Bootstrap a React application on AWS. This sample automatically provisions a Serverless infrastructure with authentication, authorization, website hosting, API access and database operations. It also includes user registration and MFA support. The sample use case is a "Restaurant" ordering system where after a user registers and logs in they can view different restaurant menus, select items and place orders.
- Getting started
- Building and deploying
- Using Registration and Login components in your App
- Using the REST client in your App
- Modifying Express routes in Lambda for your App
- Using S3 to store uploaded image
You will be building a React application with User Registration & Sign-in that allows you to perform CRUD operations against a DynamoDB table by using an Express application running in AWS Lambda. Lambda will be invoked by API Gateway using Proxy Integration with greedy paths that only authenticated users can access. The Express server is running with the AWS Serverless Express framework.
AWS Services used:
- Amazon Cognito User Pools
- Amazon Cognito Federated Identities
- Amazon API Gateway
- AWS Lambda
- Amazon DynamoDB
- Amazon S3
- Amazon CloudFront
First clone this repo:
git clone https://github.com/awslabs/aws-mobile-react-sample
- Set up your AWS resources using AWS Mobile Hub by clicking the button below:
- Press Import project.
-
Before proceeding further, in the Mobile Hub console click the Cloud Logic tile and ensure that the API deployment status at the bottom shows CREATE_COMPLETE (this can take a few moments).
-
Click Configure on the left hand bar of the console and select the Hosting and Streaming tile.
-
At the bottom of the page click Download aws-exports.js file. Copy this file into the
./aws-mobile-react-sample/client/src/configurationfolder of the repo you cloned.-
Alternatively using the AWS CLI:
$ cd ../aws-mobile-react-sample/client/src/configuration $ aws s3api list-buckets --query 'Buckets[?starts_with(Name,`reactsample-hosting`)].Name' |grep reactsample |tr -d '"' $ aws s3api get-object --bucket <YOUR_BUCKET_NAME> --key aws-exports.js ./aws-exports.js
-
-
Navigate into
./aws-mobile-react-sample/clientand run:$ npm install $ npm start
Done!
-
Open a browser to
http://localhost:8080and view the sample. Choose Sign Up Now and type in a username, password, email address and phone number. -
You should recieve a 6-digit verification code via SMS. Type this into the screen and select Validate.
-
Now that you are registered you will be redirected to the Login page. Type in the username and password then select Login.
-
You will recieve another SMS verification code. This is the MFA flow upon user login. Enter the code into the screen and select Validate.
-
The application demonstrates both loading sample data into the database as well as listing data and navigation. As a first time user press Insert Restaurants to load sample restaurants into the application.
- The sample data is stored inside the imported Lambda function (init.js). This demonstrates how Lambda code can be used with Express to insert records into DynamoDB. The request from the client to API Gateway is signed using AWS Signature Version 4 with the credentials returned from Amazon Cognito when the user logged into the application. Refer to the advanced section of this document for more information on using this in your designs.
-
Now that data has been loaded select List Restaurants to display the list of restaurants that were added in the previous step. This also uses the signing process described above.
-
Click on the name of a restaurant to see a menu.
-
Press Order to place an order in the system. This will add an order entry to a DynamoDB table as well as store information in the local browser for tracking.
-
Press Orders in the navigation bar. You will see some information immediately from local storage and other information returned asynchronously from a call to API Gateway.
- The navigation bar is optimized to work across desktop and mobile browsers. It will show either at the top of the page or in a collapsible bar on the left for mobile form factors
- Select Logout in the navigation bar to return the user to the home page.
The following steps outline how you can build and deploy the application using the S3 and CloudFront resources created by the Import phase above:
-
Navigate to
./aws-mobile-react-sample/clientand build for production by running:npm run build -
Copy everything within the produced
./aws-mobile-react-sample/client/builddirectory to the S3 bucket that was created earlier. You can do this one of two ways:
-
Via the Mobile Hub console select the Hosting and Streaming section of your project, click Manage Files at the bottom which will open the S3 console. Click Upload and then Add files selecting everything inside the
./aws-mobile-react-sample/client/builddirectory. Press Upload. -
Via the AWS CLI, find the S3 bucket name (listed in your aws-exports.js file as aws_content_delivery_bucket and use it in the following command:
aws s3 cp --recursive ./aws-mobile-react-sample/client/build s3://BUCKET_NAME
- To view your website, in the Mobile Hub console select the Hosting and Streaming section and click the View from S3 to see your page immediately or View from CloudFront to see using a CDN (note: this might be immediate or take up to an hour).
If you are using a CI/CD process you may choose to automate this process. The following shows how to use a webpack plugin with AWS Credentials to automate deployment to S3:
- Navigate to
./aws-mobile-react-sample/client/directory and edit webpack.config.js file. Add the following to the top of the file:
const S3Plugin = require('webpack-s3-plugin');
- Add the following as an entry to the
plugins:[]section towards the bottom:
new S3Plugin({
// Only upload css and js
include: /.*\.(css|js)/,
// s3Options are required
s3Options: {
accessKeyId: AWS_ACCESS_KEY_ID,
secretAccessKey: AWS_SECRET_ACCESS_KEY,
},
s3UploadOptions: {
Bucket: 'MyBucket'
}
})
NOTE: Replace the AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY and MyBucket with appropriate values such as your account keys for automation and the S3 bucket created during the import process.
