What you'll learn

Real World Backend RESTful API For Bootcamp Directory App
HTTP Fundamentals (Req/Res Cycle, Status Codes, etc)
Advanced Mongoose Queries
JWT/Cookie Authentication
Express & Mongoose Middleware (Geocoding, Auth, Error Handling, etc)
API Security (NoSQL injection, XSS protection, Rate Limiting)
API Documentation & Deployment

Course content

11 sections • 76 lectures • 12h 3m total length

Course Introduction3:35
A Look At The Project6:37
Optional Node.js Beginner Crash Course0:19
Environment Setup5:42

HTTP & the Node Http Module10:03
Explore the Node.js core http module to build a basic server, manage the request-response cycle with headers and body, and return json with status codes like 200 and 404.
Installing Nodemon3:55
Responding With Data8:03
Learn to respond with data using express; set content-type headers, return json data with res.send or stringify a data object, and understand request and response headers.
HTTP Status Codes7:39
Sending Data To The Server5:34
HTTP Methods & RESTful APIs12:44
Learn common http methods such as get, post, put or patch, and delete; design restful routes like /todos; handle request bodies, statuses, and basic in-memory to dos.

Project Specs & Resources6:46
Basic Express Server, dotenv & Git10:09
Creating Routes & Responses In Express10:12
Create and test express routes using app.get, res.send, and res.json, including status handling and route parameters for a versioned api like /api/v1/boot-camps with create, read, update, delete operations.
Using The Express Router5:00
Creating Controller Methods9:57
Create and export controller methods for each route, wire them to routes, and structure a neat Node.js API using boot camps, with public and private routes and middleware.
Intro To Middleware10:40
Postman Environment & Collections8:51

MongoDB Atlas & Compass Setup8:55
Connecting To The Database With Mongoose11:57
Colors In The Console2:48
Enhance Node.js console output with the colors package, styling server and database messages in bold yellow and errors in red for easier log visibility.
Creating Our First Model15:22
Define a mongoose boot camp model with validated fields, a MapQuest geocoder-generated GeoJSON location and slug, and computed averages from reviews and tuition, plus data seeding.
Create Bootcamp - POST10:31
Fetching Bootcamps - GET5:29
Updating & Deleting Bootcamps - PUT & DELETE8:22

Error Handler Middleware5:43
Custom ErrorResponse Class5:33
Mongoose Error Handling [1]7:24
Learn to catch Mongoose cast errors in a centralized error handler, return a 404 with a custom error response, and apply the pattern to get, update, and delete boot camps.
Mongoose Error Handling [2]9:12
Async/Await Middleware6:45
Mongoose Middleware & Slugify7:51
GeoJSON Location & Geocoder Hook - MapQuest API15:38

Database Seeder For Bootcamps10:22
Geospatial Query - Get Bootcamps Within Radius14:07
Build a route and controller to fetch boot camps within a zip code radius using geojson locations, geocoder geocoding, and a geo within center sphere query.
Advanced Filtering12:36
Select & Sorting12:48
Learn how to filter, project, and sort data in a Node.js API using Express and MongoDB by implementing select fields, excluding query keys, and flexible sort options.
Adding Pagination11:30
Course Model & Seeding9:02
Course Routes & Controller12:20
Populate, Virtuals & Cascade Delete11:46
Use mongoose populate to enrich courses with boot camp data, implement virtuals for reverse course listings, and enable cascade delete so deleting a boot camp removes its courses.
Single Course & Add Course11:56
Build a Node.js API with Express and boot camp associations, enabling get all courses, get single course by id, and add, update, or delete courses via routes and controllers.
Update & Delete Course7:38
Aggregate - Calculating The Average Course Cost16:14
Photo Upload For Bootcamp23:12
Implement boot camp photo upload with express file upload, validating image presence and type, saving to public/uploads, updating the boot camp record, and serving images from the public folder.
Advanced Results Middleware12:14

User Model11:34
User Register & Encrypting Passwords9:54
Sign & Get JSON Web Token9:09
User Login12:39
Validate email and password, find the user by email, compare the entered password with the hashed one, and return a token containing the user id.
Sending JWT In a Cookie9:55
Auth Protect Middleware16:46
Build a protect middleware with JWT to require a bearer token in the authorization header for protected routes, decode the token to fetch the user and attach to the request.
Storing The Token In Postman5:18
Role Authorization7:07
Create an authorize middleware to grant access to specific roles, integrate it with the protect middleware, and enforce 403 forbidden when a user's role isn't authorized for a route.

