@trapi/query
Advanced tools
An tiny library which provides utility types/functions for request and response query handling.
This is a library for building JSON:API like REST-APIs.
It extends the specification format between request- & response-handling for querying and fetching data according the following query parameters:
filter: Filter the data set, according specific criteria.include Include related resources of the primary data.page Limit the number of resources returned of the whole set.fields Return only specific fields or extend the default selection.Table of Contents
npm install @trapi/query --save
The general idea is to construct a QueryRecord at the frontend side, which will be formatted to a string and passed to the backend application as URL query string.
The backend application is than always fully capable of processing the request, as far the provided query was not malformed.
Therefore, two components of this module are required in the frontend application:
QueryRecord<T>buildQuery.The method will generate the query string, which was addressed in the previous section.
In the following example a Class which will represent the structure of a User.
The getAPIUsers will handle the resource request to the resource API.
import axios from "axios";
import {QueryRecord, buildQuery} from "@trapi/query";
class Profile {
id: number;
avatar: string;
cover: string;
}
class User {
id: number;
name: string;
age?: number;
profile: Profile;
}
type ResponsePayload = {
data: User[],
meta: {
limit: number,
offset: number,
total: number
}
}
export async function getAPIUsers(record: QueryRecord<User>): Promise<ResponsePayload> {
const response = await axios.get('users' + buildQuery(record));
return response.data;
}
(async () => {
const record: QueryRecord<User> = {
page: {
limit: 20,
offset: 10
},
filter: {
id: 1 // some possible values:
// 1 | [1,2,3] | '!1' | '~1' | ['!1',2,3] | {profile: {avatar: 'xxx.jpg'}}
},
fields: ['id', 'name'], // some possible values:
// 'id' | ['id', 'name'] | '+id' | {user: ['id', 'name'], profile: ['avatar']}
sort: '-id', // some possible values:
// 'id' | ['id', 'name'] | '-id' | {id: 'DESC', profile: {avatar: 'ASC'}}
include: {
profile: true
}
};
const query = buildQuery(record);
// console.log(query);
// ?filter[id]=1&fields=id,name&page[limit]=20&page[offset]=10&sort=-id&include=profile
let response = await getAPIUsers(record);
// do somethin with the response :)
})();
The next examples will be about how to parse and validate the transformed QueryRecord<T> on the backend side.
For explanation proposes how to use the query utils, two simple entities with a simple relation between them are declared to demonstrate their usage:
import {
Entity,
PrimaryGeneratedColumn,
Column,
OneToOne,
JoinColumn
} from "typeorm";
@Entity()
export class User {
@PrimaryGeneratedColumn({unsigned: true})
id: number;
@Column({type: 'varchar', length: 30})
@Index({unique: true})
name: string;
@Column({type: 'varchar', length: 255, default: null, nullable: true})
email: string;
@OneToOne(() => Profile)
profile: Profile;
}
@Entity()
export class Profile {
@PrimaryGeneratedColumn({unsigned: true})
id: number;
@Column({type: 'varchar', length: 255, default: null, nullable: true})
avatar: string;
@Column({type: 'varchar', length: 255, default: null, nullable: true})
cover: string;
@OneToOne(() => User)
@JoinColumn()
user: User;
}
In this example typeorm is used as the object-relational mapping (ORM) and typeorm-extension is used
to apply the transformed request query parameters on the db query.
When you use express or another library, you can use the API utils accordingly to the following code snippet:
import {getRepository} from "typeorm";
import {Request, Response} from 'express';
import {
parseFields,
parseFilters,
parseIncludes,
parsePagination,
parseSort
} from "typeorm-extension";
import {
applyFieldsTransformed,
applyFiltersTransformed,
applyIncludesTransformed,
applyPaginationTransformed,
applySortTransformed
} from "typeorm-extension";
/**
* Get many users.
*
* Request example
* - url: /users?page[limit]=10&page[offset]=0&include=profile&filter[id]=1&fields[user]=id,name
*
* Return Example:
* {
* data: [
* {id: 1, name: 'tada5hi', profile: {avatar: 'avatar.jpg', cover: 'cover.jpg'}}
* ],
* meta: {
* total: 1,
* limit: 20,
* offset: 0
* }
* }
* @param req
* @param res
*/
export async function getUsers(req: Request, res: Response) {
const {fields, filter, include, page, sort} = req.query;
const repository = getRepository(User);
const query = repository.createQueryBuilder('user');
// -----------------------------------------------------
const includes = applyIncludesTransformed(query, parseIncludes(include));
applySortTransformed(query, parseSort(sort, {
queryAlias: 'user',
allowed: ['id', 'name', 'profile.id'],
// profile.id can only be used as sorting key, if the relation 'profile' is included.
