New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
express-zod-api
Advanced tools
express-zod-api - npm Package Versions
Changelog
v2.3.0
- Changes and improvements of the generated Swagger / OpenAPI documentation:
ZodArray: # z.array()
before:
type: array
items:
type: type # type of the array items
after:
type: array
items:
type: type
minItems: value # optional, when z.array().min(value)
maxItems: value # optional, when z.array().max(value)
ZodTuple: # z.tuple()
before:
error: unsupported
after:
type: array
items:
oneOf: [] # schemas of the tuple items
minItems: value # number of items in the tuple
maxItems: value # number of items in the tuple
description: "0: type, 1: type, etc"
Changelog
v2.2.0
- Changes and improvements of the generated Swagger / OpenAPI documentation:
ZodBigInt: # z.bigint()
before:
type: integer
format: int64
after:
type: integer
format: bigint
ZodNumber: # z.number()
before:
type: number
after:
type: number | integer # when z.number().int()
format: double | int64 # when z.number().int()
# MIN_VALUE or MIN_SAFE_INTEGER of Number or z.number().min(value)
minimum: 5e-324 | -9007199254740991 | value
# MAX_VALUE or MAX_SAFE_INTEGER of Number or z.number().max(value)
maximum: 1.7976931348623157e+308 | 9007199254740991 | value
# Taking into account z.number().min(), .max(), .positive(), .nonnegative(), etc
exclusiveMinimum: true | false
exclusiveMaximum: true | false
ZodString: # z.string()
before:
type: string
after:
type: string
minLength: value # optional, when z.string().min(value)
maxLength: value # optional, when z.string().max(value)
format: email | uuid | url # when z.string().email(), .uuid(), .url()
pattern: /your regular expression/ # when z.string().regex(value)
- Since
z.number().int()is a JS Number which is neitherint32norint64but ratherint53, I made a decision to describe it asint64predefinedformatwith an indispensable minimum and maximum values.
Changelog
v2.1.0
- Zod version is 3.7.1.
- New response schema type
ZodFilecan be created usingz.file(). It has two refinements:.binary()and.base64()which also reflected in the generated Swagger / OpenAPI documentation. You can use it instead ofz.string()withcreateApiResponse():
// before
const fileStreamingEndpointsFactoryBefore = new EndpointsFactory(
createResultHandler({
getPositiveResponse: () => createApiResponse(z.string(), "image/*"),
// ...,
}),
);
// after
const fileStreamingEndpointsFactoryAfter = new EndpointsFactory(
createResultHandler({
getPositiveResponse: () => createApiResponse(z.file().binary(), "image/*"),
// ...,
}),
);
- Please do NOT use
z.file()within theEndpointinput / output object schemas.
Changelog
v2.0.0
- Warning: There are breaking changes described below.
In general, if you used the
defaultResultHandlerbefore, then you won't have to change much of code. - Motivation. I really like the first version of the library for its simplicity and elegance,
but there is one imperfection in it. The available methods and type helpers do not allow to disclose the complete
response of the endpoint, including the specification of a successful and error response for which the
ResultHandleris responsible. So I decided to fix it, although it made the implementation somewhat more complicated, but I found it important. However, it brought a number of benefits, which are also described below. - Node version required: at least
10.0.0and the library target now isES6. - Type
ResultHandleris no longer exported, please usecreateResultHandler()ordefaultResultHandler. - The optional property
resultHandlerofConfigTypehas been replaced witherrorHandler. - The
setResultHandler()method ofEndpointsFactoryclass has been removed. TheResultHandlerDefinitionhas to be specified as an argument ofEndpointsFactoryconstructor. You can usedefaultResultHandlerorcreateResultHandler()for this, or you can usedefaultEndpointsFactory. - Added the Security policy.
- Some private methods have been made "entirely private" using the new typescript hashtag syntax.
