This document indicates as to what should be done before and during development, and what should be referred to, by engineers engaged in system development using Nablarch. The document describes the method considered ideal for most projects to proceed with activities that are considered necessary for system development using Nablarch. Given the characteristics of most projects using Nablarach, the development process assumes waterfall development. Before starting the project, review this document and study how to proceed with the development.
This document aims to achieve the following.
This document is intended for engineers (especially IT architects and project managers) who want to start system development using Nablarch.
This document contains many links. If you go on clicking the links while reading the document at the beginning, it will become challenging to get the overall picture as there are many linked documents. At first, when reading the document, just understand that ‘there are such links’ without clicking each of them and read the document up to the end.
The deliverables and tasks required for project development are diverse. The following diagram shows the development flow in a sample project assuming system development of medium-scale. Use this diagram as a reference when studying the development flow of the project (Initially, you need not understand all the elements in the diagram in the first go. It is enough to grasp that there are deliverables and tasks in every process.)
This is a sheet for assigning roles so that the tasks necessary for waterfall development are not left out. The sheet aims at eliminating differences in the understanding of the developers, early detection of risks, and preventing problems from getting worse.
These guidelines summarize the method of defining business/system requirements, deliverables, utilization techniques, and know-how at a systematic and practical level.
This document gives knowledge and techniques for defining practical requirements.
If non-functional requirements such as performance requirements, security requirements, etc. are not fixed, then even if you carry out architecture design, the design would be considered incomplete.
For defining non-functional requirements, refer to the Non-functional Requirement Grade provided by IPA.
Carry out the architecture design based on the following sample.
However, since non-functional requirements of the project have to be incorporated into architecture design, the architecture design should not be completed by modifying the sample. Completing the architecture design document by copying or modifying the sample, leads to mistakes such as the omission of the necessary non-functional requirements and inclusion of system design that is not required.
Instead of copying the sample, extract the parts that can be reused and referred from the sample, and complete the architecture design document of the project with those parts. Prepare headings for the architecture design based on the non-functional requirements of the project, refer to the parts of the sample that can be used as a reference, wherever it is required to review project-specific requirements, mention the results of the review, and complete the system design document of the project.
Attention is required especially for performance and security requirements since they are not covered in the above sample. Either add to the description in the architecture design sample or create a separate document such as “Architecture design document (security design)”.
For security design, refer to IPA’s “How to Create a Secure Website”. Design so that all items in the “Security Implementation Checklist” will be “fundamental solutions”.
To assist in the security design, a “Nablarch function security matrix” is provided to determine if the items in the checklist can be supported by the features provided in Nablarch. Please set up the project so that the features provided by Nablarch will be enabled, and consider how to deal with the items where the features are not provided.
The “OWASP Top 10” is also helpful, although there is some overlap with the IPA’s “How to Create a Secure Website”.
Nablarch pattern collection
Common patterns used in Nablarch, as well as anti-patterns that you should not use (but tend to use), are introduced here. If you design and program using the wrong method, it may lead to significant rework, poor performance, or production failure in the worst case. We recommend that you read this section before starting the design.
If you have not used Nablarch in a project before, refer to the sample project to check the actual project deliverables. In particular, it will be efficient to refer to the following points.
Checking the above makes it easier to grasp the image of the upcoming work.
Notes on sample projects
Don’t divert the deliverables from the sample project without any consideration.
The deliverables of the sample project are based on the requirements and characteristics of the sample project that we have created by customizing the design standards of Nablarch.
Since no two projects have the same requirements and characteristics, if you copy and reuse the deliverables without thinking, you will always find parts that do not match with your project. In such cases, the following problems occur:
Make sure to create new standards and guides based on your own project requirements and characteristics. When doing so, use the sample project for reference, and not as a source for copying.
The contents describe the topics that should be examined during the overall test plan of an application development project.
This catalog organizes the test types and viewpoints that can be used in application development.
Consideration of testing policy
In general, there is a trade-off between quality and cost in testing. The testing policy needs to be tailored to the characteristics of the project.
The test method that actively uses the Nablarch Testing Framework has a problem that the test data creation and maintenance are expensive (hereinafter referred to as “Heavy type”). The Sample Project uses a lightweight test method that reduces the number of automated test maintenance man-hours without sacrificing quality as much as possible (hereinafter referred to as the “Lightweight type”).
