190 likes | 214 Views
ECpE Student Database. Team 21 Adviser: Tien Nguyen ECpE and Tony Moore. Problem Statement. Faculty and staff in ECpE department need a better way to recommend students for opportunities Problem stems from a lack of data Resolve with a new database of student info and opportunity info
E N D
ECpE Student Database Team 21 Adviser: Tien Nguyen ECpE and Tony Moore
Problem Statement • Faculty and staff in ECpE department need a better way to recommend students for opportunities • Problem stems from a lack of data • Resolve with a new database of student info and opportunity info • Also includes a web-based front end for ease of use for data entry/retrieval
Conceptual Sketch Conecpt breakdown: Model - communication module, data interaction View - display module Controller - page abstraction module, permission enforcement
Will be maintained by the Engineering Computer Support Group after completion. All users of the product will have a valid Iowa State NetID. All users of the product shall be associated with the ECpE Department. The product shall allow advisers to query all available student information. The product shall run on a Engineering Computer Support Group managed server. The product shall provide a user friendly method for data entry and retrieval. The product shall allow multiple users to be on at the same time. Functional Requirements
The cost of this product shall not exceed $500. The product shall prevent a student from viewing another student’s information. The database shall not exceed the storage size of the provided server. The product shall be accessible through ISU servers on the web. Users must Authenticate with ISU before logging in to the server. The product shall not block user activity during network actions. The product shall work on IE, as well as the other major browsers. Non-functional Requirements
Other considerations • Cost is a factor • Free frameworks • Must work with existing technologies used at ISU • Pubcookie compatibility • Apache • M-V-C pattern • Need a separation between web front end, data back end, and controlling logic • Portal Web Framework
Market Survey: • Why is this system worth building? • Why is the proposed system the best answer. • Cost • Ease of use • Will Students use the system?
Risks: User changes his/her netID Login security Falsified user information Bad user entries/code injection Keeping internal data hidden (qualifications for scholarships, recipients, etc) Mitigation: User number to netID mapping Pubcookie Visual verification of documents, trusted source authentication Rudimentary entry/error checking, clean input AJAX specifications, pubcookie Risk Management
Resources and Costs: Primarily a Software Project. Hardware provided by CSG. -Price? -Dedicated Server Rental: $79-$399 monthly Ten-Day list already purchased by ECpE Department.
Project Milestones • Get access to server. • Pubcookie Authentication. • Display appropriate Homepage for user. • Manually enter Opportunities and Data. • Upload Ten-Day list. • Query for Opportunities. • Final Load and Performance test.
Functional Decomposition Communication Module - Abstraction from internet communications Permissions Enforcement Module - Base level enforcement to ensure an Authenticated user has access to the site View Generation Module - Separates HTML code from PHP page logic Page Abstraction Module - Contains page logic for all visible pages Data Interaction Module - Provides interface to the Database
Technology Platform • NetID authentication requires Pubcookie • Apache Web Server • PHP 5.2 or greater • PDO and JSON Support • MySQL Database • Smarty Template Engine • no installation required • No Required Hardware • could run on a virtual machine
Test Plan • Database • Load testing • Network stress testing • Security testing • Browser • Support for multiple browsers • Functionality testing across browsers • Visual testing across browser • Permission Enforcement • Unknown user • Functionality access control
Current Project Status • Database • CSG Managed Virtual Machine • Security • Research about optimal techniques • Pubcookie • Documentation • Plan Document • Design Document • Approval • CSG security and maintainability • Client acceptance
Plan For Next Semester • Database • Finish implementation • Test security and network capabilities • Web Interface • Multiple browser support • Student components • Administrator components • Security • Permissions Enforcement • Data security • Approval • Client and Student acceptance • Receive student feedback
Team Member Responsibilities Steven Murray: • Student Pages Design and Implementation • Database Testing Nathan Staley • Framework Design • Permission Enforcement Justin Sliekers: • Database Administrator • Documentation Michael Walsh: • Administrator Pages Design and Implementation • Security Testing