# TODO ## Office Hour/Recitation - [ ] Should give a little pointers but not too much, I think at first this is going to seem hard to many students but it should become fairly easy after some little pointers ## Docs - [ ] Make a better explanation of authorization schema - [ ] register: give the register message schema(passwd is missing) - [ ] gradecoin: give narrative explanation - [ ] how to bank works - [ ] bank public key - [ ] how to start(possibly some pointers and links -- blockchain, rest, jwt, rsa, public key) - [ ] delete CONSTANTS - [ ] register should have AuthRequest in the explanation - [ ] link all types in schema.rs to the docs, they need to understand why we have them - [ ] explain hash type(MD5 is missing in Claims) - [ ] Initial auth request needs more explanation - [ ] Explain JSON Wrapped - [ ] Give links to the functions, their docs are very good. For example, it seems impossible to understand authentication from the first page, but when you go to handlers::authenticate_user many things are clarified. - [ ] There is todo at handlers::authorized_propose_transaction, fix that - [ ] authorized_propose_transaction and authorized_propose_block may have more explanation as in the case of ### Authorization - [ ] Pointer to JWT - [ ] Pointer to Public Key Sign ## Tests - [ ] User Authentication/Authentication Tests - [ ] Route Tests - [ ] Malformed JSON bodies - [ ] Valid JSON with missing fields - [ ] Valid JSON with extra fields ## Please - [ ] use [juice](https://www.getzola.org/themes/juice/) theme with [template rendering](https://blog.logrocket.com/template-rendering-in-rust/) to create a landing page. I want it to look handmade & _scammy_, I'm talking [verylegit](https://verylegit.link) shortened urls, botched [this person does not exist](https://www.thispersondoesnotexist.com/) user stories etc. ## Testnet - [ ] CHAOS MODE, 3 different coins, combine them to make 1 gradecoin ## Done & Brag - [x] Switch to RwLock (parking_lot) (done at 2021-04-07 03:43, two possible schemes to represent inner Db (ledger) in code) - [x] We need our own representation of students and their grades, "there is no blockchain" (done at 2021-04-12 00:05) - [x] pick a block proposal scheme (= pick hash function) [list of hash functions](https://en.bitcoinwiki.org/wiki/List_of_hash_functions) (done at 2021-04-12 05:30) - [x] check the nonce for incoming blocks (done at 2021-04-12 05:30) ---- - [X] pick a user authentication scheme = [JWT](https://tools.ietf.org/html/rfc7519) Seems perfect - [X] implement JWT - [X] users should be able to _sign_ their transactions ---- - [x] Verbose error messages (use error.rs from [logrocket](https://blog.logrocket.com/create-an-async-crud-web-service-in-rust-with-warp/) ❓) (done at 2021-04-13 20:39, not happy with the result) - [x] Transactions should be rejected if the user cannot afford to send the amount - [X] Schema Tests - [x] /register is currently accepting non-encrypted (regular JSON) payloads (2021-04-14 19:19) - [x] /register should check for public key pem format and assign signatures ---- - [x] Recover database from files - [.] POST requests to /block should be authenticated as well (2021-04-13 04:50, they now are but until we make error messages **Verbose** there's not much point in testing because I honestly cannot trace the code) - [X] Blocks should "play out" the transactions and execute transactions (2021-04-14 21:29) - [X] "Coinbase" ("by" of the first transaction of the block) should get rewarded for their efforts (2021-04-14 21:48) - [X] Implemented Bank Account (2021-04-14 23:28)