feat(code-gen): add stricter validation on R.params() and R.query()

dirkdev98 · dirkdev98 · commit 21c9b711506c · 2023-05-14T17:48:20.000+02:00
Params where quite strict already. Just making sure to define the behavior on nested objects, arrays, etc which was undefined behavior up until now.
diff --git a/packages/code-gen/src/generate.js b/packages/code-gen/src/generate.js
@@ -43,6 +43,7 @@ import { objectExpansionExecute } from "./processors/object-expansion.js";
 import { routeInvalidationsCheck } from "./processors/route-invalidation.js";
 import { routeStructureCreate } from "./processors/route-structure.js";
 import { routeTrieBuild } from "./processors/route-trie.js";
+import { routeValidation } from "./processors/route-validation.js";
 import { structureNameChecks } from "./processors/structure-name-checks.js";
 import {
   structureCopyAndSort,
@@ -141,6 +142,7 @@ export function generateExecute(generator, options) {
   crudValidation(generateContext);
   crudTypesCreate(generateContext);
 
+  routeValidation(generateContext);
   routeInvalidationsCheck(generateContext);
   routeStructureCreate(generateContext);
   routeTrieBuild(generateContext);
diff --git a/packages/code-gen/src/processors/route-validation.d.ts b/packages/code-gen/src/processors/route-validation.d.ts
@@ -0,0 +1,9 @@
+/**
+ * Various route validation related things
+ *
+ * @param {import("../generate").GenerateContext} generateContext
+ */
+export function routeValidation(
+  generateContext: import("../generate").GenerateContext,
+): void;
+//# sourceMappingURL=route-validation.d.ts.map
diff --git a/packages/code-gen/src/processors/route-validation.js b/packages/code-gen/src/processors/route-validation.js
@@ -0,0 +1,134 @@
+import { AppError, isNil } from "@compas/stdlib";
+import {
+  errorsThrowCombinedError,
+  stringFormatNameForError,
+} from "../utils.js";
+import { structureRoutes } from "./routes.js";
+import { structureResolveReference } from "./structure.js";
+import { typeDefinitionTraverse } from "./type-definition-traverse.js";
+
+/**
+ * Various route validation related things
+ *
+ * @param {import("../generate").GenerateContext} generateContext
+ */
+export function routeValidation(generateContext) {
+  /** @type {import("@compas/stdlib").AppError[]} */
+  const errors = [];
+
+  for (const route of structureRoutes(generateContext)) {
+    try {
+      routeValidationSimpleQueryAndParamTypes(generateContext, route, "params");
+      routeValidationSimpleQueryAndParamTypes(generateContext, route, "query");
+    } catch (/** @type {any} */ e) {
+      errors.push(e);
+    }
+  }
+
+  errorsThrowCombinedError(errors);
+}
+
+/**
+ * @param {import("../generate").GenerateContext} generateContext
+ * @param {import("../../types/advanced-types").NamedType<import("../generated/common/types").StructureRouteDefinition>} route
+ * @param {"query"|"params"} subType
+ */
+function routeValidationSimpleQueryAndParamTypes(
+  generateContext,
+  route,
+  subType,
+) {
+  if (isNil(route[subType])) {
+    return;
+  }
+
+  const resolvedType = structureResolveReference(
+    generateContext.structure,
+
+    // @ts-expect-error
+    route[subType],
+  );
+
+  if (resolvedType.type !== "object") {
+    throw AppError.serverError({
+      message: `${stringFormatNameForError(route)} ${subType} is a '${
+        resolvedType.type
+      }'. Only 'T.object()' or a reference to an object is allowed.`,
+    });
+  }
+
+  const allowedTypes = [
+    "any",
+    "anyOf",
+    "boolean",
+    "date",
+    "number",
+    "reference",
+    "string",
+    "uuid",
+  ];
+
+  for (const key of Object.keys(resolvedType.keys ?? {})) {
+    routeValidationConformAllowedTypes(
+      generateContext,
+      route,
+      resolvedType.keys[key],
+      allowedTypes,
+      new Set(),
+    );
+  }
+}
+
+/**
+ * Recursively check if field only uses 'allowedTypes'.
