frontend added #10
frontend added #10
Conversation
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
There was a problem hiding this comment.
This PR is being reviewed by Cursor Bugbot
Details
You are on the Bugbot Free tier. On this plan, Bugbot will review limited PRs each billing cycle.
To receive Bugbot reviews on all of your PRs, visit the Cursor dashboard to activate Pro and start your 14-day free trial.
Bug: Kafka startup fails: Dependency removed.
The depends_on configuration for kafka's dependency on zookeeper was removed. Kafka requires Zookeeper to be running before it starts, so removing this dependency can cause Kafka to fail during startup if it attempts to connect to Zookeeper before Zookeeper is ready.
docker-compose.yml#L37-L41
UserService/docker-compose.yml
Lines 37 to 41 in f73e133
| @@ -0,0 +1,201 @@ | |||
| const API_BASE_URL = 'http://localhost:8080/users'; | |||
There was a problem hiding this comment.
Bug: Backend Unreachable: Port Mismatch in Docker
The API_BASE_URL points to http://localhost:8080/users, but the user-service runs on port 8082 when using Docker (as configured in docker-compose.yml and application-docker.yml). The frontend won't be able to connect to the backend service, causing all API requests to fail.
| <td>${user.email}</td> | ||
| <td>${user.age}</td> | ||
| </tr> | ||
| `).join(''); |
There was a problem hiding this comment.
Bug: XSS: Unsanitized User Data Injection
User data (user.id, user.name, user.email, user.age) is directly interpolated into HTML via innerHTML without sanitization. If any user field contains malicious HTML or JavaScript, it will execute in the browser, creating an XSS vulnerability.
Note
Adds a simple local CRUD frontend for users, enables CORS in the user-service, and updates docker-compose by adding Redis and tweaking Kafka deps.
frontend/index.htmlandfrontend/app.jswith forms and table to list, get, create, update, and delete users viahttp://localhost:8080/users.CorsConfigto allow localhost origins, common methods, and headers.redisservice with persisted volume; removekafkadepends_oncondition; clean up duplicate Redis definition.Written by Cursor Bugbot for commit f73e133. This will update automatically on new commits. Configure here.