Skip to content

international-rural-school-report-v2/backend

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

94 Commits
api
api
 
 
data
data
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
index.js
index.js
 
 
jest.config.js
jest.config.js
 
 
knexfile.js
knexfile.js
 
 
package.json
package.json
 
 
yarn.lock
yarn.lock
 
 

Repository files navigation

International Rural School Report (Backend)

Sections:

API Endpoints

Section Contents:

/auth/login POST

Expects an object with this format as the request body:

{
  "username": "User1",   //string
  "password": "password" //string
}

If the username doesn't exist in the users table or the password doesn't match, it will reject the request with a 401 HTTP status.

If successful, it will return with a 201 HTTP status and an object with this format (same as register):

{
  "token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWJqZWN0IjoxLCJ1c2VybmFtZSI6InVzZXIxIiwiaWF0IjoxNTU4Mjk1NDg4LCJleHAiOjE1NTgzMDI2ODh9.Lwz-Wfyzto2JJOSJjRqalbonNSwhXSLmNyxMWH-aVRc",
  "org_roles": [
    {
      "org_id": 1,
      "org_name": "Organization One",
      "roles": [
        {
          "role_id": 1,
          "role_name": "School Administrator"
        }
      ]
    }
  ]
}
  • token: A JSON Web Token
  • org_roles: An array of objects, each of those objects representing one organization at which the user has some role.
    • org_id: An integer representing the ID of the organization from the orgs table
    • org_name: A string representing the organization's name
    • roles: An array of objects, each object representing one role that the user has at the organization containing it
      • role_id: An integer representing the ID of the role from the roles table
      • role_name: A string representing the name of that role

Top of API section | Top of page

/auth/register POST

Expects an object with this format as the request body:

{
  "username": "User1",    // required/string/unique
  "password": "password", // required/string
  "name": "TEST",         // required/string
  "role_id": 2,           // required/number
  "org_id": 2,            // required/number
  "email": "[email protected],  // optional/string/unique
  "phone": "555-555-5555" // optional/string/unique
}

If any of the required fields are missing, it will reject the request with a 400 HTTP status.

If successful, it will return with a 201 HTTP status and an object with this format (same as login):

{
  "token": "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzdWJqZWN0IjoxLCJ1c2VybmFtZSI6InVzZXIxIiwiaWF0IjoxNTU4Mjk1NDg4LCJleHAiOjE1NTgzMDI2ODh9.Lwz-Wfyzto2JJOSJjRqalbonNSwhXSLmNyxMWH-aVRc",
  "org_roles": [
    {
      "org_id": 1,
      "org_name": "Organization One",
      "roles": [
        {
          "role_id": 1,
          "role_name": "School Administrator"
        }
      ]
    }
  ]
}
  • token: A JSON Web Token
  • org_roles: An array of objects, each of those objects representing one organization at which the user has some role.
    • org_id: An integer representing the ID of the organization from the orgs table
    • org_name: A string representing the organization's name
    • roles: An array of objects, each object representing one role that the user has at the organization containing it
      • role_id: An integer representing the ID of the role from the roles table
      • role_name: A string representing the name of that role

Top of API section | Top of page

/public/orgs GET

Used to populate a dropdown of organizations for the register form. If no organizations exist in the database, it will reject the request with a 404 HTTP status.

If successful, it will return a 200 HTTP status and an array of objects. Each object represents one organization in the orgs table:

[
  {
    "id": 1,
    "name": "Organization One"
  },
  {
    "id": 2,
    "name": "Organization Two"
  },
  {
    "id": 3,
    "name": "Organization Three"
  }
]
  • id: An integer representing the ID of the organization in the orgs table
  • name: A string representing the organization's name

Top of API section | Top of page

/public/roles GET

Used to populate a dropdown of roles for the register form. If no roles exist in the database, it will reject the request with a 404 HTTP status.

