6.3. FlixReviews#
FlixReviews is a movie review website where film critics share their insights on the latest blockbusters and hidden indie gems. As an up-and-coming software developer, you’ve been brought on board to implement a new message board feature that will allow fans to discuss films, share opinions, and engage with one another directly on the site.
The owner of FlixReviews has teamed up with a user interface designer to create the look and feel of this message board. Your job is to bring that design to life by writing the necessary code and, most importantly, ensuring that it’s done securely. This means you’ll need to carefully plan how users post content, where data is stored, and how to defend against common web application threats.
Throughout the rest of this module, you’ll follow best practices to build a reliable and safe feature for FlixReviews.
Demo: FlixReviews Code
The existing FlixReviews website contains the following pages:
home (public), showing the reviews sorted by date
review details (public), showing detailed review information
login (public), with the login form
logout (public), clears the session
admin Dashboard (admin only to make new reviews)
Currently the only user that can login is the admin account, which is used to publish reviews on the website. Their login details are:
username: admin
password: password123
Download the code and run app.py.