README

This is the BlueSky Web Application created by and for BlueStone Properties.

License

Copyright 2017-2018 BlueStone Properties This code is proprietary and distribution is strictly prohibited.

Dependencies

• Ruby version: 2.6.3 (in Gemfile)
• System dependencies
  • Typical Rails 5 dependencies
  • Node.js 14.x
  • npm
  • yarn

Development

Bootstrapping

• Run bin/setup

Configuration

• Local Configuration:
  • Customize config/database.yml
  • Customize .env from env.example
  • Customize .pryrc from pryrc.example
  • ... etc. as indicated by bin/setup

Any configuration that is used in production should use environment variables instead of config files. Config files in this application should be created VERY SPARINGLY and NEVER include secrets. The purpose of these default configuration files

Whenever a new config file MUST be created, be sure to:

• create a .example file
• update bin/setup
• add the config file to .gitignore
• we do not want to create configuration files intended only for development/developers to be checked into source control

Running

In development it is recommended to use the bin/server script to run the application. This script does the following:

• Installs any missing gems using bundler
• Checks for any security vulnerabilities with bundle audit check --update
• Starts Foreman, which executes processes defined in Procfile.dev

Foreman Processes

Foreman will automatically load environment variables as defined in the .env file. Be sure to customize this file before running the application.

The following are started by Foreman in development (Procfile.dev):

• web Puma application server (configured in config/puma.rb)
• worker DelayedJob worker via bundle exec rails jobs:work
• webpacker WebPacker dev server (automatically compiles packfiles and reloads the browser when appropriate. This compiles the React component for Lead#search)

The following are started by Foreman (or Heroku) in production (Procfile):

• web Puma application server
• worker DelayedJob worker

Console

Start the Rails console (Pry) with bundle exec rails console

Pry configuration can be found in .pryrc

Testing

The following libraries/tools are used for testing:

• RSpec
• FactoryBot
• Guard
• Minicov

Running Tests

We suggest running bundle exec guard in a dedicated console window/tab. Guard automatically runs tests when files are added/updated.

Guard also automatically updates the application tags file for use in code editors.

Run bundle exec rspec to run the entire test suite. When Rspec has completed running the tests, a test coverage report is automatically created in coverage/index.html

Writing Tests

Be sure to create and update FactoryBot factories whenever a database model is created or updated.

Annotations

Run bundle exec annotate to annotate models, tests. and factories with model/table fields at the beginning of the file. These annotations can be a huge help during development and testing to understand the database schema.

Documentation

Place documentation in README.md or in doc/. Guard will automatically any graphviz dot files using the rake task rake docs:compile:dot. This task may be run in a standalone fashion as well using the pattern rake docs:compile:dot[doc/filename.dot]

Services

DelayedJob

DelayedJob is started by Foreman, or can be started manually with: bundle exec rails jobs:work

A web interface is provided at /delayed_job which is accessible by Administrator users.

Source Code Management

We are using the GitFlow branch management model. See: https://datasift.github.io/gitflow/IntroducingGitFlow.html

Deployment

The application is hosted on Heroku. Push to Heroku and run database migrations as needed.

Staging Deployment Example:

git push heroku-staging staging:master && \
  heroku run rake db:migrate --app heroku-staging

Deployment Helper

The bin/deploy script handles creation of a git tag, deployment of the application to Heroku, and running of migrations on Heroku

First, the remotes for staging and production must be set up:

git remote add heroku-staging https://git.heroku.com/druid-staging.git
git remote add heroku-prod https://git.heroku.com/druid-prod.git

For example: bin/deploy staging will use the current branch, create a staging-YYYYMMDD tag, push the tag to origin, push the code to the heroku-staging origin, then run migrations on the staging application.

Full Example for Production Deployment:

git checkout master
git merge feature-branch
# Edit VERSION file to update version, and save
git add VERSION && git commit -m 'Incremented VERSION to 1.9.XX'
git push
git checkout production
git merge master
git push
bin/deploy prod

Users

The User model corresponds to User identities in BlueSky.

User login and authentication is powered by Devise. Run the db:seed task or create a new user via the console. For example:

new_user = User.create(email: 'newuser@example.com',
                       password: 'ChangeMe123',
                       password_confirmation: 'ChangeMe123')
# Confirm the user via the email link or via the confirm method
new_user.confirm

Authentication, etc.

