In this part of the Chess project, you will create a MySQL implementation of your Data Access interface and start calling it from your services. This enables the ability to store data persistently in a MySQL database instead of storing data in main memory. You will also write unit tests using JUnit for your DAO classes. This involves the following steps:
- Install the MYSQL database management system (DBMS) on your development machine.
- Modify
db.propertiesto contain your username and password. - Design your database tables (i.e., your database
schema) - Implement a MySQL implementation of your Data Access Interface. Initially you can just stub out all the methods.
- Add the ability to create your database and tables, if they don't exist, when your server starts up.
- Iteratively write a test for each of your Data Access interface methods along with the backing MySQL code.
- Ensure that all provided pass off tests work properly, including the DatabaseTests added for this assignment, and the StandardAPITests from the previous assignment.
The getting started code found in the server/src/main/dataaccess/DatabaseManager.java file reads the database configuration information from db.properties and contains a static function for creating database connections. The following code gives you an example of how you can use this code.
public void example() throws Exception {
try (var conn = DatabaseManager.getConnection()) {
try (var preparedStatement = conn.prepareStatement("SELECT 1+1")) {
var rs = preparedStatement.executeQuery();
rs.next();
System.out.println(rs.getInt(1));
}
}
}Make sure that you wrap your calls to get a connection with a try-with-resources block so that the connection gets cleaned up.
As you design your database schema, carefully consider data types, primary and foreign keys, autogenerated IDs, default values, and whether a field can be null.
Warning
On some operating systems, MySQL treats database and table names as case-sensitive, and on others it does not. For this reason you should always make sure your database, table, and field names match the case of your query statements so they will execute correctly on all operating systems, even if your development environment doesn't require it.
The DatabaseManager class has a method for creating a database if it does not exist. You are not required to use this code, but it is required that on start up, your code creates both your database and tables if they do not exist, based on the values configured in db.properties. This allows the pass off tests to run without manual intervention to set up your database.
The Pet Shop provides an example of how to initialize your database on start up if you are wondering how this is done.
Note that once your code creates the tables for the first time, changing your CREATE TABLE statements will not actually affect the existing table definitions. See the Altering Tables instruction for more information.
In order to protect the security of your user's password, you must encrypt their password using the bcrypt algorithm. When a user provides a password, hash it before storing it in the database.
void storeUserPassword(String username, String clearTextPassword) {
String hashedPassword = BCrypt.hashpw(clearTextPassword, BCrypt.gensalt());
// write the hashed password in database along with the user's other information
writeHashedPasswordToDatabase(username, hashedPassword);
}Then when a user attempts to log in, repeat the hashing process on the user supplied login password and then compare the resulting hash to the previously stored hash of the original password. If the two hashes match then you know the supplied password is correct.
boolean verifyUser(String username, String providedClearTextPassword) {
// read the previously hashed password from the database
var hashedPassword = readHashedPasswordFromDatabase(username);
return BCrypt.checkpw(providedClearTextPassword, hashedPassword);
}The above code demonstrates the necessary concepts to implement secure password storage, but it will need to be adapted to your particular implementation. You do not need to create a different table to store your passwords. The hashed password may be stored along with your other user information in your user table.
The easiest way to store the state of a ChessGame in MySQL is to serialize it to a JSON string, and then store the string in your database. Whenever your server needs to update the state of a game, it should:
- Select the game’s state (JSON string) from the database
- Deserialize the JSON string to a ChessGame Java object
- Update the state of the ChessGame object
- Re-serialize the Chess game to a JSON string
- Update the game’s JSON string in the database
You will want to carefully consider the need for a Gson type adapter when you do your serialization. If your classes have any interface fields then you will need to tell Gson how to instantiate a concrete class for the interface when it is deserializing. You might want to review the instruction on this topic.
- JSON and Serialization: Serialization objects to the database.
- Relational Databases: How relational databases work.
- MYSQL: Getting MySQL installed.
- SQL: Using SQL statements.
- JDBC: Using SQL from Java including type adapters.
The tests provided for this assignment are in the DatabaseTests class. These tests make HTTP requests to test your server.
Additionally, run the StandardAPITests from the previous phase to make sure they still run successfully.
The pass off tests do not examine your game board. That means it is critical that you write tests that fully test everything you are persisting to the database. This includes tests that store an initial board, add players, make moves, and update the game state.
As part of your unit test deliverable you need to meet the following requirements.
- Write a positive and a negative JUNIT test case for each public method on your DAO classes, except for Clear methods which only need a positive test case. A positive test case is one for which the action happens successfully (e.g., creating a new user in the database). A negative test case is one for which the operation fails (e.g., creating a User that has the same username as an existing user).
- Ensure that all of your unit tests work, including the new DAO tests and the Service tests you wrote in the previous assignment.
Important
You must place your data access test cases in a folder named server/src/test/java/dataaccess.
For this phase the auto grader will grade the quality of your project's source code. The rubric used to evaluate code quality can be found here: Rubric
Since you're adding code that acts with an external program in Phase 4, the likelihood of having auto-grader test output different from your local output is higher than previous phases. See our collection of Phase 4 Debugging Tips for approaches to resolve common issues.
All the tests in your project must succeed in order to complete this phase.
To pass off this assignment use the course auto-grading tool. If your code passes then your grade will automatically be entered in Canvas.
Important
You are required to commit to GitHub with every minor milestone. For example, after you successfully pass a test. This should result in a commit history that clearly details your work on this phase. If your Git history does not demonstrate your efforts then your submission may be rejected.
| Category | Criteria | Points |
|---|---|---|
| GitHub History | At least 12 GitHub commits evenly spread over the assignment period that demonstrate proof of work | Prerequisite |
| Functionality | All pass off test cases succeed | 100 |
| Code Quality | Rubric | 30 |
| Unit Tests | All test cases pass Each public method on DAO classes has two test cases, one positive test and one negative test Every test case includes an Assert statement of some type |
25 |
| Total | 155 |
- 🎥 Phase 4 Introduction (4:21) - [transcript]
- 🎥 Making Database Connections (6:22) - [transcript]
- 🎥 Initializing Your Database and Tables (4:22) - [transcript]
- 🎥 Password Hashing (4:14) - [transcript]
- 🎥 ChessGame Serialization/Deserialization (6:17) - [transcript]
- 🎥 Database Unit Tests (1:52) - [transcript]
- 🎥 Grading Rubric (2:02) - [transcript]