Udacity Full-Stack Web Developer Nanodegree Program Capstone Project
The Casting Agency Project models a company that is responsible for creating movies and managing and assigning actors to those movies. You are an Executive Producer within the company and are creating a system to simplify and streamline your process.
This project is simply a workspace for practicing and showcasing different set of skills related with web development. These include data modelling, API design, authentication and authorization and cloud deployment.
The project adheres to the PEP 8 style guide and follows common best practices, including:
- Variable and function names are clear.
- Endpoints are logically named.
- Code is commented appropriately.
- Secrets are stored as environment variables.
-
Flask is a lightweight backend microservices framework. Flask is required to handle requests and responses.
-
SQLAlchemy is the Python SQL toolkit and ORM we'll use handle the lightweight sqlite database. You'll primarily work in app.py and can reference models.py.
-
Flask-CORS is the extension we'll use to handle cross origin requests from our frontend server.
-
Auth0 is the authentication and authorization system we'll use to handle users with different roles with more secure and easy ways
-
PostgreSQL this project is integrated with a popular relational database PostgreSQL, though other relational databases can be used with a little effort.
-
Heroku is the cloud platform used for deployment
Follow instructions to install the latest version of python for your platform in the python docs
We recommend working within a virtual environment whenever using Python for projects. This keeps your dependencies for each project separate and organized. Instructions for setting up a virtual environment for your platform can be found in the python docs
Once you have your virtual environment setup and running, install dependencies by running:
pip install -r requirements.txtThis will install all of the required packages we selected within the requirements.txt file.
With Postgres running, restore a database using the capstone.psql file provided. In terminal run:
createdb capstone
psql capstone < capstone.psqlTo run the tests, run
dropdb capstone_test
createdb capstone_test
psql capstone_test < capstone.psql
python test_app.pyOptionally, you can use run_test.sh script.
You need to setup an Auth0 account.
Environment variables needed: (setup.sh)
export AUTH0_DOMAIN="xxxxxxxxxx.auth0.com" # Choose your tenant domain
export ALGORITHMS="RS256"
export API_AUDIENCE="capstone" # Create an API in Auth0Create three roles for users under Users & Roles section in Auth0
- Casting Assistant
- Can view actors and movies
- Casting Director
- All permissions a Casting Assistant has and…
- Add or delete an actor from the database
- Modify actors or movies
- Executive Producer
- All permissions a Casting Director has and…
- Add or delete a movie from the database
Following permissions should be created under created API settings.
view:actorsview:moviesdelete:actorspost:actorsupdate:actorsupdate:moviespost:moviesdelete:movies
Use the following link to create users and sign them in. This way, you can generate
https://dev-as55yhyexmhin5ae.us.auth0.com/authorize?audience=coffeeshop&response_type=token&client_id=z6Cu8sezt0Xg1z5FPE2HQEFsPRDW5N70&redirect_uri=http://localhost:4200/tabs/user-page
-
Initialize and activate a virtualenv:
virtualenv --no-site-packages env_capstone source env_capstone/bin/activate -
Install the dependencies:
pip install -r requirements.txt
-
Configure database path to connect local postgres database in
models.pydatabase_path = "postgres://{}/{}".format('localhost:5432', 'capstone')
Note: For default postgres installation, default user name is postgres with no password. Thus, no need to speficify them in database path. You can also omit host and post (localhost:5432). But if you need, you can use this template:
postgresql://[user[:password]@][netloc][:port][/dbname][?param1=value1&...]
For more details look at the documentation (31.1.1.2. Connection URIs)
-
Setup the environment variables for Auth0 under
setup.shrunning:source ./setup.sh -
To run the server locally, execute:
export FLASK_APP=flaskr export FLASK_DEBUG=True export FLASK_ENVIRONMENT=debug flask run --reload
Optionally, you can use
run.shscript.
There are two models:
- Movie
- title
- release_date
- Actor
- name
- age
- gender
Errors are returned as JSON objects in the following format:
{
"success": False,
"error": 400,
"message": "bad request"
}The API will return three error types when requests fail:
- 400: Bad Request
- 401: Unauthorized
- 403: Forbidden
- 404: Resource Not Found
- 422: Not Processable
- 500: Internal Server Error
-
Get all movies
-
Require
view:moviespermission -
Example Request:
curl 'http://localhost:5000/movies' -
Expected Result:
{ "movies": [ { "actors": [ { "age": 54, "gender": "M", "id": 1, "movie_id": 2, "name": "Tom Hanks" }, { "age": 45, "gender": "M", "id": 4, "movie_id": 2, "name": "Robert Downey, Jr." }, { "age": 45, "gender": "F", "id": 5, "movie_id": 2, "name": "Julia Roberts" } ], "id": 2, "release_date": "Fri, 04 May 2012 00:00:00 GMT", "title": "Yahşi Batı" }, ... ], "success": true }
-
Get all actors
-
Requires
view:actorspermission -
Example Request:
curl 'http://localhost:5000/actors' -
Expected Result:
{ "actors": [ { "age": 45, "gender": "M", "id": 6, "movie_id": 1, "name": "Cem Yılmaz" }, { "age": 54, "gender": "M", "id": 1, "movie_id": 2, "name": "Tom Hanks" }, { "age": 44, "gender": "M", "id": 2, "movie_id": 3, "name": "Brad Pitt" } ], "success": true }
-
Creates a new movie.
-
Requires
post:moviespermission -
Requires the title and release date.
-
Example Request: (Create)
curl --location --request POST 'http://localhost:5000/movies' \ --header 'Content-Type: application/json' \ --data-raw '{ "title": "Pek Yakında", "release_date": "19-02-2020" }'
-
Example Response:
{ "success": true }
-
Creates a new actor.
-
Requires
post:actorspermission -
Requires the name, age and gender of the actor.
-
Example Request: (Create)
curl --location --request POST 'http://localhost:5000/actors' \ --header 'Content-Type: application/json' \ --data-raw '{ "name": "Cem Yılmaz", "age": "45", "gender": "M" }'
-
Example Response:
{ "success": true }
-
Deletes the movie with given id
-
Require
delete:moviespermission -
Example Request:
curl --request DELETE 'http://localhost:5000/movies/1' -
Example Response:
{ "deleted": 1, "success": true }
-
Deletes the actor with given id
-
Require
delete:actorspermission -
Example Request:
curl --request DELETE 'http://localhost:5000/actors/1' -
Example Response:
{ "deleted": 1, "success": true }
-
Updates the movie where <movie_id> is the existing movie id
-
Require
update:moviespermission -
Responds with a 404 error if <movie_id> is not found
-
Update the corresponding fields for Movie with id <movie_id>
-
Example Request:
curl --location --request PATCH 'http://localhost:5000/movies/1' \ --header 'Content-Type: application/json' \ --data-raw '{ "title": "Eyvah eyvah 2" }'
-
Example Response:
{ "success": true, "updated": { "id": 1, "release_date": "Wed, 04 May 2016 00:00:00 GMT", "title": "Eyvah eyvah 2" } }
-
Updates the actor where <actor_id> is the existing actor id
-
Require
update:actors -
Responds with a 404 error if <actor_id> is not found
-
Update the given fields for Actor with id <actor_id>
-
Example Request:
curl --location --request PATCH 'http://localhost:5000/actors/1' \ --header 'Content-Type: application/json' \ --data-raw '{ "name": "Tom Hanks" }'
-
Example Response:
{ "success": true, "updated": { "age": 54, "gender": "M", "id": 1, "name": "Tom Hanks" } }