ModulosPB · ModulosPB · Apr 17, 2026 · Apr 17, 2026 · devin-ai-integration · Apr 17, 2026
diff --git a/src/app.js b/src/app.js
@@ -10,12 +10,27 @@ import { errorHandler } from './middleware/errorHandler.js';
 const __dirname = path.dirname(fileURLToPath(import.meta.url));
 const publicDir = path.resolve(__dirname, '..', 'public');
 
-export function createApp() {
+function requestLogger(req, res, next) {
+  const start = Date.now();
+  res.on('finish', () => {
+    const ms = Date.now() - start;
+    console.log(
+      `[${new Date().toISOString()}] ${req.method} ${req.originalUrl} -> ${res.statusCode} ${ms}ms`,
+    );
+  });
+  next();
+}
+
+export function createApp({ logRequests = process.env.NODE_ENV !== 'test' } = {}) {
   const app = express();
 
   app.disable('x-powered-by');
   app.use(express.json());
 
+  if (logRequests) {
+    app.use(requestLogger);
+  }
+
   app.use(express.static(publicDir));
 
   app.use('/api', rootRouter);

diff --git a/src/routes/cocktails.js b/src/routes/cocktails.js
@@ -4,6 +4,9 @@ const router = Router();
 
 const BASE = 'https://www.thecocktaildb.com/api/json/v1/1';
 const TTL_MS = 10 * 60 * 1000;
+const FETCH_TIMEOUT_MS = 10_000;
+const USER_AGENT = 'api00/0.1.0 (+https://github.com/ModulosPB/api00)';
+
 const cache = new Map();
 
 export function _clearCocktailsCache() {
@@ -32,35 +35,75 @@ function parseDrink(drink) {
   };
 }
 
-router.get('/', async (req, res, next) => {
+function isTimeoutError(err) {
+  return err?.name === 'TimeoutError' || err?.name === 'AbortError';
+}
+
+router.get('/', async (req, res) => {
+  const letter = String(req.query.letter ?? 'a').toLowerCase();
+  if (!/^[a-z]$/.test(letter)) {
+    return res.status(400).json({
+      error: 'Query parameter "letter" must be a single character a-z.',
+    });
+  }
+
+  const cached = cache.get(letter);
+  if (cached && Date.now() - cached.at < TTL_MS) {
+    return res.json(cached.data);
+  }
+
+  if (typeof fetch !== 'function') {
+    return res.status(500).json({
+      error: 'Global fetch is not available. Node.js >= 18 is required.',
+    });
+  }
+
+  const url = `${BASE}/search.php?f=${letter}`;
+  let upstream;
   try {
-    const letter = String(req.query.letter ?? 'a').toLowerCase();
-    if (!/^[a-z]$/.test(letter)) {
-      return res.status(400).json({
-        error: 'Query parameter "letter" must be a single character a-z.',
+    upstream = await fetch(url, {
+      signal: AbortSignal.timeout(FETCH_TIMEOUT_MS),
+      headers: {
+        Accept: 'application/json',
+        'User-Agent': USER_AGENT,
+      },
+    });
+  } catch (err) {
+    if (isTimeoutError(err)) {
+      console.error(`[cocktails] upstream timed out after ${FETCH_TIMEOUT_MS}ms: ${url}`);
+      return res.status(504).json({
+        error: `Upstream thecocktaildb timed out after ${FETCH_TIMEOUT_MS}ms.`,
       });
     }
+    console.error(`[cocktails] upstream fetch failed: ${err?.message || err}`);
+    return res.status(502).json({
+      error: 'Upstream thecocktaildb unreachable.',
+      detail: err?.message || String(err),
+    });
+  }
 
-    const cached = cache.get(letter);
-    if (cached && Date.now() - cached.at < TTL_MS) {
-      return res.json(cached.data);
-    }
+  if (!upstream.ok) {
+    console.error(`[cocktails] upstream returned ${upstream.status} for ${url}`);
+    return res.status(502).json({
+      error: 'Upstream thecocktaildb error',
+      status: upstream.status,
+    });
+  }
 
