@ericlewis/itty-router-openapi
v0.1.1
Published
OpenAPI schema generator and validator for Cloudflare Workers
Downloads
17
Maintainers
ericlewisReadme
itty-router-openapi
This library provides an easy and compact OpenAPI 3 schema generator and validator for Cloudflare Workers.
itty-router-openapi is built on top of itty-router and extends some of its
core features, such as adding class-based endpoints. It also provides a simple and iterative path for migrating from old
applications based on itty-router.
A template repository is available at cloudflare/templates, with a live demo here.
There is a Tutorial Section available here!
Features
- [x] Drop-in replacement for existing itty-router applications
- [x] OpenAPI 3 schema generator
- [x] Fully written in typescript
- [x] Class-based endpoints
- [x] Query parameters validator
- [x] Path parameters validator
- [x] Body request validator
Installation
npm i @cloudflare/itty-router-openapi --saveFAQ
Q. Is this package production ready?
A. Yes. This package was created during the Cloudflare Radar 2.0 development and is currently used by the Radar website to serve the web app and the public API.
Q. When will this package reach stable maturity?
A. This package is already heavily used in Cloudflare Radar, and we are committed to not introducing breaking changes to it.
Options API
OpenAPIRouter(options = {})
| Name | Type(s) | Description | Examples |
| ------------- | --------------------------------- | ----------------------------------------------------------------------- | -------------------------------------------------------------------------- |
| base | string | prefixes all routes with this string | Router({ base: '/api' }) |
| routes | array of routes | array of manual routes for preloading | see documentation |
| schema | object | Object of the common OpenAPI customizations | see documentation |
| docs_url | string or null or undefined | Path for swagger docs, null: disabled, undefined: /docs | /docs |
| redoc_url | string or null or undefined | Path for redoc docs, null: disabled, undefined: /redocs | /redocs |
| openapi_url | string or null or undefined | Path for openapi schema, null: disabled, undefined: /openapi.json | /openapi.json |
Basic Usage
Creating a new OpenAPI route is simple:
- Create a new class that extends the base
Route. - Fill your schema parameters.
- Add your code to the handle function.
In the example below, the ToDoList route will have an Integer parameter called page that will be validated before
calling the handle() function.
Then the page number will be available inside the handle() function in the data object passed in the argument.
Take notice that the data object is always the last argument that the handle() function receives.
If you try to send a value that is not an Integer in this field, a ValidationError will be raised, and the Route will
internally convert into a readable HTTP 400 error.
Endpoints can return both Response instances or an object that internally will be returned as a JSON Response.
import { OpenAPIRoute, Query, Int, Str } from '@cloudflare/itty-router-openapi'
export class ToDoList extends OpenAPIRoute {
static schema = {
tags: ['ToDo'],
summary: 'List all ToDos',
parameters: {
page: Query(Int, {
description: 'Page number',
default: 1,
required: false,
}),
},
responses: {
'200': {
schema: {
currentPage: 1,
nextPage: 2,
results: ['lorem'],
},
},
},
}
async handle(request: Request, data: Record<string, any>) {
const { page } = data
return {
currentPage: page,
nextPage: page + 1,
results: ['lorem', 'ipsum'],
}
}
}Then, ideally in a different file, you can register the routes normally:
import { OpenAPIRouter } from '@cloudflare/itty-router-openapi'
const router = OpenAPIRouter()
router.get('/todos', ToDoList)
// 404 for everything else
router.all('*', () => new Response('Not Found.', { status: 404 }))
addEventListener('fetch', (event) => event.respondWith(router.handle(event.request)))Now wrangler dev and go to /docs or /redocs with your browser. You'll be greeted with an OpenAPI UI that you can
use to call your endpoints.
Migrating from existing itty-router applications
All it takes is changing one line of code. After installing itty-router-openapi replace Router with the
new OpenAPIRouter function.
// Old router
//import { Router } from 'itty-router'
//const router = Router()
// New router
import { OpenAPIRouter } from '@cloudflare/itty-router-openapi'
const router = OpenAPIRouter()
// Old routes remain the same
router.get('/todos', () => new Response('Todos Index!'))
router.get('/todos/:id', ({ params }) => new Response(`Todo #${params.id}`))
// ...Now, when running the application, go to /docs. You will see your endpoints listed with the query parameters parsed
and ready to be invoked.
Schema types
Schema types can be used in parameters, requestBody and responses.
All of theses Types can be imported like import { Email } from '@cloudflare/itty-router-openapi'
| Name | Arguments |
| ------------- | :------------------------------------------------------------: |
| Num | description example default |
| Int | description example default |
| Str | description example default format |
| Enumeration | description example default values enumCaseSensitive |
| DateTime | description example default |
| DateOnly | description example default |
| Bool | description example default |
| Regex | description example default pattern patternError |
| Email | description example default |
| Uuid | description example default |
| Hostname | description example default |
| Ipv4 | description example default |
| Ipv6 | description example default |
In order to make use of the enum argument you should pass your Enum values to the Enumeration class, as shown
bellow.
Example parameters:
parameters = {
page: Query(Number, {
description: 'Page number',
default: 1,
required: false,
}),
search: Query(
new Str({
description: 'Search query',
example: 'funny people',
}),
{ required: false }
),
}Example responses:
Example with common values
responses = {
'200': {
schema: {
result: {
series: {
timestamps: ['2023-01-01 00:00:00'],
values: [0.56],
},
},
},
},
}Example with defined types
responses = {
'200': {
schema: {
result: {
meta: {
confidenceInfo: schemaDateRange,
dateRange: schemaDateRange,
aggInterval: schemaAggInterval,
lastUpdated: new DateTime(),
},
series: {
timestamps: [new DateTime()],
values: [new Str({ example: 0.56 })],
},
},
},
},
}Example requestBody:
requestBody = {
datasetId: new Int({ example: 3 }),
search: new Str(),
}Example Enumeration:
Enumerations like the other types can be defined both inline or as a variable outside the schema.
import { Enumeration } from '@cloudflare/itty-router-openapi'
parameters = {
format: Query(Enumeration, {
description: 'Format the response should be returned',
default: 'json',
required: false,
values: {
json: 'json',
csv: 'csv',
},
}),
}Example Enumeration not case sensitive:
This way, the client can call any combination of upper and lower characters and it will still be a valid input.
import { Enumeration } from '@cloudflare/itty-router-openapi'
const formatsEnum = new Enumeration({
enumCaseSensitive: false,
values: {
json: 'json',
csv: 'csv',
},
})
parameters = {
format: Query(formatsEnum, {
description: 'Format the response should be returned',
default: 'json',
required: false,
}),
}Parameters
Currently there is support for both the Query and Path parameters.
This is where you will use the Schema types explained above.
Example path parameter:
Notice that parameter key needs to be the same name as the route path
import { OpenAPIRoute, Path, Int, Str } from '@cloudflare/itty-router-openapi'
export class ToDoFetch extends OpenAPIRoute {
static schema = {
tags: ['ToDo'],
summary: 'Fetch a ToDo',
parameters: {
todoId: Path(Int, {
description: 'ToDo ID',
}),
},
}
async handle(request: Request, data: Record<string, any>) {
const { todoId } = data
// ...
}
}
router.get('/todos/:todoId', ToDoFetch)Example query parameter:
import { OpenAPIRoute, Query, Int, Str } from '@cloudflare/itty-router-openapi'
export class ToDoList extends OpenAPIRoute {
static schema = {
tags: ['ToDo'],
summary: 'List all ToDos',
parameters: {
page: Query(Int, {
description: 'Page number',
default: 1,
required: false,
}),
},
}
async handle(request: Request, data: Record<string, any>) {
const { page } = data
// ...
}
}
router.get('/todos', ToDoList)Request Body Validation
The requestBody is defined the same way as the normal parameters.
The validated data will be available inside the body property in the data argument.
Remember that requestBody is only available when the route method is not GET.
export class ToDoCreate extends OpenAPIRoute {
static schema = {
tags: ['ToDo'],
summary: 'Create a new Todo',
requestBody: {
title: String,
description: new Str({required: false}),
type: new Enumeration({
values: {
nextWeek: 'nextWeek',
nextMonth: 'nextMonth',
}
})
},
responses: {
'200': {
schema: {
todo: {
id: 123,
title: 'My title',
},
},
},
},
}
async handle(request: Request, data: Record<string, any>) {
const {body} = data
// Actually insert the data somewhere
return {
todo: {
id: 123,
title: body.title,
},
}
}
}
...
router.post('/todos', ToDoCreate)Advanced Usage
1. Cloudflare ES6 Module Worker
In the Module Worker format, the parameters binding is different.
Instead of the worker only having access to the event argument, that argument is split
into request, env, context.
