Parch combines restify and sequelize to bring you a powerful yet easy setup for your API
npm
npm install --save parchyarn
yarn add --save parch- Application
- Router
- Controller
- lifecycle hooks
- hooks deprecated
- nested controllers
- Model
- Serializers
- Associations
- Authentication
- Application Initializers
- Logging
- Error handling
For a full list of available options see below
const parch = require("parch");
// define your app
const app = new parch.Application({
authentication: {
secretKey: "ssshhh",
unauthenticated: [/\/posts[\s\S]*/, "/users/resetPassword"]
},
controllers: {
dir: path.resolve(__dirname, "controllers")
},
database: {
connection: {
username: "postgres",
password: "postgres",
database: "postgres",
host: "localhost",
dialect: "postgres",
logging: false
},
models: {
dir: path.resolve(__dirname, "models")
}
},
initializers: {
dir: path.resolve(__dirname, "controllers")
},
logging: {
dir: path.resolve(__dirname, 'logs'),
logger: Bunyan.createLogger(),
serializers: {
req(req) {
return {
url: req.url
}
},
res(res) {
return {
statusCode: res.statusCode
}
}
}
},
namespace: "api",
server: {
name: "my-app",
certificate: "/path/to/my.crt",
key: "/path/to/my.key",
log: Bunyan.createLogger(),
middlewares: [
restify.bodyParser(),
restify.queryParser(),
myCustomMiddleware()
]
}
});
// wire up your routes
app.map(function () {
this.resource("user");
this.route("user/resetPassword", {
using: "users:resetPassword", // controller:method
method: "post" // request method
});
});
app.start(3000).then(() => {
console.log("App listening.")
});The above will create the following route mapping
GET /users => UserController.index
GET /users/:userId => UserController.show
POST /users => UserController.create
PUT /users/:userId => UserController.update
DELETE /users/:userId => UserController.destroy
POST /users/resetPassword => UserController.resetPassword
The router handles route management and normalization, creating CRUD endpoints for resources and normalizing all paths.
Use resource to generate a set of CRUD endpoints.
app.map(function () {
this.resource("user");
});
/**
* GET /users => UserController.index
* GET /users/:userId => UserController.show
* POST /users => UserController.create
* PUT /users/:userId => UserController.update
* DELETE /users/:userId => UserController.destroy
*/Use route to define a one off route.
app.map(function () {
this.route("/foos/bar", {
using: "foo:getBar",
method: "get"
});
});
/**
* GET /foos/bar => FooController.getBar
*/Use namespace to group a set of routes under a single base path. Namespace
takes an array of routes so follow the route api (with the addition of path)
app.map(function () {
this.namespace("users/:userId", [
{ path: "/account", using: "user:getAccount", method: "get" },
{ path: "/image", using: "user:setImage", method: "post" }
]);
});
/**
* GET /users/:userId/account => UserController.getAccount
* POST /users/:userId/image => UserController.setImage
*/lib/controllers/users.js
const parch = require("parch");
class UserController extends parch.Controller {
constructor(options) {
super(options);
}
index(req, res, next) {
this.store.findAll(req.query).then(records => {
/**
* {
* users: [{
* ...
* }]
* }
*/
res.send(this.STATUS_CODES.SUCCESS, records);
}).catch(next);
}
show(req, res, next) {
this.store.findOne(req.params.id).then(record => {
/**
* {
* user: {
* ...
* }
* }
*/
res.send(this.STATUS_CODES.SUCCESS, record);
}).catch(next);
}
create(req, res, next) {
this.store.createRecord(req.body.user).then(record => {
/**
* {
* user: {
* ...
* }
* }
*/
res.send(this.STATUS_CODES.CREATED, record);
}).catch(next);
}
update(req, res, next) {
this.store.updateRecord(req.params.id, req.body).then(updatedRecord => {
/**
* {
* user: {
* ...
* }
* }
*/
res.send(this.STATUS_CODES.SUCCESS, record);
}).catch(next);
}
destroy(req, res, next) {
this.store.destroyRecord(req.params.id).then(() => {
res.send(this.STATUS_CODES.NO_CONTENT);
}).catch(next);
}
resetPassword(req, res, next) {
this.store.findOne(req.params.id).then(record => {
record.password = req.body.password;
return record.save();
}).then(record => {
res.send(this.STATUS_CODES.SUCCESS);
}).catch(next);
}
}Controller hooks in this fashion are deprecated. Please use beforeModel, model, and afterModel structure instead. see here for more
Controller hooks allow for pre and post processing of requests. Both before and
after hooks are supported as well as any additional methods added when using
Controller#route or Controller#namespace. When using the after hook, make
sure to call next after sending your response.
class UserController extends parch.Controller {
constructor(options) {
super(options);
this.hooks = {
// The hook name must match the method
index: {
before(req, res, next) {
return checkPermissions().then(() => {
next();
}).catch(next);
},
after(req, res, next) {
req.log.child().info("post processing");
}
}
};
}
index(req, res, next) {
res.send(200);
next();
}
}Organizing your controllers into groups can make things more manageable. By storing each action in a separate class, you will have tighter control over your logic.
