Book Image

Hands-On RESTful Web Services with TypeScript 3

By : Biharck Muniz Araújo
5 (1)
Book Image

Hands-On RESTful Web Services with TypeScript 3

5 (1)
By: Biharck Muniz Araújo

Overview of this book

In the world of web development, leveraging data is the key to developing comprehensive applications, and RESTful APIs help you to achieve this systematically. This book will guide you in designing and developing web services with the power of TypeScript 3 and Node.js. You'll design REST APIs using best practices for request handling, validation, authentication, and authorization. You'll also understand how to enhance the capabilities of your APIs with ODMs, databases, models and views, as well as asynchronous callbacks. This book will guide you in securing your environment by testing your services and initiating test automation with different testing approaches. Furthermore, you'll get to grips with developing secure, testable, and more efficient code, and be able to scale and deploy TypeScript 3 and Node.js-powered RESTful APIs on cloud platforms such as the Google Cloud Platform. Finally, the book will help you explore microservices and give you an overview of what GraphQL can allow you to do. By the end of this book, you will be able to use RESTful web services to create your APIs for mobile and web apps and other platforms.
Table of Contents (20 chapters)
Free Chapter
Section 1: Unraveling API Design
Section 2: Developing RESTful Web Services
Section 3: Enhancing RESTful Web Services
Section 4: Extending the Capabilities of RESTful Web Services

Manual testing

Now, it is time to test security with Postman. Start the application and try to create a new user in the same way as before:

Unauthorized when trying to create a new user without authentication

Since you are not authenticated, you are not allowed to create a new user. Go to the Robomongo application and insert a new user manually with the following content:

"username" : "John",
"firstName" : "John",
"lastName" : "Doe",
"email" : "[email protected]",
"password" : "$2b$10$Z3YAyoIfLCniGw9T63TIpehihJKUIdDVNZ8tfdUZQNRJqQ15E.o9i",
"phone" : "5555555",
"userStatus" : 1

Now, go back to Postman and call the login, as follows:

Getting a JWT token from the login

The output from the login operation is a JWT token. You can...