UNPKG

openapi-middleware

Version:

OpenAPI middleware for common api frameworks (pre-release version!)

danielgolub.github.io/openapi-middleware/

danielgolub/openapi-middleware

82 lines (74 loc) 3.51 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
import debug from 'debug'; import ParameterValidator from './ParameterValidator.js'; import SecurityValidator from './SecurityValidator.js'; import ResponseValidator from './ResponseValidator.js'; /** * Endpoint instance (combines ParameterValidator + SecurityValidator) * @module Endpoint */ export default class Endpoint { /** * Endpoint constructor * @param {Object[]} securitySchemes openapi top-level security definition * @param {Map<string, function>} securityCallbacks matching security definition validators * @param {object} definition openapi endpoint definition * @param {Map<string, function>} controllerFunc matching endpoint controller function * @param {boolean} enforceResponseValidation flag for failing invalid responses (that don't match the endpoint's responseScheme) * @see {@link https://swagger.io/docs/specification/authentication/} * @see {@link https://swagger.io/docs/specification/paths-and-operations/} */ constructor(securitySchemes, securityCallbacks, definition, controllerFunc, enforceResponseValidation) { this.securitySchemes = securitySchemes; this.securityCallbacks = securityCallbacks; this.endpointDefinition = definition; this.controllerFunc = controllerFunc; this.enforceResponseValidation = enforceResponseValidation; this.debug = debug('openapi:endpoint'); this.parseDefinition(); } /** * Attach the relevant validators to this endpoint * @private */ parseDefinition() { const requestBodyMap = this.endpointDefinition.requestBody ? Object.keys(this.endpointDefinition.requestBody.content).reduce((all, contentType) => ({ ...all, [contentType]: this.endpointDefinition.requestBody.content[contentType].schema, }), {}) : null; this.paramValidator = new ParameterValidator(this.endpointDefinition.parameters, requestBodyMap); if (this.endpointDefinition.responses) { this.responseValidator = new ResponseValidator(this.endpointDefinition.responses, this.enforceResponseValidation); } if (this.endpointDefinition.security) { this.securityValidator = new SecurityValidator(this.securitySchemes, this.endpointDefinition.security, this.securityCallbacks); } } /** * Test request against the endpoint input validators * @param {Map<string, any>} path path parameters object * @param {Map<string, any>} headers header parameters object * @param {Map<string, any>} queryParams query string parameters object * @param {string} contentType content type of the input * @param {Map<string, any>} bodyParams body * @throws {module:ParameterError|module:SecurityError} */ async testIncoming(path, headers, queryParams, contentType, bodyParams) { this.paramValidator.test(path, queryParams, { [contentType]: bodyParams }); if (this.securityValidator) { await this.securityValidator.test(headers, queryParams); } } /** * Test response against the endpoint output validators * @param {string} statusCode response status code * @param {string} contentType response content type * @param {object} responseBody response body * @return {Promise<ResponseError|boolean>} */ async testOutgoing(statusCode, contentType, responseBody) { if (this.responseValidator) { return this.responseValidator.test(statusCode, contentType, responseBody); } return true; } }