Skip to content
/ MediaMarktSaturn Public

Develop a backend service for managing security-related data that integrates with MediaMarktSaturn's systems

License

MIT license
3 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

nimodb/MediaMarktSaturn

BranchesTags

Repository files navigation

Python Challenge: Secure Backend Service for MediaMarktSaturn

Table of Contents

  1. Introduction
  2. Installation
  3. Usage
  4. Docker Setup
  5. Testing
  6. API Documentation
  7. Cloud Deployment
  8. CI/CD Pipeline with GitHub Actions

Introduction

TThis project is a backend service for managing security-related data, developed for MediaMarktSaturn. It provides a scalable and secure RESTful API for CRUD operations on security records. The service is implemented using Django and Django REST Framework and is designed to be deployable on Kubernetes.

Installation

To set up the project locally, follow these steps:

  1. Clone the repository from GitHub: Repository Link

  2. Navigate to the project directory.

  3. Create a virtual environment:

     python -m venv env

  4. Activate the virtual environment:

    On Windows:

    .\env\Scripts\activate

    On macOS and Linux:

    source env/bin/activate

  5. Install dependencies:

    pip install -r requirements.txt

  6. Run migrations to apply database schema:

    python manage.py migrate

  7. (Optional) Load initial data:

    python manage.py loaddata initial_data.json

  8. Start the development server:

    python manage.py runserver

  9. Access the API Root at http://127.0.0.1:8000/api/

Usage

Register a New User

To register a new user, send a POST request to the following endpoint:

POST http://127.0.0.1:8000/register/
Content-Type: application/json

{
  "username": "TestUser",
  "password": "TestPassword",
  "email": "testEmail@domain.com"
}

Obtain a Token

To obtain a token for authentication, send a POST request to the following endpoint:

POST http://127.0.0.1:8000/api-token-auth/
Content-Type: application/json

{
  "username": "TestUser",
  "password": "TestPassword"
}

Test Access for Unauthenticated Users

To test that unauthenticated users cannot list security records, send a GET request to the following endpoint:

GET http://127.0.0.1:8000/api/security-records/

To test that unauthenticated users cannot retrieve a security record by ID, send a GET request to the following endpoint:

GET http://127.0.0.1:8000/api/security-records/5/

To test that unauthenticated users cannot create a new security record, send a POST request to the following endpoint:

POST http://127.0.0.1:8000/api/security-records/
Content-Type: application/json

{
  "name": "New Security Record",
  "description": " Description of the new security record."
}

To test that unauthenticated users cannot update a security record, send a PUT request to the following endpoint:

PUT http://127.0.0.1:8000/api/security-records/1/
Content-Type: application/json

{
  "name": "Updated Security Record",
  "description": "Updated description of the security record."
}

To test that unauthenticated users cannot delete a security record, send a DELETE request to the following endpoint:

DELETE http://127.0.0.1:8000/api/security-records/1/

Test Access for Authenticated Users

To test that authenticated users can list security records, send a GET request to the following endpoint with the authorization token:

GET http://127.0.0.1:8000/api/security-records/
Authorization: Token <token>

To test that authenticated users can retrieve a security record by ID, send a GET request to the following endpoint with the authorization token:

PUT http://127.0.0.1:8000/api/security-records/1/
Authorization: Token <token>

To test that authenticated users can create a new security record, send a POST request to the following endpoint with the authorization token:

POST http://127.0.0.1:8000/api/security-records/
Content-Type: application/json
Authorization: Token <token>

{
  "name": "New Security Record",
  "description": " Description of the new security record."
}

To test that authenticated users can update a security record, send a PUT request to the following endpoint with the authorization token:

PUT http://127.0.0.1:8000/api/security-records/1/
Content-Type: application/json
Authorization: Token <token>

{
  "name": "Updated Security Record",
  "description": "Updated description of the security record."
}

To test that authenticated users can delete a security record, send a DELETE request to the following endpoint with the authorization token:

DELETE http://127.0.0.1:8000/api/security-records/1/
Authorization: Token <token>

Docker Setup

To run the project using Docker, follow these steps:

  1. Install Docker and Docker Compose if you haven't already.

  2. Clone the repository from GitHub: Repository Link

  3. Navigate to the project directory.

  4. Build the Docker image:

    docker-compose build

  5. Run the Docker containers:

    docker-compose up

Testing

Test Setup

The 'tests.py' file contains test cases for the API endpoints defined in the Django application. These test cases are written using Django's testing framework and the Django REST Framework's 'APITestCase'.

