Merge pull request #5 from foyzulkarim/feature/03-request-validation

foyzulkarim · web-flow · commit d59c4e56bddc · 2024-04-08T15:57:10.000+10:00
[Refactor, Test] Enhance Logging, Testing, and Request Validation
diff --git a/package.json b/package.json
@@ -9,7 +9,7 @@
   },
   "scripts": {
     "test": "jest",
-    "test:watch": "jest --watch",
+    "test:watch": "jest --watch --verbose",
     "start": "nodemon src/start.js"
   },
   "keywords": [],
diff --git a/src/domains/product/api.js b/src/domains/product/api.js
@@ -1,47 +1,95 @@
 const express = require('express');
 const logger = require('../../libraries/log/logger');
+const { AppError } = require('../../libraries/error-handling/AppError');
 
 const {
   createProduct,
-  getAllProducts,
+  filterProducts,
   getProductById,
   updateProductById,
   deleteProductById,
 } = require('./service');
 
+const { createSchema, updateSchema, idSchema } = require('./request');
+const { validateRequest } = require('../../middlewares/request-validate');
+const { logRequest } = require('../../middlewares/log');
+
 // CRUD for product entity
 const routes = () => {
   const router = express.Router();
-
-  router.get('/', async (req, res, next) => {
-    logger.info('GET /api/v1/products', { query: req.query });
+  logger.info('Setting up product routes');
+  router.get('/', logRequest({}), async (req, res, next) => {
     try {
-      const products = await getAllProducts();
+      // TODO: Add pagination and filtering
+      const products = await filterProducts(req.query);
       res.json(products);
     } catch (error) {
       next(error);
     }
   });
 
-  router.post('/', async (req, res) => {
-    logger.info('POST /api/v1/products', { body: req.body });
-    const product = await createProduct(req.body);
-    res.status(201).json(product);
-  });
+  router.post(
+    '/',
+    logRequest({}),
+    validateRequest({ schema: createSchema }),
+    async (req, res, next) => {
+      try {
+        const product = await createProduct(req.body);
+        res.status(201).json(product);
+      } catch (error) {
+        next(error);
+      }
+    }
+  );
 
-  router.get('/:id', async (req, res) => {
-    logger.info('GET /api/v1/products/:id', { params: req.params });
-    const product = await getProductById(req.params.id);
-    res.status(200).json(product);
-  });
+  router.get(
+    '/:id',
+    logRequest({}),
+    validateRequest({ schema: idSchema, isParam: true }),
+    async (req, res, next) => {
+      try {
+        const product = await getProductById(req.params.id);
+        if (!product) {
+          throw new AppError('Product not found', 'Product not found', 404);
+        }
+        res.status(200).json(product);
+      } catch (error) {
+        next(error);
+      }
+    }
+  );
 
-  router.put('/:id', async (req, res) => {
-    res.json({ status: 'UP' });
-  });
+  router.put(
+    '/:id',
+    logRequest({}),
+    validateRequest({ schema: idSchema, isParam: true }),
+    validateRequest({ schema: updateSchema }),
+    async (req, res, next) => {
+      try {
+        const product = await updateProductById(req.params.id, req.body);
+        if (!product) {
+          throw new AppError('Product not found', 'Product not found', 404);
+        }
+        res.status(200).json(product);
+      } catch (error) {
+        next(error);
+      }
+    }
+  );
 
-  router.delete('/:id', async (req, res) => {
-    res.json({ status: 'UP' });
-  });
+  router.delete(
+    '/:id',
+    logRequest({}),
+    validateRequest({ schema: idSchema, isParam: true }),
+    async (req, res, next) => {
+      try {
+        await deleteProductById(req.params.id);
+        res.status(204).json({ message: 'Product deleted' });
+      } catch (error) {
+        next(error);
+      }
+    }
+  );
 
