Wondering what’s next for npm?Check out our public roadmap! »

    reformed

    0.1.1 • Public • Published

    Description

    A high-level form field handling and validation module for busboy.

    Requirements

    Install

    npm install reformed
    

    Examples

    • Parse and validate a form with Express and connect-busboy:
    var express = require('express'),
        app = express(),
        busboy = require('connect-busboy'),
        form = require('reformed');
     
    // ...
     
    // you should probably do better email validation than this in production
    function isValidEmail(key, val) {
      return val.length > 0 && val.length < 255 && val.indexOf('@') > -1;
    }
     
    // add a callback parameter for async validation
    function usernameUnused(key, val, cb) {
      // db is some SQL database connection ...
      db.query('SELECT id FROM users WHERE username = ? LIMIT 1'
               [ val ],
               function(err, rows) {
        if (err)
          return cb(err);
        cb(null, !rows || !rows.length);
      });
    }
     
    // ...
     
    app.post('/signup',
             busboy({
               limits: {
                 fields: 10, // max 10 non-multipart fields
                 parts: 10, // max 10 multipart fields
                 fileSize: 8 * 1000 * 1000 // files can be at most 8MB each
               }
             }),
             form({
               firstName: {
                 rules: [
                   { test: /^.{0,50}$/,
                     error: 'First name must be 50 characters or less' }
                 ]
               },
               lastName: {
                 rules: [
                   { test: /^.{0,50}$/,
                     error: 'Last name must be 50 characters or less' }
                 ]
               },
               emailAddress: {
                 required: true,
                 rules: [
                   { test: isValidEmail,
                     error: 'Invalid email address' }
                 ]
               },
               avatar: {
                 filename: '', // use temporary file
                 maxSize: {
                   size: 1 * 1024 * 1024, // 1MB
                   error: 'Avatar file size too large (must be 1MB or less)'
                 }
               },
               username: {
                 required: true,
                 rules: [
                  { test: /^\w{6,20}$/,
                    error: 'Username length must be between 6 and 20 alphanumeric characters' },
                  { test: usernameUnused,
                    error: 'Username already in use' }
                 ]
               },
               password: {
                 required: true,
                 rules: [
                   { test: /^.{6,}$/,
                     error: 'Password must be at least 6 characters' }
                 ]
               }
             }),
             function(err, req, res, next) {
               if (!err || (err && err.key))
                 next(); // no error or validation-related error
               else
                 next(err); // parser or other critical error
             },
             function(req, res, next) {
               if (req.form.error) {
                 // `req.form.data` will always be undefined in case of error
                 return res.send(400, 'Form error for field "'
                                      + req.form.error.key
                                      + '": '
                                      + req.form.error);
               }
     
               // if we had no required fields, `req.form.data` could be undefined
               // if no form data was submitted
     
               // use `req.form.data` here ...
     
               res.send(200, 'Thank you for your form submission!');
             }
    );
     
    app.listen(8000);
    • Parse and validate a form manually (without Express):
    var http = require('http'),
        Busboy = require('busboy'),
        Form = require('reformed').Form;
     
    // ...
     
    // you should probably do better email validation than this in production
    function isValidEmail(key, val) {
      return val.length > 0 && val.length < 255 && val.indexOf('@') > -1;
    }
     
    // add a callback parameter for async validation
    function usernameUnused(key, val, cb) {
      // db is some SQL database connection ...
      db.query('SELECT id FROM users WHERE username = ? LIMIT 1'
               [ val ],
               function(err, rows) {
        if (err)
          return cb(err);
        cb(null, !rows || !rows.length);
      });
    }
     
    // ...
     
    var signupFormCfg = {
      firstName: {
        rules: [
          { test: /^.{0,50}$/,
            error: 'First name must be 50 characters or less' }
        ]
      },
      lastName: {
        rules: [
          { test: /^.{0,50}$/,
            error: 'Last name must be 50 characters or less' }
        ]
      },
      emailAddress: {
        required: true,
        rules: [
          { test: isValidEmail,
            error: 'Invalid email address' }
        ]
      },
      avatar: {
        filename: '', // use temporary file
        maxSize: {
          size: 1 * 1024 * 1024, // 1MB
          error: 'Avatar file size too large (must be 1MB or less)'
        }
      },
      username: {
        required: true,
        rules: [
         { test: /^\w{6,20}$/,
           error: 'Username length must be between 6 and 20 alphanumeric characters' },
         { test: usernameUnused,
           error: 'Username already in use' }
        ]
      },
      password: {
        required: true,
        rules: [
          { test: /^.{6,}$/,
            error: 'Password must be at least 6 characters' }
        ]
      }
    };
     
    http.createServer(function(req, res) {
      if (req.method === 'POST' && req.url === '/signup') {
        try {
          var bb = new Busboy({
                headers: req.headers,
                limits: {
                  fields: 10, // max 10 non-multipart fields
                  parts: 10, // max 10 multipart fields
                  fileSize: 8 * 1000 * 1000 // files can be at most 8MB each
                }
              }),
              form = new Form(signupFormCfg);
     
          form.parse(bb, function(err) {
            if (err) {
              // `form.data` will always be undefined in case of error
              res.writeHead(err.key === undefined ? 500 : 400);
              res.end(''+err);
              return;
            }
     
