UNPKG

saasify-openapi-utils

Version:

OpenAPI utilities for Saasify.

github.com/saasify-sh/saasify

saasify-sh/saasify

106 lines (84 loc) 2.87 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
'use strict' const cloneDeep = require('clone-deep') const isUrl = require('is-url-superb') const parser = require('swagger-parser') const semver = require('semver') const { validators } = require('saasify-faas-utils') const isHttpMethod = require('./is-http-method') const openAPIPathToExpressPath = require('./openapi-path-to-express-path') /** * Validates and parses an OpenAPI spec according to Saasify's constraints. * * Returns a deep cloned spec that should be used. * * @param {object} spec - OpenAPI spec. * * @return {Promise} */ module.exports = async (spec, opts = {}) => { const { strict = false } = opts // bundle => only contains internal $refs // dereference => no $refs at all const bundle = await parser.bundle(spec) const api = await parser.dereference(cloneDeep(spec)) if (!api.openapi) { throw new Error('Invalid OpenAPI spec must provide "openapi" version') } if (semver.major(api.openapi) !== 3) { throw new Error('Only OpenAPI version 3 is supported') } if (strict) { if (!api.servers || !api.servers.length) { throw new Error('Missing required "servers"') } for (const server of api.servers) { if (!server.url || !isUrl(server.url)) { throw new Error('Missing required server "url"') } } } for (const path of Object.keys(api.paths)) { const pathItem = api.paths[path] if (path[0] !== '/') { throw new Error(`Invalid path "${path}" must start with "/"`) } const expressPath = openAPIPathToExpressPath(path) if (!validators.servicePath(expressPath)) { throw new Error(`Invalid path "${path}" must a valid relative URL`) } const httpMethods = Object.keys(pathItem).filter(isHttpMethod) let httpMethodFound = false for (const httpMethod of httpMethods) { const op = pathItem[httpMethod] httpMethodFound = true await module.exports.validateOperation(op, pathItem) } if (!httpMethodFound) { throw new Error(`Path "${path}" must contain a valid http method`) } // if (pathItem.parameters) { // await module.exports.validateParameters(pathItem.parameters) // } } return bundle } module.exports.validateOperation = async (op, pathItem) => { // if (op.parameters) { // await module.exports.validateParameters(op.parameters) // } if (op.servers !== undefined) { throw new Error( `"Operation.servers" is not allowed. All OpenAPI specs must only use one set of top-level severs.` ) } } // hey, we're allowing any parameters now -- huzzah! // module.exports.validateParameters = async (parameters) => { // for (const param of parameters) { // if (httpParameterBlacklist.has(param.in)) { // throw new Error( // `Unsupported http parameter location "${param.in}" for parameter "${param.name}"` // ) // } // } // }