https://github.com/codesignal/learn_paste-bin
A demo app (aka Pastebin) for Security courses
https://github.com/codesignal/learn_paste-bin
Last synced: 8 months ago
JSON representation
A demo app (aka Pastebin) for Security courses
- Host: GitHub
- URL: https://github.com/codesignal/learn_paste-bin
- Owner: CodeSignal
- License: other
- Created: 2025-02-10T07:14:20.000Z (10 months ago)
- Default Branch: main
- Last Pushed: 2025-02-19T03:05:11.000Z (10 months ago)
- Last Synced: 2025-02-19T04:21:53.903Z (10 months ago)
- Language: TypeScript
- Size: 30.2 MB
- Stars: 0
- Watchers: 4
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# Pastebin Demo Application
A simple Pastebin-like application built with React, TypeScript, and Express. This application is intentionally built with minimal security measures for educational purposes in security courses.
## Features
- Code snippet creation and editing
- Support for multiple programming languages:
- TypeScript
- JavaScript
- Python
- Java
- C++
- Syntax highlighting using CodeMirror
- File upload functionality
- Basic user authentication
- Unique URLs for each saved snippet
- SQLite database with Sequelize ORM
## ⚠️ Security Notice
This application is deliberately built WITHOUT security measures for educational purposes. It contains various vulnerabilities including but not limited to:
- SQL Injection possibilities
- No input validation
- Weak authentication
- No CSRF protection
- Potential XSS vulnerabilities
DO NOT USE THIS IN PRODUCTION!
## Prerequisites
- Node.js (v14 or higher)
- npm (Node Package Manager)
## Installation
1. Clone the repository:
```bash
git clone [repository-url]
cd learn_paste-bin
```
2. Install dependencies:
```bash
npm install
```
3. Start the backend and frontend development server:
```bash
npm run dev:all
```
## Usage
1. Access the application at `http://localhost:3000`
2. Login with default credentials:
- Username: `admin`
- Password: `admin`
3. Create new snippets:
- Enter a title
- Select a programming language
- Write or paste your code
- Click "Save" to generate a unique URL
4. Upload files:
- Click the file upload button
- Select a text file
- The content will be automatically loaded into the editor
5. Access saved snippets:
- Use the generated URL (format: `/snippet/:id`)
- Edit and save changes as needed
## Project Structure
```
src/
├── server/
│ ├── models/
│ │ ├── index.ts
│ │ ├── Snippet.ts
│ │ └── User.ts
│ └── index.ts
├── components/
│ ├── Editor.tsx
│ └── Login.tsx
├── types.ts
├── App.tsx
└── main.tsx
```
## API Endpoints
- `POST /api/login` - User authentication
- `POST /api/snippets` - Create/update snippets
- `GET /api/snippets/:id` - Retrieve a specific snippet
## Development
Both backend and frontend run on port 3000:
```bash
npm run dev:all
```
## Contributing
This is a demo application for educational purposes. If you find any bugs or want to suggest improvements, please open an issue or submit a pull request.