The User model is backed by the devise gem. Providing numerous capabilities:

• Authentication
• Account email address confirmation
• Password Reset
• Automatic account locking after multiple failed authentication attempts
• Account unlocking

Roles

A user may belong to one of three Roles:

• Administrator: fully privilileged users
• Corporate: Corporate Staff
• Manager: sales agent manager
• Agent: sales agents with limit management access

UI

Admins (Role is administrator or operator) may manage users via a Web UI.

Production/Staging

General Configuration

Environment Variables

Reference env.example for the full set of required environment variables. Values WILL vary from what is shown below.

# Environment Variables
ACTIVESTORAGE_S3_BUCKET
ACTIVESTORAGE_S3_REGION
ACTIVESTORAGE_S3_ACCESS_KEY
ACTIVESTORAGE_S3_SECRET_KEY
APPLICATION_HOST=www.druidapp.com
APPLICATION_DOMAIN=druidapp.com
CRYPTO_KEY=XXX
DEBUG_MESSAGE_API=false
EXCEPTION_NOTIFIER_ENABLED=true
EXCEPTION_RECIPIENTS='example@example.com,example2@example.com'
HTTP_AUTH_NAME=XXX
HTTP_AUTH_PASSWORD=XXX
LANG=en_US.UTF-8
LEAD_AUTOMATIC_REPLY="true"
LEAD_AUTOMATIC_DEDUPE="false"
MAILGUN_API_KEY=XXX
MAILGUN_DOMAIN=XXX
MAILGUN_PUBLIC_KEY=XXX
MAILGUN_SMTP_LOGIN=XXX
MAILGUN_SMTP_PASSWORD=XXX
MAILGUN_SMTP_PORT=XXX
MAILGUN_SMTP_SERVER=XXX
MEMCACHE_SERVERS=localhost
MEMCACHIER_SERVERS=XXX (production only)
MEMCACHIER_USERNAME=XXX (production only)
MEMCACHIER_PASSWORD=XXX (production only)
MESSAGE_DELIVERY_REPLY_TO="messages@example.com"
MESSAGE_DELIVERY_TWILIO_PHONE='+15555555555'
MESSAGE_DELIVERY_TWILIO_SID='XXX'
MESSAGE_DELIVERY_TWILIO_TOKEN='XXX'
MESSAGE_WHITELIST_ENABLED='false'
NEW_RELIC_LICENSE_KEY='XXX'
PAPERTRAIL_API_TOKEN=XXX
PORT=3000
RACK_ENV=production
RAILS_ENV=production
RAILS_LOG_TO_STDOUT=enabled
RAILS_MAX_THREADS=5
RAILS_SERVE_STATIC_FILES=enabled
SCOUT_DEV_TRACE=true
SCOUT_KEY=XXX
SCOUT_LOG_LEVEL=WARN
SCOUT_MONITOR=false
SECRET_KEY_BASE=XXX
SMTP_DOMAIN=localhost
SLACK_ERROR_NOTIFICATION_WEBHOOK='https://hooks.slack.com/services/XXX/XXX/XXX'
WEB_CONCURRENCY=1
YARDI_VOYAGER_DATABASE="gazv_test"
YARDI_VOYAGER_HOST="www.yardiasp14.com"
YARDI_VOYAGER_LICENSE="XXX"
YARDI_VOYAGER_PASSWORD="XXX"
YARDI_VOYAGER_SERVERNAME="gazv_test"
YARDI_VOYAGER_USERNAME="XXX"
YARDI_VOYAGER_VENDORNAME="Bluestone Druid"
YARDI_VOYAGER_WEBSHARE="21253beta"

Seed Data

After the application has been provisioned and deployed and the addons setup, seed the application data.

heroku run --app APPNAME rake db:schema:load
heroku run --app APPNAME rake db:seed

Immediately login as admin@example.com using the password ChangeMeNow, then update the admin account to use a secure password. Then change the admin email address. Delete the agent@example.com account afterwards.

Services

Cache

Memcached is used for ActiveSupport::Cache::Store

BlueSky Configuration

# Environment Variables
MEMCACHE_SERVERS=XXX (automatically set by addon configuration)

Messaging (General)

Delivery of SMS and email messages can be restricted to numbers and email addresses of registered users using the MESSAGE_WHITELIST_ENABLED environment flag. Set this variable to 1 or true to prevent messages from being sent to leads.

PostgreSQL

PostgreSQL is the primary relational database, used by ActiveRecord.

On Heroku, this service is provisioned as an addon using the 'standard-0' tier.