Bootcamp & User Relationship10:41
Bootcamp Ownership8:32
Enforce boot camp ownership with owner and admin permissions for updating, deleting, and uploading photos, using token-based authentication and robust authorization for courses.
Course Ownership7:24
Enforces boot camp ownership by the logged-in user when adding courses. Validates permissions before updating or deleting courses.
Forgot Password - Generate Token11:34
Forgot Password - Send Email16:16
Reset Password9:41
Update User Details10:43
Update the logged-in user's name and email via a protected put request, using specified fields to update; securely change password with current and new values and return a token.
Admin Users CRUD18:37

Review Model & Get Reviews10:51
create a review model with title, text, and a 1–10 rating linked to boot camps and users, then implement routes to get all reviews and boot camp reviews.
Get Single Review & Update Seeder9:02
Add Review For Bootcamp10:27
Aggregate - Calculate Average Rating7:29
Calculate and persist the average rating for boot camps using a static method on the review schema and update the boot camp model to reflect the average after each change.
Update & Delete Reviews12:51

Requirements

Modern JavaScript (ES6)
Basic programming principles
Basic knowledge of Node helps

Description

This is a project based course where we build an extensive, in-depth backend API for DevCamper, a bootcamp directory API. We will start from scratch and end up with a professional deployed API with documentation. We will dive deep into Node, Express and MongoDB. Here is some of what you will learn in this course and project...

HTTP Essentials
Postman Client
RESTful APIs
Express Framework
Routing & Controller Methods
MongoDB Atlas & Compass
Mongoose ODM
Advanced Query (Pagination, filter, etc)
Models & Relationships
Middleware (Express & Mongoose)
MongoDB Geospatial Index / GeoJSON
Geocoding
Custom Error Handling
User Roles & Permissions
Aggregation
Photo Upload
Authentication With JWT & Cookies
Emailing Password Reset Tokens
Custom Database Seeder Using JSON Files
Password & Token Hashing
Security: NoSQL Injection, XSS, etc
Creating Documentation
Deployment With PM2, NGINX, SSL

Web development is changing. We used to render all of our views and templates on the server, but since the rise of frontend frameworks like React, Angular and Vue, we are now splitting projects up into backend and frontend, where the backend is doing all of the database interaction and serving JSON and the frontend is fetching that data and creating the user interface to interact with. This course will teach you the entire backend side of things so that you can build extensive APIs and then use whatever you want on the frontend.

We will do a lot more than just build a simple CRUD REST API like many other Node.js and Express tutorials. We will be implementing authentication, roles and permissions, password reset tokens, email functionality, geocoding and much more. This course teaches what it's like to be a real backend engineer.

Who this course is for:

People that want to learn backend web development with Node
React/Vue/Angular Frontend devs that want to be full stack devs

What you'll learn

Explore related topics

Course content

Welcome To The Course4 lectures • 16min

HTTP Intro - Headers, Body, Status Codes, etc6 lectures • 48min

Starting Our DevCamper Project7 lectures • 1hr 2min

Getting Started With MongoDB & Bootcamps Resource7 lectures • 1hr 3min

Custom Error Handling & Mongoose Middleware7 lectures • 58min

Mongoose Advanced Querying & Relationships13 lectures • 2hr 46min

Authentication, Users & Permissions - Part 18 lectures • 1hr 22min

Authentication, Users & Permissions - Part 28 lectures • 1hr 33min

Bootcamp Reviews & Ratings5 lectures • 51min

API Security4 lectures • 28min

Requirements

Description

Who this course is for: