Neth-api-gen

A powerful RESTful API generator written in Typescript using Express

JWT auth, Access-Control Lists (ACL), Uploads, MongoDB in one 📦

_{Made with ❤ by Netherium}

Table of contents

• Quick Start
• Features
• Cli Options
• Develop
• Basic Routes
• Resource Permissions
• Coding Tips
• Structure
• Uploads
• Tests
• Debug
• Authors
• Copyright and license

Quick Start

1. ⚡ Npm install globally

   $ npm i -g @netherium/api-gen

2. 🚀 Launch

   $ neth-api-gen

3. 💻 Fill in choices

4. 🎉 Your api is ready!

   $ cd myproject
   $ npm install

Features

• Typescript Intellisense Awesomeness
• Robust routing and middleware based on same principles of Express
• MongoDB integration
• Elasticsearch integration (soon™)
• Protected routes, ACL based with middleware, using jwt-token
• File Upload routes and thumbnail generator
• Test and Coverage
• REST API Documentation via swagger-ui-express
• Various helper files and tools, i.e. CORS integration, swagger.yaml, .env environment setup
• Several scripts for easy development and testing

Cli Options

TODO

Develop

1. 🙏 If you generated project, navigate and install dependencies

   $ cd myproject
   $ npm install

2. 🌲 Setup your environment files: .env, .env.test, .env.production, according to .env.sample

   ADDRESS=localhost
   PORT=4000
   MONGODB_URL=mongodb://localhost:27017/YOUDBNAMEHERE
   ELASTIC_URL=localhost:9200
   SECRET=YOURSECRETHERE
   ...

3. 💨 Develop

   $ npm run dev

4. 💡 Initialize: Navigate to http://localhost:4000/api/auth/init

   • 2 Roles will be created, 1 Admin, 1 Public
   • 1 User will be created, based on your .env credentials
   • Resource permissions will be created for basic routes, with default access to admin Role

5. 🚀 Build!

   $ npm run build

6. 🎆Your build is ready to deploy !🎆

Basic Routes

The basic routes provided are listed below. Each one of them is being reflected by its own route, controller, model

Auth

• 🔓 api/auth/register [POST]
• 🔓 api/auth/login [POST]
• 🔐 api/auth/profile [GET, PUT, DELETE]
• 🔓 api/auth/init [GET]

Roles

• 🔐 api/roles [GET, GET /:id, POST, PUT /:id, DELETE /:id]

Resource Permissions

• 🔐 api/resource-permissions [GET, GET /:id, POST, PUT /:id, DELETE /:id]

Users

• 🔐 api/users [GET, GET /:id, POST, PUT /:id, DELETE /:id]

Uploads

• 🔐 api/uploads [GET, GET /:id, POST, PUT /:id, DELETE /:id]

Docs

• 🔓 api/docs [GET]

Root

• 🔓 / [GET]

Endpoints

• 🔐 api/endpoints [GET]

Articles (Example Resource Route)

• 🔐 api/articles [GET, GET /:id, POST, PUT /:id, DELETE /:id]

Resource Permissions

• Add a new route with Access-Control List (ACL) by invoking middleware function Auth.getACL() I.e. file article.route.ts

    export class ArticleRoute {
      constructor() {
        this.router.get('/', Auth.getAcl(), controller.list);
        ...
        this.router.post('/', Auth.getAcl(), controller.create);
      }
    }

• Add the appropriate resource-permission for this resource for each method (list, create, in this case) and for each method the roles that will have access to.

POST api/resource-permissions
{
    resourceName: 'articles',
    methods: [
        {
            name: 'list',
            roles: [PublicRoleId]
        },
        {
            name: 'create',
            roles: [AdminRoleId, RegisteredUserRoleId]
        }
    ]
}

⚠️ If you add at least 1 unauthenticated role then this resource route will be open

Coding Tips

Get Service

• Register any service in server.ts, under registerServices function
• Access it anywhere by destructuring it const {uploadService} = req.app.get('services');

Get Authenticated User

• When a route is authenticated, you can access the authenticated user by res.locals.authUser

Get Resource Permissions

• For optimization, resource-permissions are stored in app.locals.resourcePermissions. If you update manually a resource (i.e. not via api call, but database manipulation), restart server or call Auth.updateAppPermissions()

Structure

Follow the structure below. It will keep things and your mind tidy 🌼

.
├── dist                # Compiled files ready to deploy `npm run test`
├── uploads             # When using local provider this is where uploads go
│
├── src                 # Your code goes here
│   ├── routes          # Routes that define endpoints, methods, handlers and middleware
│   ├── controllers     # Controllers that handle functionality from routes
│   ├── models          # Mongoose models and typescript interfaces
│   ├── middleware      # Middleware functions
│   ├── services        # Services in OOP style that can be called in controllers 
│   ├── helpers         # Exported functions that need no instantiation  
│   └── server.ts       # Server entrypoint file
│                       
├── test                # Automated tests `npm run test`
│
├── swagger.yaml        # Swagger documentation (`api/docs`) defined in yaml format
├── LICENSE             # License file
└── README.md           # This File

Uploads

• Uploads can be stored locally or remotely, see .env
• To upload a file POST api/uploads with Content-Type: multipart/form-data; or use Postman
• Field file is the file data, altenativeText, caption are optional strings
• PUT api/uploads/:id accepts Content-Type: application/json; as only altenativeText, caption can be modified
• If file of image type, a thumbnail (80x80) will be generated

Tests

Testing is based on Mocha, chai and chai-http

Run tests

$ npm test

Coverage

Coverage is based on nyc

Run coverage (generated under folder coverage)

$ npm run test:coverage

Debug

To debug TS without compiling it, you can setup your IDE of choice as in the example below
Note: Running older versions of node may require attaching --inspect before --require

Authors

Netherium

Copyright and license

Code released under the MIT license