BlueSky Configuration

# Environment Variables
DATABASE_URL=XXX (automatically set by addon configuration)

Scheduled Tasks

Leads should be automatically created based on incoming calls. A rake task should be run every 10 minutes to create Leads: rake leads:calls:generate_leads[60] The parameter to this task indicates how recent call records should be in minutes. Always provide a parameter to this rake task to prevent long running times.

Problems with replication can magnify beyond repair if they are not corrected in a timely fashion. A scheduled rake task performs checks on the CDR database and sends notifications if any problems are found: rake leads:calls:db_check

ActiveStorage

In staging and production we use ActiveStorage backed by Amazon S3 to store binary attachments.

BlueSky Configuration

# Environment Variables
ACTIVESTORAGE_S3_BUCKET="druid-prod-activestorage"
ACTIVESTORAGE_S3_REGION="us-east-1"
ACTIVESTORAGE_S3_ACCESS_KEY="XXX"
ACTIVESTORAGE_S3_SECRET_KEY="XXX"

Amazon Configuration

The S3 bucket is configured to block all public access.

The access key and secret are credentials assocated with the druid-staging-activestorage or druid-prod-activestorage IAM users.

Example Access Policy:

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "s3:ListBucket",
                "s3:GetBucketLocation",
                "s3:ListBucketMultipartUploads"
            ],
            "Resource": "arn:aws:s3:::druid-staging-activestorage"
        },
        {
            "Effect": "Allow",
            "Action": [
                "s3:AbortMultipartUpload",
                "s3:DeleteObject",
                "s3:DeleteObjectVersion",
                "s3:GetObject",
                "s3:GetObjectAcl",
                "s3:GetObjectVersion",
                "s3:GetObjectVersionAcl",
                "s3:PutObject",
                "s3:PutObjectAcl",
                "s3:PutObjectAclVersion"
            ],
            "Resource": "arn:aws:s3:::druid-staging-activestorage/*"
        }
    ]
}

Mailgun

Mailgun provides outgoing email service for the application, used by ActionMailer.

On Heroku, this service is provisioned as an addon using the 'Starter' (free) tier.

BlueSky Configuration

# Environment Variables
MAILGUN_API_KEY=XXX
MAILGUN_DOMAIN=mail.druidsite.com
MAILGUN_PUBLIC_KEY=XXX
MAILGUN_SMTP_LOGIN=postmaster@mail.druidsite.com
MAILGUN_SMTP_PASSWORD=XXX
MAILGUN_SMTP_PORT=587
MAILGUN_SMTP_SERVER=smtp.mailgun.org

Mailgun Configuration

Validate the mail.druidsite.com domain.

Yardi

Yardi Voyager is (historically) used by leasing agents and other employees to manage leads and residents.

Several scheduled jobs import/export information from Yardi Voyager:

|-----------+-----------------------------------------+-------------------------------------------------------------|
| Frequency | Task                                    | Description                                                 |
|-----------+-----------------------------------------+-------------------------------------------------------------|
| 10m       | rake leads:yardi:send_guestcards        | Send claimed Leads to Yardi Voyager                         |
| Hourly    | rake leads:yardi:import_guestcards[30]  | Fetch New (<30m) Yardi Voyager Guestcards as Leads          |
| Hourly    | rake unit_types:yardi:import_floorplans | Import/Update Voyager Floorplans                            |
| Hourly    | rake units:yardi:import_units           | Import/Update Voyager Units                                 |
| Daily     | rake leads:yardi:import_guestcards      | Fetch all Yardi Voyager Guestcards as Leads                 |
|-----------+-----------------------------------------+-------------------------------------------------------------|

BlueSky Configuration

# Environment Variables
YARDI_VOYAGER_DATABASE=gazv_live
YARDI_VOYAGER_HOST=www.yardiasp14.com
YARDI_VOYAGER_LICENSE=XXX
YARDI_VOYAGER_PASSWORD=XXX
YARDI_VOYAGER_SERVERNAME=gazv_live
YARDI_VOYAGER_USERNAME=druid
YARDI_VOYAGER_VENDORNAME=Druid ILS Guest Card
YARDI_VOYAGER_WEBSHARE=21253beta

Cloudmailin

Cloudmailin provides incoming mail via webhooks. Incoming mail is used by the following features:

• Lead import from Internet Listing Services
• Incoming (email) Messages for the Lead Messaging feature

BlueSky Configuration

Webhook requests are authorized and validated with a token param. Go to LeadSource#Show to view and/or reset the token

Incoming messages are processed using a + email scheme.

