p5.js-web-editor/README.md

# p5.js Web Editor

This project is currently in development! It will be announced when there is a (public) beta release. 

## Development Installation

1. Clone this repostory and cd into it
2. `$ git submodule init`
3. `$ npm install`
4. Install MongoDB and make sure it is running
   * For Mac OSX with [homebrew](http://brew.sh/): `brew install mongodb` then `brew services start mongodb`
   * For Windows and Linux: [MongoDB Installation](https://docs.mongodb.com/manual/installation/)
5. Create a file called `.env` in the root of this directory that looks like

  ```
  API_URL=/api
  MONGO_URL=mongodb://localhost:27017/p5js-web-editor
  PORT=8000
  SESSION_SECRET=whatever_you_want_this_to_be_it_only_matters_for_production
  AWS_ACCESS_KEY=<your-aws-access-key>
  AWS_SECRET_KEY=<your-aws-secret-key>
  AWS_REGION=<your-aws-region>
  S3_BUCKET=<your-s3-bucket>
  GITHUB_ID=<your-github-client-id>
  GITHUB_SECRET=<your-github-client-secret>
  ```
   If you don't care about being able to upload media files to S3 or Login with Github, you can drop in the file exactly how it is. Or, if you don't want to do that, just ask me to send you mine. Refer to [this gist](https://gist.github.com/catarak/70c9301f0fd1ac2d6b58de03f61997e3) for creating an S3 bucket for testing, or if you don't want to do that, I can add you to one of my S3 buckets.

6. `$ npm run fetch-examples` - this downloads the example sketches into a user called 'p5'
7. `$ npm start`
8. Navigate to [http://localhost:8000](http://localhost:8000) in your browser
9. Install the [React Developer Tools](https://chrome.google.com/webstore/detail/react-developer-tools/fmkadmapgofadopljbjfkapdkoienihi?hl=en).
10. Open and close the Redux DevTools using `ctrl+h`, and move them with `ctrl+w`

### Testing SSL on your local machine
Please refer to [this gist](https://gist.github.com/andrewn/953ffd5cb17ac2634dc969fc7bdaff3f). This allows you to access the editor using both HTTP and HTTPS. Don't worry about this unless you need to make changes or test HTTPS behavior.

The automatic redirection to HTTPS is turned off by default in development. If you need to test this behavior, put `FORCE_TO_HTTPS=true` in your `.env` file.

## Production Installation
1. Clone this repostory and `cd` into it
2. `$ git submodule init`
3. `$ npm install`
4. Install MongoDB and make sure it is running
5. Create a file called `.env` in the root of this directory that looks like

  ```
  API_URL=/api
  MONGO_URL=mongodb://localhost:27017/p5js-web-editor
  PORT=8000
  SESSION_SECRET=make_this_a_long-random_string_like_maybe_126_characters_long
  AWS_ACCESS_KEY=<your-aws-access-key>
  AWS_SECRET_KEY=<your-aws-secret-key>
  AWS_REGION=<your-aws-region>
  S3_BUCKET=<your-s3-bucket>
  GITHUB_ID=<your-github-client-id>
  GITHUB_SECRET=<your-github-client-secret>
  EMAIL_SENDER=<email-address-to-send-from>
  MAILGUN_KEY=<mailgun-api-key>
  MAILGUN_DOMAIN=<mailgun-domain>
  EMAIL_VERIFY_SECRET_TOKEN=whatever_you_want_this_to_be_it_only_matters_for_production
  ```
  For production, you will need to have real Github and Amazon credentions. Refer to [this gist](https://gist.github.com/catarak/70c9301f0fd1ac2d6b58de03f61997e3) for creating an S3 bucket for testing.

6. `$ npm run fetch-examples` - this downloads the example sketches into a user called 'p5'
7. `$ npm run build`
8. `$ npm run start:prod`

### For Production Setup with PM2
1. `$ npm install -g pm2`
2. `$ pm2 start ecosystem.json`

## Accessibility Guidelines

Here is guide on [how to use the accessible editor](https://gist.github.com/MathuraMG/e86666b7b41fbc8c078bad9aff3f666d)

The code for the p5.js web editor adheres to web accessibility standards. The following guidelines will help to ensure that accessibility continues to be a priority as development continues.

