rest-hapi/Lobby

David Landry

@davad

My model schema looks like this:

{  embeddedDocument: {
    type: ObjectId,
    ref: "embeddedDocumentSchema"
} }

And I've created a mongoose pre-validate middleware function that extracts the object from embeddedDocument, saves it to using embeddedDocumentSchema, and replaces the original embeddedDocument object with an ObjectID.

But the RestHapi autogenerated Joi validation requires embeddedDocument to be passed as a string.

David Landry

@davad

@JKHeadley Could you take a look at my issue and PR? JKHeadley/rest-hapi#163

David Landry

@davad

Has anyone tried using the Mongoose v5 Map type with RestHapi?

David Landry

@davad

FYI, I ran into a bug when using a Map field, JKHeadley/rest-hapi#166
I have a tentative fix in a PR.

Shiva

@shiva

@davad Thanks! That sounds like a bunch of work to attempt one of these days.

Another n00b question: I am attempting to host the rest-hapi app with a baseurl prefix -- foo.com/api as an example

Here is my hapi server config:

Shiva

@shiva

await server.register({
  plugin: RestHapi,
  options: {
    mongoose: mongoose,
    config: config,
    routes: {
      prefix: '/api'
    }
  },  
})

However, the swagger api generated doesn't seem to point to the correct urls. What am I missing?

Justin Headley

@JKHeadley

@shiva do you mean to set the swagger/docs path or the api path?

Justin Headley

@JKHeadley

FYI, currently rest-hapi does not accept config options for either. The correct hapi-swagger options to set would be either basePath or documentationPath (as seen here: https://github.com/glennjones/hapi-swagger/blob/master/optionsreference.md)

These options would need to be passed in to the swagger config here: https://github.com/JKHeadley/rest-hapi/blob/b069959a8813ecc01124fe38e8b03817ff66b6b9/rest-hapi.js#L220

I would like to add a general swagger config object so that all hapi-swagger options could be configured via rest-hapi.

Shiva

@shiva

@JKHeadley You hit the nail on the head. Will work on it, and raise a pull request.

Shiva

@shiva

Actually both. If one were to host the rest-hapi server at a different base-path, it would make sense that all url use that as the base. How would I ensure both of them are prefixed with the base path.

Shiva

@shiva

@JKHeadley For all of rest-hapi generated endpoints to have a baseurl, will I have to modify all such points such as https://github.com/JKHeadley/rest-hapi/blob/b069959a8813ecc01124fe38e8b03817ff66b6b9/utilities/rest-helper-factory.js#L213 and include some "basePath" specified in config?

am I reading this right? or is there a simpler way?

Shiva

@shiva

@JKHeadley Just raised a pull request (JKHeadley/rest-hapi#172) Let me know if it is in line with your thoughts

Shiva

@shiva

@JKHeadley Did you need me to squash commits etc for the pull request? Anything I can do to expedite the change?

Justin Headley

@JKHeadley

@shiva just commented on the PR, sorry for the delay.

Shiva

@shiva

@JKHeadley Thanks for the support in merging the PR! Thanks for enabling hosting of the generated API ep at a prefix.

wowtech

@wowtech_gitlab

How can we use authentication ?

Justin Headley

@JKHeadley

@wowtech_gitlab apologies for the lack of documentation on authentication, I'll have to fix that.

Short answer: use a hapi auth plugin such as hapi-auth-jwt2and set the config.authStrategy option.

You can see a working example in the appy project:
https://github.com/JKHeadley/appy/blob/master/backend/server/plugins/auth.plugin.js
https://github.com/JKHeadley/appy/blob/a009a81ea0b80c39ccd01813def7d3d1956f9168/backend/config/manifest.conf.js#L43
https://github.com/JKHeadley/appy/blob/a009a81ea0b80c39ccd01813def7d3d1956f9168/backend/config/index.js#L215

I will work on getting a better explanation in the docs and let you know once it's done.

Naveen N

@resistancet9

i just created a file called auth.js in api folder. i added /public endpoint with auth set to null.

when i access /public via postman. im getting 401 status

what am i missing?

Naveen N

@resistancet9

hapi-auth-jwt2 ive added this one

Justin Headley

@JKHeadley

@resistancet9 it's hard to tell without more information. If you can direct me to your repo or post some code here I will try to take a look.

Justin Headley

@JKHeadley

@wowtech_gitlab @resistancet9 please see the updated docs for information on how to set up authentication: https://resthapi.com/docs/authentication.html

jlconrad3

@jlconrad3

Anyone know how to create an array inside a collection?