   return router;
 };
diff --git a/src/domains/product/request.js b/src/domains/product/request.js
@@ -0,0 +1,29 @@
+const Joi = require('joi');
+const mongoose = require('mongoose');
+
+const createSchema = Joi.object().keys({
+  name: Joi.string().required(),
+  price: Joi.number().required(),
+  description: Joi.string().optional(),
+  inStock: Joi.boolean().optional(),
+});
+
+const updateSchema = Joi.object().keys({
+  name: Joi.string(),
+  price: Joi.number(),
+  description: Joi.string(),
+  inStock: Joi.boolean(),
+});
+
+const idSchema = Joi.object().keys({
+  id: Joi.string()
+    .custom((value, helpers) => {
+      if (!mongoose.Types.ObjectId.isValid(value)) {
+        return helpers.error('any.invalid');
+      }
+      return value;
+    }, 'ObjectId validation')
+    .required(),
+});
+
+module.exports = { createSchema, updateSchema, idSchema };
diff --git a/src/domains/product/service.js b/src/domains/product/service.js
@@ -1,3 +1,5 @@
+const logger = require('../../libraries/log/logger');
+
 const Product = require('./schema');
 const { AppError } = require('../../libraries/error-handling/AppError');
 
@@ -6,18 +8,34 @@ const createProduct = async (data) => {
   try {
     const product = new Product(data);
     const savedProduct = await product.save();
+    logger.info('createProduct(): Product created', { id: savedProduct._id });
     return savedProduct;
   } catch (error) {
+    logger.error('createProduct(): Failed to create product', error);
     throw new AppError('Failed to create product', error.message);
   }
 };
 
 // Get all products
-const getAllProducts = async () => {
+const filterProducts = async (query) => {
   try {
-    const products = await Product.find();
+    const { keyword } = query ?? {};
+    // search by keyword on name and description fields
+    const filter = {};
+    if (keyword) {
+      filter.$or = [
+        { name: { $regex: keyword, $options: 'i' } },
+        { description: { $regex: keyword, $options: 'i' } },
+      ];
+    }
+    const products = await Product.find(filter);
+    logger.info('getAllProducts(): Products fetched', {
+      filter,
+      count: products.length,
+    });
     return products;
   } catch (error) {
+    logger.error('getAllProducts(): Failed to get products', error);
     throw new AppError('Failed to get products', error.message, 400);
   }
 };
@@ -26,8 +44,10 @@ const getAllProducts = async () => {
 const getProductById = async (id) => {
   try {
     const product = await Product.findById(id);
+    logger.info('getProductById(): Product fetched', { id });
     return product;
   } catch (error) {
+    logger.error('getProductById(): Failed to get product', error);
     throw new AppError('Failed to get product', error.message);
   }
 };
@@ -36,8 +56,10 @@ const getProductById = async (id) => {
 const updateProductById = async (id, data) => {
   try {
     const product = await Product.findByIdAndUpdate(id, data, { new: true });
+    logger.info('updateProductById(): Product updated', { id });
     return product;
   } catch (error) {
+    logger.error('updateProductById(): Failed to update product', error);
     throw new AppError('Failed to update product', error.message);
   }
 };
@@ -46,15 +68,17 @@ const updateProductById = async (id, data) => {
 const deleteProductById = async (id) => {
   try {
     await Product.findByIdAndDelete(id);
+    logger.info('deleteProductById(): Product deleted', { id });
     return true;
   } catch (error) {
+    logger.error('deleteProductById(): Failed to delete product', error);
     throw new AppError('Failed to delete product', error.message);
   }
 };
 
