Skip to content

CS3103-Group10/exploitable-app

BranchesTags

Repository files navigation

exploitable-app

Flora UI

A web application built to showcase some exploitable web application behaviour. Built in fulfillment of the CS3103 Project for Group 10 of AY20/21 Sem 1.

Getting Started

To start, clone this repository and navigate to it from the terminal:

git clone https://github.com/CS3103-Group10/exploitable-app.git
cd exploitable-app

1. Starting the database

Install Postgresql:

# mac:
brew install postgresql
brew tap homebrew/services
# ubuntu:
sudo apt-get install postgresql

Start Postgresql:

# mac:
brew services start postgres
# ubuntu should be started by default
  • Stop the postgresql service later with brew services stop postgres
  • If there is an error here, run ps -ef | grep postmaster | awk '{print $2}' | sudo xargs kill to kill the Postgresql Postmaster process.

Create the flora database:

# mac:
createdb flora
# ubuntu:
sudo -u postgres createdb flora

Connect to the database:

# mac:
psql flora
# ubuntu:
sudo -u postgres psql

While in the psql shell, initialize the database with dummy data:

# both:
\cd database
\i init.sql
# You should see a bunch of INSERT statements. When done, quit psql.
\q

2. Starting the backend API server

Navigate to the /server directory, and install all dependencies:

cd server
yarn

Run the server in dev mode with hot reload:

yarn dev

3. Starting the frontend client

Navigate to the /client directory, and install all dependencies:

cd client
yarn

If you are a student trying to exploit the app, build and run the optimised website with:

# build the optimised site
yarn build
# host the optimised site at http://localhost:3000
yarn start

If you want to work on the development of the website:

# runs with hot reload
yarn dev

Walkthrough for students

Refer to this guide for intended students.

Exploits / Answers

Refer to this guide for tutors.

Folder structure

client folder

Contains source code for the frontend client.

src/pages

  • Where all the page routes are defined
  • Follows page directory routing (refer to Next.js docs)

src/layouts

  • Contains layouts used for the whole app

src/styles

  • Contains global CSS files

server folder

Contains source code for our Express API Server.

src/routes

  • Where all the API routes are defined

src/services

  • Contains third party services like psql and express

database folder

Contains files related to the PostgreSQL database. In this case, it contains solely init.sql which is required to:

  1. Create an user role for the API server to utilize
  2. Initializes the database with the schema and dummy data

Troubleshooting

Mac

If you have trouble getting the database to run, ensure that you either have Postgresql installed via HomeBrew and not other means. If you already have a pre-existing installation of Postgresql, either you can remove it and follow the instructions again, OR follow the instructions with your existing PostgreSQL installation.

License

MIT

About

CS3103 Project

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Contributors 3

  •  
  •  
  •  

Languages