Ronald J Kimball

@tamias

Is it possible to specify the collection name for a MANY_MANY linking table? I've created a linking model named questionCategoryLink.model.js, which results in a collection named questionCategoryLink. I want the collection to be named questionCategoryLinks, to match the pluralization of all my other collection names.

David Clarkson

@djclarkson

This project is great. Thank you!

Would be really cool for a bit more examples for auth as mentioned earlier. Would love a basic hapi-rest hapi-auth-jwt2 example with a few routes (appy is great, but theres a lot of extra stuff going on in there which makes it a bit of a leap for something my level).

Bonus would be inclusion of how to protect route like http://example.com/api/{userid}/profile

Just not quite clear to me with the scope info in the docs.

Rudrika Fichadiya

@RudrikaFichadiya

Anyone know how can I fix issue regarding "UnhandledPromiseRejectionWarning: MongoError: TTL index 'expireAfterSeconds' option must be numeric, but received a type of 'null'." ? I have cloned https://github.com/JKHeadley/rest-hapi-demo. But when I try to run server/api.js it always stop with this unHandled promise.

Aboud Akhdir

@akhdir

hey all, can I use rest-hapi with Postgres or MySQL?

Nico

@mescalito

Anyone know how can I fix issue regarding "UnhandledPromiseRejectionWarning: MongoError: TTL index 'expireAfterSeconds' option must be numeric, but received a type of 'null'." ? I have cloned https://github.com/JKHeadley/rest-hapi-demo. But when I try to run server/api.js it always stop with this unHandled promise.

I'm having the same issue!
JKHeadley/rest-hapi#208

Justin Headley

@JKHeadley

@djclarkson Thanks! Sorry for the late reply, but you can find a simple auth example here:
https://github.com/JKHeadley/rest-hapi-demo/tree/feature/authentication

There is also a link to it in the docs: https://resthapi.com/docs/authentication.html

Justin Headley

@JKHeadley

@akhdir currently rest-hapi only supports MongoDB, however supporting multiple dbs is definitely a long-term goal.

felipeprov

@felipeprov

Hello, first thing, I searched for some years something like rest hapi, thank you!

About my questiom, I have users, and this users can create some resources and groups, users in the same groups can see the resources with this group, but not the resources of other groups. Is possible to create some dynamic scopes where I can tag "group-{id}", or have a hook where I can add my own scopes?

Justin Headley

@JKHeadley

@felipeprov Thanks for the comment, glad you find it useful!

As for your question, if I understand it correctly then it sounds like you have a many-many association with groups and users and a one-many association with groups and resources (i.e. a resource can only belong to one group). You would like for only users that belong to the same group as a resource to be able to access that resource.

If this is the case then this can be accomplished through association middleware. Basically, whenever a resource is added to a group, you should add group-{id} to the resource's documentScope. This can be done in the add->resources association middleware function for the group model. Also, whenever a user is added to the group, you would have to make sure group-{id} is added to their scope as well. In appy this is done with the permissions model. You could alternatively just have a simple scope field in your user model. Then when the user authenticates, you use this scope field (or the associated permission) to calculate the scope stored in the user's token. In this case when the user's scope is calculated it should end up containing group-{id}. Now when the user attempts to access a resource in the same group, rest-hapi will compare the resources documentScope with the user's calculated scope and find a matching scope (group-{id}) and allow the user to access the resource.

You could also accomplish this with policies rather than leveraging documentScope, however it would essentially be the same process with some extra work.

This is an overview of how it can be accomplished. Document authorization is one of the more nuanced features in rest-hapi, so I would highly recommend reading through the docs to make sure you understand the concepts before attempting this. It may be helpful to reference appy for examples of how user scopes are created.

If you would like more explanations of a particular topic, let me know and I'll try to help.

Rudrika Fichadiya

@RudrikaFichadiya

@mescalito , Issue solved using library file modification just to set true/false instead null.

Diswarin Saiphanas

@tanapop

Anyone know how can I fix issue regarding Error starting server: Error: Invalid mongodb uri "mongodb+srv://<username>:<password>@cluster0-vytym.mongodb.net/test?retryWrites=true&w=majority" I connnect to MongoDB Atlas Clusters

nseaprotector

@nseaSeb

Hello, is there something I'm missing about building my model? I'm trying to make my users belong to one or more companies and when a user logs in to a company he finds the contacts of that company. Any ideas?

Pradeep Raput

@prudradeep

How to recover soft deleted documents?

Where communities thrive

People

Repo info

Activity