GitHunt
DS

dshomoye/database-dabi

A flask web app project on sample database design for fictional NE railway system (Dabi)

databaseflaskjwt-authenticationpythonrest-apisqlsqlite3

Database, webapp and API for fictional NE Railway system

This is more or less a sample case of a datasbase/backend servver for a train system - originally a school project,
along with the web app and API endpoints (which I added to make things more interesting)

this was a database focused class, being able to write correct SQL for managing the entire database was important hence the lack of use of an ORM.

Everything is in Python (2.7)
The web server is implemented with Flask And the API endpoint is with FLask RESTful, JWT tokens with pyjwt and passlib for password hashing
start the server with: python run.py, or export FLASK_APP=run.py and flask run after that.

An accompanying Android App that takes advantage of the API is in the works.

For the REST API, these are the resources and corresponding methods currently implemented:

For making changes to Tickets and viewing passenger info, the cliet must be logged in at /login

  • POST with data:
{
    username: {username},
    password: {password}
}

a token will be issued if password is right. subsequent requests should include this token.

Station :

URL: /stations
Methods:
GET:
- data parameters: none

sample response: [
{
    "station_code": "BOST",
    "station_name": "Boston South Station, MA"
},
{
    "station_code": "BBAY",
    "station_name": "Boston Back Bay, MA"
},... ]

Schedule :

URL /schedule
Methods:
GET:

  • data parameters:
    • start_station
    • end_station
    • trip_date
    • time_of_day (optional)

  • sample query:

    /schedule?start_station=MYST&end_station=WGTN&trip_date=2017-20-05

  • response:

    [ { "arrival": "08:45:00", "fare": 26, "time_out": "05:32:00", "train_num": 9 }, { "arrival": "11:45:00", "fare": 26, "time_out": "08:32:00", "train_num": 10 }, ... ]

Passenger:

URL: /passengers/{passenger_id}
Methods:

  • GET:
    • data parameters:
      • token

  • sample query:

    /passengers/5?token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ1c2VybmFtZSI6ImpheSIsImV4cCI6MTUwMDcyNzYxOH0.4-57_43Hx7y6Uk-oNWU_L6VulKSHOsqrLpodh176Pcs

  • response:

    { "address": "as", "email": "jay@jay", "first_name": "jay", "last_name": "jay" }

  • POST - returns the passenger_id on successful creation
    • data parameters:
      • username
      • password
      • first_name
      • last_name
      • email
      • address (optional)

Ticket:

URL: /tickets
Methods:

GET: </tickets/{ticket_numer:*optional*}>

  • data parameters:
    • token:required (user must be owner of {ticket_number})
    • passenger_id : required if {ticket_number} not provided
      this returns info for all tickets bought by {passenger_id} otherwise return info for {ticket_number} (one but not both of the two must be used)

POST : </tickets>

  • data parameters:
    • token
    • passenger_id
    • start_station
    • end_station
    • train_number
    • trip_date_time: e.g. '2017-07-08 04:05:06'
    • fare
    • return_date_time
    • return_train

DELETE : </tickets/{ticket_number}>

cancels a booked ticket (might be available for rebook)

  • parameters:
    • token : required
    • passenger_id required

Contributors

DSBABU
Created June 12, 2017
Updated April 16, 2019