Skip to content

Add RESTful API endpoints #102

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
wants to merge 7 commits into
base: master
Choose a base branch
from
Draft

Add RESTful API endpoints #102

wants to merge 7 commits into from

Conversation

Copy link

Copilot AI commented Nov 4, 2025
edited
Loading

Adds JSON API layer to complement existing HTML views.

Changes

New API Router (routes/api.js)

  • 6 RESTful endpoints for products, purchases, and authentication
  • JSON responses with consistent {success, data/error} structure
  • Input validation and appropriate HTTP status codes (200, 201, 400, 401, 404, 500)

Endpoints

GET  /api/products              # List products
GET  /api/products/search?q=    # Search products
GET  /api/products/:id          # Get product details
POST /api/purchases             # Create purchase
GET  /api/purchases?username=   # Get user purchases
POST /api/auth                  # Authenticate

Documentation (API_DOCUMENTATION.md)

  • Request/response schemas
  • cURL examples

Integration

  • Registered API router in app.js
  • Routes prioritized before HTML routes to avoid path conflicts

Example

curl http://localhost:3000/api/products/1
# Response: {"success": true, "product": {...}}

curl -X POST http://localhost:3000/api/auth \
  -H "Content-Type: application/json" \
  -d '{"username": "admin", "password": "admin"}'
# Response: {"success": true, "message": "Authentication successful", "user": {...}}

Security Notes

Fixed ReDoS in email validation by replacing complex regex with simple string checks. SQL injection vulnerabilities in model layer are pre-existing and intentional per project design.

Original prompt

Create an API and endpoints

✨ Let Copilot coding agent set things up for you — coding agent works faster and does higher quality work when set up for your repo.

Copilot AI changed the title [WIP] Create API and endpoints Add RESTful API endpoints Nov 4, 2025
Copilot AI requested a review from scubaninja November 4, 2025 18:04
Copilot finished work on behalf of scubaninja November 4, 2025 18:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@scubaninja scubaninja Awaiting requested review from scubaninja

At least 2 approving reviews are required to merge this pull request.

Assignees

@scubaninja scubaninja

Copilot code review Copilot

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@scubaninja