This is the backend server for a restaurant named Con Fusion, a practice project for learning backend development with JavaScript.
| Tech | Function |
|---|---|
| Node.js | Runtime |
| Express.js | application framework |
| MongoDB | persistent data store |
| Mongoose | ODM (object-document mapper) |
| JsonWebToken | Authentication |
It uses simple JWT-based authentications, and APIs are as following:
| Operation | Method | URL | Body |
|---|---|---|---|
| Signup | POST | /users/signup | { "username": "abc", "password": "xyz" } |
| Login | POST | /users/login | { "username": "abc", "password": "xyz" } |
| Logout (not used) | GET | /users/logout |
When you login, you'll receive a token in the response body.
Put that token in the request header as Authentication: Bearer <token> to
access restricted endpoints. The default expiration time of the tokens in 1 hour.
You'll have to relogin and obtain new token when the current token expires.
| Endpoint | Supported methods |
|---|---|
/dishes |
GET, POST, DELETE |
/dishes/<dishId> |
GET, PUT, DELETE |
/dishes/<dishId>/comments |
GET, POST, DELETE |
/dishes/<dishId>/comments/<commentId> |
GET, PUT, DELETE |
/promotions |
GET, POST, DELETE |
/promotions/<promoId> |
GET, PUT, DELETE |
/leader |
GET, POST, DELETE |
/leader/<leaderId> |
GET, PUT, DELETE |
/users |
GET |
| Method | Description | Access Control |
|---|---|---|
| GET | Retrieve record(s) | Usually public |
| POST | Insert new record in the collection | Requires authentication |
| PUT | Modify a record | Requires authentication |
| DELETE | Delete record(s) | Requires authentication |