GitHub - NguyenHHKiet/devcamper-api: REST API DevCamper-API Backend

Node.JS API for Devcamper

Project Description DevCamper is a fully functional application that allows users to search, create, manage, and evaluate bootcamps. With rich features such as pagination, filtering, and authentication, this project provides a powerful platform for managing and evaluating bootcamp courses. Security is a top priority with encryption mechanisms, common attack protection, and request rate limiting.

Usage

Create and configure the config/config.env file with your settings.

Install dependencies and manage the database:

cd devcamper-api
yarn
node seeder -i  # Create database
node seeder -d  # Delete database

Tech Stack

Node.js / Express.js
Mongoose
Husky / Prettier / ESLint
MongoDB

Documentation

API Endpoints

Base URL: `/api/v1/`

Resource	GET	POST	PUT	DELETE
Bootcamps	`/`, `/:id`	`/`	`/:id`, `/:id/photo`	`/:id`
Courses	`/`, `/:id`		`/:id`	`/:id`
Reviews
Auth	`/me`	`/register`, `/login`, `/forgetpassword`	`/updatedetails`
Forget Password			`/:resettoken`
Users	`/`, `/:id`	`/`	`/:id`	`/:id`

Query Parameters:

Filter: housing=true&averageCost[lte]=100
Select: select=name&sort=-name
Pagination: page=2&limit=10

Bootcamps

List: All bootcamps with pagination, filtering, and field selection.
Search: By radius from a zipcode.
Create: Authenticated users with roles "publisher" or "admin".
Update/Delete: Owner only.
Photo Upload: Owner only.
Calculate: Average course cost and review rating.

Courses

List: All or specific bootcamp's courses with pagination and filtering.
Create/Update/Delete: Authenticated users with roles "publisher" or "admin".

Reviews

List: All reviews or specific bootcamp's reviews with pagination and filtering.
Create/Update/Delete: Authenticated users with roles "user" or "admin".

Users & Authentication

JWT/Cookie: For authentication, with a 30-day expiry.
Registration/Login: User roles include "user" or "publisher".
Password Reset: Request reset with a hashed token valid for 10 minutes.
CRUD Operations: Admin-only for user management.

Security

Password and token encryption
XSS prevention
NoSQL injection prevention
Rate limiting: 100 requests per 10 minutes
HTTP parameter pollution prevention
Security headers (helmet)
CORS enabled for public access

Name		Name	Last commit message	Last commit date
Latest commit History 43 Commits
.husky		.husky
_data		_data
config		config
controllers		controllers
middleware		middleware
models		models
public/uploads		public/uploads
routes		routes
utils		utils
.eslintrc.js		.eslintrc.js
.gitignore		.gitignore
.prettierignore		.prettierignore
.prettierrc		.prettierrc
HTTP Intro.md		HTTP Intro.md
LICENSE		LICENSE
README.md		README.md
package.json		package.json
seeder.js		seeder.js
server.js		server.js
vercel.json		vercel.json
yarn.lock		yarn.lock

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Node.JS API for Devcamper

Usage

Tech Stack

Documentation

API Endpoints

Base URL: `/api/v1/`

Bootcamps

Courses

Reviews

Users & Authentication

Security

About

Releases

Packages

Languages

License

NguyenHHKiet/devcamper-api

Folders and files

Latest commit

History

Repository files navigation

Node.JS API for Devcamper

Usage

Tech Stack

Documentation

API Endpoints

Base URL: /api/v1/

Bootcamps

Courses

Reviews

Users & Authentication

Security

About

Topics

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Base URL: `/api/v1/`

Packages