Detect openapi definitions from hono-zod-openapi apps #369
Conversation
commit: |
This reverts commit c24788a.
…from-hono-middleware
brettimus
force-pushed
the
fp-3897-detect-openapi-definitions-directly-from-hono-middleware
branch
from
5b8a9a8
to
77b6716
Compare
api/src/lib/openapi/fetch.ts
Outdated
| const response = await fetch(resolvedSpecUrl, { | ||
| headers: { | ||
| // NOTE - This is to avoid infinite loops when the OpenAPI spec is fetched from Studio | ||
| // We need to make sure that the user has instrumented their app with @fiberplane/hono-otel >= 0.4.1 |
There was a problem hiding this comment.
this part is really crucial - we need to validate that the user has the correct version of hono-otel
…spec from app that does not have hono-otel 0.4.1
| @@ -35,6 +35,7 @@ app.get("/v1/traces", async (ctx) => { | |||
| const spans = await db.query.otelSpans.findMany({ | |||
| where: sql`inner->>'scope_name' = 'fpx-tracer'`, | |||
| orderBy: desc(sql`inner->>'end_time'`), | |||
| limit: 1000, | |||
There was a problem hiding this comment.
this is a little left field but i finally hit the issue where i had so many spans it effectively broke the UI. i put a limit of 1000 here which seems okay but... who knows
| updatedAt: text("updated_at").notNull().default(sql`(CURRENT_TIMESTAMP)`), | ||
| }); | ||
|
|
||
| // TODO - Figure out how to use drizzle with "@hono/zod-openapi" |
There was a problem hiding this comment.
worth noting: i wanted to use drizzle-zod to share schemas between the database and the api, in order to reuse a database schema as, e.g., the payload for a route
however, the openapi integration requires that you use a special version of zod that they export, which provides some additional fields that are necessary for the schema to be converted to an openapi schema
this forces you to redefine (as far as i can tell) the schemata, which is kind of good practice to separate api schemas from database schemas, but was a little bit of a pain for me considering i didn't care about that separation at this step
brettimus
force-pushed
the
fp-3897-detect-openapi-definitions-directly-from-hono-middleware
branch
from
0bf9c98
to
d78c7dd
Compare
brettimus
changed the title
…i-definitions-directly-from-hono-middleware
…from-hono-middleware
| @@ -4,6 +4,9 @@ shared/dist | |||
| .envrc | |||
| .cursorrules | |||
|
|
|||
| # Cursor | |||
| .cursorrules | |||
There was a problem hiding this comment.
This line already exists in this file
| * This function handles both single routes and arrays of routes. | ||
| * | ||
| * @param db - LibSQL database instance containing the OpenAPI specifications. Used to fetch the latest spec. | ||
| * @param routes - Single route or array of routes to be enriched. Each route should contain path, method, |
There was a problem hiding this comment.
Maybe i'm reading this text the wrong way, but the way I understand this doc is as follows:
route: Route | Array<Route>
However it's always an array (though maybe with a singular route)
And that makes me think, I've seen in other prs, that the JSDocs are out of date even in the PR's that introduce them. Maybe it's better to leave the types out for parameters/return values? I do like the part of the JSDoc where you describe what a function is intended for but types/parameters/return values to me seems like we need to maintain an additional thing (like for instance if you refactor/rename a parameter you'd need to manually also update the docs).
| const UserIdPathParamSchema = z.object({ | ||
| id: z | ||
| // Path params are always strings | ||
| .string() |
There was a problem hiding this comment.
You can also do:
z.number({ coerce: true}) and the id will be converted to a number
There was a problem hiding this comment.
wasn't sure how that'd play with validation — worth toying around with it
| return ( | ||
| <ScrollArea className="h-full pb-8"> | ||
| <div className="p-2"> | ||
| {/* Description Section - Updated styling */} |
There was a problem hiding this comment.
Is this still relevant? I think it can go, not?
| "db:studio": "drizzle-kit studio", | ||
| "db:touch": "wrangler d1 execute zod-openapi --local --command='SELECT 1'", | ||
| "db:migrate:prod": "GOOSIFY_ENV=production drizzle-kit migrate", | ||
| "db:studio:prod": "GOOSIFY_ENV=production drizzle-kit studio" |
There was a problem hiding this comment.
I would like it if we'd had some type checking/linting enabled also for our example projects.
…from-hono-middleware
Description
Automatically report openapi spec from the client library to the studio api.
Whenever a route probe response is received, Studio will try to match any incoming routes with a corresponding openapi definition for that route.
If one is found, a json object describing the parameters and response for the route is then saved in the database on a special column for the route. This mini-spec can be used to generate request parameters, which is useful, since the source code analysis can't do much to help with OpenApiHono apps (more on that below).
The spec for a route, if present, also will render a Docs tab for that route.
Feature Flagged
Adds a section in the settings page where you can point to a route that hosts a json openapi definition.
This is a more flexible approach than auto-detecting the spec from the Hono-Zod-OpenAPI integration.
Fun things along the way
OpenApiHonois not picked up by source code analysis (makes sense, since it is not of typeHono)Considerations
Manually pulling the spec versus automatically receiving it — My first implementation relied on the user explicitly telling us where their spec was located, then we would try to pull it in to find matching specs for routes. However, things are a lot smoother if we only support apps built with
HonoOpenAPIfor now. In that case, we can ignore the URL specified on the settings page. Also, if we want to support "give us a URL and we'll try syncing", then we need to be mindful of things like theALLmethod. It's a lot more work to support a link to a spec instead of relying on the Hono OpenAPI integration to report it to us.Autopopulated parameters — This is tricky given that when you click on a Route, we might end up redirecting you to the last-made-request for that route. In which case the expected behavior is not clear. Should we merge expected query parameters from the OpenAPI spec with the actual query parameters made in the last request?
Screenshots
TODO
Test headers
Show documentation for route somewhere
Handle.allmethodOnly allow openapi integration for versions of client library past 0.4.1Expand schema definitions when possible into openApiSpec
Explain OpenAPI integration on the settings page
Auto-enable openapi integration when we can