And as said above, the data object (that contains the validated parameters) is always the last argument that
the handle()
function receives.
import {OpenAPIRouter, OpenAPIRoute} from '@cloudflare/itty-router-openapi'
export class ToDoList extends OpenAPIRoute {
static schema = {...}
async handle(request: Request, env, context, data: Record<string, any>) {
const {page} = data
return {
currentPage: page,
nextPage: page + 1,
results: ['lorem', 'ipsum'],
}
}
}
const router = OpenAPIRouter()
router.get('/todos', ToDoList)
export default {
fetch: router.handle
}Otherwise, if you don't need the new env and context parameters, you can remove theses like the next example
import {OpenAPIRouter, OpenAPIRoute} from '@cloudflare/itty-router-openapi'
export class ToDoList extends OpenAPIRoute {
static schema = {...}
async handle(request: Request, data: Record<string, any>) {
const {page} = data
return {
currentPage: page,
nextPage: page + 1,
results: ['lorem', 'ipsum'],
}
}
}
const router = OpenAPIRouter()
router.get('/todos', ToDoList)
export default {
fetch: (request) => router.handle(request)
}Learn more about Cloudflare Module Worker format here.
2. Using Typescript types
If you are planning on using this lib with Typescript, then declaring schemas is even easier than with Javascript
because instead of importing the parameter types, you can use the native Typescript data types String, Number,
or Boolean.
export class ToDoList extends OpenAPIRoute {
static schema = {
tags: ['ToDo'],
summary: 'List all ToDos',
parameters: {
page: Query(Number, {
description: 'Page number',
default: 1,
required: false,
}),
},
responses: {
'200': {
schema: {
currentPage: Number,
nextPage: Number,
results: [String],
},
},
},
}
// ...
}3. Build your own Schema Type
All schema types extend from the BaseParameter or other type and build on top of that. To build your own type just
pick an already available type, like Str or extend from the base class.
export class Num extends BaseParameter {
type = 'number'
validate(value: any): any {
value = super.validate(value)
value = Number.parseFloat(value)
if (isNaN(value)) {
throw new ValidationError('is not a valid number')
}
return value
}
}
export class DateOnly extends Str {
type = 'string'
protected declare params: StringParameterType
constructor(params?: StringParameterType) {
super({
example: '2022-09-15',
...params,
format: 'date',
})
}
}4. Core openapi schema customizations
Besides adding a schema to your endpoints, its also recomended you customize your schema. This can be done by passing the schema argument when creating your router. All OpenAPI Fixed Fields are available.
The example bellow will change the schema title, and add a Bearer token authentication to all endpoints
const router = OpenAPIRouter({
schema: {
info: {
title: 'Radar Worker API',
version: '1.0',
},
components: {
securitySchemes: {
bearerAuth: {
type: 'http',
scheme: 'bearer',
},
},
},
security: [
{
bearerAuth: [],
},
],
},
})5. Hiding routes in the OpenAPI schema
Hiding routes can be archived by registering your endpoints in the original itty-router,as shown here:
import { OpenAPIRouter } from '@cloudflare/itty-router-openapi'
const router = OpenAPIRouter()
router.original.get('/todos/:id', ({ params }) => new Response(`Todo #${params.id}`))This endpoint will still be accessible, but will not be shown in the schema.
6. Accessing the openapi.json schema
For CI/CD pipelines, you can read the complete openapi.json schemas by calling the schema property from the router
instance.
Here is an example of a nodejs script that would pick the schema, make some changes and write it to a file, to be able to be picked from a CI/CD pipeline.
import fs from 'fs'
import { router } from '../src/router'
// Get the Schema from itty-router-openapi
const schema = router.schema
// Optionaly: update the schema with some costumizations for publishing
// Write the final schema
fs.writeFileSync('./public-api.json', JSON.stringify(schema, null, 2))7. Nested Routers
For big projects, having all routes in the same file can be chaotic.
In this example we split some routes to a different router
// api/attacks/router.ts
import { OpenAPIRouter } from '@cloudflare/itty-router-openapi'
export const attacksRouter = OpenAPIRouter({ base: '/api/v1/attacks' })
attacksRouter.get('/layer3/timeseries', AttacksLayer3Timeseries)// router.ts
import { OpenAPIRouter } from '@cloudflare/itty-router-openapi'
import { attacksRouter } from 'api/attacks/router'
export const router = OpenAPIRouter({
schema: {
info: {
title: 'Radar Worker API',
version: '1.0',
},
},
})
router.all('/api/v1/attacks/*', attacksRouter)
// Other routes
router.get('/api/v1/bgp/timeseries', BgpTimeseries)Now run wrangler dev and go to /docs with your browser, here you can verify that all nested routers appear correctly
and you are able to call every endpoint.
Feedback and contributions
Currently this package is maintained by the Cloudflare Radar Team and features are prioritized based on the Radar roadmap.
Nonetheless you can still open pull requests or issues in this repository and they will get reviewed.
You can also talk to us in the Cloudflare Community or the Radar Discord Channel