- Save the file and run the following command to install the plugin dependency:
npm install --save webpack-s3-plugin
- Run the following command to build and deploy to S3:
npm run build
The Registration and Login components leverage Amazon Cognito User Pools and Amazon Cognito Federated Identities. As an example of using them in your own application first create a React application with Create React App:
npm install -g create-react-app
create-react-app my-app
cd my-app/
npm start
If the application runs successfully, copy the Auth, configuration and css folders from ./aws-mobile-react-sample/client/src to ./my-app/src that was created by Create React App. Next copy index.js and modules/main/Main.jsx from ./aws-mobile-react-sample/client/src to ./my-app/src. Edit the copied Main.jsx so that the return() function matches the below code:
return (
<div>
{
!logOut && (
<BrowserRouter>
<div>
<Navbar className='nav-bar' brand='WebApp' right>
<NavItem onClick={this.signOut}>Logout</NavItem>
</Navbar>
<App/>
</div>
</BrowserRouter>)
}
{
logOut && (<AppRoute authStatus={false}/>)
}
</div>
);
Next, from your ./my-app directory, run:
$npm install --save aws-sdk amazon-cognito-identity-js react-router-dom react-materialize react-transition-group@^1.1.3 semantic-ui-react css-loader
Edit Main.jsx and comment out the following:
//import Home from './Home';
//import Menu from './Menu';
//import Orders from './Order';
Also add import App from '../../App'; to the top of Main.jsx and save the file.
Edit index.js and replace the require('file-loader....') statement towards the top with:
require('file-loader?name=[name].[ext]./index.html');
Finally to add the styling to the page edit ./my-app/public/index.html and add the following to the head:
<link rel="stylesheet" href="http://fonts.googleapis.com/icon?family=Material+Icons">
<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/materialize/0.98.0/css/materialize.min.css">
<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/semantic-ui/2.2.2/semantic.min.css">
And add the following to the body:
<script src="https://code.jquery.com/jquery-2.1.1.min.js"></script>
<script src="https://cdnjs.cloudflare.com/ajax/libs/materialize/0.98.0/js/materialize.min.js"></script>
You can now run your application created with Create React App with a new login page added:
npm start
The application should start and allow you to register users and login taking you to the normal page created with Create React App.
The sample application uses API Gateway and Lambda to run an Express application which reads and writes to a DynamoDB table. Included in the sample is a helper function for making signed requests to API Gateway. We'll show how to use this helper for making unauthenticated requests to API Gateway below and you can use the Login example above to get authenticated credentials which this sample would use.
As with the previous section first create a React application with Create React App:
npm install -g create-react-app
create-react-app my-app
cd my-app/
npm start
Copy clients/RestClient.jsx from ./aws-mobile-react-sample/client/src/clients to ./my-app/src/clients.
Copy utils/Signer.js from ./aws-mobile-react-sample/client/src/utils to ./my-app/src/utils
If you didn't do the previous section, copy configuration from ./aws-mobile-react-sample/client/src to ./my-app/src.
Edit ./my-app/src/App.js with the following imports at the top:
import RestClient from './clients/RestClient'
import Link from 'link-react';
import { Table } from 'semantic-ui-react';
import AppConfig from './configuration/AppConfig';
Modify the App component like so (NOTE: you are NOT modifying the render function YET):
class App extends Component {
state = {
data: []
}
fetch = () => {
RestClient.get(AppConfig.API.restaurant.root)
.then(resp => {
this.setState({
data: resp.data
});
})
.catch (function(err){
alert(err);
});
}
//render logic below
render()....more code
Now, change the render() function like so:
render() {
return (
<div className="App">
<Link onClick={this.fetch}>
List restaurants
</Link>
<div>
<div>
{(
<Table>
<Table.Header>
<Table.Row>
<Table.HeaderCell>Name</Table.HeaderCell>
<Table.HeaderCell>Address</Table.HeaderCell>
<Table.HeaderCell>Contact</Table.HeaderCell>
<Table.HeaderCell>Rating</Table.HeaderCell>
</Table.Row>
</Table.Header>
<Table.Body>
{this.state.data.map((data, idx) =>
<Table.Row key={idx}>
<Table.Cell>{data.name}</Table.Cell>
<Table.Cell>{data.address}</Table.Cell>
<Table.Cell>{data.phone}</Table.Cell>
<Table.Cell>{data.rating}</Table.Cell>
</Table.Row>
)}
</Table.Body>
</Table>
)}
</div>
</div>
</div>
);
}
}
export default App;
Save the file. Finally install the dependencies:
npm install --save aws4 link-react axios semantic-ui-react
Depending on if you want to do Authenticated or UnAuthenticated requests to API Gateway, you will need to do one of the following two modification:
Authenticated Requests
Note: If you are doing an authenticated, signed request you'll also need to perform a couple more steps. First install querystring-browser
npm install --save querystring-browser@^1.0.4
Next you will need to configure this as a webpack alias:
resolve: {
extensions: ['.js', '.jsx'],
alias: {
querystring: 'querystring-browser'
}
}
For our Create React App sample you will need to modify either webpack.config.dev.js or webpack.config.prod.js in the ./my-app/node_modules/react-scripts/config directory. Look for the resolve: field inside module.exports and add the querystring: 'querystring-browser' entry under the alias field.
