingerprint the scope has</strong> and therefore what the exception will be grouped by. For now, I use the <code>mutationKey</code> or the <code>queryHash</code> for this. Before using the <code>queryHash</code> I strip away all numbers, so that I don't get one issue per query parameter combination.</p> <h3> Step 2: Automatically enriching issues with informations </h3> <p>Sentry provides a really helpful <strong>pluggable Integration</strong>, <code>ExtraErrorData</code>. This integration automatically extracts data from the given <code>error</code> object in an event and even checks if this <code>error</code> object has a <code>.toJSON()</code> method, which it will call and display all information in the issue page on Sentry.</p> <p>To set this integration up, you have to install the <code>@sentry/integrations</code> package and add your wanted integration into your <code>Sentry.init</code> call, like so:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="o">*</span> <span class="k">as</span> <span class="nx">Sentry</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">@sentry/browser</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">ExtraErrorData</span> <span class="k">as</span> <span class="nx">ExtraErrorDataIntegration</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">@sentry/integrations</span><span class="dl">"</span><span class="p">;</span> <span class="nx">Sentry</span><span class="p">.</span><span class="nf">init</span><span class="p">({</span> <span class="na">dsn</span><span class="p">:</span> <span class="dl">"</span><span class="s2">https://examplePublicKey@o0.ingest.sentry.io/0</span><span class="dl">"</span><span class="p">,</span> <span class="na">integrations</span><span class="p">:</span> <span class="p">[</span> <span class="k">new</span> <span class="nc">ExtraErrorDataIntegration</span><span class="p">(),</span> <span class="p">],</span> <span class="p">});</span> </code></pre> </div> <p>This will then display all additional data from your axios error in sentry. Nice!</p> <h2> Done! </h2> <p>Instead of just getting a stack trace and the error message, we now get grouped issues per query/mutation, all data from the axios error and global handling of all errors when using react-query.</p> <p>I hope this was helpful to you! If not, be sure to leave a comment below, I am happy to investigate your issue as well! 😊</p> web3 crypto blockchain