If successful, it will return a 200 HTTP status and an array of objects. Each object represents one role in the roles table:

[
  {
    "id": 1,
    "name": "School Administrator"
  },
  {
    "id": 2,
    "name": "Board Member"
  }
]
  • id: An integer representing the ID of the role in the roles table
  • name: A string representing the name of that role

Top of API section | Top of page

/public/issue-status GET

Used to populate a dropdown of issue statuses for forms used to create or edit issues. If no status types exist in the database, it will reject the request with a 404 HTTP status.

If successful, it will return a 200 HTTP status and an array of objects. Each object represents one status type in the issue_status table:

[
  {
    "id": 1,
    "name": "Done"
  },
  {
    "id": 2,
    "name": "Scheduled"
  },
  {
    "id": 3,
    "name": "Open"
  },
  {
    "id": 4,
    "name": "Ignored"
  }
]
  • id: An integer representing the ID of the status in the issue_status table
  • name: A string representing the name of that status

Top of API section | Top of page

/issues GET

Requires an authorization header with a JWT or it will reject the request with a 403 HTTP status. If no issues exist in the database for user organizations (checked against org_roles stored on the token), it will reject the request with a 404 HTTP status.

If successful,it will return a 200 HTTP status and an array of objects. Each object represents one issue at one of the organizations that the user belongs to:

[
  {
    "id": 1,
    "name": "Issue 1",
    "comments": "Description here",
    "org_id": 1,
    "org_name": "Organization One",
    "status_id": 1,
    "status_name": "Done",
    "created_by": "user1",
    "created_at": "2019-05-23T17:29:25.150Z",
    "updated_by": "user1",
    "updated_at": "2019-05-23T17:29:25.150Z"
  },
  {
    "id": 2,
    "name": "Issue 2",
    "comments": "Description here",
    "org_id": 1,
    "org_name": "Organization One",
    "status_id": 2,
    "status_name": "Scheduled",
    "created_by": "user5",
    "created_at": "2019-05-23T17:29:25.150Z",
    "updated_by": "user5",
    "updated_at": "2019-05-23T17:29:25.150Z"
  }
]
  • id: An integer representing the ID of the issue in the issues table
  • name: A string representing the issue's name/title
  • comments: A string representing a description/comments for the issue
  • org_id: An integer representing the ID of the organization (in the orgs table) to which this issue is associated
  • org_name: A string representing the name of that organization
  • status_id: An integer representing the ID of the current status (in the issue_status table) of the issue
  • created_by: A string representing the username of the user who created the issue (populated via foreign key reference to the users table)
  • created_at: A timestamp representing the time at which the issue was created
  • updated_by: A string representing the username of the user who last updated the issue (populated via foreign key reference to the users table)
  • updated_at: A timestamp representing the time at which the issue was last updated

Top of API section | Top of page

/issues POST

Requires an authorization header with a JWT or it will reject the request with a 403 HTTP status. Expects an object with this format as the request body:

{
  "name": "User1",                // required/string
  "status_id": 1,                 // required/integer
  "comments": "Description here", // optional/string
  "org_id": 1                     // optional/integer
}

If either of the required fields are missing, it will reject the request with a 400 HTTP status. If a user is not in a role at that organization that's permitted to create an issue (checked against org_roles stored on the token), it will reject the request with a 403 HTTP status.

If successful, it will return a 201 HTTP status and an array of objects. Each object represents one issue (including the one just created) at one of the organizations that the user belongs to (checked against the token again):

