Skip to content
/ demo Public
forked from aibrahim/demo

A demo project in need of quality assurance

0 stars 4 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

MagusMachinae/demo

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

41 Commits
resources/public
resources/public
 
 
src/main/demo
src/main/demo
 
 
test/demo
test/demo
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
deps.edn
deps.edn
 
 
shadow-cljs.edn
shadow-cljs.edn
 
 

Repository files navigation

Simple Authentication API

This project provides a simple REST API which does two things:

POST /user Create a user with a username, password, and an optional role and store the user in memory. For demo purposes, anyone can create a new account with any role, i.e. the API does not have any security.

GET /user Retrieve a user by using their username and password and return their details

The database already has one existing user, and more can be added using the API

username: defaultuser 
password: password@123
role:     user

The API throws various exceptions when any one more of the following conditions are met. When an exception is thrown, requests are returned with an HTTP Code 400 or 401 respectively, along with the exception code and details about the violation.

  • User already exists when attempting to create a new one
  • Password is not at least 8 characters long
  • Password does not contain a lower case letter
  • Password does not contain an upper case letter
  • Password does not contain a special character
  • Invalid username and password combination

Getting Started

Start the server on localhost:3000

$ clj -A:server
2020-09-28 09:27:18.207:INFO:oejs.Server:main: Started @3729ms
Server running on port 3000

Example usage

Authenticate as the existing default user:

curl --location --request GET 'localhost:3000/user?username=defaultuser&password=password@123'

{"id":"defaultuser","role":"user"}

Create a user

$ curl --location --request POST 'localhost:3000/user' \
--header 'Content-Type: application/edn' \
--data-raw '{:username "demouser1" :password "abcdEFGH@123"}'

{"id":"demouser1","role":"user"}

Authenticate a user

$ curl --location --request GET 'localhost:3000/user?username=demouser1&password=abcdEFGH@123'

{"id":"demouser1","role":"user"}

Attempt to authenticate a user with the wrong password

$ curl --location --request GET 'localhost:3000/user?username=demouser1&password=forgottenpassword'

{"reason":"login.error/invalid-credentials"}

Attempt to create a user with an invalid password

$ curl --location --request POST 'localhost:3000/user' \
--header 'Content-Type: application/edn' \
--data-raw '{:username "demouser2" :password "hello"}'

{
   "reason":"create-user.error/password-violations",
   "violations":[
      "password.error/missing-uppercase",
      "password.error/too-short",
      "password.error/missing-special-character"
   ]
}

Attempt to create a user that already exists

curl --location --request POST 'localhost:3000/user' \
--header 'Content-Type: application/edn' \
--data-raw '{:username "demouser1" :password "abcdEFGH@123"}'

{"reason":"create-user.error/already-exists"}

About

A demo project in need of quality assurance

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Clojure 99.2%
  • HTML 0.8%