Skip to content

naugtur/openapi3-middleware

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

20 Commits
test
test
 
 
.eslintrc.js
.eslintrc.js
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
index.js
index.js
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 
validate.js
validate.js
 
 

Repository files navigation

openapi3-middleware

validate requests against your openapi3 definition

npm

npm install openapi3-middleware

Usage

validator checks incoming request as identified by operationId, therefore operationId fields in api definition are required for explicitly matching the right implementation. It's another layer of certainty for your implementation.

const openapi3middleware = require('openapi3-middleware')

const validatorInstance = openapi3middleware.validator(apiDefinition)

// Use directly
validatorInstance.validateRequest(req, operationId) 
  // throws a validation error if anything goes wrong

// Express middleware with default responses
app.get(validatorInstance.expressMiddlewareAutorespond(operationId), handlerFunction)
app.get(validatorInstance.expressMiddlewareAutorespondJson(operationId), handlerFunction)
  // returns a response with a status code matching what happened and a descriptive message to help fix the error

// Express middleware
app.get(validatorInstance.expressMiddleware(operationId), handlerFunction)
  // propagates an error, so custom response can be built in an express error handler

// Validating responses BETA
const res = {
      body: {<parsed JSON>},
      statusCode: 200,
      method: 'get',
      headers: {
        'content-type': 'application/json'
      }
    }
validatorInstance.validateResponse(res, operationId, { path: "the path from the request - to match operationId" })

Expected format of req object

If you want to use the validator outside express, you can provide a plain object where req is expected. It needs to provide the fields shown below.

req := {
  path: 'string',
  route: { path: 'string' }, // all use of : is removed, the :paramName will be compared with paramName from definition
  method: 'string', // method name, case insensitive match with the API spec
  body: Body, // Whatever you expect as body - probably an object resulting from parsing JSON
  headers: { //headers are optional, but if request has a body, the content-type header must exist and match the key in content field exactly.
  }
}

Example:

req = {
  path: '/pet/1',
  route: { path: '/pet/:petId' },
  method: 'post',
  body: { ... },
  headers: {
    'content-type': 'application/json'
  }
}

Contributing

Contributing other framework specific middlewares is more than welcome.

When contributing make sure you run npm run lint and don't get any errors nor warnings. Feel free to consciously add security warning exceptions, we can discuss in the pull request.

About

validate requests against your openapi3 definition

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

3 tags

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages