GitGud is a comprehensive API designed to support various social welfare initiatives, focusing on facilitating access to resources for underserved populations. It serves as a centralized hub for information on diverse initiatives, offering essential services such as shelter, food distribution, healthcare access, outreach programs, and counseling. By connecting individuals and families in need with vital resources, GitGud enhances community support systems and empowers users to navigate their circumstances effectively. Through collaboration with non-profit organizations, volunteers, clinics, and government agencies, GitGud fosters an integrated approach to social welfare that promotes equity and compassion.
URL: http://34.138.180.143:8080
Project management: https://github.com/users/xxanxnie/projects/7/views/1
CLIENT: https://github.com/xxanxnie/COMSW4156-Git-Gud-Client
Our services cater to a diverse range of users, each with unique needs:
- Homeless (HML): Individuals and families without permanent housing.
- Refugees (RFG): Individuals seeking asylum who require immediate shelter and support.
- Veterans (VET): Former military personnel in need of transitional housing and specialized services.
- Substance Users (SUB): Individuals recovering from addiction who require a safe environment and therapeutic support.
Users allowed to add / update resources:
- Non-profit Organizations (NGO): Collaborating entities that help distribute resources and support.
- Volunteers (VOL): Community members who assist in various service capacities.
- Clinics (CLN): Healthcare facilities that partner with our services to provide medical support.
- Government (GOV): Local and state agencies that help coordinate resources and services.
The SubscriptionManager class allows users to subscribe to specific resources (e.g., food, shelter) in a designated city through the /resources/subscribe endpoint. Users provide their contact information (email or webhook URL), and their preferences are stored in the database. When an update is made to the resource in the specified city using the add endpoint, the system automatically notifies all subscribers via their preferred contact method (email or webhook). This ensures subscribers stay informed about critical updates for resources they care about.
The following libraries need to be installed:
External Libraries:
- Boost: A set of C++ libraries designed to enhance the standard C++ library. (https://www.boost.org/)
- Crow: A C++ micro web framework. (https://crowcpp.org/master/)
- Asio: A cross-platform C++ library for network and low-level I/O programming. (https://think-async.com/Asio/)
- mongocxx: The official C++ driver for MongoDB. (https://www.mongodb.com/docs/languages/cpp/cpp-driver/current/get-started/download-and-install/)
Dependencies will be automatically installed when you run the setup.sh script.
Additional requirements:
- Linux
sudo apt-get update sudo apt-get install -y libssl-dev libpoco-dev libcurl4-openssl-dev
- Apple - Homebrew
brew update brew install openssl poco curl
From the root directory:
./setup.shFrom the root directory:
cd build
./GitGudFrom the root directory:
cd build
./GitGudTestsGitGud uses JWT (JSON Web Token) for secure authentication and authorization. JWTs are used to maintain user sessions and protect API endpoints.
Each JWT contains the following claims:
iss(Issuer): "auth-service"typ(Type): "JWS"iat(Issued At): Timestamp when the token was createdexp(Expiration Time): Token expiry (24 hours from issuance)userId: Unique identifier for the useremail: User's email addressrole: User's role in the system
-
Registration (
POST /auth/register){ "email": "[email protected]", "password": "SecurePass123" }- Password requirements:
- Minimum 8 characters
- At least 1 uppercase letter
- At least 1 lowercase letter
- At least 1 number
- Password requirements:
-
Login (
POST /auth/login){ "email": "[email protected]", "password": "SecurePass123" }- Returns a JWT upon successful authentication
Include the JWT in the Authorization header for protected endpoints:
Authorization: Bearer <your_jwt_token>- 401 Unauthorized: Invalid or missing token
- 403 Forbidden: Valid token but insufficient permissions
- 400 Bad Request: Invalid email or password format
- 409 Conflict: Email already exists (during registration)
- Passwords are hashed using BCrypt
- JWTs are signed using HS256 algorithm
- Tokens expire after 24 hours
- Email validation using regex pattern
- Password strength requirements enforced
- Protection against common authentication attacks
The following roles are supported:
- NGO: Non-profit Organizations
- VOL: Volunteers
- CLN: Clinics
- GOV: Government
- HML: Homeless
- RFG: Refugees
- VET: Veterans
- SUB: Substance Users
Each role has specific permissions for accessing and modifying resources. Refer to the User Types section for more details about role-specific capabilities.
Outreach
- Add Outreach Service
- Expected Input (JSON):
{
"Name":"Emergency Shelter Access",
"City":"New York",
"Address":"200 Varick St, New York, NY 10014",
"Description":"Provide information and assistance for accessing shelters.",
"ContactInfo":"Sarah Johnson, [email protected]",
"HoursOfOperation":"05/01/24 - 12/31/24",
"TargetAudience":"HML"
}- Endpoint:
POST /resources/outreach/add - Description: This endpoint allows clients to add a new outreach service to the system. It expects a POST request containing the necessary details about the outreach service in the request body (e.g., target audience, program name, description, program date, location, and contact informationn). Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 201 Status Code is returned new element id in database
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- Get All Outreach Services
- Endpoint:
GET /resources/outreach/getAll?start=<integar> - Description: This endpoint retrieves at most 50 outreach services available in the system, "start" can control where to start to find. It accepts a GET request and returns a list of outreach services in JSON format. Each service entry includes details such as the target audience, program name, description, program date, location, and contact information.
- Upon Success: HTTP 200 Status Code is returned string Success
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- Update Outreach Service
- Expected Input (JSON):
{
"id":"673e5b62974f89f4a006c641",
"Name":"Emergency Shelter Access",
"City":"New York",
"Address":"200 Varick St, New York, NY 10014",
"Description":"Provide information and assistance for accessing shelters.",
"ContactInfo":"Sarah Johnson, [email protected]",
"HoursOfOperation":"05/01/24 - 12/31/24",
"TargetAudience":"HML"
}- Endpoint:
UPDATE /resources/outreach/update - Description: This endpoint allows clients to update a outreach service in the system. It expects a UPDATE request containing the necessary details about the outreach service in the request body. Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 200 Status Code is returned, "Outreach resource update successfully."
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- DELETE Outreach Service
- Expected Input (JSON):
{
"id":"673e5b62974f89f4a006c641"
}- Endpoint:
DELETE /resources/outreach/delete - Description: This endpoint allows clients to DELETE a outreach service in the system. It expects a DELETE request containing the necessary details about the outreach service in the request body. Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 200 Status Code is returned, "Outreach resource deleted successfully.."
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
Shelter
- Add Shelter Service
- Expected Input (JSON):
{
"Name" : "Columbus",
"City" : "New York",
"Address": "temp",
"Description" : "NULL",
"ContactInfo" : "66664566565",
"HoursOfOperation": "2024-01-11",
"ORG":"NGO",
"TargetUser" :"HML",
"Capacity" : "100",
"CurrentUse": "10"
}- Endpoint:
POST /resources/shelter/add - Description: This endpoint allows clients to add a new shelter service to the system. It expects a POST request containing the necessary details about the shelter service in the request body. Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 201 Status Code is returned new element id in database
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- Get All Shelter Services
- Endpoint:
GET /resources/shelter/getAll?start<integar> - Description: This endpoint retrieves at most 50 shelter services available in the system, "start" can control where to start to find. It accepts a GET request and returns a list of shelter services in JSON format. Each service entry includes details.
- Upon Success: HTTP 200 Status Code is returned string Success
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- Update Shelter Service
- Expected Input (JSON):
{
"id": "673e7baca135f11947075f02",
"Name": "dasd",
"City": "New York",
"Address": "sadasd",
"Description": "NULL",
"ContactInfo": "66664566565",
"HoursOfOperation": "2024-01-11",
"ORG": "NGO",
"TargetUser": "HML",
"Capacity": "100",
"CurrentUse": "10"
}- Endpoint:
UPDATE /resources/shelter/update - Description: This endpoint allows clients to update a shelter service in the system. It expects a UPDATE request containing the necessary details about the shelter service in the request body. Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 200 Status Code is returned, "Shelter resource update successfully."
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- DELETE Shelter Service
- Expected Input (JSON):
{
"id":"673e5b62974f89f4a006c641"
}- Endpoint:
DELETE /resources/shelter/delete - Description: This endpoint allows clients to DELETE a shelter service in the system. It expects a DELETE request containing the necessary details about the shelter service in the request body. Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 200 Status Code is returned, "Shelter resource deleted successfully.."
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
Healthcare
- Add Healthcare Service
- Expected Input (JSON):
{
"Name": "My New Hospital",
"City" : "New York",
"Address": "456 New St",
"Description": "General Checkup",
"HoursOfOperation": "9 AM - 5 PM",
"eligibilityCriteria": "Adults",
"ContactInfo": "123-456-7890"
}- Endpoint:
POST /resources/healthcare/add - Description: This endpoint allows clients to add a new healthcare service to the system. It expects a POST request containing the necessary details about the healthcare service in the request body (e.g., provider, service type, location, operating hours, eligibility criteria, and contact information). Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 201 Status Code is returned new element id in database
- Upon Failure: An HTTP error status code (e.g., 500) is returned along with an error message detailing the issue.
