augustin-wien / augustina-backend

An open-source web shop designed for selling magazines on the street.
GNU Affero General Public License v3.0
4 stars 0 forks source link
hacktoberfest open-source

Augustin Backend


Check out the git submodules to load the wordpress, wpcli and parser git checkout mainrepositories:

git submodule update --init --recursive

Copy .env.example to .env via

cp .env.example /.env

Then set KEYCLOAK_HOST=http://keycloak:8080/ in your .env

Copy docker/.env.parser.example to docker/.env.parser via

cp docker/.env.parser.example docker/.env.parser

Start the application with Docker:

docker compose build
docker compose up -d

Go to http://localhost:3000/api/hello/


  1. For developing in frontend or backend only, run this command
docker compose up -d augustin augustin-db augustin-db-test keycloak
  1. To make the PDF-Parser run correctly check out description below.
  2. Temporary fix to remove wpcli file: sudo rm docker/wpcli/.env.parser


Backend: localhost:3000

Wordpress: localhost:8090

Keycloak login mask: localhost:8080

PDF Parser: localhost:8070

Frontend / main webshop: localhost:8060


Visit http://localhost:3000/swagger/

To update swagger, install swagger

go install

Rebuild swagger

cd app
swag init -g handlers/swagger.go --parseDependency --parseInternal --parseDepth 1

Note: If the update does not show in your browser, reset cache.


Open the augustin shell in the container:

docker compose exec augustin bash

Run linter within the augustin shell:

golint ./...

Run tests within the augustin shell (sed is used to colorize the output, -p 1 is used to prevent parallel computing which causes problems with resetting the database for each test):

clear && go test ./... -p 1 -v -cover | sed ''/PASS/s//$(printf "\033[32mPASS\033[0m")/'' | sed ''/FAIL/s//$(printf "\033[31mFAIL\033[0m")/''  | sed ''/ERROR/s//$(printf "\033[31mERROR\033[0m")/''

To run a specific Test Case:

go test ./... -p 1 -v -cover -run NameOfTestCase

Test coverage:

go test ./... -p 1 -coverprofile=cover.out
go tool cover -html cover.out -o cover.html

and then open the app/cover.html file in your browser.


Open SQL shell in the container (assuming the variables from .env.example are used):

docker exec -it augustin-db-test  psql -U user -W product_api

And then enter password as password.


Run migrations within the augustin shell (see tern):

cd migrations

Create a new migration:

tern new <migration_name>

Apply all pending migrations:

tern migrate

Revert last migration:

tern migrate --destination -1

E-Mail templates

The e-mail templates are stored in the app/templates folder. Currently, the following templates are available:

The password reset e-mail is sent by the Keycloak server and has to be configured there.

E-Mail Credentials

To send e-mails, you need to set the following environment variables in the .env file:

Setup for developing with VivaWallet Webhooks

For tunneling endpoints from the internet to your locaĺhost port, we use ngrok. If you keep using our demo account and stick with our code basis this command should do it in your terminal:

ngrok http 3000

Setup for production

When initializing the whole system, the database is being setup with three items (Newspapers, Donation and transaction cost) and default settings, which can be changed afterwards from the offices portal. The only thing, which has to be done manually in production is to add at least one vendor to be able to pay online on this webshop with her license id. The URL then looks like this: https:sample.domain/v/license-id

VS Code Settings

VS Code is our code editor of choice. Therefore, to develop in Go, we use the main VS Code Go extension. This enables a lot of features like formatting on save.

Further, we also lint on save by adding these two lines in our settings.json file for VS Code:

  "go.lintOnSave": "package",
  "go.lintTool": "golint"

Environment variables

When variable CREATE_DEMO_DATA=true, demo data will be created during container creation. This data can be used for development purposes.


The keycloak server is available at http://localhost:8080 and the admin console at http://localhost:8080/auth/admin

The admin user for the master realm is admin and the password is admin Additionaly there are the following users for the augustin realm:

Username Password Role
test_nouser Test123! -
test_user Test123! magazin-1
test_user_all Test123! magazin-1, magazin-2, magazin-3
test_superuser Test123! admin
test_vendor Test123! vendor

The default openid configuration is available at http://localhost:8080/auth/realms/augustin/.well-known/openid-configuration

The default openid client is wordpress and the client secret is 84uZmW6FlEPgvUd201QUsWRmHzUIamZB

Keycloak Groups, ech group has a corresponding role:

Group Description
admin Admins can access the admin portal
vendor Vendors can access the vendor portal
customer Customers can access the newspaper portal
all_newspapers Customers can access all newspapers
magazin-1 Customers can access magazin-1
magazin-2 Customers can access magazin-2
magazin-3 Customers can access magazin-3

