The Flight Booking App is a web application that simulates the process of booking a flight, taking security into account already in the design of the application.
The application uses Svelte in the frontend, FastAPI in the backend and PostgreSQL as database. Any changes to the main branch are automatically checked with CodeQL and deployed to Heroku via a Github actions workflows, so both backend and frontend are accessible via the following links:
🔴 https://frontend-flight-booking-app.herokuapp.com/
🔴 https://backend-flight-booking-app.herokuapp.com/
- Clone repository
git clone https://github.com/silas-pohl/flight-booking-app.git
cd flight-booking-app
- Create
/backend/.envwith the following content (values in curly brackets must be replaced accordingly):
POSTGRES_USER={postgres_user}
POSTGRES_PASSWORD={postgres_password}
POSTGRES_DATABASE={postgres_database}
POSTGRES_HOST=database
POSTGRES_PORT=5432
ACCESS_TOKEN_SECRET={access_token_secret}
REFRESH_TOKEN_SECRET={refresh_token_secret}
ALGORITHM=HS256
ACCESS_TOKEN_EXPIRE_MINUTES=0.25
EMAIL_ADDRESS={gmail_address}
EMAIL_PASSWORD={gmail_address_password}
- Change
API_URLin/frontend/src/store.tsto'http://localhost:80'
export const API_URL: Readable<string> = readable('http://localhost:80');
- Change both Cookie-Domains in
/backend/app/main.pyto'localhost'
response.set_cookie(key="refresh_token", value=refresh_token, domain="localhost", httponly=True, samesite="none", secure=True)
- Start frontend, backend and local database via
docker-compose up
docker-compose up
- Access frontend on http://localhost:5000/ and backend on http://localhost:80/