- New methods of
EndpointclassgetPositiveResponseSchema()andgetNegativeResponseSchema()return the complete response of the endpoint taking into account theResultHandlerDefinitionschemas. New methods:getPositiveMimeTypes()andgetNegativeMimeTypes()return the array of mime types. - New type helping utility:
EndpointResponse<E extends AbstractEndpoint>to be used instead ofEndpointOutputreturns the complete type of the endpoint response including both positive and negative cases. - Fixed
EndpointOutput<>type helper for the non-object response type in theResultHandlerDefinition. - Zod version is 3.5.1.
- Better examples including a custom
ResultHandlerand a file download. - Obtaining the OpenAPI / Swagger specification has been simplified: now you can call
getSpecAsYaml()method directly onOpenAPIclass instance. There is also a new optionerrorResponseDescription. - Fixed a bug of incorrect
getPositiveMimeTypes()andgetNegativeMimeTypes()usage in Swagger docs generator. - OpenAPI / Swagger specification no longer uses references for schemas and parameters, so they are inline now.
Instead of
defaultentry inresponsesthere are HTTP status codes200and400that represent positive and negative responses accordingly. Response schemas are now complete as well. - For creating your own
ResultHandlerDefinitionplease usecreateResultHandler(). It also requirescreateApiResponse()to be used that takes a response schema and optional mime types as arguments. The endpoint output should be wrapped inmarkOutput(). So far this is the only way I have come up with to facilitate type inference with essentially double nesting of generic types. Typescript does not yet support such features asMyGenericType<A<B>>.
// before
export const endpointsFactoryBefore = new EndpointsFactory();
// after
export const endpointsFactoryAfter = new EndpointsFactory(defaultResultHandler);
// which is the same as
import { defaultEndpointsFactory } from "express-zod-api";
// before
resultHandler: ResultHandler; // optional
// after
errorHandler: ResultHandlerDefinition<any, any>; // optional, default: defaultResultHandler
// Example. Before (v1):
import { EndpointOutput } from "express-zod-api";
const myEndpointV1 = endpointsFactory.build({
method: "get",
input: z.object({
/* ... */
}),
output: z.object({
name: z.string(),
}),
handler: async () => ({
/* ... */
}),
});
type MyEndpointOutput = EndpointOutput<typeof myEndpointV1>; // => { name: string }
// and after (v2):
import { defaultEndpointsFactory, EndpointResponse } from "express-zod-api";
const myEndpointV2 = defaultEndpointsFactory.build({
method: "get",
input: z.object({
/* ... */
}),
output: z.object({
name: z.string(),
}),
handler: async () => ({
/* ... */
}),
});
type MyEndpointResponse = EndpointResponse<typeof myEndpointV2>; // => the following type:
// {
// status: 'success';
// data: { name: string };
// } | {
// status: 'error',
// error: { message: string };
// }
// before
new OpenAPI({
/* ... */
}).builder.getSpecAsYaml();
// after
new OpenAPI({
/* ... */
}).getSpecAsYaml();
// before
const myResultHandlerV1: ResultHandler = ({
error,
request,
response,
input,
output,
logger,
}) => {
/* ... */
};
// after
const myResultHandlerV2 = createResultHandler({
getPositiveResponse: <OUT extends IOSchema>(output: OUT) =>
createApiResponse(
z.object({
// ...,
someProperty: markOutput(output),
}),
["mime/type1", "mime/type2"], // optional, default: application/json
),
getNegativeResponse: () =>
createApiResponse(
z.object({
/* ... */
}),
),
handler: ({ error, input, output, request, response, logger }) => {
/* ... */
},
});
Version 1
Changelog
v1.3.1
- Improving the coverage I found a bug and fixed it.
In some cases there was an issue with CORS requests: preflight OPTIONS requests.
Despite the enabled configuration option
cors: truethe OPTIONS requests have not been handled properly. This was leading to the 404 error with a message "Can not OPTIONS <route>". The issue has been fixed and covered by multiple tests.