-    const upstream = await fetch(`${BASE}/search.php?f=${letter}`);
-    if (!upstream.ok) {
-      return res.status(502).json({
-        error: 'Upstream thecocktaildb error',
-        status: upstream.status,
-      });
-    }
-    const body = await upstream.json();
-    const drinks = Array.isArray(body?.drinks) ? body.drinks : [];
-    const data = drinks.map(parseDrink);
-    cache.set(letter, { at: Date.now(), data });
-    return res.json(data);
+  let body;
+  try {
+    body = await upstream.json();
   } catch (err) {
-    return next(err);
+    console.error(`[cocktails] upstream returned non-JSON body: ${err?.message || err}`);
+    return res.status(502).json({
+      error: 'Upstream thecocktaildb returned an invalid JSON response.',
+    });
   }
+
+  const drinks = Array.isArray(body?.drinks) ? body.drinks : [];
+  const data = drinks.map(parseDrink);
+  cache.set(letter, { at: Date.now(), data });
+  return res.json(data);
 });
 
 export default router;
diff --git a/tests/cocktails.test.js b/tests/cocktails.test.js
@@ -35,7 +35,7 @@ describe('GET /api/cocktails', () => {
     const res = await request(app).get('/api/cocktails?letter=m');
 
     expect(res.status).toBe(200);
-    expect(fetchMock).toHaveBeenCalledWith(
+    expect(fetchMock.mock.calls[0][0]).toBe(
       'https://www.thecocktaildb.com/api/json/v1/1/search.php?f=m',
     );
     expect(res.body).toHaveLength(1);
@@ -73,7 +73,7 @@ describe('GET /api/cocktails', () => {
     const app = createApp();
     const res = await request(app).get('/api/cocktails');
     expect(res.status).toBe(200);
-    expect(fetchMock).toHaveBeenCalledWith(
+    expect(fetchMock.mock.calls[0][0]).toBe(
       'https://www.thecocktaildb.com/api/json/v1/1/search.php?f=a',
     );
   });
@@ -99,15 +99,65 @@ describe('GET /api/cocktails', () => {
     expect(res.body.error).toMatch(/thecocktaildb/i);
   });
 
+  it('returns 504 when upstream fetch times out / is aborted', async () => {
+    const abortErr = new Error('The operation was aborted due to timeout');
+    abortErr.name = 'TimeoutError';
+    vi.stubGlobal('fetch', vi.fn().mockRejectedValue(abortErr));
+    const app = createApp();
+    const res = await request(app).get('/api/cocktails?letter=d');
+    expect(res.status).toBe(504);
+    expect(res.body.error).toMatch(/timed out/i);
+  });
+
+  it('returns 502 when upstream fetch throws a generic network error', async () => {
+    vi.stubGlobal('fetch', vi.fn().mockRejectedValue(new Error('ENOTFOUND')));
+    const app = createApp();
+    const res = await request(app).get('/api/cocktails?letter=e');
+    expect(res.status).toBe(502);
+    expect(res.body.error).toMatch(/unreachable/i);
+    expect(res.body.detail).toBe('ENOTFOUND');
+  });
+
+  it('returns 502 when upstream body is not valid JSON', async () => {
+    vi.stubGlobal(
+      'fetch',
+      vi.fn().mockResolvedValue({
+        ok: true,
+        json: async () => {
+          throw new SyntaxError('Unexpected token < in JSON');
+        },
+      }),
+    );
+    const app = createApp();
+    const res = await request(app).get('/api/cocktails?letter=f');
+    expect(res.status).toBe(502);
+    expect(res.body.error).toMatch(/invalid json/i);
+  });
+
+  it('sends a User-Agent header and an AbortSignal to the upstream', async () => {
+    const fetchMock = vi.fn().mockResolvedValue({
+      ok: true,
+      json: async () => ({ drinks: [] }),
+    });
+    vi.stubGlobal('fetch', fetchMock);
+    const app = createApp();
+    await request(app).get('/api/cocktails?letter=g');
+    expect(fetchMock).toHaveBeenCalledTimes(1);
+    const [, options] = fetchMock.mock.calls[0];
+    expect(options.headers['User-Agent']).toMatch(/api00/);
+    expect(options.headers.Accept).toBe('application/json');
+    expect(options.signal).toBeDefined();
+  });
+
   it('caches responses per letter (upstream called once for repeated requests)', async () => {
     const fetchMock = vi.fn().mockResolvedValue({
       ok: true,
       json: async () => ({ drinks: [] }),
     });
     vi.stubGlobal('fetch', fetchMock);
     const app = createApp();
-    await request(app).get('/api/cocktails?letter=c');
-    await request(app).get('/api/cocktails?letter=c');
+    await request(app).get('/api/cocktails?letter=h');
+    await request(app).get('/api/cocktails?letter=h');
     expect(fetchMock).toHaveBeenCalledTimes(1);
   });
 });