**Code Structure**

* Screen Readers are an assistive technology for vision loss which helps users to navigate a web page. They are able to prioritize content based on the semantic meaning of HTML tags. Therefore, it is important to use specific tags, such as `nav`, `ul`, `li`, `section`, and so on. `div` is the least screen reader friendly tag. For example, [here is the semantic meaning of the `body` tag](http://html5doctor.com/element-index/#body)
* All buttons/links/windows need to be accessible by the keyboard ( By tabbing, pressing space etc.)
* In cases where tags are not screen reader friendly, we can take advantage of [tabIndex](http://webaim.org/techniques/keyboard/tabindex). Using tabIndex ensures that all elements are accessible via keyboard. [code example](https://github.com/processing/p5.js-web-editor/blob/master/client/modules/IDE/components/Editor.jsx#L249)
* When opening a new window or pop up window, ensure the keyboard focus also moves to the new window. [code example](https://github.com/processing/p5.js-web-editor/blob/master/client/modules/IDE/components/NewFileForm.jsx#L16)

**Labeling**

* When creating button icons, images, or something without text (this does not include an HTML5 `<button>`), use [aria-labels](https://developer.mozilla.org/en-US/docs/Web/Accessibility/ARIA/ARIA_Techniques/Using_the_aria-label_attribute). [code example](https://github.com/processing/p5.js-web-editor/blob/master/client/modules/IDE/components/Toolbar.jsx#L67)
* All `<table>`s need to have a `summary` attribute. This will ensure user is given context to what the table is. [code example](https://github.com/processing/p5.js-web-editor/blob/master/client/modules/IDE/components/SketchList.jsx#L39)
* `ul`s and `nav`s menus need to include a title. [code example](https://github.com/processing/p5.js-web-editor/blob/master/client/components/Nav.jsx#L7)

For more information on accessibility see the [teach access tutorial](https://teachaccess.github.io/tutorial/)

## Contribution Guide
I am currently open to contributors! Email me if you are looking for a task, or look at the open issues and reply that you are working on a task.

The p5.js Web Editor is built on a MERN stack - MongoDB, Express, React/Redux, and Node. For a reference to the file structure format I am using, please look at the [Mern Starter](https://github.com/Hashnode/mern-starter) and [this comment](https://github.com/Hashnode/mern-starter/issues/90#issuecomment-221553573).

This project uses an in-development [p5.js interceptor library](https://github.com/MathuraMG/p5-interceptor) for accessibility as git submodule. Every time you run `npm install`, it will update the interceptor to HEAD, so it is important to do this often.  

This project does not use CSS Modules, but uses Sass. I like to follow [BEM rules](http://getbem.com/) for CSS naming conventions, write OOSCSS with placeholders and mixins, and follow the [7-1 Pattern](https://sass-guidelin.es/#the-7-1-pattern) for Sass.

I'm using [ES6](http://es6-features.org/) and transpiling to ES5 using [Babel](https://babeljs.io/). For reference to the JavaScript style guide, see the [Airbnb Style Guide](https://github.com/airbnb/javascript), [React ESLint Plugin](https://github.com/yannickcr/eslint-plugin-react).

The ESLint configuration is based on a few popular React/Redux boilerplates. Open to suggestions on this. If in development, you're getting annoyed with ESLint, you can remove it from `webpack.config.dev.js` in the JavaScript loader, or disable any line from eslint by commenting at the end of the line `// eslint-disable-line`.

## AWS information
This project is currently hosted on an EC2 instance and uses S3 for media hosting.

Backups on the MongoDB are also hosted on an S3 bucket, based on the following [gist](https://gist.github.com/eladnava/96bd9771cd2e01fb4427230563991c8d). The backup script runs nightly via a cronjob at 8AM UTC/3AM EST/12AM PST. Backups are deleted after 30 days.