├── lib
│  ├── controllers
│  │  ├── post
│  │  │  ├── create.js
│  │  │  ├── destroy.js
│  │  │  ├── index.js
│  │  │  ├── show.js
│  │  │  └── update.js
│  │  └── users
│  │  ├── create.js
│  │  ├── destroy.js
│  │  ├── index.js
│  │  ├── show.js
│  │  └── update.js
Controller lifecycle can be handled by three main hooks. Each of these hooks take
the same arguments (req, res, next)
The beforeModel hook runs before the main model hook. In this method you have access to the request and response objects and it is assumed that the response
lifecycle has not been completed.
export default class UserListController {
beforeModel(req, res, next) {
return utils.permissions(req)
.then(() => next())
.catch(next);
}
}The model hook is the main action of your controller class. This is where the
response object is assumed to end. **Note: if you also define an afterModel hook
you must call next in the model hook.
export default class UserListController {
model(req, res, next) {
this.store.findAll("user").then(users => {
res.send(this.STATUS_CODES.SUCCESS, users);
next();
}).catch(next);
}
}The afterModel is the last hook in the controller lifecycle. Here you can do
things like metrics or audit logs
export default class UserListController {
afterModel(req, res, next) {
req.log.debug("afterModel hook for user list");
}
}Models are defined following the sequelize define
pattern. Options for the model definition can be passed to the constructor's super call
lib/models/user.js
class UserModel extends parch.Model {
constructor() {
super({
classMethods: {
},
getterMethods: {
},
hooks: {
},
instanceMethods: {
}
});
}
associate(User, models) {
User.hasMany(models.Posts);
User.hasMany(models.User, { as: "Parent" });
}
define(DataTypes) {
const user = {
email: {
type: DataTypes.STRING,
validate: { isEmail: true }
}
};
return user;
}
}Serializers allow you to control how data is transformed and sent to the client. Each model you define can also define an accompanying serializer to transform its data. If you do not define one yourself, Parch will use the JSONSerializer
JSONSerializer is the most basic of all the serializers, offering only a normalizeResponse method, which in turn just returns the instance or instance array.
To extend this behavior, the RESTSerializer will nest your record under a
singular or plural record key (e.g. { user: record } or { users: [records] }), as well as automatically add each hasMany/belongsTo relationship as an array
of ids, removing the need for you to transform these yourself. The JSONAPISerializer(TBD) takes this even
further, ensuring your data is transform following the JSONAPI spec
lib/serializers/user.js
import { RestSerializer } from "parch";
export default UserSerializer extends RestSerializer {
keyForRecord(record, singular) {}
keyForRelationship(association) {}
normalizeArrayResponse(instances, fallbackName) {}
normalizeRelationships(instance) {}
normalizeSingularResponse(instance) {}
}Authorization is handled using jwt, with more
options coming in the future. To disable auth for specific routes, use the
authentication.unauthenticated array. Empty by default, you can give a string
or regex expression to skip your unauthenticated routes
const parch = new parch.Application({
authentication: {
unauthenticated: [/\/posts[\s\S]*/, "/users/resetPassword"]
}
});In order to authenticate a user, create and sign a JWT token to send back to the
client. The authorization middleware will then look for this token in the
Authorization header. see jsonwebtoken
// lib/controllers/user_controller.js
const jwt = require("jsonwebtoken");
const config = require("../../config");
class UserController extends parch.Controller {
constructor(settings) {
super(settings);
}
authenticate(req, res, next) {
this.model.findOne({ where: { email: req.body.email }}).then(user => {
if (user) {
const token = jwt.sign(user, config.secret);
res.send(200, { token });
} else {
throw new this.errors.UnauthorizedError("email or password is invalid");
}
});
}
}
module.exports = UserController;
...
// lib/app.js
app.map(function () {
this.route("/users/authenticate", { using: "user:authenticate", method: "post" });
});curl http://my-server.com/protectedRoute -H 'Authorization: Bearer <token>'Initializers allow you to accomplish many things during application boot. Registering mixins, add custom application logic, and adding services can all be done in an initializer and attached to the application instance. Parch will run your initializers in alphanumeric order. This means that if you need to run them in a specific order you should prefix them in a way that will accomplish that.
your-app/lib/initializers/my-awesome-initializer.js
"use strict";
const Worker = require("../worker");
module.exports = {
initialize(appInstance, registry) {
appInstance.foo = "bar";
app.worker = new Worker();
},
name: "my-awesome-initializer"
};Logging is handled automatically for you. All requests and responses will be logged using a custom Bunyan instance.
Error handling is done using restify-errors.
When using controller helpers (findAll, findOne, etc) errors are handled
automatically for you. Just catch your Promise with next and parch will handle
the rest.
show(req, res, next) {
this.findOne(req.params.id).then(user => {
}).catch(next);
}
/**
* { code: "NotFound", message: "User with id '1' does not exist" }
*/Errors handled by parch:
findOne:NotFound: The record does not exist
createRecord:BadRequest: Request body was missing or invalidUnprocessableEntity: Model validations failed
updateRecord:BadRequest: Request body was missing or invalidUnprocessableEntity: Model validations failed
destroyRecord:NotFound: The record does not exist
Need to handle your own errors? controller.errors contains all of restify-errors' errors
Parch also helps you standardize on your response statuses. Using controller.STATUS_CODES you'll never have to worry about which status to send.
show(req, res, next) {
res.send(this.STATUS_CODES.SUCCESS) // 200
}- authentication
secretKey(String): A secret string used to sign JWT tokensunauthenticated(Array): an array of strings or regex patterns to skip authentication.
- controllers
dir(String): The path to your controllers directory. Default:__dirname/controllers
- database
connection(Object)Sequelize connection optionsmodelsdir(String): The path to your models directory. Default:__dirname/models
- initializers
dir(String): The path to your initializers directory. Default:__dirname/initializers
- logging
dir(String): Path where logs should be savedlogger(Object)optional: An optional logger instanceserializers(Object):req(Function): your request serializer. takes the request as its only argumentres(Function): your response serializer. takes the response as its only argument
- namespace: Set the base namespace for all routes and resources (e.g.
api) - serializers
dir(String): The path to your serializers directory. *Default:__dirname/serializers
- server All options (with the exception of
middlewares) are passed directly to restifylog: defaults to parch's bunyan instance but can be overriddenmiddlewares(Array): merged with parch's default middlwares