Authors:
Pedro Guzmán ([email protected])
Juan Medrano ([email protected])
Felix Vazquez
License: MIT License
BattleShip-SyncServer is a REST-Compliant web service for playing Battleships, extending Garnet(https://github.com/OneTesseractInMultiverse/Garnet) as a base.
Further documentation can be found in the docs folder, on how to use the endpoints.
Server is based on a owner-player principle, so, in order to make a player, you must first create a account using the instructions below.
Garnet is a basic boilerplate Flask-based application that provides some basic features out of the box that can be easily configured and extended. Some of the provided features are the following:
-
MVC Support: Full support for Model-View-Controller pattern. Note: If you plan to create a full web application, we recommend implementing Views using a frontend framework like ReactJs or Angular.
-
MongoEngine: to intreact with MongoDB
-
JSONP Support (JSON with Padding): Enables support for cross-origin requests without the need of enabling CORS.
-
JSON Web Token (JWT) Support Support for JWT as specified in RFC 7519. JWT allows secure representation of claims between two parties.
- Python 3.6.1
- Pip 9.0.1
- MongoDB 3.4.5
- Virtualenv (optional)
Clone the repository in your local system:
$ git clone https://github.com/juanmaus/Garnet.gitInstall dependencies:
$ cd Garnet
$ pip install -r requirements.txtConfigure settings in config.py and setup your parameters such as validity of the JWT tokens, connection parameters for MongoDB and logging.
Run the application:
$ python run.py
Verify the application is running in your browser by navigating to:
http://127.0.0.1:8080
By default, Garnet provides a basic account controller that enables registration of users as well as performing some basic operations such as querying users, updating password and updating email. Garnet also provides an authentication endpoint that validates client credentials and issues JSON Web Tokens that can then be used to authenticate requests against protected resources.
The default registration endpoint is: POST: /api/v1/account which takes a json payload like the following:
{
"name": "YourName",
"last_name": "YourLastname",
"username": "your_username",
"email": "[email protected]",
"password": "SuperSecretPassword"
}In order to get a JWT Token, the following endpoint must be used: POST: /api/v1/auth and it takes the following json payload:
{
"username": "your_username",
"password": "SuperSecretPassword"
}If the data provided is correct, then you should receive a JWT Token. The default duration of the Token is one hour, but this can be configured in config.py by modifying the JWT_EXPIRATION_DELTA property. Here is an example token response:
{
"access_token": "eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJleHAiOjE3NzQ1MDQ1NzYsImlhdCI6MTQ5ODAyNDU3NiwibmJmIjoxNDk4MDI0NTc2LCJpZGVudGl0eSI6ImJhZjFjMjI4LTg4NTAtNGJiMi1hMjBjLTYyYTgzZTQxM2NmNyJ9.mfwtdJVkjBmTSrqBUY-gky_XaUacMC5sFoV-aWsiDvg"
}Now if you want to make authenticated requests to an API resource, you only need to include the token in the Authorization Header as the following example:
Authorization JWT eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJleHAiOjE3NzQ1MDQ1NzYsImlhdCI6MTQ5ODAyNDU3NiwibmJmIjoxNDk4MDI0NTc2LCJpZGVudGl0eSI6ImJhZjFjMjI4LTg4NTAtNGJiMi1hMjBjLTYyYTgzZTQxM2NmNyJ9.mfwtdJVkjBmTSrqBUY-gky_XaUacMC5sFoV-aWsiDvg