Feature-rich RESTful API for a fictional company offering nature tours.
Natours is a nodejs API built using modern technologies like:
node.js, express, mongoDB and mongoose.
-
CRUD operations
- Basic operations
- More Advanced API Design
- Query Manipulation
- Filtering
- Sorting
- Field Limiting
- Pagination
- Aliasing
- Aggregation
- Matching
- grouping
- Sorting
- Unwinding
- Projecting
- Query Manipulation
-
Error Handling
-
Authentication & Authorization
- Using jsonwebtoken (JWT)
-
Security Best Practices
- Use Helmet
- Use cookies securely
- Use rate limiting & bcrypt (Prevent brute-force & DOS attacks)
- Data Sanitization (Prevent cross-site scripting & Query Injection)
- Prevent Parameter Pollution
Check out the full documentation and run the API in Postman
Natours API