- Create a database and query it using
psqlterminal - Perform
BREADactions on database from command line - Perform
BREADactions on database from the browser
- Clone the repo locally
- Run
npm installoryarn installto install Node packages - Log into
psqland create a database calledvillains(you can edit the name in/db/db.jsif you need to) - Use
\icommand to "include" thevillains.sqlfile from thesqldirectory - Create a new user
villains_userand give them appropriate permissions and a password
CREATE USER villains_user;
GRANT ALL PRIVILEGES ON DATABASE villains TO villains_user;
GRANT ALL PRIVILEGES ON TABLE villains TO villains_user;
ALTER USER villains_user WITH ENCRYPTED PASSWORD 'password';- Run the server with
node server.jsand visitlocalhost:3000/villainsin your browser
We are going to use node-postgres (pg) node package to interact with our database.
In order to connect with our database, we pass configuration options to the pg client:
const pg = require('pg');
const config = {
user: '<user name>',
password: '<password>',
database: '<db>',
host: '<host>'
};
const client = new pg.Client(config);Then we tell our client to connect to the database and we execute queries using the client:
client.connect();
client.query('SELECT * FROM <table>', (err, result) => console.log(err, result));NOTE: pg uses "error first" callbacks meaning that the first argument will always be the error (if any) or null and the second argument will be the return value from our query.
We always want to sanitize any user-defined parameters in our SQL before running the query to prevent possible SQL injections.
In pg, we use prepared statements and pass an array of values as the second argument to client.query():
client.query('SELECT * FROM <table> WHERE id = $1', [<id>], (err, result) => console.log(err, result));In the above example, the id from the array will be interpolated into the SQL query wherever $1 appears.