Before running the project, you need to set up the required environment variables:
Copy the .env.example file to a new file named .env:
cp .env.example .envTo run the application using Docker Compose, execute the following command in your terminal:
docker-compose up -dReDoc provides a clean and interactive documentation of the API. It's an alternative to Swagger UI with a focus on simplicity and readability.
To view the API documentation using ReDoc, navigate to:
localhost:8000/redocSwagger UI offers interactive API documentation, allowing users to explore the API's endpoints directly through the browser.
To access the Swagger UI documentation, visit:
localhost:8000/swaggerPlease explain why you chose the particular framework or library.
-
Benefits & Drawbacks:
- I chose Django and Django Rest Framework with PostgreSQL for the database because Django abstracts a lot of the basic code and is "batteries included," which helps to create features faster. I have also used Redis cache for caching the get requests.
-
Assumptions Underlying the Choice:
- I assumed speed is not a big issue. I have used WSGI for Django. I could have used FastAPI if speed was a concern.
Please elaborate on what kind of improvements you would like to implement if given more time.
- I could have implemented internationalization (support for multiple languages) and the bulk create aspect mentioned in the bonus part if I had more time.
Any extra steps should be taken with caution when deploying your app to a production environment?
There are several steps which can be taken:
- Use environment variables or Django's
django-environpackage to manage sensitive information securely. - Set
DEBUGtoFalse. - Set
CSRF_COOKIE_SECUREandSESSION_COOKIE_SECUREtoTrue. - Use Django's
SecurityMiddlewareand theSECURE_SSL_REDIRECTsetting to redirect all non-HTTPS traffic to HTTPS. - Ensure
X_FRAME_OPTIONSis set toDENYorSAMEORIGINto protect against clickjacking. - Run
python manage.py check --deployto check for deployment readiness.
Any assumptions you have made when you designed the data model and API schema?
- Yes, I assumed that a clinic can have multiple doctors. A doctor can have multiple phone numbers.
Any other assumptions and opinions you have taken throughout the assessments?
- When one queries the doctor, then clinic details are also shown, even though clinic data is in another table. Also, when I create a doctor, I am passing the clinic detail as well.
Here's an example of how to make a POST request to create a doctor:
curl -X POST \
'http://127.0.0.1:8000/api/v1/doctor/' \
--header 'Accept: */*' \
--header 'Content-Type: application/json' \
--data-raw '{
"clinic": {
"name": "TH Medical Centre",
"address": "Shop 2, G/F, Treasure Garden, 1 On Chee Road, Tai Po, New Territories",
"district": "New Territories"
},
"consultation_detail": {
"inclusive": true,
"days": 3,
"consultation_fee": "200.00",
"member_exclusive_price": "150.00"
},
"schedule": [
{
"day_of_week": "Monday",
"start_time": "09:00:00",
"end_time": "20:00:00"
},
{
"day_of_week": "Wednesday",
"start_time": "09:00:00",
"end_time": "13:30:00"
},
{
"day_of_week": "Thursday",
"start_time": "09:00:00",
"end_time": "20:00:00"
},
{
"day_of_week": "Saturday",
"start_time": "15:00:00",
"end_time": "20:00:00"
}
],
"phone": [
"29730773",
"29730833"
],
"name": "Au Lik Hang",
"speciality": "General Practitioner",
"language": "English"
}'Here's an example of how to make a GET request to get all doctors:
curl -X GET \
'http://127.0.0.1:8000/api/v1/doctor/' \
--header 'Accept: */*'Here's an example of how to make a GET request to get a doctor with id:
curl -X GET \
'http://127.0.0.1:8000/api/v1/doctor/<id>' \
--header 'Accept: */*'Here's an example of how to make a GET request to get a doctor with some query params:
curl -X GET \
'http://127.0.0.1:8000/api/v1/doctor?language=English&district=New%20Territories&price_min=100&price_max=500&speciality=General%20Practitioner' \
--header 'Accept: */*'