Book Image

A Blueprint for Production-Ready Web Applications

By : Dr. Philip Jones
Book Image

A Blueprint for Production-Ready Web Applications

By: Dr. Philip Jones

Overview of this book

A Blueprint for Production-Ready Web Applications will help you expand upon your coding knowledge and teach you how to create a complete web application. Unlike other guides that focus solely on a singular technology or process, this book shows you how to combine different technologies and processes as needed to meet industry standards. You’ll begin by learning how to set up your development environment, and use Quart and React to create the backend and frontend, respectively. This book then helps you get to grips with managing and validating accounts, structuring relational tables, and creating forms to manage data. As you progress through the chapters, you’ll gain a comprehensive understanding of web application development by creating a to-do app, which can be used as a base for your future projects. Finally, you’ll find out how to deploy and monitor your application, along with discovering advanced concepts such as managing database migrations and adding multifactor authentication. By the end of this web development book, you’ll be able to apply the lessons and industry best practices that you’ve learned to both your personal and work projects, allowing you to further develop your coding portfolio.

Related Content you might be interested in

Current Title:

Small book image
A Blueprint for Production-Ready Web Applications
Dr. Philip Jones
Sep, 2022 | 284 pages
Small book image
Full Stack Development with Spring Boot 3 and React
Juha Hinkula
Oct, 2023 | 454 pages
Small book image
Python Microservices Development – 2nd edition
Simon Fraser | Tarek Ziadé
Sep, 2021 | 310 pages
Small book image
Running Windows Containers on AWS
Marcio Morales
Apr, 2023 | 212 pages
Table of Contents (13 chapters)
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the example code files
Download the color images
Access the Code in Action videos
Conventions used
Get in touch
Share Your Thoughts
1
Part 1 Setting Up Our System
Part 1 Setting Up Our System
Free Chapter
2
Chapter 1: Setting Up Our System for Development
Chapter 1: Setting Up Our System for Development
Technical requirements
Aiming for fast development
Setting up our system
Installing Python for backend development
Installing NodeJS for frontend development
Installing Terraform for infrastructure development
Installing PostgreSQL for database development
Adopting a collaborative development process 
using GitHub
Summary
Further reading
3
Part 2 Building a To-Do App
Part 2 Building a To-Do App
4
Chapter 2: Creating a Reusable Backend with Quart
Chapter 2: Creating a Reusable Backend with Quart
Technical requirements
Creating a basic Quart app
Including user accounts
Protecting the app
Connecting to the database
Sending emails
Summary
Further reading
5
Chapter 3: Building the API
Chapter 3: Building the API
Technical requirements
Creating the database schema and models
Building the session API
Building the member API
Building the To-Do API
Summary
Further reading
6
Chapter 4: Creating a Reusable Frontend with React
Chapter 4: Creating a Reusable Frontend with React
Technical requirements
Enhancing the basic React app
Adding routing
Enabling data entry
Managing the app state
Supporting toast feedback
Summary
Further reading
7
Chapter 5: Building the Single-Page App
Chapter 5: Building the Single-Page App
Technical requirements
Adding navigation
Adding user authentication pages
Adding password management pages
Adding to-do pages
Summary
Further reading
8
Part 3 Releasing a Production-Ready App
Part 3 Releasing a Production-Ready App
9
Chapter 6: Deploying and Monitoring Your Application
Chapter 6: Deploying and Monitoring Your Application
Technical requirements
Making the app production-ready
Deploying to AWS
Serving on a domain
Sending production emails
Monitoring production
Summary
10
Chapter 7: Securing and Packaging the App
Chapter 7: Securing and Packaging the App
Technical requirements
Securing the app
Updating packages
Adding multifactor authentication
Converting to a Progressive Web App
Summary
Further reading
11
Index
Index
Why subscribe?
12
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts

Securing the app

Much of what we’ve done so far uses secure defaults (for example, the Strict SameSite setting used in Chapter 2, Creating a Reusable Backend with Quart), however, there is always more than can be done to secure an app. Specifically, we can utilize secure headers to limit what the browser will allow the page to do, further protect against account enumeration, and limit the accounts that can register to limit spam. Let’s look at those security options now.

Adding secure headers

To further secure our app, we can utilize additional secure headers to limit what the browser will allow the app to do. These headers should be added to every response the app sends; we can do this by adding the following to backend/src/backend/run.py:

from quart import Response
from werkzeug.http import COOP 
@app.after_request
async def add_headers(response: Response) -> Response:
    response.content_security_policy.default_src = "'self...
Previous Section
End of Section 3
Next Section