Skip to content

Display actual addresses on participant page #37

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
ChisomOkwor wants to merge 26 commits into
base: master
Choose a base branch
from
Open

Display actual addresses on participant page #37

ChisomOkwor wants to merge 26 commits into from

Conversation

@ChisomOkwor
Copy link
Contributor

@ChisomOkwor ChisomOkwor commented Aug 3, 2020

This PR displays the actual participants addresses.
It's a draft, as I'm awaiting #35 Ved's merge.

  1. If the user manually inputs their address, it's stored in data-store and displayed on the participant page.
  2. If the user chooses to use the HTML Geo-location, the reverse Geo-coding API converts the coordinate to an actual address, which is also stored in datastore and displayed on the participant page.

aivey65 and others added 19 commits August 1, 2020 00:15
@aivey65
Add more information to restaurant cards, including images, reviews, …
cd077f1 
…and website.
@aivey65
Add apis on the server to call Google's place photos and place detail…
62876fb 
…s apis.
@aivey65
Change styles for review section. Add price level to restaurant card.
8a0297d
@aivey65
Rearranged line for better organization.
ae83434
@aivey65
Remove unused and redundant css styling.
00beb10
@aivey65
Add styling to show more/show less button when hovering.
8a03020
@aivey65
Return more detailed error in restaurant api for special handling on …
693f4f2 
…the front-end
@aivey65
Change variable names and comments.
a8b5e88
@aivey65
Change hover styling of show more/show less button.
1f63338
@aivey65
Change encode function in server to use broader terms.
88baa8a
@aivey65
Make place image request clearer by using descriptive variable.
c5c7218
@aivey65
Change variable name
757dfc2
@aivey65
Update check for error in restaurant api call to get correct error.
2e4e220
@ChisomOkwor
Maps marker numbering
e43cd36
@ChisomOkwor
Show address on participant page
b993b69
@ChisomOkwor
Edit reverse gecoding error message
d0470f5
@ChisomOkwor
Search button margin adjustments
a4edcc9
@ChisomOkwor
format changes
5f8be4b
@ChisomOkwor
Edit error message for reverse geocoding API
f0fe299
vedantroy
vedantroy suggested changes Aug 3, 2020
View reviewed changes
@ChisomOkwor ChisomOkwor marked this pull request as ready for review August 4, 2020 01:37
sooniln
sooniln reviewed Aug 4, 2020
View reviewed changes
src/server.js
}

// This number should be kept in sync with the port number in nodemon.json
app.get(`${PREFIX_API}/reverseGeocode`, async (request, response) => {
Copy link
Contributor

@sooniln sooniln Aug 4, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

something that hadn't occurred to me earlier - are you essentially allowing anyone to make free geocode requests and spend your money? could i just point my own external code at this endpoint to make geocode requests with your API key, or is this somehow blocked?

Copy link
Contributor Author

@ChisomOkwor ChisomOkwor Aug 4, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not quite sure, but I think there's a possibility that could happen. But either way it's done, the geo-coded location always shows up on the participant page. A hacker could still access it there? I'm wondering because I thought this works the same way the place search works. Or is this different because the goecoded address is in the JS frontend?

Copy link
Contributor

@sooniln sooniln Aug 5, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

the difference is between a malicious user being able to geocode only address that the user has entered vs being able to geocode any arbitrary address. ideally this should be designed such that it's only possible to geocode addresses that are being entered into the db - ie a hacker would have to actually be using your app, and you could easily apply rate limiting, etc.

@ChisomOkwor ChisomOkwor requested review from skzv and vedantroy August 4, 2020 13:46
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@aivey65 aivey65 Awaiting requested review from aivey65

@skzv skzv Awaiting requested review from skzv

@vedantroy vedantroy Awaiting requested review from vedantroy

1 more reviewer

@sooniln sooniln sooniln left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@ChisomOkwor @sooniln @vedantroy @aivey65