This API REST is pretended to be a core implementation for uploading CSV files into diferent data bases, including general methods agnostic to the model from these files with the chance to implement specific models' endpoints.
This app built an strong base for specific implementations where validate fields of the rows into the csvs tables is critical, uploading by default those rows that meets the validations models and information about those which did not.
Csv uploader is a very good option to implement a robust and very detail fields' validation to your migration from csv tables to diferent data bases model.
By default , this Api implement a PostgreSQL for login and session admin users endpoints, an users model used to validate fields and upload csv users tables, endpoint to upload the csv files and endpoint to revalidate rows through json type files instead of csv Files. We'll explore more about this dowm below.
this proyect is considered totally open source, any contribution through pull request or comments that helps to keep increasing features are more than welcome!
- Feactures
- Tecnologies
- Requirements
- Setup
- Endpoints
- View Endpoints
- Authentication
- Contributions
- How to reach me
-
Easy configuration to quickly start updating your CSV models.
-
Strong model structures powered by Typestript and Zod library to implement specific validations for every csv model and end point.
-
High limit of file size, which by default is 10MB.
-
Smart implementation of memory use. This is because files are not completly store in memory, instead this app store files in a temp directory while parsing an validations takes place an remove it before sending a Response.
-
The App will verify wheter your file is corrupt or valid, storage it in a safe place temporaly, parse it and validate every field of every row of the csv process, uploading those wich pass those filters and returning by row details of what was wrong with those which did not make it.
-
Strong Error Handler centralizated, custom Error interface and small custom error library with the chance of increasing for future implementations from diferents databases.
-
Strong session validations for protected endpoints, only admin users are by default able to upload to users.
including the chance for the future diferent level of permisition for diferent upload endpoinds.
This Aplication is builded using Typescript in Node js work enviroment with Express as Framework and PostgreSQL to be used in the persistent layer, more detail information about libraries and dependencies used can be checked in the package.json file.
Is needed in order to run this project to have install in your work enviroment Node js 20, npm 9 and a conection to a PostgreSQL database to handle admin sesions and any oher conection to others db for implementing another persistence for your uploads.
In this section we're gonna explore the minimum configurations and commands in order to run this app properly. First clone the repository in your work enviroment and enter to the root directory. There is a .env file to be set, this is an example of this file must look like.
PGHOST='example.host'
PGDATABASE='name_of_data_base'
PGUSER='user_name'
PGPASSWORD='password'
PORT=4000
MODE=PRO
SECRET_TOKEN="secret_1"
SECRET_COOKIE="secret_2"
HOST='*'
-
PGHOST: references the host of your postgres db. -
PGDATABASE: references the name of your postgres db. -
PGPASSWORD:references the password of postgres db user. -
PGUSER: Usuario a utilizar para conectar a la base de datos.
more details about this in the file pg.config.ts in config directory and more information about PoolClient on Pool Client pg.
if you need another db driver implementation like, for example, mongosee for MongoDB, it's important to set connection string and other variables here too.
-
PORT: references the port the app is running. -
HOST: references the Host the App is serving, this is Cors related, be careful. -
SECRET_TOKEN: this must be an string that will be used to sign tokens and validate incoming sesions tokens. -
SECRET_COOKIE: this must be also an string that will be used to sign cookies and validate them when protected endpoint's requested take places.
After setting up the .env file the next thing to do is run the following comands:
npm installinstalling all dependencies.
npm run devif you are in a develop process implementing an specific model, etc, also getting more logs information and real time changes updates throught nodemon.
npm run build && npm startto build the app and start listining on the selected port.
more information about the scripts can be found in the package.json file.
This project follow diferent layers structures in order to have room to horizontal growing in the future, listing specific directorys by task or responsability and keep clean code practices.
├── .env
├── .gitignore
├── package.json
├── package-lock.json
├── src
│ ├── app.ts
│ ├── config
│ ├── controller
│ ├── dao
│ ├── index.ts
│ ├── middleware
│ ├── model
│ ├── route
│ ├── table
│ ├── test
│ └── utility
└── tsconfig.json
config: this directory contains diferent setup files such client for data bases config, PostgreSql driver pg stays here for example, dotenv library config to handle enviroment variables and others libraries such loggers related, etc.
controller: this directory contains the methods required to recive and validate data coming from the requests, call the Managers or Uploaders (persistence layer), format the response or throw an error if necessary.
dao: this directory contains the persistence logic, index files from this directory contains DataAccessObject class which is where every Uploader (classes in charge of upload Csv Model data bases) and Managers (classes in charge of getting, updating and deleting data from those data bases and also in charge of Api funcionality related). There is where you can find for example, Uploader interface PostgresQL models implementation (Uploader interface is the generic way of commun methods to be used inside the dao Class to be exported) and also UserManager(class implemented to handle methods such CRUD operations over admins accounts)
more information about this topic in the following section.
middleware: this directory contains all middlewares implemented in the app. The principal are:
-
Authentication middleware, which validates the session for protected endpoints, the way it works is validating the signed token stored into the sign cookie, including two security checking lawers even before validations in the controller layer.