## Dump of links I'm saving for reference

* https://github.com/brigade/scss-lint
* https://github.com/petehunt/react-howto
* https://github.com/jsbin/jsbin (especially look at the console)
* Need to figure out how to solve the XSS issue, https://github.com/jsbin/jsbin/wiki/Best-practices-for-building-your-own-live-paste-bin
* https://www.npmjs.com/package/express-subdomain
* https://github.com/jsbin/jsbin/blob/master/public/js/render/console.js - the code is a little messy but it might be useful
Fix broken Markdown formatting (#332) 2017-04-06 03:50:17 +02:00			`# p5.js Web Editor`
render editor 2016-05-03 22:13:04 +02:00
add a test for git hook 2017-03-10 00:03:45 +01:00			`This project is currently in development! It will be announced when there is a (public) beta release.`
add submodule change to top of readme 2016-11-23 19:55:42 +01:00
Fix broken Markdown formatting (#332) 2017-04-06 03:50:17 +02:00			`## Development Installation`
update README and add npm start script 2016-05-11 06:02:12 +02:00
update README 2016-06-29 00:21:05 +02:00			`1. Clone this repostory and cd into it`
add submodule instructions to readme 2016-11-23 19:43:19 +01:00			2. `$ git submodule init`
			3. `$ npm install`
			`4. Install MongoDB and make sure it is running`
adding info about installing mongoDB 2017-01-17 21:03:37 +01:00			* For Mac OSX with [homebrew](http://brew.sh/): `brew install mongodb` then `brew services start mongodb`
			`* For Windows and Linux: [MongoDB Installation](https://docs.mongodb.com/manual/installation/)`
add submodule instructions to readme 2016-11-23 19:43:19 +01:00			5. Create a file called `.env` in the root of this directory that looks like
add accessibility guide (#116) * add accessibility guide * fix grammatical errors 2016-10-09 01:03:01 +02:00
formatting readme 2016-08-01 10:28:43 +02:00			```
Exposes API endpoint URL to client via env variable (#323) 2017-03-16 05:34:14 +01:00			`API_URL=/api`
formatting readme 2016-08-01 10:26:53 +02:00			`MONGO_URL=mongodb://localhost:27017/p5js-web-editor`
			`PORT=8000`
			`SESSION_SECRET=whatever_you_want_this_to_be_it_only_matters_for_production`
			`AWS_ACCESS_KEY=<your-aws-access-key>`
			`AWS_SECRET_KEY=<your-aws-secret-key>`
#339 add region to .env 2017-04-13 20:39:03 +02:00			`AWS_REGION=<your-aws-region>`
formatting readme 2016-08-01 10:26:53 +02:00			`S3_BUCKET=<your-s3-bucket>`
add github keys to README 2016-09-02 23:40:44 +02:00			`GITHUB_ID=<your-github-client-id>`
			`GITHUB_SECRET=<your-github-client-secret>`
formatting readme 2016-08-01 10:26:53 +02:00			```
update README with updated info about the .env file 2016-10-11 22:35:29 +02:00			`If you don't care about being able to upload media files to S3 or Login with Github, you can drop in the file exactly how it is. Or, if you don't want to do that, just ask me to send you mine. Refer to [this gist](https://gist.github.com/catarak/70c9301f0fd1ac2d6b58de03f61997e3) for creating an S3 bucket for testing, or if you don't want to do that, I can add you to one of my S3 buckets.`
Update README.md (#338) 2017-04-12 01:55:05 +02:00
add step to download examples to development and production setup, #349 2017-05-24 18:08:12 +02:00			6. `$ npm run fetch-examples` - this downloads the example sketches into a user called 'p5'
			7. `$ npm start`
			`8. Navigate to [http://localhost:8000](http://localhost:8000) in your browser`
			`9. Install the [React Developer Tools](https://chrome.google.com/webstore/detail/react-developer-tools/fmkadmapgofadopljbjfkapdkoienihi?hl=en).`
			10. Open and close the Redux DevTools using `ctrl+h`, and move them with `ctrl+w`
update README and add npm start script 2016-05-11 06:02:12 +02:00
Fix broken Markdown formatting (#332) 2017-04-06 03:50:17 +02:00			`### Testing SSL on your local machine`
Force HTTPS redirection for log in and sign up (#319) * Higher-order component to force some routes to HTTPS * Force all user-management routes to HTTPS * Redirect to sourceProtocol as route unmounts. By default, no redirection occurs if sourceProtocol is not explicitly defined. * Sets serveSecure flag on new projects and usea after forcing protocol The flag is set to `false` on all projects and as the UI has no way to change this, it always redirects to HTTP after a signup/login action. * Move HoC to be with other top-level components * Server should respond to account page request * Serves AccountView over HTTPS * Turns HTTPS redirection off in development by default Will log to the browser console any redirection that would have happened. Added a line in the README about how to enable this for testing in development. 2017-03-30 18:36:26 +02:00			`Please refer to [this gist](https://gist.github.com/andrewn/953ffd5cb17ac2634dc969fc7bdaff3f). This allows you to access the editor using both HTTP and HTTPS. Don't worry about this unless you need to make changes or test HTTPS behavior.`

