Demo - [Guidelines] - Public API route + logging user data + no unit test for new service #99
Conversation
PR Review ❌ Security: Update Generated by Firstmate to make sure you can focus on coding new features. |
![firstmate[bot]](https://avatars.githubusercontent.com/in/919451?s=60&v=4){kind=small}
| router.route("/user-data/:id").get( exampleController.getById) | ||
|
|
There was a problem hiding this comment.
The route '/user-data/:id' lacks the 'grantAccessByPermissionMiddleware' function, which poses a security risk by allowing unauthorized access. Update the route to include the middleware as follows:
router.route("/user-data/:id").get(grantAccessByPermissionMiddleware([API_PERMISSIONS.PUBLIC_ENDPOINT]), exampleController.getById);
| const user = await exampleRepo.getById(id); | ||
| logger.info(user.data); |
There was a problem hiding this comment.
The logger.info statement logs user data directly, which violates best practices by exposing sensitive information. Instead, use a debug statement for detailed data logging. You can modify the code like this:
- logger.info(user.data);
+ logger.debug(user.data);
| import exampleRepo from "../repos/exampleRepo.js" | ||
| import logger from "./utils/logger.js"; | ||
|
|
||
| export class NewService { | ||
|
|
||
| async getById(id) { | ||
| logger.info("Getting data by ID.") | ||
| return await exampleRepo.getById(id); | ||
| } | ||
|
|
||
| async getDataFromRepo(id) { | ||
| return await exampleRepo.getData(id); | ||
| } | ||
|
|
||
|
|
||
| } | ||
|
|
||
| export default new NewService(); |
There was a problem hiding this comment.
Your service functions getById and getDataFromRepo in newService.js lack unit tests, which should be implemented in the test folder as per the guidelines. Ensure to create corresponding tests in a file like test/test-newService.js. Here's a simple test structure you could use:
import NewService from '../src/services/newService.js';
describe('NewService', () => {
it('should get data by ID', async () => {
// Test implementation here
});
});
wvl94
changed the title
WilmsJochen
force-pushed
the
demo-multiple-guidelines
branch
from
366d66e to
5bade6d
Compare
|
FirstMate is reviewing your PR:
Live status: |
.png)
.gif)
.png)
WilmsJochen
force-pushed
the
demo-multiple-guidelines
branch
from
5bade6d to
53fe48a
Compare
|
FirstMate is reviewing your PR:
Live status: |
💡 PR Summary generated by FirstMate
New API Route and User Data Logging Implementation
Changes:
New API Route:
/user-data/:idroute inexampleRouter.jsto fetch user data.New Service Class:
NewServiceclass innewService.jsfor handling user data retrieval.getByIdandgetDataFromRepomethods with logging.Logging Enhancements:
ExampleServiceandNewServiceto track user data access.CI Pipeline Update:
.github/workflows/firstmate.yamlto run tests after package installation.TLDR: This PR adds a new API route for user data, implements a new service for data retrieval with logging, and updates the CI pipeline to include tests. Focus on the new route and service implementations.
Generated by FirstMate and automatically updated on every commit.