Skip to content

Demo: add log of user data and public API route. #110

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Demo: add log of user data and public API route. #110

wants to merge 1 commit into from
+26 −11

Conversation

WilmsJochen
Copy link
Contributor

@WilmsJochen WilmsJochen commented Nov 13, 2024
edited by firstmate bot
Loading

💡 PR Summary generated by FirstMate

New API Route and Logging Enhancements

Changes:
New API Route:

  • Added /user-data/:id endpoint in exampleRouter.js to fetch user data.

Logging Implementation:

  • Integrated logging in ExampleService to log user data retrieval.
  • Created NewService class with logging for data fetching operations.

CI Workflow Update:

  • Updated .github/workflows/firstmate.yaml to run pnpm test after package installation.

TLDR: Introduced a new user data API route and logging for data retrieval; updated CI workflow to include tests. Focus on exampleRouter.js and exampleService.js for new functionality.

Generated by FirstMate and automatically updated on every commit.

@firstmate FirstMate
Copy link

firstmate bot commented Nov 13, 2024
edited
Loading

PR Review

⚠️ It seems that you can still improve the quality of your PR:

    ❌ Documentation drift: Update documentation for manual Docker validation after removal from CI.
    ❌ Logging best practices: Change logging level from info to debug for business data.
    ❌ Security best practices: Add grantAccessByPermissionMiddleware to /user-data/:id route.
    ❌ Testing: Implement unit tests for new service functions getById and getDataFromRepo.

Generated by Firstmate to make sure you can focus on coding new features.

firstmate[bot]
firstmate bot reviewed Nov 13, 2024
View reviewed changes
src/services/exampleService.js
Comment on lines +11 to +13
const user = await exampleRepo.getById(id);
logger.info(user.data);
}
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

alt text

Logging business data at info level is not recommended as per the guidelines. Consider using a different log level, such as debug, for logging business data. Change logger.info(user.data); to logger.debug(user.data); in the getUserData method.

(Based on guideline 'No business data on info level')

firstmate[bot]
firstmate bot reviewed Nov 13, 2024
View reviewed changes
src/routes/exampleRouter.js
Comment on lines +12 to 14
router.route("/user-data/:id").get( exampleController.getById)

export default router;
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

alt text

The route /user-data/:id does not use the grantAccessByPermissionMiddleware, which is required for security purposes. You should modify the route to include this middleware as follows:

router.route("/user-data/:id").get(grantAccessByPermissionMiddleware([API_PERMISSIONS.PUBLIC_ENDPOINT]), exampleController.getById);

This ensures that all routes check permissions properly.

(Based on guideline 'Check permissions with middleware')

firstmate[bot]
firstmate bot reviewed Nov 13, 2024
View reviewed changes
src/services/newService.js
Comment on lines +4 to +13
export class NewService {

async getById(id) {
logger.info("Getting data by ID.")
return await exampleRepo.getById(id);
}

async getDataFromRepo(id) {
return await exampleRepo.getData(id);
}
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

alt text

The new service functions getById and getDataFromRepo lack corresponding unit tests, which are essential for ensuring functionality and reliability. You should implement unit tests in the test folder to cover these functions, similar to the existing unit tests in test/test-user.js. Here's a basic structure for your tests:

import NewService from '../src/services/newService.js';

describe('NewService', () => {
    it('should get data by ID', async () => {
        // Your test logic here
    });

    it('should get data from repo', async () => {
        // Your test logic here
    });
});

(Based on guideline 'Unit tests for service functions')

@firstmate FirstMate
Copy link

firstmate bot commented Nov 13, 2024
edited
Loading

PR Review

⚠️ It seems that you can still improve the quality of your PR:

    ❌ Logging issues: User data logged at info level; change to debug level.
    ❌ Security issues: Missing permission middleware on /user-data/:id route.
    ❌ Testing gaps: No unit tests for NewService; implement tests in test folder.

Generated by Firstmate to make sure you can focus on coding new features.

firstmate[bot]
firstmate bot reviewed Nov 13, 2024
View reviewed changes
src/services/exampleService.js
Comment on lines +10 to +13
async getUserData(id) {
const user = await exampleRepo.getById(id);
logger.info(user.data);
}
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

alt text

Logging user data at info level is against the guideline. Consider using debug level for logging business data. Replace logger.info(user.data); with logger.debug(user.data);.

(Based on guideline 'Never log business data on info level')

firstmate[bot]
firstmate bot reviewed Nov 13, 2024
View reviewed changes
src/routes/exampleRouter.js
Comment on lines +12 to 14
router.route("/user-data/:id").get( exampleController.getById)

export default router;
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

alt text

The route /user-data/:id does not utilize the grantAccessByPermissionMiddleware. You should add this middleware to ensure proper permission checks, like this:

+ router.route("/user-data/:id").get(grantAccessByPermissionMiddleware([API_PERMISSIONS.PUBLIC_ENDPOINT]), exampleController.getById);

(Based on guideline 'Routes should check permissions')

firstmate[bot]
firstmate bot reviewed Nov 13, 2024
View reviewed changes
src/services/newService.js
Comment on lines +1 to +18
import exampleRepo from "../repos/exampleRepo.js"
import logger from "./utils/logger.js";

export class NewService {

async getById(id) {
logger.info("Getting data by ID.")
return await exampleRepo.getById(id);
}

async getDataFromRepo(id) {
return await exampleRepo.getData(id);
}


}

export default new NewService();
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

alt text

The newService.js file lacks corresponding unit tests in the test folder. Implement unit tests to cover the functionality of the NewService class, similar to how it's done in test/test-user.py. Here's a basic structure for your test file:

import NewService from '../services/newService.js';

describe('NewService', () => {
    test('should get data by ID', async () => {
        // Your test implementation here
    });
});

(Based on guideline 'Services should have unit tests')

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@firstmate firstmate[bot] firstmate[bot] left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@WilmsJochen @wvl94