			The automatic redirection to HTTPS is turned off by default in development. If you need to test this behavior, put `FORCE_TO_HTTPS=true` in your `.env` file.
add link to local ssl proxy gist in readme 2017-03-23 19:56:37 +01:00
Fix broken Markdown formatting (#332) 2017-04-06 03:50:17 +02:00			`## Production Installation`
small changes to README readability 2016-06-29 00:28:35 +02:00			1. Clone this repostory and `cd` into it
add submodule instructions to readme 2016-11-23 19:43:19 +01:00			2. `$ git submodule init`
			3. `$ npm install`
			`4. Install MongoDB and make sure it is running`
			5. Create a file called `.env` in the root of this directory that looks like
add accessibility guide (#116) * add accessibility guide * fix grammatical errors 2016-10-09 01:03:01 +02:00
formatting readme 2016-08-01 10:28:43 +02:00			```
Exposes API endpoint URL to client via env variable (#323) 2017-03-16 05:34:14 +01:00			`API_URL=/api`
formatting readme 2016-08-01 10:26:53 +02:00			`MONGO_URL=mongodb://localhost:27017/p5js-web-editor`
			`PORT=8000`
			`SESSION_SECRET=make_this_a_long-random_string_like_maybe_126_characters_long`
			`AWS_ACCESS_KEY=<your-aws-access-key>`
			`AWS_SECRET_KEY=<your-aws-secret-key>`
#339 add region to .env 2017-04-13 20:39:03 +02:00			`AWS_REGION=<your-aws-region>`
formatting readme 2016-08-01 10:26:53 +02:00			`S3_BUCKET=<your-s3-bucket>`
add github keys to README 2016-09-02 23:40:44 +02:00			`GITHUB_ID=<your-github-client-id>`
			`GITHUB_SECRET=<your-github-client-secret>`
Email verification (#369) * Re-introduce Email Verification code Revert "Revert "Email verification"" This reverts commit d154d8bff259350523a0f139e844db96c43d2ee1. * Uses MJML to generate Reset Password email * Sends Password Reset and Email Confirmation emails using MJML template * Sends verified status along with user data * API endpoint for resending email verification confirmation * Displays verification status on Account page and allows resending * Send back error string * Passes email address through to sign/verify helper * Uses enum-style object to set verified state * Sends minimal info when user verifies since it can be done without login * Provides /verify UI and sends confirmation token to API * Better name for JWT secret token env var * Adds mail config variables to Readme * Encrypts email address in JWT The JWT sent as the token in the Confirm Password URL can be unencoded by anyone, although it's signature can only be verified by us. To ensure that no passwords are leaked, we encrypt the email address before creating the token. * Removes unused mail templates * Resets verified flag when email is changed and sends another email * Moves email confirmation functions next to each other * Extracts random token generator to helper * Moves email confirmation actions into Redux - updates the AccountForm label with a message to check inbox - show status when verifying email token * Uses generated token stored in DB for email confirmation * Sets email confirmation status to verified if logging in from Github * Sends email using new method on account creation * Fixes linting errors * Removes replyTo config 2017-06-26 18:48:28 +02:00			`EMAIL_SENDER=<email-address-to-send-from>`
			`MAILGUN_KEY=<mailgun-api-key>`
			`MAILGUN_DOMAIN=<mailgun-domain>`
			`EMAIL_VERIFY_SECRET_TOKEN=whatever_you_want_this_to_be_it_only_matters_for_production`
formatting readme 2016-08-01 10:26:53 +02:00			```
update README with updated info about the .env file 2016-10-11 22:35:29 +02:00			`For production, you will need to have real Github and Amazon credentions. Refer to [this gist](https://gist.github.com/catarak/70c9301f0fd1ac2d6b58de03f61997e3) for creating an S3 bucket for testing.`
Fix broken Markdown formatting (#332) 2017-04-06 03:50:17 +02:00
add step to download examples to development and production setup, #349 2017-05-24 18:08:12 +02:00			6. `$ npm run fetch-examples` - this downloads the example sketches into a user called 'p5'
			7. `$ npm run build`
			8. `$ npm run start:prod`
update README and add npm start script 2016-05-11 06:02:12 +02:00
Fix broken Markdown formatting (#332) 2017-04-06 03:50:17 +02:00			`### For Production Setup with PM2`
update README 2016-06-29 00:21:05 +02:00			1. `$ npm install -g pm2`
			2. `$ pm2 start ecosystem.json`

