Controllers are functions that Exegesis executes to handle incoming requests. You can read about controllers here.
The controllers option tells Exegesis how to find controller functions to
call. This can either be the name of a folder containing controller modules,
or it can be an object where keys are controller names. If it is a folder,
you can additionally specify controllersPattern, which is a glob pattern
telling Exegesis which files to load.
For example: suppose you have a folder in your project named "src/controllers",
which contains "Pets.js" and "Users.ts". If you're loading your OpenAPI
document in "/src/index.js", you could specify controllers as:
import * as path from 'path';
const options = {
controllers: path.resolve(__dirname, 'controllers'),
controllersPattern: '**/*.@(ts|js)',
};Then you can use x-exegesis-controller: Pets
in your OpenAPI document to reference the "Pets.js" module, and use either
operationId or x-exegesis-operationId to reference a function within the
module.
If false, then if any operations do not define a controller, Exegesis will raise an error when the API is being compiled. If true, then Exegesis will simply pretend any operations that don't have a controller do not exist, and will not handle them.
Defaults to true.
An object specifying authenticators. Keys are security scheme names from your OpenAPI document, values are authenticator functions. See OAS3 Security for details.
An object where keys are either mime types or mime type wildcards (e.g. 'text/*'), and values are parsers.
This option is used to control how Exegesis parses message bodies and certain parameters. By default, parsers are provided for 'text/*' and 'application/json'; however you can override either of these.
OpenAPI 3.x defines special handling for 'application/x-www-form-urlencoded', and Exegesis will automatically generate an appropriate parser for this content, however you can override the built-in implementation by supplying your own parser for this media type.
A parser is either an object of the form:
{
/**
* Synchronous function which parses a string. A BodyParser must implement
* this function to be used for parameter parsing.
*
* @param {string} encoded - The encoded value to parse.
* @returns - The decoded value.
*/
parseString(encoded) {...}
}Or:
{
/**
* Async function which parses an incoming HTTP request. This is essentially
* here so you can use express/connect body parsers.
*
* @param {http.IncomingMessage} req - The request to read. This function
* should add `req.body` after parsing the body. If `req.body` is already
* present, this function can ignore the body and just call `next()`.
* @param {http.ServerResponse} res - The response object. Well behaved
* body parsers should *not* write anything to the response or modify it
* in any way.
* @param next - Callback to call when complete. If no value is returned
* via the callback then `req.body` will be used as the body.
*/
parseReq(req, res, next) {...}
}In order to be used for parsing parameters, a parser must implement
parseString(). A parser that does not implement parseReq() can
still be used for parsing request bodies.
If a MimeTypeParser provided in mimeTypeParsers does not support
parseReq(), this defines the maximum size (in bytes) of a body that will be parsed.
Bodies longer than this will result in a "413 - Payload Too Large" error.
Built in body parsers will also respect this option.
If you use the "format" specifier in your OpenAPI document with custom defined formats, you must provide validation functions for each format used.
customFormats is an object where keys are format names. Values can be one of:
- A RegExp for checking a string.
- A
function(string) : booleanfor checking a string, which returns false the the string is invalid. - A
{validate, type}object, wheretypeis either "string" or "number", and validate is afunction(string) : boolean.
OpenAPI 3.x lets you specify what servers your API is available on. For example:
servers:
- url: '/api/v2'By default, Exegesis will take 'servers' into account when routing requests, so if you have the above servers section, and a path in your API called "/users", then exegesis will only match the route if the incoming requests has the URL "/api/v2/users".
If you have path templates in your servers, the variables will be available to
your controllers via context.params.server.
If you specify the ignoreServers option, however, exegesis will ignore the
servers section, and route purely based on your paths.
By default, ExegesisRunner will turn exegesis.HttpErrors (such as errors
generated from context.makeError(), exegesis.ValidationErrors, or any error
with a .status) into JSON replies with appropriate error messages. If you want
to handle these errors yourself, set this value to false. Alternatively, you can set the value
to a function(err, { req }) function that handles the error returning a HttpResult object.
See customErrorHandler for an example.
Note that all HttpErrors will have a .status property with a suggested
numeric HTTP response code.
This is a function to call when response validation fails. If you provide this function, Exegesis will validate the responses that controllers generate before they are sent to the client. If you throw an exception in this function, a 500 error will be generated and the reply will not be sent.
Note that when bodies are strings, buffers, or streams, Exegesis will not try to parse your body to see if it conforms to the response schema; only JSON objects are validated.
If provided, this should be a function(result) function, where:
result.errorsis a list of validation errors. Validation errors are{type, message, location: {in: 'response', name: 'body', docPath}}objects.- (for OAS3)
result.isDefaultis true if we validated against a 'default' status code. result.contextis the context passed to the controller.
A note about response validation and performance; if you call context.res.json()
or return an object from your controller, then the object or any nested objects
could have a toJSON() method on them. This would happen when, for example,
you return a Mongoose object, or use a Mongoose object as a child of your object.
In order to correctly validate the response for such an object, Exegesis must
first serialize the object to JSON, and then deserialize it again to get the
actual transmitted object. This is murderous for performance. Checking to see
if an object has any toJSON() functions is also not great for performance. In
order to get around this, you can call context.res.pureJson() to set the JSON
reply.
Note that in a future major release of Exegesis, returning a JSON object will
have the same behavior as calling context.res.pureJson() instead of having the
same behavior as calling context.res.json().
Controls how Exegesis validates responses. If this is set to false, then in OAS3 Exegesis will not do validation for responses unless the response status code matches an explicit status code in the responses object (not the "default" status code). If this is set to true, then all responses will be validated.
This option is ignored if onResponseValidationError is not set. If
onResponseValidationError is set, the default is true.
If true, then when a controller returns a JSON object, exegesis will call
context.res.pureJson(val) to set the body of the response. If false, Exegesis
will call context.res.json(val). See onResponseValidationError() for
a discussion about the difference between these.
This defaults to false, but in a future release it will default to true.
If true, then this will put ajv into "strict mode".
If set, then when encountering a validation error Exegesis will return all errors found in the document instead of just the first error. This causes Exegesis to spend more time on requests with errors in them, so for performance reasons this is disabled by default.
Response and request schemas are compiled by ajv to make validation faster. However compilation is slow and can cause compilation of API to take long time. Enabling this will cause validation schemas compilation to be executed when the validator is needed.