[
  {
    "id": 1,
    "name": "Issue 1",
    "comments": "Description here",
    "org_id": 1,
    "org_name": "Organization One",
    "status_id": 1,
    "status_name": "Done",
    "created_by": "user1",
    "created_at": "2019-05-23T17:29:25.150Z",
    "updated_by": "user1",
    "updated_at": "2019-05-23T17:29:25.150Z"
  },
  {
    "id": 2,
    "name": "Issue 2",
    "comments": "Description here",
    "org_id": 1,
    "org_name": "Organization One",
    "status_id": 2,
    "status_name": "Scheduled",
    "created_by": "user5",
    "created_at": "2019-05-23T17:29:25.150Z",
    "updated_by": "user5",
    "updated_at": "2019-05-23T17:29:25.150Z"
  }
]
  • id: An integer representing the ID of the issue in the issues table
  • name: A string representing the issue's name/title
  • comments: A string representing a description/comments for the issue
  • org_id: An integer representing the ID of the organization (in the orgs table) to which this issue is associated
  • org_name: A string representing the name of that organization
  • status_id: An integer representing the ID of the current status (in the issue_status table) of the issue
  • created_by: A string representing the username of the user who created the issue (populated via foreign key reference to the users table)
  • created_at: A timestamp representing the time at which the issue was created
  • updated_by: A string representing the username of the user who last updated the issue (populated via foreign key reference to the users table)
  • updated_at: A timestamp representing the time at which the issue was last updated

Top of API section | Top of page

/issues/:id GET

Requires an authorization header with a JWT or it will reject the request with a 403 HTTP status. If no issue exists in the database with the ID specified in the path, it will reject the request with a 404 HTTP status. If the requested issue exists in the database, but is not associated with one of the user's organizations, then it will reject with a 403 HTTP status.

If successful,it will return a 200 HTTP status and an object. The object represents the issue with the ID specified in the path:

{
  "id": 1,
  "name": "Issue 1",
  "comments": "Description here",
  "org_id": 1,
  "org_name": "Organization One",
  "status_id": 1,
  "status_name": "Done",
  "created_by": "user1",
  "created_at": "2019-05-23T17:29:25.150Z",
  "updated_by": "user1",
  "updated_at": "2019-05-23T17:29:25.150Z"
}
  • id: An integer representing the ID of the issue in the issues table
  • name: A string representing the issue's name/title
  • comments: A string representing a description/comments for the issue
  • org_id: An integer representing the ID of the organization (in the orgs table) to which this issue is associated
  • org_name: A string representing the name of that organization
  • status_id: An integer representing the ID of the current status (in the issue_status table) of the issue
  • created_by: A string representing the username of the user who created the issue (populated via foreign key reference to the users table)
  • created_at: A timestamp representing the time at which the issue was created
  • updated_by: A string representing the username of the user who last updated the issue (populated via foreign key reference to the users table)
  • updated_at: A timestamp representing the time at which the issue was last updated

Top of API section | Top of page

/issues/:id PUT

Requires an authorization header with a JWT or it will reject the request with a 403 HTTP status. Expects an object with this format as the request body:

{
  "name": "User1",               // optional/string
  "status_id": 1,                // optional/integer
  "comments": "Description here" // optional/string
}

If no issue exists in the database with the ID specified in the path, it will reject the request with a 404 HTTP status. If the requested issue exists in the database, but is not associated with one of the user's organizations, then it will reject with a 403 HTTP status. If protected fields exist in the request and a user is not in a role at that organization that permits them to edit those fields (checked against org_roles stored on the token), it will reject the request with a 400 HTTP status.

If successful, it will return a 200 HTTP status and an array of objects. Each object represents one issue (including the one just edited) at one of the organizations that the user belongs to (checked against org_roles stored on the token):