UnAuthenticated Requests
Navigate to the API Gateway console, click on the ReactSample-MobileHub API and select Resources on the left hand side of the page. Under the /items node select ANY and then click on Method Request in the right hand side of the console. Click the dropdown labeled Authorization and select NONE. Press the Update tick box to save your changes.
In the same part of the console, select the /items/{proxy +} node followed and click ANY and then Method Request. Repeat the process of setting Authorization to NONE and saving your change.
Next deploy your changes by select Actions at the top of the page, then Deploy API and select Development as the Deployment stage. Click Deploy.
Additionally you will need to make an alteration to the ./my-app/src/App.js by changing the this.setState() function from:
this.setState({
data: resp
});
To:
this.setState({
data: resp.data
});
Finally, after making your modifications for either the Authenticated or UnAuthenticated request run the following command to launch your Create React App again:
npm start
Click List restaurants at the top of the page to invoke the REST client.
The sample application invokes a Lambda function running Express which will make CRUD operations to DynamoDB depending on the route which is passed from the client application. You may wish to modify this backend behavior for your own needs. The steps outline how you could add functionality to "create a Restaurant" by showing what modifications would be needed in the Lambda function and the corresponding client modifications to make the request.
- Import init into routers/restaurant.js
import createMenu from '../init';
- In routes/restaurants.js (under the
* Restaurant methods *comment) add in a new POST route:
router.post('/', function(req, res){
var restaurant = new Restaurant({
name: req.body.name,
description: req.body.description,
address: req.body.address,
phone: req.body.phone,
rating: req.body.rating
});
Restaurant.create(storage, restaurant);
})
-
Save the file and in the Mobile Hub console for your project click the Cloud Logic card. Expand the View resource details section and note the name of the Lambda function in the list for the next step.
-
In a terminal navigate to
./aws-mobile-react-sample/backend/lambdaand run:
zip -r lambda-archive.zip .
aws lambda update-function-code --function-name FUNCTION_NAME --zip-file fileb://lambda-archive.zip
REPLACE the FUNCTION_NAME with your Lambda function name from the previous step.
Alternatively you could click the Lambda function resource in the Mobile Hub console which opens the Lambda console and press the Upload button on that page to upload the lambda-archive.zip file.
- In the
./aws-mobile-react-sample/client/srcdirectory editHome.jsxwith the following code BEFORE the render() method:
newRestaurant = () => {
let data = JSON.stringify({
'name': 'New Name',
'description': 'New description',
'address': 'New address',
'phone': 'New phone',
'rating': 'New rating'
});
RestClient.post(AppConfig.API.restaurant.root, data)
.then(data => {
sessionStorage.setItem('latestOrder', data.id);
console.log(data);
alert('Added successfully');
})
.catch (function(error){
console.log(error);
});
}
Note that AppConfig.API.restaurant.root matches the path you made for the Express route in the Lambda function you uploaded.
- In the
returnstatement of therendermethod add in a new button next to the others:
<Button primary onClick={this.newRestaurant}>
New Restaurant
</Button>
Save your changes and run your application again with npm start. You should have a new button after logging in. Press New Restaurant and then List Restaurants to see the new entry in the system.
The sample application store images in S3. Check ./aws-mobile-react-sample/client/src/components/PhotoUpload
handleInput(e) {
var that = this;
const path = this.state.ObjectPath;
const file = e.target.files[0];
const type = file.type;
S3Client.upload(path, file, {'Content-Type': type}, function(err, data) {
if (err) {
logger.log(err);
} else {
logger.log(data);
S3Client.presign(path, function(err, url) {
that.setState({ ImgSrc: url });
});
}
})
}
The website hosting location for this sample uses an S3 bucket as the CloudFront origin. The S3 bucket is by default configured as publicly accessable for testing purposes. To learn more about restricting this access further, see Amazon S3 Security Considerations and Amazon CloudFront Security Considerations.
This sample app uses sessionStorage to persist user tokens (accessKeyId, secretAccessKey and sessionToken). They are deleted when the browser is closed and not available when new tabs are opened. You can take further actions to secure these tokens by encrypting them.
The Lambda function in this sample will read and write to DynamoDB and it's role will be granted the appropriate permissions to perform such actions. If you wish to modify the sample to perform a more restricted set of actions see Authentication and Access Control for Amazon DynamoDB.