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- Get All Healthcare Services
- Endpoint:
GET /resources/healthcare/getAll?start=<integar> - Description: This endpoint retrieves at most 50 healthcare services available in the system, "start" can control where to start to find. It accepts a GET request and returns a list of healthcare services in JSON format. Each service entry includes details such as the provider, service type, location, operating hours, eligibility criteria, and contact information.
- Upon Success: HTTP 200 Status Code is returned with a list of healthcare services in JSON format.
- Upon Failure: An HTTP error status code (e.g., 500) is returned along with an error message detailing the issue.
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- Update Healthcare Service
- Expected Input (JSON):
{
"id": "673d5fbdd5b00329b0067493",
"Name": "My New Hospital",
"City": "New York",
"Address": "456 New St",
"Description": "General Checkup",
"HoursOfOperation": "9 AM - 5 PM",
"eligibilityCriteria": "Adults",
"ContactInfo": "123-456-7890"
}- Endpoint:
UPDATE /resources/healthcare/update - Description: This endpoint allows clients to update a healthcare service in the system. It expects a UPDATE request containing the necessary details about the healthcare service in the request body. Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 200 Status Code is returned, "Healthcare resource update successfully."
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- DELETE Healthcare Service
- Expected Input (JSON):
{
"id":"673e5b62974f89f4a006c641"
}- Endpoint:
DELETE /resources/healthcare/delete - Description: This endpoint allows clients to DELETE a healthcare service in the system. It expects a DELETE request containing the necessary details about the healthcare service in the request body. Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 200 Status Code is returned, "Healthcare resource deleted successfully.."
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
Counseling
- Add Counseling Service
- Expected Input (JSON):
{
"Name": "New York Psychological Association",
"City": "New York",
"Address": "211 E 43rd St, New York, NY 10017",
"Description": "Provides mental health counseling and therapy services.",
"ContactInfo": "66664566565",
"HoursOfOperation": "2024-01-11",
"counselorName": "Jack"
}- Endpoint:
POST /resources/counseling/add - Description: This endpoint allows clients to add a new counseling service to the system. It expects a POST request containing the necessary details about the counseling service in the request body. The required fields are "counselorName" and "specialty".
- Upon Success: HTTP 201 Status Code is returned new element id in database
- Upon Failure: HTTP 400 Status Code is returned with an error message
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- Get All Counseling Services
- Endpoint:
GET /resources/counseling/getAll?start=<integar> - Description: This endpoint retrieves at most 50 counseling services available in the system, "start" can control where to start to find. It accepts a GET request and returns a list of counseling services in JSON format. Each service entry includes details about the counselor and their specialty.
- Response:
- Upon Success: HTTP 200 Status Code is returned with a JSON array of counseling services
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- Update Counseling Service
- Expected Input (JSON):
{
"id" :"673d5056fbc238b2260fd091",
"Name": "New York Psychological Association",
"City": "New York",
"Address": "211 E 43rd St, New York, NY 10017",
"Description": "Provides mental health counseling and therapy services.",
"ContactInfo": "66664566565",
"HoursOfOperation": "2024-01-11",
"counselorName": "Sam"
}- Endpoint:
UPDATE /resources/counseling/update - Description: This endpoint allows clients to update a counseling service in the system. It expects a UPDATE request containing the necessary details about the counseling service in the request body. Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 200 Status Code is returned, "Counseling resource update successfully."
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- DELETE Counseling Service
- Expected Input (JSON):
{
"id":"673e5b62974f89f4a006c641"
}- Endpoint:
DELETE /resources/counseling/delete - Description: This endpoint allows clients to DELETE a counseling service in the system. It expects a DELETE request containing the necessary details about the counseling service in the request body. Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 200 Status Code is returned, "Counseling resource deleted successfully.."
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
Food
- Add Food Resource
- Expected Input (JSON):
{
"Name" : "OrganicFarm",
"City" : "New York",
"Address": "temp",
"Description" : "Vegetables",
"ContactInfo" : "66664566565",
"HoursOfOperation": "2024-01-11",
"TargetUser" :"HML",
"Quantity" : "100",
"ExpirationDate": "10"
}- Endpoint:
POST /resources/food/add - Description: This endpoint allows clients to add a new food resource to the system. It expects a POST request containing the necessary details about the food resource in the request body, such as food type, provider, location, quantity, and expiration date.