Fix broken Markdown formatting (#332) 2017-04-06 03:50:17 +02:00			`## Accessibility Guidelines`
add accessibility guide (#116) * add accessibility guide * fix grammatical errors 2016-10-09 01:03:01 +02:00
Change accessibility URL (#314) google drive is not accessible - switching to gist 2017-03-01 21:41:07 +01:00			`Here is guide on [how to use the accessible editor](https://gist.github.com/MathuraMG/e86666b7b41fbc8c078bad9aff3f666d)`
add accessible guideline to the code editor (#313) 2017-03-01 21:01:00 +01:00
add accessibility guide (#116) * add accessibility guide * fix grammatical errors 2016-10-09 01:03:01 +02:00			`The code for the p5.js web editor adheres to web accessibility standards. The following guidelines will help to ensure that accessibility continues to be a priority as development continues.`

			`Code Structure`

			* Screen Readers are an assistive technology for vision loss which helps users to navigate a web page. They are able to prioritize content based on the semantic meaning of HTML tags. Therefore, it is important to use specific tags, such as `nav`, `ul`, `li`, `section`, and so on. `div` is the least screen reader friendly tag. For example, [here is the semantic meaning of the `body` tag](http://html5doctor.com/element-index/#body)
			`* All buttons/links/windows need to be accessible by the keyboard ( By tabbing, pressing space etc.)`
Change accessibility example links (#264) 2017-01-13 16:18:37 +01:00			`* In cases where tags are not screen reader friendly, we can take advantage of [tabIndex](http://webaim.org/techniques/keyboard/tabindex). Using tabIndex ensures that all elements are accessible via keyboard. [code example](https://github.com/processing/p5.js-web-editor/blob/master/client/modules/IDE/components/Editor.jsx#L249)`
			`* When opening a new window or pop up window, ensure the keyboard focus also moves to the new window. [code example](https://github.com/processing/p5.js-web-editor/blob/master/client/modules/IDE/components/NewFileForm.jsx#L16)`
add accessibility guide (#116) * add accessibility guide * fix grammatical errors 2016-10-09 01:03:01 +02:00
			`Labeling`

Change accessibility example links (#264) 2017-01-13 16:18:37 +01:00			* When creating button icons, images, or something without text (this does not include an HTML5 `<button>`), use [aria-labels](https://developer.mozilla.org/en-US/docs/Web/Accessibility/ARIA/ARIA_Techniques/Using_the_aria-label_attribute). [code example](https://github.com/processing/p5.js-web-editor/blob/master/client/modules/IDE/components/Toolbar.jsx#L67)
			* All `<table>`s need to have a `summary` attribute. This will ensure user is given context to what the table is. [code example](https://github.com/processing/p5.js-web-editor/blob/master/client/modules/IDE/components/SketchList.jsx#L39)
			* `ul`s and `nav`s menus need to include a title. [code example](https://github.com/processing/p5.js-web-editor/blob/master/client/components/Nav.jsx#L7)
add accessibility guide (#116) * add accessibility guide * fix grammatical errors 2016-10-09 01:03:01 +02:00
			`For more information on accessibility see the [teach access tutorial](https://teachaccess.github.io/tutorial/)`

