Autogenerate a REST API from your Mongoose models
Automatically generate a REST API from Mongoose models.
Creates a hot-reloading server that auto-updates whenever models are updated or created.
:warning: This project is still in an early stage and may undergo breaking changes.
Create a .env file with
# url of mongo database
MONGODB_URL='<url_of_mongo_database>'
# jwt signing secret for auth
JWT_SECRET = '<signing_secret>'
# directory models are discovered from (optional)
# ./models by default
MODELS_DIR = 'models'
# the path of the autogenerated resources enum file for the client (optional)
# ./client/src by default
RESOURCES_FILE_DIR = 'client/src'
Then:
yarn
yarn start
This repo includes a sample frontend (React + TypeScript) at ./client. This is a bare React app made with create-snowpack-app using the @snowpack/app-template-react-typescript template.
There are two custom files included to make API requests easier.
client/src/apiLib.ts - exports helpful functions to easily interact with the API.client/src/apiResources.ts - contains an exported TypeScript enum made to work with apiLib.ts that is autogenerated from your models, and is hot-reloaded as well.Sample usage:
// Resource is an enum exported by './apiResources.ts'
import { signup, login, api, Resource } from "./apiLib";
// signup and login :)
await signup("bob", email, password);
await login(email, password);
// create a new box
let box = await api.CREATE(Resource.box, { height: 4 });
// get a new box
box = await api.GET(Resource.box, box._id);
// list all boxes
box = await api.LIST(Resource.box);
// api.UPDATE and api.DELETE is also available.
POST /auth/signup{"username": "bob", "email": "bob@gmail.com", "password": "badpw"}
Login:
POST /auth/login{"email": "bob@gmail.com", "password": "badpw"}
Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6IjVlZWQ3OWM1N2MxZmEzNzExODZlZjljOSIsInVzZXJuYW1lIjoiYWIiLCJpYXQiOjE1OTI2MjI1MDAsImV4cCI6MTU5MjY1ODUwMH0.-eFJ1FcotHsjtmgUaE3f-6fFz_7y8c2dCNqhH8E5S6AAuthorization HTTP header for each subsequent API request.GET /auth/profileSimply create a new file that exports a mongoose model to ./models.
This will result in two actions:
${RESOURCES_FILE_DIR}/apiResources.ts.NOTE: these endpoints are not accessible unless you are signed in. The autogenerated URL endpoints will be:
Create:
POST /api/{fileName}
400 HTTP Error code.List all
GET /api/{fileName}Get one
GET /api/{fileName}/:idUpdate one
PATCH /api/{fileName}/:idDelete one
DELETE /api/{fileName}/:idPermissions enable you to implement granular restrictions on who can perform an action on a resource.
owner_id: String field in the Mongoose Schema. This field is automatically populated whenever a new object is created via the API endpoint.Export a permissions object that may override list/get/update/remove fields (by default all of these are set to PUBLIC)
"../framework/auth/permissions"):
PUBLIC: anyone can perform this action on this resourceOWNER: only the creator of the resource can perform this actionNONE: this action is disabled for this objectconst { Schema } = require("mongoose");
const { PUBLIC, OWNER, NONE } = require("../framework/auth/permissions");
const schema = new Schema(
{
width: Number,
height: Number,
created: { type: Date, default: Date.now },
name: String,
owner_id: String,
},
{ strict: "throw" }
);
const permissions = {
list: PUBLIC,
get: PUBLIC,
update: OWNER,
remove: NONE,
};
module.exports = { schema, permissions };
Nodemon is used for hot-reloading instead of node-dev because the files are dynamically required, so file-watching is needed to identify new files being added but not specifically required in ./models.owner_id: String and { strict: "throw", toObject: { versionKey: false } } using Mongoose discriminators for schema inheritance?