UNPKG

qgenutils

Version:

A security-first Node.js utility library providing authentication, HTTP operations, URL processing, validation, datetime formatting, and template rendering. Designed as a lightweight alternative to heavy npm packages with comprehensive error handling and

79 lines (71 loc) 3.07 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
/** * Parse URL into Base URL and Endpoint Parts * * RATIONALE: API clients often need to separate the base URL (for server/routing) * from the endpoint path (for specific API calls). This separation enables * flexible API routing and proxy configurations. By parsing and * returning structured segments we avoid string concatenation mistakes that may * allow path traversal or host spoofing. * * IMPLEMENTATION STRATEGY: * - Normalize URL with protocol first (ensures valid parsing) * - Use URL constructor for robust parsing of complex URLs * - Split into origin (base) and pathname+search (endpoint) * - Return structured object for easy destructuring * - Often the final step after ensureProtocol and normalizeUrlOrigin * * RETURN STRUCTURE: * { * baseUrl: "https://api.example.com", // Origin only * endpoint: "/v1/users?limit=10" // Path + query string * } * * USE CASES: * - API proxy configuration (route based on baseUrl, forward endpoint) * - Load balancing (distribute based on baseUrl) * - Caching strategies (cache by endpoint within baseUrl) * - Request routing in microservices * * WHY COMBINE PATHNAME AND SEARCH: * The endpoint typically includes both the path (/api/users) and query parameters * (?limit=10) as they're both part of the specific API call being made. * * ERROR HANDLING: * Returns null if URL parsing fails, allowing caller to handle invalid URLs * appropriately (show error, use default, etc.). Failing closed * avoids routing requests to unintended endpoints when input is malformed. * * @param {string} url - The URL to parse into components * @returns {object|null} Object with baseUrl and endpoint properties, or null if parsing fails * @throws Never throws - returns null on any parsing error */ const { qerrors } = require('qerrors'); const logger = require('../../logger'); const ensureProtocol = require('./ensureProtocol'); function parseUrlParts(url) { logger.debug(`parseUrlParts is running with ${url}`); try { // First normalize the URL to ensure it has a protocol for valid parsing const processedUrl = ensureProtocol(url); // If protocol normalization failed, abort parsing if (processedUrl === null) { logger.debug(`parseUrlParts is returning null`); return null; } // Parse URL into components using native URL constructor const parsed = new URL(processedUrl); // Create structured result with base URL and endpoint const result = { baseUrl: parsed.origin, // protocol + domain + port only endpoint: parsed.pathname + parsed.search // path plus query string }; logger.debug(`parseUrlParts is returning ${JSON.stringify(result)}`); return result; } catch (error) { // Handle URLs that can't be parsed by URL constructor qerrors(error, `parseUrlParts`, { url }); logger.error(`parseUrlParts failed with error: ${error.message}`); return null; // fail closed on parse error to avoid unsafe routing } } module.exports = parseUrlParts;