[
  {
    "id": 1,
    "name": "Issue 1",
    "comments": "Description here",
    "org_id": 1,
    "org_name": "Organization One",
    "status_id": 1,
    "status_name": "Done",
    "created_by": "user1",
    "created_at": "2019-05-23T17:29:25.150Z",
    "updated_by": "user1",
    "updated_at": "2019-05-23T17:29:25.150Z"
  },
  {
    "id": 2,
    "name": "Issue 2",
    "comments": "Description here",
    "org_id": 1,
    "org_name": "Organization One",
    "status_id": 2,
    "status_name": "Scheduled",
    "created_by": "user5",
    "created_at": "2019-05-23T17:29:25.150Z",
    "updated_by": "user5",
    "updated_at": "2019-05-23T17:29:25.150Z"
  }
]
  • id: An integer representing the ID of the issue in the issues table
  • name: A string representing the issue's name/title
  • comments: A string representing a description/comments for the issue
  • org_id: An integer representing the ID of the organization (in the orgs table) to which this issue is associated
  • org_name: A string representing the name of that organization
  • status_id: An integer representing the ID of the current status (in the issue_status table) of the issue
  • created_by: A string representing the username of the user who created the issue (populated via foreign key reference to the users table)
  • created_at: A timestamp representing the time at which the issue was created
  • updated_by: A string representing the username of the user who last updated the issue (populated via foreign key reference to the users table)
  • updated_at: A timestamp representing the time at which the issue was last updated

Top of API section | Top of page

/issues/:id DELETE

Requires an authorization header with a JWT or it will reject the request with a 403 HTTP status. If no issue exists in the database with the ID specified in the path, it will reject the request with a 404 HTTP status. If the requested issue exists in the database, but is not associated with one of the user's organizations, then it will reject with a 403 HTTP status. Also, if the issue has a status that's considered 'archived', which are currently Done (1) or Ignored (4), it will reject the request with a 403 HTTP status.

If successful,it will return a 200 HTTP status and an array of objects. Each object represents one of the remaining issues at one of the organizations that the user belongs to (checked against org_roles stored on the token):

[
  {
    "id": 1,
    "name": "Issue 1",
    "comments": "Description here",
    "org_id": 1,
    "org_name": "Organization One",
    "status_id": 1,
    "status_name": "Done",
    "created_by": "user1",
    "created_at": "2019-05-23T17:29:25.150Z",
    "updated_by": "user1",
    "updated_at": "2019-05-23T17:29:25.150Z"
  },
  {
    "id": 2,
    "name": "Issue 2",
    "comments": "Description here",
    "org_id": 1,
    "org_name": "Organization One",
    "status_id": 2,
    "status_name": "Scheduled",
    "created_by": "user5",
    "created_at": "2019-05-23T17:29:25.150Z",
    "updated_by": "user5",
    "updated_at": "2019-05-23T17:29:25.150Z"
  }
]
  • id: An integer representing the ID of the issue in the issues table
  • name: A string representing the issue's name/title
  • comments: A string representing a description/comments for the issue
  • org_id: An integer representing the ID of the organization (in the orgs table) to which this issue is associated
  • org_name: A string representing the name of that organization
  • status_id: An integer representing the ID of the current status (in the issue_status table) of the issue
  • created_by: A string representing the username of the user who created the issue (populated via foreign key reference to the users table)
  • created_at: A timestamp representing the time at which the issue was created
  • updated_by: A string representing the username of the user who last updated the issue (populated via foreign key reference to the users table)
  • updated_at: A timestamp representing the time at which the issue was last updated

Top of API section | Top of page

/issues/org/:org_id GET

Requires an authorization header with a JWT or it will reject the request with a 403 HTTP status. If no issues exist in the database for the organization specified in the path (checked against org_roles stored on the token), it will reject the request with a 404 HTTP status. If the organization specified in the path is not one of the users organizations (checked against the token again), it will reject the request with a 403 HTTP status.

If successful,it will return a 200 HTTP status and an array of objects. Each object represents one issue at the organization specified in the path:

[
  {
    "id": 1,
    "name": "Issue 1",
    "comments": "Description here",
    "org_id": 1,
    "org_name": "Organization One",
    "status_id": 1,
    "status_name": "Done",
    "created_by": "user1",
    "created_at": "2019-05-23T17:29:25.150Z",
    "updated_by": "user1",
    "updated_at": "2019-05-23T17:29:25.150Z"
  },
  {
    "id": 2,
    "name": "Issue 2",
    "comments": "Description here",
    "org_id": 1,
    "org_name": "Organization One",
    "status_id": 2,
    "status_name": "Scheduled",
    "created_by": "user5",
    "created_at": "2019-05-23T17:29:25.150Z",
    "updated_by": "user5",
    "updated_at": "2019-05-23T17:29:25.150Z"
  }
]
  • id: An integer representing the ID of the issue in the issues table
  • name: A string representing the issue's name/title
  • comments: A string representing a description/comments for the issue
  • org_id: An integer representing the ID of the organization (in the orgs table) to which this issue is associated
  • org_name: A string representing the name of that organization
  • status_id: An integer representing the ID of the current status (in the issue_status table) of the issue
  • created_by: A string representing the username of the user who created the issue (populated via foreign key reference to the users table)
  • created_at: A timestamp representing the time at which the issue was created
  • updated_by: A string representing the username of the user who last updated the issue (populated via foreign key reference to the users table)
  • updated_at: A timestamp representing the time at which the issue was last updated

Top of API section | Top of page

/teachers-attendance GET

If successful, it will return a 200 HTTP status and an array of objects. Each object represents one entry in the teach_att table:

[
  {
    "id": 1,
    "name": "Teacher One",
    "date": "1558609185000",
    "in": 9,
    "out": 11,
    "tmm": 42
  },
  {
    "id": 2,
    "name": "Teacher Two",
    "date": "1558609185000",
    "in": 10,
    "out": 13,
    "tmm": 77
  }
]
  • id: An integer representing the ID of the attendance entry in the teach_att table
  • name: A string representing the name of the teacher whose attendance is being tracked
  • date: A large-range integer (returned as a string) that represents the date of the attendance being tracked
  • in: An integer representing the hour (in 24-hour time) that the teacher started the day
  • out: An integer representing the hour (in 24-hour time) that the teacher ended the day
  • tmm: An integer representing the Total Minutes Missed

Top of API section | Top of page

Tables

Section Contents:

users

In addition to an auto-incrementing entry id:

Name Type Required Unique Notes
username string yes yes User's username
password string yes no User's hashed password
name string yes no User's name
phone string no yes User's phone number
email string no yes User's email

Top of Tables section | Top of page

orgs

In addition to an auto-incrementing entry id:

Name Type Required Unique Notes
name string yes yes Name of the organization

Top of Tables section | Top of page

roles

In addition to an auto-incrementing entry id:

Name Type Required Unique Notes
name string yes yes Name of the role

Top of Tables section | Top of page

user_org_roles

In addition to an auto-incrementing entry id:

Name Type Required Unique Notes
user_id integer yes no Foreign key to users table
org_id integer yes no Foreign key to orgs table
role_id integer yes no Foreign key to roles table

Also, there is a composite unique constraint over the combination of all three columns.

Top of Tables section | Top of page

issue_status

In addition to an auto-incrementing entry id:

Name Type Required Unique Notes
name string yes yes Name of the status type

Top of Tables section | Top of page

issues

In addition to an auto-incrementing entry id:

Name Type Required Unique Notes
name string yes no Name/title of the issue
comments text no no Description of/comments on the issue
org_id integer yes no Foreign key to orgs table
status_id integer yes no Foreign key to issue_status table
created_by integer yes no User who created the issue; foreign key to users table
updated_by integer yes no User who last updated the issue; foreign key to users table
created_at timestamp w/o timezone yes no Timestamp of when the issue was created; automatically populated by DB on creation
updated_at timestamp w/o timezone yes no Timestamp of when the issue was last updated; automatically populated by DB on creation, automatically updated by backend on update

Top of Tables section | Top of page

teach_att

In addition to an auto-incrementing entry id:

Name Type Required Unique Notes
name string yes no Name of the relevant teacher
date bigInteger yes no Date of the attendance being tracked
in integer yes no The hour (in 24-hour time) that the teacher started the day
out integer yes no The hour (in 24-hour time) that the teacher ended the day
tmm integer yes no Total Minutes Missed

Top of Tables section | Top of page

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 4

  •  
  •  
  •  
  •  

Languages