This is a plugin for node-data-cleaner for cleaning Koa.js requests (or more precisely, for koa-body@4 requests).
It will return cleaned body and files, and throw a Koa HTTP error response with { "errors": ... } if there are validation errors.
The cleaner is configured with the following schema options:
body: body cleaner (optional)files: files cleaner (optional)errorCode: HTTP status code for the failed validation response (default: 200)
Client-side form:
<template>
<form ref="form" @submit.prevent="submit">
<div>Login: <input name="username" required /></div>
<div>Password: <input name="password" type="password" required /></div>
<div>Company name: <input name="company.name" required /></div>
<div>Domain: <input name="company.domain" required />.mysaas.com</div>
<div><button>Register</button></div>
<div>errors = {{ errors }}</div>
</form>
</template>
<script>
export default {
data() {
return {
errors: null,
}
},
methods: {
async submit() {
this.errors = null
const { data } = await this.$axios.post(
"/register",
new FormData(this.$refs.form)
)
if (data.errors) {
this.errors = data.errors
} else {
await this.$store.dispatch("login", data.user)
}
},
},
}
</script>Koa backend using data-cleaner-koa:
import { clean } from 'data-cleaner'
import { cleanKoa } from 'data-cleaner-koa'
const cleanRegister = cleanKoa({
body: clean.object({
parseKeys: true,
fields: {
username: clean.string({
async clean (username: string) {
const user = await User.query().select('id').findOne({ username })
if (user) {
throw new clean.ValidationError('This username is not available.')
}
return username
},
}),
password: clean.string(),
company: clean.object({
fields: {
name: clean.string(),
domain: clean.string({
async clean (domain: string) {
domain = domain.toLowerCase()
if (
domain.match(/^(www|mail|admin)/) ||
await Company.query().select('id').findOne({ domain })
) {
throw new clean.ValidationError('This domain is not available.')
}
return domain
},
}),
},
}),
},
}),
})
router.post('/register', async ctx => {
const { body } = await cleanRegister(ctx)
const user = await User.query().upsertGraphAndFetch({
username: body.username, // will be unique (*)
password: body.password,
company: {
name: body.company.name,
domain: body.company.domain, // will be lowercase
},
}),
ctx.body = user
})- NOTE: There is a race condition during unique username check, it's not handled for simplicity. For production use, wrap everything into a database transaction.
In the example above, cleanKoa will accept optional return value interface for body fields:
interface RegisterFields {
username: string
password: string
company: {
name: string
domain: string
}
}
const cleanRegister = cleanKoa<RegisterFields>({
body: clean.object({ ... }),
})
router.get(async ctx => {
const { body } = await cleanRegister(ctx) // body is a RegisterFields object
})The files are currently untyped.
It's possible to use clean.koa instead of cleanKoa:
// Somewhere during app init:
import "data-cleaner-koa/register"
// Later use clean.koa:
import { clean } from "data-cleaner"
const mycleaner = clean.koa({
body: clean.object.fields({
username: clean.string(),
}),
})Note that this probably breaks tree shaking.