Start of the Personal API Project
This project will help solidify the concepts of REST, APIs, Node.js and Express.
You're going to build a personal API for your own data. Although the idea might seem silly, the point of the project is to get you used to using Express to return data in an API.
- Start as usual with an
npm init
command to create ourpackage.json
. - Now install your dependencies. We will be using Express and body-parser. Note that you can install multiple dependencies at once with npm:
npm install express body-parser --save
. - Require Express and body-parser and initialize your express app.
- Use body-parser's json method in an
app.use()
method.
In yesterday's projects you might have noticed that our server.js
file was rapidly becoming very cluttered with our function logic. To get around this and keep a clean server.js
we're going to create some controllers and move a significant amount of logic into those. Start by creating a controllers
directory, inside which you will create a middleware.js
and a mainCtrl.js
. These are the files in which we write the bulk of our code today. We'll start in middleware.js
.
Yesterday we had to write out headers in every single request made and sent; now we get to simplify things! Before we actually start writing our middleware we need a way to get the code from this directory to be accessible to our server.js
. The way we do this is with module.exports
. There are two common ways of using module.exports
, either way will work fine, and which you choose is a matter of preference. Here is an example of each:
var exports = module.exports = {}
exports.myFunction = function(req, res) {
/*...*/
}
exports.anotherFunction = function(req, res) {
/*...*/
}
module.exports = {
myFunction: function(req, res) {
/*...*/
},
anotherFunction: function(req, res) {
/*...*/
}
}
As you can see we are just creating an object which we will then pull into our server.js
to have access to the methods we create inside that object. This is similar to dependency injection in Angular, just a different syntax. I'll be using the second style in this project, but as I mentioned, it is just preference and both will function the same.
Inside of our middleware.js
controller, let's create a new function that simply adds the headers we used yesterday to a response and then moves on to the next function. This looks a lot like our requests from yesterday, but without a res.send()
:
module.exports = {
addHeaders: function(req, res, next) {
res.status(200).set({
'Content-Type': 'application/json',
'Access-Control-Allow-Origin': '*',
'Access-Control-Allow-Methods': 'OPTIONS, GET, POST',
'Access-Control-Allow-Headers': 'Origin, X-Requested-With, Content-Type, Accept',
'X-XSS-Protection': '1; mode=block',
'X-Frame-Options': 'SAMEORIGIN',
'Content-Security-Policy': "default-src 'self' devmountain.github.io"
});
next();
}
}
You should also notice that we passed in a new parameter: next
. What next
does when invoked is simply pass the request along to the next function in line. Without next()
or a res.send()
our request will simply sit on our server and eventually time out. Let's head back to our server.js
file and set up our controllers.
To have access to the code inside these controllers we will need to require
much like we do with node modules. For these requires we need to provide a file path, which will look like this:
var middleware = require('./controllers/middleware.js');
var mainCtrl = require('./controllers/mainCtrl.js');
Now we can access any methods that we put inside of our mainCtrl
or middleware
objects with dot notation. We'll demonstrate by setting our middleware function to be used on every request. Remember your code from setting up body-parser, we will be doing the same thing with our own custom middleware.
app.use(middleware.addHeaders);
As simple as that, we no longer have to individually apply headers to every single endpoint! Remember that the app.use()
method just applies a function to every request made before passing it on to the next function or eventually sending a response.
- These endpoints will return data (see below)
- These endpoints should only be accessible with a GET request (read-only)
- These endpoints will call functions from your controller rather than having them declared inside of the endpoint. i.e
app.get('/name', mainCtrl.getName)
rather thanapp.get('/name', function(req, res) { /*...*/});
- returns: Your name (e.g. Joe Sandwiches) in a JSON object:
{ "name": "Donald Duck" }
- returns: Your location (e.g. Seattle, WA) in a JSON object:
{ "location": "Timbuktu" }
- returns: Your past occupations as an array in a JSON object:
{ "occupations": ["Thwarting Buggs Bunny", "Tomfoolery"] }
- returns: The last/current job you have/had. The occupations will be stored in an array, but this method returns the last item of the array in a JSON reponse:
{ "latestOccupation": "Tomfoolery" }
- returns: Your hobbies (e.g. Fishing, Swimming, etc.) as an array of objects in a JSON object:
{ hobbies: [{
"name": "Watching cartoons",
"type": "current"
},
{
"name": "Quacking",
"type": "past"
}
]
}
- returns: Any hobbies that match the type property specified in the request parameter
For the occupations endpoint, let's have a way for the client to get a specific ordering, alphabetized or reverse alphabetized.
- Make it so when the client requests occupations or hobbies with a order query parameter, return an alphabetized list for
order=desc
and a reverse alphabetized list fororder=asc
(if your hobbies/occupations endpoints are arrays of strings, you can simply use the Javascript.sort()
and.reverse()
methods of an array to do your sorting).
Now you're going to make some endpoints that can be added to or modified by POST
or PUT
requests.
- Changes your name
- Updates your current location.
- Adds to your list of hobbies.
- Adds to your list of occupations.
This endpoint is going to be a bit more complicated than those you've made previously. For skills, we need to store a more complicated data structure. Here's how your skill could be structured:
{
"id": 1,
"name": "Javascript",
"experience": "Intermediate"
}
- In your server code, make an array that holds all of your skills. Be sure to define the array outside of the
app.get
orapp.post
methods, as it needs to persist (scope) outside of those methods and maintain its data. The array will hold 'skill' objects like the example above. - Create the endpoint
-
Retrieve the list of skills
-
Also, allow an 'experience' query parameter so that someone can retrieve a list of skills that match a certain level of experience, like so:
GET /skillz?experience=Intermediate
- Add a skill to the collection of skills. For this endpoint let's create some middleware that will dynamically create IDs for us based on array length. This function will go inside of our
middleware.js
file. Because we only want to use this middleware on our skillz 'POST' endpoint we don't want to use theapp.use()
method; instead we want to pass it into our endpoint's arguments, like so:
app.post('/skillz', middleware.generateId, mainCtrl.postSkillz);
If this request is timing out, make sure you didn't forget to include the next()
call inside your middleware!
Let's create one more endpoint, somewhere we want to hide our deep dark secrets. We don't want just anyone accessing our secrets, so lets have a username and PIN parameter to make sure that you are you!
app.get('/secrets/:username/:pin', /*...*/);`
(Note that you probably shouldn't use your actual PIN here when testing). We'll need another set of middleware to handle this function, so create a new method in your middleware.js
named verifyUser
. This method should check that the parameters match a username and PIN you set. If they do, pass the request on to the next
function; otherwise, send an error message back to the user without moving to the next function.
- Let users search your hobbies, occupations, and skills endpoints by name.
- Try to use
req.params
andreq.query
at least once each.
- In a separate directory, create an Angular application
- Using ui.router, create three routes:
/
,/me
, and/skills
/
: a homepage containing basic information about you (name and location)/me
: detailed information about you: hobbies and occupations/skillz
: a page to display your skills
- Create a service that handles the network requests (hint: you could create a method for each endpoint, or you could consolidate some into the same method)
- If you arrive this far, go ahead and make some text inputs and add the logic necessary to edit or add to any of the "writeable" endpoints.