            // if we had no required fields, `form.data` could be undefined
            // if no form data was submitted
     
            // use `form.data` here ...
     
            res.writeHead(200);
            res.end('Thank you for your form submission!');
          });
          req.pipe(bb);
        } catch (err) {
          res.writeHead(400);
          res.end();
        }
        return;
      }
      res.writeHead(404);
      res.end();
    }).listen(8000);

    API

    require('reformed') returns connect/express middleware. require('reformed').Form returns the Form class.

    Form methods

    • (constructor)(< object >fieldDefs[, < object >options]) - Creates and returns a new Form instance. fieldDefs contains the form field definitions to be used for filtering and/or validation. fieldDefs is keyed on the field name and the value is an object that can contain any of the following properties:

      • dataType - < function > - A function that takes in a non-file field value (string) or a buffered file field value (Buffer) and returns some other value. The default is to leave the value as-is.

      • required - < boolean > - Indicates whether the field is required to be present in order for validation to pass. The default is false.

      • multiple - < boolean > - Allow multiple instances of the same field. If true, this will set the field data value to an array of values. If false, the first value is kept and subsequent values are ignored. The default is false.

      • strictNotMultiple - < boolean > - Set to true to raise an error when multiple values are detected and multiple: true is not set. Otherwise silently ignore additional values.

      • encoding - < string > - For buffered files, this is the Buffer encoding to use to convert the Buffer to a string. If dataType is present, that takes precedence over this setting. The default behavior is to leave the value as a Buffer.

      • filename - < mixed > - Set to a string to be used as the path to save this file to. Otherwise set to true to save the file to a temporary file. Streamed files will have a value of { filename: filepath, size: filesize }, where filepath is the path to the saved file and filesize is the file's total size.

      • buffered - < boolean > - For files, set to true to buffer the entire contents of the file instead of writing to disk. Buffered files will have a value of { data: filebuf, size: filesize }, where filebuf is a Buffer (unless dataType is used to convert the value) containing the data and filesize indicating the total number of bytes in the file.

      • stream - < function > - For files, set to a callback that accepts (and consumes) the Readable stream for this file. Streamed files will have a value of { size: filesize }, where filesize indicates the total number of bytes streamed. RegExp-based rules are ignored in this case. Note: Remember that if a form upload results in failure (due to validation rules or otherwise), the place where you streamed the file to will still be there (if that matters for your application), so you may want to delete it in case of form upload failure.

      • maxSize - < mixed > - Set to a number to restrict the max file size and use the default error message. Set to an object with size as the max file size and error as a custom string error message. If a max file size is set, it only takes effect if it is smaller than any configured busboy (global) max file size limit. The default is no limit (aside from any configured busboy limit).

      • rules - < array > - A list of rules to apply for validation for this field. The default is to apply no rules. Each rule has the following fields:

        • test - < mixed > - Set to a regular expression or a function. Notes:

          • If a regular expression test is used for any file fields, the contents of the files are first converted to binary strings before testing the regular expression.

          • Functions are called synchronously if the function has (2) (key, val) parameters for non-file fields or (3) (key, filename, filesize) parameters for file fields. These synchronous functions must return a boolean to indicate passage of the test, an Error instance to use instead of the defined error (no key property will be set -- useful to indicate critical/system errors), or a string as a direct replacement for error (key property will be set). For streamed fields, the filename field will be set to undefined.

          • Functions are called asynchronously if the function has (3) (key, val, callback) parameters for non-file fields or (4) (key, filename, filesize, callback) parameters for file fields. The callback has the parameters (err, passedTest). For err, an Error instance to use instead of the defined error (no key property will be set -- useful to indicate critical/system errors), or a string as a direct replacement for error (key property will be set). passedTest is a truthy value that should indicate if validation passed. For streamed fields, the filename field will be set to undefined.

          • All functions are called with this set to the current entire data storage object. This can be handy for example if you need to reference other field values or want to enforce a max number of values for a field with multiple: true set.

        • error - < string > - The (default) error message to use when the test fails.

      options is an optional object with the following valid properties:

      • tmpdir - < string > - A path to be used for storing temporary files for file fields that do not have a specific filename set. If this is not provided, os.tmpdir() will be used.
    • parse(< Busboy >bb, < function >callback) - (void) - Starts reading form fields from the Busboy instance bb. callback is passed an Error object on error. If a field didn't pass validation, the error object passed to the callback will have a key property set to the field name that failed validation. In case there were no errors, any/all form data is available on form.data.

    Install

    npm i reformed

    DownloadsWeekly Downloads

    1

    Version

    0.1.1

    License

    none

    Last publish

    Collaborators

    • avatar