/sre-bootcamp

SRE Bootcamp 2021

Primary LanguagePython

Wizeline SRE Bootcamp Challenge

Thank you for registering for the Wizeline Academy SRE Bootcamp, and welcome to the Technical Challenge!

In order to be accepted into the Wizeline Academy SRE Bootcamp, you must successfully complete the Technical Challenge, which consists of two parts. After registering, you have 3 days to complete both parts, detailed below.

We do not want you to think of this as a test or an exam, but instead, more like a project you have been assigned to complete. Communication is important, and we are here to help you if you get stuck or have any concerns - just open an issue in the source repository and our team of SRE experts will get back to you as soon as we can!


Technical Challenge Part 1 - Coding

To give you an opportunity to demonstrate your coding skills, we have designed a challenge for you in CodeSignal.

You can access this part of the challenge using the following link.

Important Notes:

  • Once you start this part of the challenge, you will have 1 hour 30 minutes to complete it within the CodeSignal platform!
  • Make sure before you start, you have the time available to finish it.
  • You must complete this part of the challenge before moving on to the second part, detailed below.



Technical Challenge Part 2 - Practical Applications

For the second part of the challenge, we would like you to fork this repository. This will help us get an understanding of your operational skills, no matter which technology stack is used.

Important notes:

  • We expect this part of the challenge to take around 6 hours to complete.
  • There is no specific time limitations, so you can go at your own pace, but please make sure to submit it within three days of registration!
  • Once you have completed this part of the challenge, please fill out the Google Form that is mentioned at the bottom of this page with your forked repository.

Overview

This repository contains an API skeleton where you can add your code, using the language of your preference.

You need to complete a functionality in our API that provides a basic authentication.

The API has 2 missing endpoints. The first endpoint receives a username and password. When these parameters are correct it returns a JWT token; otherwise it should return a 403 HTTP error message.

You will have a read only database with these access:

   
user secret
password noPow3r
endpoint bootcamp-tht.sre.wize.mx
DB bootcamp_tht

In the database three valid users with their passwords are stored:

Table users

username password salt role
admin encrypted-password F^S%QljSfV admin
noadmin encrypted-password KjvFUC#K*i editor
bob encrypted-password F^S%QljSfV viewer

Passwords in plain text:

username password
admin secret
noadmin noPow3r
bob thisIsNotAPasswordBob

Passwords have appended the salt value and hashed with the SHA512 Algorithm. If the username and password combination is valid, you should return a JWT Token with the role in the payload of the token.

You should use this 256 bit secret to encrypt your token: my2w7wjd7yXF64FIADfJxNs1oupTGAuW

curl -d "username=admin&password=secret" http://localhost:8000/login
{
  "data": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkpvaG4gRG9lIiwiaWF0IjoxNTE2MjM5MDIyfQ.SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c"
}

For the second endpoint you must use the generated token to access a restricted area:

curl -H 'Accept: application/json' -H "Authorization: Bearer ${TOKEN}" localhost:8000/protected
{
  "data": "You are under protected data"
}

Coding

  • Complete the following endpoints.
    • /login
    • /protected
  • Make sure your tests are passing.
  • Add missing tests. Feel free to add any additional tests that you think are valuable.
  • As mentioned above, you may work in the language of your choice. Please pick one from the list of available languages:

Docker

  • Dockerize the application located in src
  • Push it to a public image in DockerHub tagged as wize-<firstName>-<lastName>:latest
  • Application should run in port 8000



Don’t forget to fill out the Google Form with your forked repository!

Remember, you must send your forked repository by filling out the following Google Form within three days of your registration date to be considered for the Wizeline Academy SRE Bootcamp!

Thanks for completing the challenge, we can’t wait to see you soon!