The 'setUp' method is called before each test case to set up the necessary objects and configurations for testing. In this setup:

  1. An instance of 'APIClient' is created to simulate HTTP requests.
  2. A test user is created using Django's 'User' model.
  3. An authentication token is generated for the test user using Django REST Framework's 'Token' model.
  4. A test security record is created using the application's 'SecurityRecord' model.

Test Cases

The test cases are organized into two main sections:

  1. Test Access for 'Unauthenticated' Users
  2. Test Access for 'Authenticated' Users

Test Access for Unauthenticated Users

These test cases ensure that unauthenticated users cannot perform certain actions (CRUD) on the API endpoints.

  • test_list_records_unauthenticated: Checks that unauthenticated users cannot list security records.
  • test_retrieve_record_unauthenticated: Checks that unauthenticated users cannot retrieve a security record by ID.
  • test_create_record_unauthenticated: Checks that unauthenticated users cannot create a new security record.
  • test_update_record_unauthenticated: Checks that unauthenticated users cannot update a security record.
  • test_delete_record_unauthenticated: Checks that unauthenticated users cannot delete a security record.

(5 Tests)

Test Access for Authenticated Users

These test cases ensure that authenticated users can perform actions on the API endpoints after authentication.

  • test_list_records_authenticated: Checks that authenticated users can list security records.
  • test_retrieve_record_authenticated: Checks that authenticated users can retrieve a security record by ID.
  • test_create_record_authenticated: Checks that authenticated users can create a new security record.
  • test_update_record_authenticated: Checks that authenticated users can update a security record.
  • test_delete_record_authenticated: Checks that authenticated users can delete a security record.

(5 Tests)

API Documentation

The API endpoints are documented using 'drf-spectacular'. You can access the API documentation in two format:

Swagger UI

Swagger UI provides an interactive interface for exploring the API. You can access it at:

Redoc

Redoc provides a different view of the API documentation. You can access it at:

Both interfaces allow you to explore the available endpoints, view request and response schemas, and interact with the API directly from the documentation.

Cloud Deployment

Kubernetes Deployment

To deploy this project on a Kubernetes:

  1. For Google Cloud Platform (GKE)

    

    2. 

  2. 

    For AWS (EKS)
    

    

    3. 

  3. 

    For Microsoft Azure (AKS)
    

    

    4. 

  4. 

    Verify the deployment and get the external IP of the service:
    

    5. 



    

  • Ensure you have 'kubectl' installed and configured for your cloud provider.
    • 

  • Apply the Development and Service file

      kubectl apply -f development.yaml
  kubectl apply -f service.yaml
    

    • 

  • verify that the pods are running:

      kubectl get pods 
    

    • 

  • Get the external IP address of the service:

      kubectl get svc SERVICE_NAME
    

    • 



    

  1. Access the Django application using the external IP.
    2. 



CI/CD Pipeline with GitHub Actions


This project uses GitHub Actions to automate CI process. The CI/CD pipeline is set up to run tests automatically whenever code changes are pushed to the main branch.


   



      


  
      

      

        

          

            

  
About


      

        Develop a backend service for managing security-related data that integrates with MediaMarktSaturn's systems
      


    
Topics

    

        

      
  python

      
  api

      
  oauth2

      
  django-rest-framework

      
  restful-api

      
  authentication-backend

  


    


    
Resources

    

      
        
        Readme
    


  
    
License

  

    
      
     MIT license
    
  





  
  

  

    
      
      Activity
  



  
Stars

  

    
      
      3
      stars
  


  
Watchers

  

    
      
      1
      watching
  


  
Forks

  

    
      
      0
      forks
  


    

      
          Report repository
    




          

        


        
            

              

                

  
    Releases



    
No releases published


              

            


        
        
            

              

                
  

  
    Packages
      




      

        No packages published 

      




              

            


        
            

        
        
        
            

              

                
Languages