UNPKG

chanfana

Version:

OpenAPI 3 and 3.1 schema generator and validator for Hono, itty-router and more!

chanfana.pages.dev

cloudflare/chanfana

72 lines (61 loc) 2.64 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
import type { InputValidationException } from "../../exceptions"; import { CreateEndpoint } from "../create"; import type { Logger, O } from "../types"; import { getD1Binding, handleDbError, validateColumnName, validateTableName } from "./base"; /** * D1-specific CreateEndpoint implementation. * Provides automatic INSERT operations with SQL injection prevention. */ export class D1CreateEndpoint<HandleArgs extends Array<object> = Array<object>> extends CreateEndpoint<HandleArgs> { /** Name of the D1 database binding in the worker environment. Defaults to "DB" */ dbName = "DB"; /** Optional logger for debugging and error tracking */ logger?: Logger; /** Custom error messages for UNIQUE constraint violations. Keys are constraint names (e.g., "users.email") */ constraintsMessages: Record<string, InputValidationException> = {}; /** * Gets the D1 database binding from the worker environment. * @returns D1Database instance * @throws ApiException if binding is not defined or is not a D1 binding */ getDBBinding(): D1Database { return getD1Binding((args) => this.params.router.getBindings(args), this.args, this.dbName); } /** * Gets the list of valid column names from the model schema. * @returns Array of valid column names */ protected getValidColumns(): string[] { return Object.keys(this.meta.model.schema.shape); } /** * Creates a new record in the database. * @param data - The validated data to insert * @returns The created record * @throws ApiException on database errors */ async create(data: O<typeof this._meta>): Promise<O<typeof this._meta>> { const tableName = validateTableName(this.meta.model.tableName); const validColumns = this.getValidColumns(); // Validate all column names from the data const columns = Object.keys(data).map((col) => validateColumnName(col, validColumns)); const values = Object.values(data); // Build parameterized query const columnList = columns.join(", "); const placeholders = values.map((_, i) => `?${i + 1}`).join(", "); const sql = `INSERT INTO ${tableName} (${columnList}) VALUES (${placeholders}) RETURNING *`; try { const result = await this.getDBBinding() .prepare(sql) .bind(...values) .all(); const inserted = result.results[0] as O<typeof this._meta>; if (this.logger) { this.logger.log(`Successfully created record in ${tableName}`); } return inserted; } catch (e: unknown) { handleDbError(e as Error, this.constraintsMessages, this.logger, `create ${tableName}`); } } }