Issue tracker microservice
I created this app as a requirement for my freeCodeCamp Information Security and Quality Assurance Certification, using Node.js, Express, MongoDB, Chai, and Helmet. The front end API tests on the home page also use Bootstrap, jQuery, and highlight.js.
You can read the functional tests I wrote on GitHub or Glitch. To run the tests yourself, create a MongoDB database, fork/remix this project, create a .env
file with DB="{your MongoDB URI}"
and NODE_ENV="test"
, start the server, and look at the server console logs.
This project fulfills the following user stories:
- Prevent cross site scripting(XSS attack).
- I can POST
/api/issues/{projectname}
with form data containing requiredissue_title
,issue_text
,created_by
, and optionalassigned_to
andstatus_text
. - The object saved (and returned) will include all of those fields (blank for optional no input) and also include
created_on
(date/time),updated_on
(date/time),open
(boolean,true
for open,false
for closed), and_id
. - I can PUT
/api/issues/{projectname}
with a_id
and any fields in the object with a value to object said object. Returned will be"successfully updated"
or"could not update " + _id
. This should always updateupdated_on
. If no fields are sent return"no updated field sent"
. - I can DELETE
/api/issues/{projectname}
with a_id
to completely delete an issue. If no_id
is sent return"_id error"
, success:"deleted " + _id
, failed:"could not delete " + _id
. - I can GET
/api/issues/{projectname}
for an array of all issues on that specific project with all the information for each issue as was returned when posted. - I can filter my get request by also passing along any field and value in the query (e.g.,
/api/issues/{project}?open=false
). I can pass along as many fields/values as I want. - All 11 functional tests are complete and passing.