- Upon Success: HTTP 201 Status Code is returned new element id in database
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- Get All Food Resources
- Endpoint:
GET /resources/food/getAll?start=<integar> - Description: This endpoint retrieves at most 50 food resources available in the system, "start" can control where to start to find. It accepts a GET request and returns a list of food resources in a concatenated string format.
- Upon Success: HTTP 200 Status Code is returned with a concatenated string of all food data
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- Update Food Service
- Expected Input (JSON):
{
"id" :"673d5056fbc238b2260fd091",
"Name": "New York Psychological Association",
"City": "New York",
"Address": "211 E 43rd St, New York, NY 10017",
"Description": "Provides mental health counseling and therapy services.",
"ContactInfo": "66664566565",
"HoursOfOperation": "2024-01-11",
"counselorName": "Sam"
}- Endpoint:
UPDATE /resources/food/update - Description: This endpoint allows clients to update a food service in the system. It expects a UPDATE request containing the necessary details about the food service in the request body. Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 200 Status Code is returned, "Food resource update successfully."
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
- DELETE Food Service
- Expected Input (JSON):
{
"id":"673e5b62974f89f4a006c641"
}- Endpoint:
DELETE /resources/food/delete - Description: This endpoint allows clients to DELETE a food service in the system. It expects a DELETE request containing the necessary details about the food service in the request body. Upon successful addition, the server will respond with a confirmation message.
- Upon Success: HTTP 200 Status Code is returned, "Food resource deleted successfully.."
- Upon Failure: An error message is returned
- Upon Unauthorized: If the request is not coming from an approved client, a 403 Status Code is returned with the message "Unauthorized"
Subscription
- Subscribe to Resources
- Expected Input (JSON):
{
"Resource": "Food",
"City": "New York",
"Contact": "[email protected]"
}- Endpoint:
POST /resources/subscribe - Description: This endpoint allows clients to subscribe to updates for a specific resource in a given city. It expects a POST request containing the resource type, city, and contact information in the request body.
- Upon Success: HTTP 200 Status Code is returned, "Subscription recorded successfully."
- Upon Failure: A 400 Status Code is returned if required fields (Resource, City, Contact) are missing.
- Upon Unauthorized: If the request is not authenticated or lacks the necessary role (HML, RFG, VET, SUB), a 403 Status Code is returned with the message "Insufficient permissions to access this resource."
This project uses GCOV (coverage tool) and LCOV (graphical front-end for GCOV) to generate branch coverage reports for C++ code. After building the project using CMake in the build folder, run make coverage which will automatically open the HTML file to view the branch coverage report. If coverage needs to be run again, it may be necessary to clean previous coverage data by using the following commands to delete old .gcda and .gcno files and rebuild the project:
find . -name "*.gcda" -delete
find . -name "*.gcno" -deleteGenerating coverage report
Note: Running the tests prior to this is required to generate .gcda and .gcno files which contain information about the execution of the program during test runs - used to measuring code coverage.
From the root directory:
cmake --build build --target coverageThe style checking is done using cpplint to ensure compliance with the Google C++.
Run the style checker from root directory using:
make -C build cpplint > docs/cpplint_output.txtThe below shows the style check output for the current state of the project.
The style checking is done using clang-tidy with minimal specific checks enabled for static analysis to avoid unnecessary noise.
Steps to run:
-
Install LLVM and Clang tools (assumes macOS and Homebrew):
brew install llvm brew --prefix llvm // copy this path and paste it below echo 'export PATH="YOUR_PATH_TO_LLVM:$PATH"' >> ~/.zshrc source ~/.zshrc
-
Navigate to the build directory:
cd build -
Generate build files with the flag to generate
compile_commands.jsonenabled:cmake -DCMAKE_EXPORT_COMPILE_COMMANDS=true ..
-
Run
clang-tidywith the generated compile commands:cd .. clang-tidy src/*.cpp src/services/*.cpp include/*.h -p build/compile_commands.json > clang-tidy-results.txt 2>&1
The output file
clang-tidy-results.txtwill contain the results of the static analysis. In our case, all warning originate form non-user code.
The below shows the style check output for the current state of the project.
- Install docker
# In Linux
sudo snap install docker- Build the MongoDB locally The setting is according to link,
sudo docker compose up- With this command images( mongo express and mongodb) will pull from dockerhub and build.
- Mongodb IP = http://0.0.0.0:27017, mongo-express=http://0.0.0.0:8081.
- Check more detail in docker-compose.yml file.