2022-05-11 22:47:31 +00:00
|
|
|
package middleware
|
|
|
|
|
|
|
|
import (
|
|
|
|
"context"
|
|
|
|
"encoding/json"
|
|
|
|
"net/http"
|
|
|
|
|
|
|
|
c "npm/internal/api/context"
|
|
|
|
h "npm/internal/api/http"
|
|
|
|
|
|
|
|
"github.com/qri-io/jsonschema"
|
2023-02-24 07:19:07 +00:00
|
|
|
"github.com/rotisserie/eris"
|
2022-05-11 22:47:31 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
// CheckRequestSchema checks the payload against schema
|
|
|
|
func CheckRequestSchema(ctx context.Context, schemaData string, payload []byte) ([]jsonschema.KeyError, error) {
|
|
|
|
// Create root schema
|
|
|
|
rs := &jsonschema.Schema{}
|
|
|
|
if err := json.Unmarshal([]byte(schemaData), rs); err != nil {
|
2023-02-24 07:19:07 +00:00
|
|
|
return nil, eris.Wrapf(err, "Schema Fatal: %v", err)
|
2022-05-11 22:47:31 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
// Validate it
|
|
|
|
schemaErrors, jsonError := rs.ValidateBytes(ctx, payload)
|
|
|
|
if jsonError != nil {
|
|
|
|
return nil, jsonError
|
|
|
|
}
|
|
|
|
|
|
|
|
return schemaErrors, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// EnforceRequestSchema accepts a schema and validates the request body against it
|
|
|
|
func EnforceRequestSchema(schemaData string) func(http.Handler) http.Handler {
|
|
|
|
return func(next http.Handler) http.Handler {
|
|
|
|
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
|
|
|
|
|
|
|
// Get content from context
|
|
|
|
bodyBytes, _ := r.Context().Value(c.BodyCtxKey).([]byte)
|
|
|
|
|
|
|
|
schemaErrors, err := CheckRequestSchema(r.Context(), schemaData, bodyBytes)
|
|
|
|
if err != nil {
|
|
|
|
h.ResultErrorJSON(w, r, http.StatusInternalServerError, err.Error(), nil)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
if len(schemaErrors) > 0 {
|
|
|
|
h.ResultSchemaErrorJSON(w, r, schemaErrors)
|
|
|
|
return
|
|
|
|
}
|
|
|
|
|
|
|
|
// All good
|
|
|
|
next.ServeHTTP(w, r)
|
|
|
|
})
|
|
|
|
}
|
|
|
|
}
|