Security News
RubyGems.org Adds New Maintainer Role
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
mongoose-unique-validator
Advanced tools
mongoose-unique-validator is a plugin which adds pre-save validation for unique fields within a Mongoose schema.
mongoose-unique-validator is a plugin which adds pre-save validation for unique fields within a Mongoose schema.
This makes error handling much easier, since you will get a Mongoose validation error when you attempt to violate a unique constraint, rather than an E11000 error from MongoDB.
Yarn: yarn add mongoose-unique-validator
NPM: npm install --save mongoose-unique-validator
Then, apply the plugin to your schema:
var mongoose = require('mongoose');
var uniqueValidator = require('mongoose-unique-validator');
var mySchema = mongoose.Schema(/* put your schema definition here */);
mySchema.plugin(uniqueValidator);
Let’s say you have a user schema. You can easily add validation for the unique constraints in this schema by applying
the uniqueValidator
plugin to your user schema:
var mongoose = require('mongoose');
var uniqueValidator = require('mongoose-unique-validator');
// Define your schema as normal.
var userSchema = mongoose.Schema({
username: { type: String, required: true, unique: true },
email: { type: String, index: true, unique: true, required: true },
password: { type: String, required: true }
});
// Apply the uniqueValidator plugin to userSchema.
userSchema.plugin(uniqueValidator);
Now when you try to save a user, the unique validator will check for duplicate database entries and report them just like any other validation error:
var user = new User({ username: 'JohnSmith', email: 'john.smith@gmail.com', password: 'j0hnNYb0i' });
user.save(function (err) {
console.log(err);
});
{
message: 'Validation failed',
name: 'ValidationError',
errors: {
username: {
message: 'Error, expected `username` to be unique. Value: `JohnSmith`',
name: 'ValidatorError',
kind: 'unique',
path: 'username',
value: 'JohnSmith'
}
}
}
When using findOneAndUpdate
and related methods, mongoose doesn't automatically run validation. To trigger this,
you need to pass a configuration object. For technical reasons, this plugin requires that you also set the context
option to query
.
{ runValidators: true, context: 'query' }
A full example:
User.findOneAndUpdate(
{ email: 'old-email@example.com' },
{ email: 'new-email@example.com' },
{ runValidators: true, context: 'query' },
function(err) {
// ...
}
)
You can pass through a custom error type as part of the optional options
argument:
userSchema.plugin(uniqueValidator, { type: 'mongoose-unique-validator' });
After running the above example the output will be:
{
message: 'Validation failed',
name: 'ValidationError',
errors: {
username: {
message: 'Error, expected `username` to be unique. Value: `JohnSmith`',
name: 'ValidatorError',
kind: 'mongoose-unique-validator',
path: 'username',
value: 'JohnSmith'
}
}
}
You can pass through a custom error message as part of the optional options
argument:
userSchema.plugin(uniqueValidator, { message: 'Error, expected {PATH} to be unique.' });
You have access to all of the standard Mongoose error message templating:
{PATH}
{VALUE}
{TYPE}
For case-insensitive matches, include the uniqueCaseInsensitive
option in your schema. Queries will treat john.smith@gmail.com
and John.Smith@gmail.com
as duplicates.
var userSchema = mongoose.Schema({
username: { type: String, required: true, unique: true },
email: { type: String, index: true, unique: true, required: true, uniqueCaseInsensitive: true },
password: { type: String, required: true }
});
Because we rely on async operations to verify whether a document exists in the database, it's possible for two queries to execute at the same time, both get 0 back, and then both insert into MongoDB.
Outside of automatically locking the collection or forcing a single connection, there's no real solution.
For most of our users this won't be a problem, but is an edge case to be aware of.
2.0.2
FAQs
mongoose-unique-validator is a plugin which adds pre-save validation for unique fields within a Mongoose schema.
We found that mongoose-unique-validator demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
RubyGems.org has added a new "maintainer" role that allows for publishing new versions of gems. This new permission type is aimed at improving security for gem owners and the service overall.
Security News
Node.js will be enforcing stricter semver-major PR policies a month before major releases to enhance stability and ensure reliable release candidates.
Security News
Research
Socket's threat research team has detected five malicious npm packages targeting Roblox developers, deploying malware to steal credentials and personal data.