+ *
+ * @param {import("../generate").GenerateContext} generateContext
+ * @param {import("../../types/advanced-types").NamedType<import("../generated/common/types").StructureRouteDefinition>} route
+ * @param {import("../generated/common/types.js").StructureTypeSystemDefinition} field
+ * @param {string[]} allowedTypes
+ * @param {Set<any>} handledRefs
+ */
+function routeValidationConformAllowedTypes(
+  generateContext,
+  route,
+  field,
+  allowedTypes,
+  handledRefs,
+) {
+  typeDefinitionTraverse(
+    field,
+    (type) => {
+      if (!allowedTypes.includes(type.type)) {
+        throw AppError.serverError({
+          message: `Found an invalid type '${
+            type.type
+          }' used in the params or query of ${stringFormatNameForError(route)}`,
+        });
+      }
+
+      if (type.type === "reference") {
+        const resolvedRef = structureResolveReference(
+          generateContext.structure,
+          type,
+        );
+
+        if (!handledRefs.has(resolvedRef)) {
+          handledRefs.add(resolvedRef);
+
+          routeValidationConformAllowedTypes(
+            generateContext,
+            route,
+
+            // @ts-expect-error
+            resolvedRef,
+            allowedTypes,
+            handledRefs,
+          );
+        }
+      }
+    },
+    {
+      isInitialType: true,
+    },
+  );
+}
diff --git a/packages/code-gen/src/processors/route-validation.test.js b/packages/code-gen/src/processors/route-validation.test.js
@@ -0,0 +1,96 @@
+import { mainTestFn, test } from "@compas/cli";
+import {
+  testGeneratorError,
+  testGeneratorStaticFiles,
+} from "../../test/testing.js";
+
+mainTestFn(import.meta);
+
+test("code-gen/processors/route-validation", (t) => {
+  t.test("query validation - fail top level", (t) => {
+    testGeneratorError(
+      t,
+      {
+        partialError:
+          "Only 'T.object()' or a reference to an object is allowed",
+      },
+      (T) => {
+        const R = T.router("/");
+
+        return [R.get("/").query([true])];
+      },
+    );
+  });
+
+  t.test("param validation - fail nested", (t) => {
+    testGeneratorError(
+      t,
+      {
+        partialError:
+          "Found an invalid type 'array' used in the params or query of ('app', 'get')",
+      },
+      (T) => {
+        const R = T.router("/");
+
+        return [
+          R.get("/:foo").params({
+            foo: [true],
+          }),
+        ];
+      },
+    );
+  });
+
+  t.test("query validation - fail nested reference", (t) => {
+    testGeneratorError(
+      t,
+      {
+        partialError: "Found an invalid type 'object' used",
+      },
+      (T) => {
+        const R = T.router("/");
+
+        return [
+          R.get("/").query({
+            obj: T.object("query").keys({}),
+          }),
+        ];
+      },
+    );
+  });
+
+  t.test("route validation - success", (t) => {
+    testGeneratorStaticFiles(t, {}, (T) => {
+      const R = T.router("/");
+
+      return [
+        R.get("/none", "none"),
+        R.get("/empty", "empty").params({}).query({}),
+
+        R.get("/bool/:foo", "paramBoolean").params({
+          foo: T.bool(),
+        }),
+        R.get("/date/:foo", "paramDate").params({
+          foo: T.date(),
+        }),
+        R.get("/number/:foo", "paramNumber").params({
+          foo: T.number(),
+        }),
+        R.get("/string/:foo", "paramString").params({
+          foo: T.string(),
+        }),
+        R.get("/uuid/:foo", "paramUuid").params({
+          foo: T.uuid(),
+        }),
+
+        R.get("/query", "queryParams").query({
+          foo: T.bool("namedBool"),
+          date: T.date(),
+          str: T.string(),
+        }),
+      ];
+    });
+
+    t.pass();
+  });
+});