Fix broken Markdown formatting (#332) 2017-04-06 03:50:17 +02:00			`## Contribution Guide`
update README 2016-06-29 00:21:05 +02:00			`I am currently open to contributors! Email me if you are looking for a task, or look at the open issues and reply that you are working on a task.`

			`The p5.js Web Editor is built on a MERN stack - MongoDB, Express, React/Redux, and Node. For a reference to the file structure format I am using, please look at the [Mern Starter](https://github.com/Hashnode/mern-starter) and [this comment](https://github.com/Hashnode/mern-starter/issues/90#issuecomment-221553573).`

add submodule instructions to readme 2016-11-23 19:43:19 +01:00			This project uses an in-development [p5.js interceptor library](https://github.com/MathuraMG/p5-interceptor) for accessibility as git submodule. Every time you run `npm install`, it will update the interceptor to HEAD, so it is important to do this often.

add accessibility guide (#116) * add accessibility guide * fix grammatical errors 2016-10-09 01:03:01 +02:00			`This project does not use CSS Modules, but uses Sass. I like to follow [BEM rules](http://getbem.com/) for CSS naming conventions, write OOSCSS with placeholders and mixins, and follow the [7-1 Pattern](https://sass-guidelin.es/#the-7-1-pattern) for Sass.`
update README 2016-06-29 00:21:05 +02:00
add accessibility guide (#116) * add accessibility guide * fix grammatical errors 2016-10-09 01:03:01 +02:00			`I'm using [ES6](http://es6-features.org/) and transpiling to ES5 using [Babel](https://babeljs.io/). For reference to the JavaScript style guide, see the [Airbnb Style Guide](https://github.com/airbnb/javascript), [React ESLint Plugin](https://github.com/yannickcr/eslint-plugin-react).`
add ES6 references to readme, add jsx-a11y to .eslintrc 2016-08-28 03:28:00 +02:00
update README with MongoDB backup info 2016-11-16 21:03:10 +01:00			The ESLint configuration is based on a few popular React/Redux boilerplates. Open to suggestions on this. If in development, you're getting annoyed with ESLint, you can remove it from `webpack.config.dev.js` in the JavaScript loader, or disable any line from eslint by commenting at the end of the line `// eslint-disable-line`.

			`## AWS information`
			`This project is currently hosted on an EC2 instance and uses S3 for media hosting.`

			`Backups on the MongoDB are also hosted on an S3 bucket, based on the following [gist](https://gist.github.com/eladnava/96bd9771cd2e01fb4427230563991c8d). The backup script runs nightly via a cronjob at 8AM UTC/3AM EST/12AM PST. Backups are deleted after 30 days.`
update README and add npm start script 2016-05-11 06:02:12 +02:00
Fix broken Markdown formatting (#332) 2017-04-06 03:50:17 +02:00			`## Dump of links I'm saving for reference`
update README and add npm start script 2016-05-11 06:02:12 +02:00
fix bugs with saving/fetching projects 2016-06-29 18:52:16 +02:00			`* https://github.com/brigade/scss-lint`
render editor 2016-05-03 22:13:04 +02:00			`* https://github.com/petehunt/react-howto`
add test preview component, vulnerable to xss 2016-05-09 22:13:37 +02:00			`* https://github.com/jsbin/jsbin (especially look at the console)`
update README and add npm start script 2016-05-11 06:02:12 +02:00			`* Need to figure out how to solve the XSS issue, https://github.com/jsbin/jsbin/wiki/Best-practices-for-building-your-own-live-paste-bin`
formatting readme 2016-08-01 10:25:38 +02:00			`* https://www.npmjs.com/package/express-subdomain`
update README with MongoDB backup info 2016-11-16 21:03:10 +01:00			`* https://github.com/jsbin/jsbin/blob/master/public/js/render/console.js - the code is a little messy but it might be useful`