Skip to content

divyeshpujari/mongodb-sanitize

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

21 Commits

.circleci

.circleci

 
 

.github/ISSUE_TEMPLATE

.github/ISSUE_TEMPLATE

 
 

.eslintignore

.eslintignore

 
 

.eslintrc.json

.eslintrc.json

 
 

.gitignore

.gitignore

 
 

.npmignore

.npmignore

 
 

.nycrc.yaml

.nycrc.yaml

 
 

.prettierignore

.prettierignore

 
 

.prettierrc

.prettierrc

 
 

CHANGELOG.md

CHANGELOG.md

 
 

CODE-OF-CONDUCT.md

CODE-OF-CONDUCT.md

 
 

CONTRIBUTING.md

CONTRIBUTING.md

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

SECURITY.md

SECURITY.md

 
 

index.d.ts

index.d.ts

 
 

index.js

index.js

 
 

index.test-d.ts

index.test-d.ts

 
 

package-lock.json

package-lock.json

 
 

package.json

package.json

 
 

test.js

test.js

 
 

Repository files navigation

mongodb-sanitize

NPM

npm node-current GitHub branch checks state npm GitHub issues NPM dependencies Status devDependencies Status npm bundle size GitHub contributors

This repository provides a functionality to sanitize the data that going to use for mongoDb operation. This will make sure that, incoming request not includes the bad/wrong formatted data which break or security breach for mongoDb. In short, it's provide some amount of security at code level to avoid any injection over mongoDb.

How to install

npm i --save mongodb-sanitize

or

yarn add mongodb-sanitize

Or CDN Reference

How to use as middleware

Set as the middleware like below example: By default this package will sanitize the data for req.body, req.params, req.query

const express = require('express');
const mongodbSanitize = require('mongodb-sanitize');

const app = express();

app.use(mongodbSanitize());

With typescript

import express from 'express';
import {sanitizeMiddleWare} from 'mongodb-sanitize';

const app = express();

app.use(sanitizeMiddleWare());

If you want to sanitize on custom fields and options then you can configure the middleware as below:

const express = require('express');
const mongodbSanitize = require('mongodb-sanitize');

const app = express();

app.use(mongodbSanitize(['body', 'query'], {replaceBy: '#'}));

With typescript

import express from 'express';
import {sanitizeMiddleWare} from 'mongodb-sanitize';

const app = express()

app.use(sanitizeMiddleWare(['body'], {replaceBy: '#'}))

Note:- Here, sanitize operation should be performed on only two fields(body, query) of request.

How to use as separate method

Here, you can see the example that how to use sanitize method separately without options

const { sanitize } = require('mongodb-sanitize');

const sanitizedObject = sanitize(<OBJECT_OR_ARRAY_TO_SANITIZE>);

With typescript

import {sanitize} from 'mongodb-sanitize';

const sanitizedObject:any = sanitize(<OBJECT_OR_ARRAY_TO_SANITIZE>);

With options

const { sanitize } = require('mongodb-sanitize');

const sanitizedObject = sanitize(<SOME_OBJECT_OR_ARRAY>, {replaceBy: <string>});

With typescript

import {sanitize} from 'mongodb-sanitize';

const sanitizedObject:any = sanitize(<OBJECT_OR_ARRAY_TO_SANITIZE>, {replaceBy: <string>});

How to use isSanitized method

isSanitized method used to check that is the pass object/array in argument is sanitize or not for mongodb operations.

const { isSanitized } = require('mongodb-sanitize');

const isSanitize = isSanitized(<OBJECT_OR_ARRAY_TO_SANITIZE>);

With typescript

import {isSanitized} from 'mongodb-sanitize';

const isSanitize: boolean = isSanitized(<OBJECT_OR_ARRAY_TO_SANITIZE>);

About

This repository provide a functionality to sanitize the data that going to use for Insert into Mongodb collection, use for an query on a mongodb.

Resources

Readme

License

MIT license

Code of conduct

Code of conduct

Security policy

Security policy
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 4

mongodb-sanitize v2.2.0 Latest
Jun 18, 2021
+ 3 releases

Packages

No packages published

Contributors 2

  •  
  •  

Languages