 module.exports = {
   createProduct,
-  getAllProducts,
+  filterProducts,
   getProductById,
   updateProductById,
   deleteProductById,
diff --git a/src/middlewares/log/index.js b/src/middlewares/log/index.js
@@ -0,0 +1,41 @@
+const logger = require('../../libraries/log/logger');
+
+// Middleware to log the request.
+// Logic: by default it will log req.params and req.query if they exist.
+// for the req.body, if no specific fields are provided in the fields, it will log the entire body.
+const logRequest = ({ fields = {} }) => {
+  return (req, res, next) => {
+    const logData = {};
+    if (req.params) {
+      logData.params = req.params;
+    }
+    if (req.query) {
+      logData.query = req.query;
+    }
+    if (req.body) {
+      if (fields && fields.length) {
+        fields.forEach((field) => {
+          logData[field] = req.body[field];
+        });
+      } else {
+        logData.body = req.body;
+      }
+    }
+    logger.info(`${req.method} ${req.originalUrl}`, logData);
+
+    // Store the original end method
+    const oldEnd = res.end;
+    // Override the end method
+    res.end = function (...args) {
+      // Log the status code after the original end method is called
+      logger.info(`${req.method} ${req.originalUrl}`, {
+        statusCode: res.statusCode,
+      });
+      oldEnd.apply(this, args);
+    };
+
+    next();
+  };
+};
+
+module.exports = { logRequest };
diff --git a/src/middlewares/request-validate/index.js b/src/middlewares/request-validate/index.js
@@ -0,0 +1,23 @@
+const logger = require('../../libraries/log/logger');
+
+function validateRequest({ schema, isParam = false }) {
+  return (req, res, next) => {
+    const input = isParam ? req.params : req.body;
+    const validationResult = schema.validate(input, { abortEarly: false });
+
+    if (validationResult.error) {
+      logger.error(`${req.method} ${req.originalUrl} Validation failed`, {
+        errors: validationResult.error.details.map((detail) => detail.message),
+      });
+      // Handle validation error
+      return res.status(400).json({
+        errors: validationResult.error.details.map((detail) => detail.message),
+      });
+    }
+
+    // Validation successful - proceed
+    next();
+  };
+}
+
+module.exports = { validateRequest };
diff --git a/src/server.js b/src/server.js
@@ -20,7 +20,7 @@ const createExpressApp = () => {
 
   expressApp.use((req, res, next) => {
     // Log an info message for each incoming request
-    logger.info(`Received a ${req.method} request for ${req.url}`);
+    logger.info(`${req.method} ${req.originalUrl}`);
     next();
   });
 
@@ -69,7 +69,6 @@ function defineErrorHandlingMiddleware(expressApp) {
         error.isTrusted = true;
       }
     }
-    console.log('error', error);
     
     errorHandler.handleError(error);
     res.status(error?.HTTPStatus || 500).end();
diff --git a/test/app.test.js b/test/app.test.js
@@ -4,15 +4,14 @@ const { createExpressApp } = require('../src/server');
 
 let app = null;
 beforeAll(async () => {
-  console.log('1 - beforeAll');
   app = await createExpressApp();
 });
 afterAll(async () => {
-  console.log('1 - afterAll');
   app = null;
 });
-beforeEach(async () => console.log('1 - beforeEach'));
-afterEach(async () => console.log('1 - afterEach'));
+
+// beforeEach(async () => console.log('1 - beforeEach'));
+// afterEach(async () => console.log('1 - afterEach'));
 
 // Test App module
 // Test API up and running
diff --git a/test/domains/product.test.js b/test/domains/product.test.js
diff --git a/test/globalSetup.js b/test/globalSetup.js
diff --git a/test/globalTeardown.js b/test/globalTeardown.js
diff --git a/test/setupFile.js b/test/setupFile.js

Original file line number	Diff line number	Diff line change
`@@ -20,7 +20,7 @@ const createExpressApp = () => {`
`20`	`20`
`21`	`21`	`expressApp.use((req, res, next) => {`
`22`	`22`	`// Log an info message for each incoming request`
`23`		- logger.info(`Received a ${req.method} request for ${req.url}`);
	`23`	+ logger.info(`${req.method} ${req.originalUrl}`);
`24`	`24`	`next();`
`25`	`25`	`});`
`26`	`26`
`@@ -69,7 +69,6 @@ function defineErrorHandlingMiddleware(expressApp) {`
`69`	`69`	`error.isTrusted = true;`
`70`	`70`	`}`
`71`	`71`	`}`
`72`		`- console.log('error', error);`
`73`	`72`
`74`	`73`	`errorHandler.handleError(error);`
`75`	`74`	`res.status(error?.HTTPStatus \|\| 500).end();`