-
Csv validation middleware, which validates files integrity and related.
-
Errors middleware, since this API manage a centralized error handling, this is the place where ApiCustomError class instances (more details about this Api class for Custom errors implementations in error directory inside models directory), data base errors and general Error intances are manage and send the proper response to the client.
-
Logger middeware, which by default gives information in console about the request incoming.
route: this directory includes the diferent routers uses by express and sets specific routes with controllers and models required.
utility: includes diferent methods used for specific small things, such hashing etc.
test: this directory includes diferent test using vitest library, in process...
table: includes sql tables used in the app for references porpuses.
model: this directory includes all models used in the app, models validations get done by using , this allows a simple and practical way to validated ts models (referencing an csv model) to insert into the data bases ensuring not errors and also providing custom messages for errors.
this directory by default contains:
src/model
├── csv_model
│ ├── index.ts
│ └── user.model.ts
├── error
│ └── error.model.ts
├── index.ts
├── postgreSQL.model.ts
└── user.model.ts
This is the core structure, from here you can include your own implementations and set specific endpoints based on those. More information can be found in this files explaining the models exposed there.
-
index file from model directory contains general types uses in all the app.
-
postgreSQL.model.ts includes specific types or interfaces extentions from the general ones used for postgres methods and class implementations.
-
user.model is types and interfaces APi users and admin relate, being implement into managers.
-
csv_model contains models used to validate csv files, index file in this directory includes especial zod types such numbers validations for example( since every csv rows are parsed into a json with all values as string) and also includes specific user model used to upload the users_csv table into postgresQl.
-
error directory contains everything error models and types relate, by default includes the ApiCustomError which extends generic Error class and is used to handle an basic error diccionary along with ErrorCodes enums to be implement and uses in all part. if you need to include types or extends this class, the right directory to place them is error. More information is detailed into the error.model.ts.
POST /api/user/loginbody required content:
{
"email":"testino@email.com",
"password":"Secr3d123"
}sucess response:
{
"ok":true,
"message":"logged in"
}after validate API user credentials, login information is storage in a sign cookie to the following request to protected endpoints. This credentials are valid by default 1 hour long.
POST /api/upload/:model_endpoint From here we are gonna explore along with the example how can be implemented this endpoint for diferent models exploring the core classes, interfaces and types to do so.
This is a protected endpoint, the param model_endpoint references the name of the model implement in this route, to explore this point we are going to use 'users' model which represents a record of users' information (not the same collection use for API users used to validate admin users' credentials through UserManager). The endpoint is the following:
POST /api/upload/usersince we are using PostgreSQL for this, in the database provided to pg setup must exist a table where the rows from the csv file are going to be uploaded. We are being using:
CREATE TABLE
users(
id SERIAL PRIMARY KEY,
name VARCHAR(255) NOT NULL,
email VARCHAR(255) UNIQUE NOT NULL,
age INTEGER ,
role VARCHAR(5) DEFAULT('user')
);
CREATE INDEX idx_email ON users (email);
is not required but recommended to place the table model used in your databases as references in the table directory.
In order to understand why model needs to be provided in a certain way and how can be implemented for anothers database managers different than postgres we need to check Uploader interface. This is a contract every implementation must follow in order to be inserted in DataAccessObject class:
import { Data, Res } from "../model";
export interface Uploader<
Base extends object,
Succeed extends Base
>{
upload(parameters:Data<Base> & {[options:string]:any}):Promise<Res<Succeed>>
}Uploader is an interface which must be implement for every uploader class, those classes must recive as parameters a type Base (which must be an object an represents in our example UserInfo)
and also a Succeed type (which as User type represents the returning value from database insertions, normally adding an id property, MongoDB also includes property _v version).
this interface can be expands to include others optional methods.
upload: this is the principal methods where we need to take care of some considerations.parametersupload method recives a type which extends with an optional object options the generic type Data. This is define this way in order to add in every upload implementation another information, function etc required by the class implemented itself. Generic type Data is define as:
export interface Data<Base>{
valids: (Base & {row:number})[]
errors: CsvIssues[]
}where valids references an array of an specific object type which is a valid type to go to the next step in DAO to try to be inserted, adding the property row which is a way to identify the specific row number in the csv file. Where CsvIssues is an object with the number of the row where was a problem and an object details where key specifies the field and the value the message of the issue.
export type CsvIssues = {
row: number
details: {
[key: string]: string
}
}return: this methods return a promises with a generic type Res.
export type Res<T> = {
ok: true
data: {
success: T[]
errors: CsvIssues[]
}
}more details about generic models can be found in the index file of model directory.