It is necessary to consider whether to adopt “Heavy type” or “Lightweight type” in the project depending on the system scale and the amount of change.
It creates test classes and test data and executes automated tests. Can check not only the database and files, but also the log output, request scope, and other internal system conditions in detail. However, due to the large number of deliverables and check points to be created, the amount of revisions that need to be made when changes occur is higher.
[Conditions suitable for Heavy type]
The ability to run most of the paths in automated tests makes it ideal for situations where highly accurate regression testing is required. It is especially useful for regression testing in large projects when upgrading frameworks, libraries, middleware, etc. For more information on Heavy type testing, refer to the following page.
For points to be checked by manual testing, save labor by omitting automated testing as much as possible. In general, when automated testing is reduced, the cost of regression testing rises, but provide a mechanism to maintain regression testing at low cost. The regression test can be run based on manual browser operation records.
[Conditions suitable for Lightweight type]
For more information on Lightweight type testing, refer to the following page.
Create a guide summarizing the information needed by developers to proceed with the project.
For an example of how to create a guide, refer to the following in the sample project:
Proceed with the standardization work such that it is in time for the start of each phase. Customize your project based on the following standards.
In particular, refer to the Application Development Standards (*1).
These contain important design standard documents such as DB design and UI standards.
In particular, UI standard needs to be deployed before starting the full-scale design phase. If you proceed with the design without any standard, the UI, such as screen layouts, will vary with each designer and each counter customer. (Example: Position of buttons, whether to display confirmation and completion screens, unnecessarily rich UI functions). To later unify these features, customer approval may be required and the features may need to be modified in parallel. It may not be possible to withdraw the UI after it has been presented. In this case, there is a risk that the UI needs to be created individually in Programming, Unit testing phase and the required man-hours will exceed the estimate. Reference：UI standard customization
For an example of how to customize, refer to the following in the sample project:
For the package configuration of the application, refer to “Package Configuration Review”.
The types of tests to be performed depend significantly on the characteristics of your project. Refer to the following items when preparing the test standards.
The Unit Test Standards under Nablarch Development Standard adopt a Heavy type (*1) testing strategy for large projects. On the other hand, the sample project adopts a Lightweight type (*1) testing strategy.
*1: see Consideration of testing policy
Perform the initial construction of the project using Nablarch. Please refer here.
Set up an environment for performing development in teams, such as Git repositories and chats.
Prepare a setup guide for the development environment to be used by application developers. Please refer here.
Establish development standards for the Programming and Unit testing phase. Refer to the following documents.
These are coding conventions that programmers must adhere to, to improve quality, productivity, and maintainability.
This is a checklist for developers to confirm the completion conditions of Programming and Unit testing work.
This is a checklist for developers to self-check simple coding mistakes such as violations of coding conventions, etc.
Before starting the integration test (Programming and Unit testing phase), change the settings for the integration test environment and confirm the communication.
Many differences occur when migrating from the local development environment to the integration test environment in the Programming and Unit testing phase. (Example: Difference in the file path, whether mock is used). For this reason, it is necessary by allotting extra time for carrying out the settings for the integration test environment. If communication is not confirmed adequately before the integration test, errors frequently occur in the base part immediately after starting the test, which may delay the progress of the entire test.
First, identify the cases from the architecture design document. For example, if there is a description of “authentication”, then there is a case confirming that the authentication function is working. Next, for each environment, check if the environment differs with respect to the previous phase.
Examples are shown below.
|Authentication||Yes||No||Yes||Common test data for the entire system is used from the IT phase|
|Report output||No||Yes||No||For licensing reasons, the form is output from ST|
|File I/O||Yes||No||No||Path specification method differs depending on the differences in OS|
|File transfer||Yes||Yes||Yes||IP address must be changed for each environment|
|Batch||Yes||No||Yes||Use shell script from the IT phase|
For parts with differences, change the settings according to the environment.
Confirm the communication mainly at places where there are differences. In particular, functions that have a significant impact on overall testing (testing cannot be done if these functions stop working) are tested on a priority basis.
(This will be added after receiving feedback from the project)
(This will be added after receiving feedback from the project)
This content is compliant with Creative Commons 4.0 “Attribution-ShareAlike”.
Copyright 2021 TIS Inc.keyboard_arrow_up