• Incoming Leads use the code part of the address+code@cloudmailin.net address to lookup PropertyListing record which associates the Lead with a property.
• See Property#Edit to assign Property Listing ID's/Codes.

# Environment Variables
MESSAGE_DELIVERY_REPLY_TO=XXX (use appropriate Cloudmailin address for the environment and Messages feature)
DEBUG_MESSAGE_API=true (logs additional debug information)

Cloudmailin Configuration

Cloudmailin configuration is separate from Heroku and is performed on the Cloudmailin website (https://cloudmailin.com). The account email address is 'cobaltcloud@betanutechnologies.com'

|-------------+----------------+--------------------------------------+----------------------------------------------------------|
| Environment | Feature        | Address                              | POST Target                                              |
|-------------+----------------+--------------------------------------+----------------------------------------------------------|
| Production  | Lead Ingestion | 47064e037e5740bbedad@cloudmailin.net | https://www.druidsite.com/api/v1/leads.json?token=XXX    |
| Staging     | Lead Ingestion | Unconfigured                         | Unconfigured                                             |
| Production  | Messages       | 1b524cb3122f466ecc5a@cloudmailin.net | https://www.druidsite.com/api/v1/messages.json?token=XXX |
| Staging     | Messages       | Unconfigured                         | Unconfigured                                             |
|-------------+----------------+--------------------------------------+----------------------------------------------------------|

Twilio

Twilio provides outgoing and incoming SMS messaging for the Lead Messaging feature.

• Outgoing SMS messages utilize the Twilio API.
• Incoming SMS messages are ingested using a webhook.

BlueSky Configuration

The callback token can be viewed and reset at LeadSource#Show.

# Environment Variables
MESSAGE_DELIVERY_TWILIO_PHONE=+15126437241
MESSAGE_DELIVERY_TWILIO_SID=XXX
MESSAGE_DELIVERY_TWILIO_TOKEN=XXX
MESSAGE_WHITELIST_ENABLED='false'

Twilio Configuration

Twilio configuration is performed at https://www.twilio.com. A master account provisions sub-accounts for management.

|-------------+-----------+--------------+---------------------------------------------------------|
| Environment | Feature   | Phone Number | Callback                                                |
|-------------+-----------+--------------+---------------------------------------------------------|
| Staging     | Messaging | 512-643-7241 | https://staging.druidsite.com/api/v1/messages?token=XXX |
| Production  | Messaging | Unconfigured | Unconfigured                                            |
|-------------+-----------+--------------+---------------------------------------------------------|

Exception Notification

The exception_notification gem is used to email error notifications to developers and post error notifications in Slack

The ErrorNotification class is exposed to allow easy notification of errors from anywhere:

Usage: ErrorNotification.send(StandardError.new('error message'), {extra1: 'foo', extra2: 'bar'})

BlueSky Configuration

# Environment Variables
EXCEPTION_RECIPIENTS='example@example.com,example2@example.com' # Required or notification gracefully fails
EXCEPTION_NOTIFIER_ENABLED=true   # Enabled by default

Scheduled Tasks

The Heroku Scheduler should be configured to run the following tasks

|-----------+-----------------------------------------+-------------------------------------------------------------|
| Frequency | Task                                    | Description                                                 |
|-----------+-----------------------------------------+-------------------------------------------------------------|
| 10m       | rake leads:calls:generate_leads[60]     | Generate leads from incoming calls in the past 60 minutes   |
| 10m       | rake leads:yardi:send_guestcards        | Send claimed Leads to Yardi Voyager                         |
| Hourly    | rake cache:warm:all                     | Warm cache for Prospect Stats                               |
| Hourly    | rake leads:calls:db_check               | Check CDR database for replication issues                   |
| Hourly    | rake leads:process_followups            | Convert scheduled Follow-ups to Leads                       |
| Hourly    | rake leads:yardi:import_guestcards[30]  | Fetch New (<30m) Yardi Voyager Guestcards as Leads          |
| Hourly    | rake unit_types:yardi:import_floorplans | Import/Update Voyager Floorplans                            |
| Hourly    | rake units:yardi:import_units           | Import/Update Voyager Units                                 |
| Daily     | rake leads:recordings:cleanup           | Delete calll recordings >2wks old not associated with leads |
| Daily     | rake leads:yardi:import_guestcards      | Fetch all Yardi Voyager Guestcards as Leads                 |
|-----------+-----------------------------------------+-------------------------------------------------------------|