Skip to content

Latest commit

 

History

History
68 lines (52 loc) · 4.74 KB

README.md

File metadata and controls

68 lines (52 loc) · 4.74 KB

Item Catalog: Music Collection Web Application

A web application based on the Flask framework that provides a list of music albums within different collections. Thereby integrating third party user registration and authentication. Authenticated users have the ability to create, edit, and delete their own collections and albums.

Note: This is a solution to project 3 of the Udacity Full Stack Web Developer Nanodegree based on the courses Full Stack Foundations (ud088) and Authentication & Authorization: OAuth (ud330). The solution is graded with "Exceeds Specifications".

Detailed Description

In addition to the basic functionality listed above, the following has been implemented:

  • API Endpoints: A list of all collections, a distinct collection or album can also be accessed via JSON and Atom endpoints. Those can be reached when clicked on the shown hyperlinks throughout the web application.
  • CRUD with album images: A cover image can be added for each album. This can be done either by uploading a local file or by providing an external image-url. If no image is added, a default image is shown. The album images are shown in the collection lists and can be edited and deleted as well.
  • Prevent CSRF: Additionally to the already implemented state tokens for the third party sign-ins to prevent cross-site request forgery attacks, CSRF tokens have been added to all POST-forms using the Flask SeaSurf extension.
  • Comments: All files are commented thoroughly and concise. As basis for styling the comments inside the Python files the PEP-8 and Google Style Guide have been used.

Important Files

There are multiple files in the / (base), /templates and /static folders. I will explain some of them in the following:

  • application.py: This file contains the whole server side programming logic of the application.
  • `database_setup.py': Contains the database model and is used to create the initial database.
  • musiccollections.db: Database file containing some example collections to get started. If you run the database_setup.py file, this file gets replaced with an empty database.
  • fb_client_secrets.json and g_client_secrtets.json: authorization information for Facebook and Google+ authentication. These can be used to try out the authorization options. However, for serious use, you should aquire your own keys.

Requirements

The project has been run from a vagrant virtual machine, but basically the main requirements are the following:

Running Instructions

  1. Change to the / (base) directory.
  2. Start the local server by typing in $ python application.py.
  3. Open a web browser and type in the URL http://localhost:5000.
  4. Enjoy :)

Planned Enhancements

  1. Implement form validation.
  2. Change to a many-to-many relationship between album and collection to make it possible to add existing albums to a collection.
  3. Add Amazon sign-in as authorization option.