Skip to content

Demo: add log of user data and public API route. #110

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
WilmsJochen wants to merge 1 commit into from
Closed

Demo: add log of user data and public API route. #110

WilmsJochen wants to merge 1 commit into from

Conversation

@WilmsJochen
Copy link
Contributor

@WilmsJochen WilmsJochen commented Nov 13, 2024
edited by firstmate bot
Loading

💡 PR Summary generated by FirstMate

New API Route and Logging Enhancements

Changes:
New API Route:

  • Added /user-data/:id endpoint in exampleRouter.js to fetch user data.

Logging Implementation:

  • Integrated logging in ExampleService to log user data retrieval.
  • Created NewService class with logging for data fetching operations.

CI Workflow Update:

  • Updated .github/workflows/firstmate.yaml to run pnpm test after package installation.

TLDR: Introduced a new user data API route and logging for data retrieval; updated CI workflow to include tests. Focus on exampleRouter.js and exampleService.js for new functionality.

Generated by FirstMate and automatically updated on every commit.

@firstmate
Copy link

firstmate bot commented Nov 13, 2024
edited
Loading

PR Review

⚠️ It seems that you can still improve the quality of your PR:

    ❌ Documentation drift: Update documentation for manual Docker validation after removal from CI.
    ❌ Logging best practices: Change logging level from info to debug for business data.
    ❌ Security best practices: Add grantAccessByPermissionMiddleware to /user-data/:id route.
    ❌ Testing: Implement unit tests for new service functions getById and getDataFromRepo.

Generated by Firstmate to make sure you can focus on coding new features.

firstmate[bot]
firstmate bot reviewed Nov 13, 2024
View reviewed changes
src/services/exampleService.js
Comment on lines +11 to +13
const user = await exampleRepo.getById(id);
logger.info(user.data);
}
Copy link

@firstmate firstmate bot Nov 13, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

alt text

Logging business data at info level is not recommended as per the guidelines. Consider using a different log level, such as debug, for logging business data. Change logger.info(user.data); to logger.debug(user.data); in the getUserData method.

(Based on guideline 'No business data on info level')

firstmate[bot]
firstmate bot reviewed Nov 13, 2024
View reviewed changes
src/routes/exampleRouter.js
Comment on lines +12 to 14
router.route("/user-data/:id").get( exampleController.getById)

export default router;
Copy link

@firstmate firstmate bot Nov 13, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

alt text

The route /user-data/:id does not use the grantAccessByPermissionMiddleware, which is required for security purposes. You should modify the route to include this middleware as follows:

router.route("/user-data/:id").get(grantAccessByPermissionMiddleware([API_PERMISSIONS.PUBLIC_ENDPOINT]), exampleController.getById);

This ensures that all routes check permissions properly.

(Based on guideline 'Check permissions with middleware')

firstmate[bot]
firstmate bot reviewed Nov 13, 2024
View reviewed changes
src/services/newService.js
Comment on lines +4 to +13
export class NewService {

async getById(id) {
logger.info("Getting data by ID.")
return await exampleRepo.getById(id);
}

async getDataFromRepo(id) {
return await exampleRepo.getData(id);
}
Copy link

@firstmate firstmate bot Nov 13, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

alt text

The new service functions getById and getDataFromRepo lack corresponding unit tests, which are essential for ensuring functionality and reliability. You should implement unit tests in the test folder to cover these functions, similar to the existing unit tests in test/test-user.js. Here's a basic structure for your tests:

import NewService from '../src/services/newService.js';

describe('NewService', () => {
    it('should get data by ID', async () => {
        // Your test logic here
    });

    it('should get data from repo', async () => {
        // Your test logic here
    });
});

(Based on guideline 'Unit tests for service functions')

@firstmate
Copy link

firstmate bot commented Nov 13, 2024
edited
Loading

PR Review

⚠️ It seems that you can still improve the quality of your PR:

    ❌ Logging issues: User data logged at info level; change to debug level.
    ❌ Security issues: Missing permission middleware on /user-data/:id route.
    ❌ Testing gaps: No unit tests for NewService; implement tests in test folder.

Generated by Firstmate to make sure you can focus on coding new features.

firstmate[bot]
firstmate bot reviewed Nov 13, 2024
View reviewed changes
src/services/exampleService.js
Comment on lines +10 to +13
async getUserData(id) {
const user = await exampleRepo.getById(id);
logger.info(user.data);
}
Copy link

@firstmate firstmate bot Nov 13, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

alt text

Logging user data at info level is against the guideline. Consider using debug level for logging business data. Replace logger.info(user.data); with logger.debug(user.data);.

(Based on guideline 'Never log business data on info level')

firstmate[bot]
firstmate bot reviewed Nov 13, 2024
View reviewed changes
src/routes/exampleRouter.js
Comment on lines +12 to 14
router.route("/user-data/:id").get( exampleController.getById)

export default router;
Copy link

@firstmate firstmate bot Nov 13, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

alt text

The route /user-data/:id does not utilize the grantAccessByPermissionMiddleware. You should add this middleware to ensure proper permission checks, like this:

+ router.route("/user-data/:id").get(grantAccessByPermissionMiddleware([API_PERMISSIONS.PUBLIC_ENDPOINT]), exampleController.getById);

(Based on guideline 'Routes should check permissions')

firstmate[bot]
firstmate bot reviewed Nov 13, 2024
View reviewed changes
src/services/newService.js
Comment on lines +1 to +18
import exampleRepo from "../repos/exampleRepo.js"
import logger from "./utils/logger.js";

export class NewService {

async getById(id) {
logger.info("Getting data by ID.")
return await exampleRepo.getById(id);
}

async getDataFromRepo(id) {
return await exampleRepo.getData(id);
}


}

export default new NewService(); No newline at end of file
Copy link

@firstmate firstmate bot Nov 13, 2024

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

alt text

The newService.js file lacks corresponding unit tests in the test folder. Implement unit tests to cover the functionality of the NewService class, similar to how it's done in test/test-user.py. Here's a basic structure for your test file:

import NewService from '../services/newService.js';

describe('NewService', () => {
    test('should get data by ID', async () => {
        // Your test implementation here
    });
});

(Based on guideline 'Services should have unit tests')

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@firstmate firstmate[bot] firstmate[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@WilmsJochen @wvl94