idapi

Release 1.0.6

Create an (express + mongoose) complete api in seconds. Created by [id](https://industrie-digitale.fr)

Homepage Repository npm JavaScript Download

Keywords
mongoose, fast, api, mongodb, express, joi, validation, routes, generation, generator
License
MIT
Install
npm install idapi@1.0.6

Documentation

idapi

Create an (express + mongoose) complete api in seconds. Created by id

Get started

Connect express app and mongo database

const idapi = require('idapi')

const server = async () => {
  await idapi.init({
    uri: process.env.URI,
    port: process.env.PORT,
  })
  // now your server is listening on port and idapi.mongoose is connected
}

In this example we will take a look of all features by building an user-authentication system quickly

Middlewares

You can add middlewares with the express app. For example we will add a custom middleware to parse the user token

  const jwt = require('jsonwebtoken')

  idapi.app.use((req, res, next) => {
    let token = req.cookies.Authorization || req.headers.authorization
    if (token) {
      jwt.verify(token, 'secret', (err, decoded) => {
        if (!err) req.myId = decoded.data.userId
      })
    }
    next()
  })

Create a model & a validator

Adding a model "User" with mongoose, check mongoose schema for the second argument

  const userSchema = idapi.schema('User', {
    email: {
      type: String,
      unique: true,
    },
    firstname: String,
    lastname: String,
    password: String,
    role: String
  })

"userSchema" is a mongoose schema instance, so you can work with it and add hooks

  userSchema.pre('save', async function (next) {
    if (!this.isModified('password')) return next()
    this.password = await bcrypt.hash(this.password, 8)
    next()
  })

Adding a validator (optional) for our model (validation is used with pre('validate'... hook from mongoose)

  idapi.validator('User', Joi => ({ // see https://joi.dev/api/?v=17.3.0
    email: Joi.string().email({ tlds: { allow: false } }).required(),
    firstname: Joi.string().max(30).min(1).required(),
    lastname: Joi.string().max(30).min(1).required(),
    role: Joi.string().valid('admin', 'user').default('user').required(),
  })

IMPORTANT initialize our mongoose model (don't do it before the validator)

  idapi.model('User')

Routes authorization system

Creating our authorizations functions (for routes, see below)

NOTE: You can add as many functions you want

  idapi.authorizations = {
    public: async () => true,
    private: async (ctx) => Boolean(ctx.req.myId),
    admin: async (ctx) => {
      if (!ctx.req.myId) return false
      const user = await idapi.User.model.findOne({ _id: ctx.req.id, role: 'admin' })
      if (!user) return false
      return true
    },
  }

Generate routes

Lets create our users routes with some pre-built functions:

NOTE: $getMany, $get, $post, $put, $delete generates your routes faster !

Generated routes requires a modelName in 1st parameter, and will use plural path. Exemple: our "User" $get path gonna be "/users/:_id"

  idapi.routes('User', { 
    $post: {
      before: async ({ req }) => {
        delete req.body.role // don't mess with security
      },
      access: 'public', // refering to our authorizations.public function
    },
    $getMany: { // works with https://www.npmjs.com/package/mongoose-query-parser
      access: 'public',
      queryMiddleware: async (query) => {
        query.select('-password')
      },
    },
    $get: {
      access: 'admin',
      after: async (ctx, result) => {
        delete result.password
      }
    },
    $put: {
      access: 'admin',
      before: (ctx) => (ctx.req.body.password = undefined), // before and after middlewares are available for every routes
    },
    $delete: {
      access: 'admin',
    },
    'GET /user/current': {
      access: 'private',
      resolver: async (ctx) => {
        const user = await idapi.User.findOne({ _id: ctx.req.myId })
        if (!user) idapi.error(404, { message: `Couldn't find this user` }) // cancel current execution and send response 1st param : code, 2nd param: content you want to send
        return user // the returning value is sent in json with status code 200
      },
    },
    'GET /user/token': {
      access: 'public',
      resolver: async (ctx) => {
        const token = await generateToken(ctx.req.query)
        return token
      },
    },
    'PUT /user/:_id/password': {
      access: 'private',
      resolver: async ({ req }) => {
        const user = await idapi.User.findOne({ _id: req.params._id })
        const match = await bcrypt.compare(req.body.password, user.password)
        if (match === false)
          idapi.error(403, { message: 'Bad password' })
        user.password = req.body.newPassword
        await user.save()
        return user
      },
    },
  })
}

Simple example

  // fast route
  idapi.routes(null, {
    'GET /': {
      resolver: async (ctx) => 'Hello World' // ctx object contains { req, res, Model (if provided in 1st arg) }
    },
    'GET /widthDisabledRespond': {
      disableRespond: true, // disableRespond allows you to user ctx.res to respond
      resolver: async (ctx) => ctx.res.json('Hello World') // ctx object contains { req, res, Model (if provided in 1st arg) }
    }
  })

Stats

Dependencies
0
Dependent packages
0
Dependent repositories
0
Total releases
7
Latest release
First release
Stars
1
Forks
0
Watchers
1
Contributors
1
Repository size
407 KB
SourceRank
8

Development practices

Source repo 2FA enabled
TEXT!
Package manager 2FA enabled
TEXT!
Is security responsive
TEXT!
Dependencies are managed
TEXT!
Issue-free release available
TEXT!
Succession plan available
TEXT!
Package manager 2FA enabled
TEXT!

The Tidelift Subscription provides access to a continuously curated stream of human-researched and maintainer-verified data on open source packages and their licenses, releases, vulnerabilities, and development practices.

Learn more

Releases

1.0.6
1.0.5
1.0.4
1.0.3
1.0.2
1.0.1
1.0.0

Contributors

Alexis Caroff


See all contributors

Something wrong with this page? Make a suggestion

Export .ABOUT file for this package

Last synced: 2022-05-05 16:06:24 UTC

Login to resync this project