includes: includes
}));
applyFieldsTransformed(query, parseFields(fields, {
queryAlias: 'user',
allowed: ['id', 'name', 'profile.id', 'profile.avatar'],
// porfile fields can only be included, if the relation 'profile' is included.
includes: includes
}));
// only allow filtering users by id & name
applyFiltersTransformed(query, parseFilters(filter, {
queryAlias: 'user',
allowed: ['id', 'name', 'profile.id'],
// porfile.id can only be used as a filter, if the relation 'profile' is included.
includes: includes
}));
// only allow to select 20 items at maximum.
const pagination = applyPaginationTransformed(query, parsePagination(page, {maxLimit: 20}));
// -----------------------------------------------------
const [entities, total] = await query.getManyAndCount();
return res.json({
data: {
data: entities,
meta: {
total,
...pagination
}
}
});
}
This can even be much easier, because typeorm-extension uses @trapi/query under the hood ⚡.
This is much shorter than the previous example and has less direct dependencies 😁.
import {getRepository} from "typeorm";
import {Request, Response} from 'express';
import {
applyFields,
applyFilters,
applyIncludes,
applyPagination,
applySort
} from "typeorm-extension";
/**
* Get many users.
*
* Request example
* - url: /users?page[limit]=10&page[offset]=0&include=profile&filter[id]=1&fields[user]=id,name
*
* Return Example:
* {
* data: [
* {id: 1, name: 'tada5hi', profile: {avatar: 'avatar.jpg', cover: 'cover.jpg'}}
* ],
* meta: {
* total: 1,
* limit: 20,
* offset: 0
* }
* }
* @param req
* @param res
*/
export async function getUsers(req: Request, res: Response) {
const {fields, filter, include, page, sort} = req.query;
const repository = getRepository(User);
const query = repository.createQueryBuilder('user');
// -----------------------------------------------------
const includes = applyIncludes(query, include, {
queryAlias: 'user',
allowed: ['profile']
});
applySort(query, sort, {
queryAlias: 'user',
allowed: ['id', 'name', 'profile.id'],
// profile.id can only be used as sorting key, if the relation 'profile' is included.
includes: includes
});
applyFields(query, fields, {
queryAlias: 'user',
allowed: ['id', 'name', 'profile.id', 'profile.avatar'],
// porfile fields can only be included, if the relation 'profile' is included.
includes: includes
})
// only allow filtering users by id & name
applyFilters(query, filter, {
queryAlias: 'user',
allowed: ['id', 'name', 'profile.id'],
// porfile.id can only be used as a filter, if the relation 'profile' is included.
includes: includes
});
// only allow to select 20 items at maximum.
const pagination = applyPagination(query, page, {maxLimit: 20});
// -----------------------------------------------------
const [entities, total] = await query.getManyAndCount();
return res.json({
data: {
data: entities,
meta: {
total,
...pagination
}
}
});
}
type FieldsOptions = {
aliasMapping?: Record<string, string>,
allowed?: Record<string, string[]> | string[],
includes?: IncludesTransformed,
queryAlias?: string
};
export type FiltersOptions = {
aliasMapping?: Record<string, string>,
allowed?: string[],
includes?: IncludesTransformed,
queryAlias?: string,
queryBindingKeyFn?: (key: string) => string
};
type IncludesOptions = {
aliasMapping?: Record<string, string>,
allowed?: string[],
includeParents?: boolean | string[] | string
queryAlias?: string,
};
type PaginationOptions = {
maxLimit?: number
};
type SortOptions = {
aliasMapping?: Record<string, string>,
allowed?: string[] | string[][],
includes?: IncludesTransformed,
queryAlias?: string
};
export type AliasFields = {
addFields?: boolean,
alias?: string,
fields: string[]
};
export type FieldsTransformed = AliasFields[];
export type FilterTransformed = {
statement: string,
binding: Record<string, any>
};
export type FiltersTransformed = FilterTransformed[];
export type IncludeTransformed = {
property: string,
alias: string
};
export type IncludesTransformed = IncludeTransformed[];
export type PaginationTransformed = {
limit?: number,
offset?: number
};
export type SortDirection = 'ASC' | 'DESC';
export type SortTransformed = Record<string, SortDirection>;
FAQs
A tiny library which provides utility types/functions for request and response query handling.
The npm package @trapi/query receives a total of 5,667 weekly downloads. As such, @trapi/query popularity was classified as popular.
We found that @trapi/query demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
MITRE's 2024 CWE Top 25 highlights critical software vulnerabilities like XSS, SQL Injection, and CSRF, reflecting shifts due to a refined ranking methodology.
Security News
In this segment of the Risky Business podcast, Feross Aboukhadijeh and Patrick Gray discuss the challenges of tracking malware discovered in open source softare.
Research
Security News
A threat actor's playbook for exploiting the npm ecosystem was exposed on the dark web, detailing how to build a blockchain-powered botnet.