Keycloak Wordpress Setup

Install the OpenID Connect Generic plugin and configure it as follows:

Setting Value
Login Type Auto Login - SSO
Client ID wordpress
Client Secret Key 84uZmW6FlEPgvUd201QUsWRmHzUIamZB
OpenID Scope email profile openid offline_access roles
Login Endpoint URL http://localhost:8080/realms/augustin/protocol/openid-connect/auth
Userinfo Endpoint URL http://localhost:8080/realms/augustin/protocol/openid-connect/userinfo
Token Validation Endpoint URL http://localhost:8080/realms/augustin/protocol/openid-connect/token
End Session Endpoint URL http://localhost:8080/realms/augustin/protocol/openid-connect/logout
Enforce Privacy Yes

Optional Setup to have a role -> capability mapping

Install the plugin Groups and the plugin Augustin and it should work automatically.

Export Keycloak configs

After running the application with docker compose, the keycloak configs can be exported with the following command:

docker compose exec keycloak  /opt/keycloak/bin/ export --dir /tmp/export

the exported configs are available in the docker/keycloak/export folder.

Generate keycloak token with curl

curl --location --request POST 'http://localhost:8080/realms/augustin/protocol/openid-connect/token' --header 'Content-Type: application/x-www-form-urlencoded' --data-urlencode 'client_id=frontend' --data-urlencode 'grant_type=password' --data-urlencode 'username=user001' --data-urlencode 'password=Test123!' --data-urlencode 'scope=openid'


The wpcli container resets the wordpress installation on every start. This will delete all data in the database and install a fresh wordpress installation.


The pdf parser needs a wp app password in order to autopublish the articles to the wordpress. This password is stored in the ./docker/.env.parser file and is used by the parser to authenticate itself against the wordpress. Either you can create a new app password by copying ./docker/.env.parser.example to ./docker/.env.parser or run the wpcli container to set up a new one. Note: the wpcli container resets the wordpress installation on every start. This will delete all data in the database and install a fresh wordpress installation.

After setting an app password, the PDF-Parser container has to be deployed again with docker compose up -d parser.


This is due to the reason that the docker container 'wpcli' sets new environment variables, which have to be set again for the PDF-Parser.

Trouble shooting

In case your PDF-Parser does not work, make sure everything ran fine in yout wpcli container or might restart it via docker compose restart wpcliand then run docker compose up -d parser


"invalid character '}' looking for beginning of object key string -> You might have a false commY at the end of your json




Source Code

To get your Source code, follow the instructions here: In case this did not help, try this link:

Smart Checkout Credentials

To get your Smart Checkout Client ID and Client Key, follow the instructions here:

Verification key

To create a new verification key, follow the instructions here:

From the documents on how to create a Base64-encoded header.

When you pass your credentials in the header, you must Base64-encode them in the format Merchant_ID:API_Key. You can then use these encoded values as follows:

Authorization: Basic ZmJmMWUwOTAtNjVkZS00Yzc1LWI1ODAtZDlkOWJjNDk0YWQyOldEdi1WKw==

With a client such as cURL, you pass your encoded credentials in the header with the -H option, as the following example shows:


To have an overview which transaction type id means what, follow this link:

Checkout Process

1. Create payment order

curl --header "Content-Type: application/json" \
--request POST \
--data '{"amount":2500}' \

2. Test cards

3. Redirection page

Note on developing process

When the .env variable Development is set to true, every order is automatically being verified.\ To see the 'Payment-Confirmation-Page', simply paste the query of the redirected link i.e. something like success?t=d87ea0e6-91da-4312-abdf-67ebb84ee981&s=5857961245421135&lang=en-GB&eventId=0&eci=1 and paste it after localhost:5173.

4. Create verification call

Optional: Error Notifications

The software has a matrix and email error notification system. To use it, you need to set the following environment variables:

For email:

NOTIFICATIONS_EMAIL_PORT=587 #ssl aka 465 not supported
NOTIFICATIONS_EMAIL_PASSWORD=password #multiple receivers are possible, separated by comma

For Matrix:


Optional: Setup for digital license items like ePaper

To enable the digital license items, you need to set the following environment variables:


Optional: Setup for sentry error logging

To enable sentry error logging please fill the env variables in .env with a valid sentry dsn. The system works perfectly fine with self hosted alternatives of sentry like GlitchTip.

SENTRY_DSN=             # Backend sentry
VITE_SENTRY_DSN=        # Frontend sentry