With the database model defined, we must provide a model to be use inside the API to validate these fields in order to insert the data inside database. As we said before, csv uploader uses zod in order to be specific about the conditions or constrains of every field and an specific message for the specific error. the model file inside the csv_model directory must look like this:
import {QueryConfig} from "pg"
import z from "zod"
//since every field of csv rows are string (even numbers) we import a custom type which validates if the field age can be parse into a valid number. custom zod types can be found in index.ts in model directory.
import {numberInStringMinAge} from "."
//Schema used to validate type errors on csv collection after convertion to json files model[]
export const userSchema = z.object({
name: z
.string({
required_error: "name must not be empty",
invalid_type_error: "name must be an string",
})
.min(1, "name must have at least one character"),
email: z
.string({
invalid_type_error: "email must be an string",
required_error: "email must not be empty",
})
.email("email must have a valid email format"),
age: numberInStringMinAge,
role: z
.enum(["user", "admin"], {
message: "role must be an string valid, wether 'user' or 'admin'",
invalid_type_error:
"role must be an string valid, wether 'user' or 'admin'",
})
.default("user"),
})
//type infer by schema extraction, references the rows model.
export type UserInfo = z.infer<typeof userSchema>
//type which references the type return by database after inserting data.
//this case Postgres return every field plus an id type number.
export type User = UserInfo & { id: number }
//Postgres models require also a method getConfig which recives as parameter the Base model (UserInfo) and returns a QueryConfig type to be used by an pg client, the required fields are text which includes the query and values to point the order of model fields to be inserted.
//this methods is required because of the PostgresData interface extends of Data generic type.
//others extends Data types may require diferent methods or fields to be implemented.
export const getConfig = (ui:UserInfo):QueryConfig =>{
return {
text:`INSERT INTO users(name, email, age, role)
VALUES($1, $2, $3, $4) RETURNING *;`,
values:[ui.name, ui.email, ui.age, ui.role]
}
}As we said, Uploader implementations work with extends of Data interface, allowing expands this object as required for specific implementations. This case Postgres models require to provide a QueryConfig(details in pg documentation), which is done by expanding Data interfice with a method that provide it.
export interface PostgreSQLData<B> extends Data<B>{
config: (data: B) => QueryConfig
}the implementation for users as example looks like this:
const parsedData:PostgreSQLData<UserInfo> ={
config:getConfig,
valids:[],
errors:[]
}So in order to upload our example we can use the generic implementation of Uploader, class PostgresUploader, which look like this:
class PostgresUploader<Base extends object, Succeed extends Base> implements Uploader<Base, Succeed>{
//method to get client from Postgres and open a connection, passed as argument
#gC: () => Promise<PoolClient>
constructor(getClient: () => Promise<PoolClient>) {
this.#gC = getClient
}
async upload(data: PostgreSQLData<Base>): Promise<Res<Succeed>>more details about this implementation can be found in postgres directory into dao directory.
all we need to do and be able to use our uploader is go to index file into dao directory and make sure to define or uploader.
class DataAccessObject {
//sql client for sql
private client: PoolClient | null = null
// close data bases, 1 for now
close = () => pgConfig.close()
// method required in order to do a query in postgreSQL managers and Uploaders (pg)
private async getClient() {
if (!this.client) {
this.client = await pgConfig.getClient()
return this.client
}
return this.client
}
//postgreSQL Uploaders
//users Uploader class properly intanced with Base and Succeed type as UserInfo and User and with getClient method as argument
usersUploader:Uploader<UserInfo, User> = new PostgresUploader<UserInfo, User>(this.getClient)
// others database Uploaders and managers
//ApiUsersManager used to controle sessions
um = new UserManager(this.getClient)
}
export default new DataAccessObject()this class can be expanded, can add news Uploaders for postgres or others database models with their respectives client methods and also closing methods similar way as pg in this case.
- in process...