Fixed implementation logic

Author: sdangol

aidlc-docs/audit.md

@@ -51,6 +51,7 @@ import {
   MethodNotAllowedError,
   NotFoundError,
 } from './errors.js';
+import { createValidationMiddleware } from './middleware/validation.js';
 import { Route } from './Route.js';
 import { RouteHandlerRegistry } from './RouteHandlerRegistry.js';
 import {
@@ -449,7 +450,7 @@ class Router {
 
     // Create validation middleware if validation config provided
     const allMiddleware = validation
-      ? [...middleware, this.#createValidationMiddleware(validation)]
+      ? [...middleware, createValidationMiddleware(validation)]
       : middleware;
 
     for (const method of methods) {
@@ -459,132 +460,6 @@ class Router {
     }
   }
 
-  #createValidationMiddleware(
-    config: RestRouteOptions['validation']
-  ): Middleware {
-    if (!config) return async ({ next }) => next();
-
-    const reqSchemas = config.req;
-    const resSchemas = config.res;
-
-    return async ({ reqCtx, next }) => {
-      // Validate request
-      if (reqSchemas) {
-        if (reqSchemas.body) {
-          // Use event.body which is the raw string, parse if JSON
-          let bodyData: unknown = reqCtx.event.body;
-          const contentType = reqCtx.req.headers.get('content-type');
-          if (
-            contentType?.includes('application/json') &&
-            typeof bodyData === 'string'
-          ) {
-            try {
-              bodyData = JSON.parse(bodyData);
-            } catch {
-              // If parsing fails, validate the raw string
-            }
-          }
-          await this.#validateComponent(
-            reqSchemas.body,
-            bodyData,
-            'body',
-            true
-          );
-        }
-        if (reqSchemas.headers) {
-          const headers = Object.fromEntries(reqCtx.req.headers.entries());
-          await this.#validateComponent(
-            reqSchemas.headers,
-            headers,
-            'headers',
-            true
-          );
-        }
-        if (reqSchemas.path) {
-          await this.#validateComponent(
-            reqSchemas.path,
-            reqCtx.params,
-            'path',
-            true
-          );
-        }
-        if (reqSchemas.query) {
-          const query = Object.fromEntries(
-            new URL(reqCtx.req.url).searchParams.entries()
-          );
-          await this.#validateComponent(reqSchemas.query, query, 'query', true);
-        }
-      }
-
-      // Execute handler
-      const response = await next();
-
-      // Validate response
-      if (resSchemas && response && typeof response === 'object') {
-        if (resSchemas.body && 'body' in response) {
-          await this.#validateComponent(
-            resSchemas.body,
-            response.body,
-            'body',
-            false
-          );
-        }
-        if (resSchemas.headers && 'headers' in response) {
-          const headers =
-            response.headers instanceof Headers
-              ? Object.fromEntries(response.headers.entries())
-              : response.headers;
-          await this.#validateComponent(
-            resSchemas.headers,
-            headers,
-            'headers',
-            false
-          );
-        }
-      }
-
-      return response;
-    };
-  }
-
-  async #validateComponent(
-    schema: {
-      '~standard': {
-        version: 1;
-        vendor: string;
-        validate: (
-          value: unknown
-        ) => Promise<{ value: unknown }> | { value: unknown };
-      };
-    },
-    data: unknown,
-    component: 'body' | 'headers' | 'path' | 'query',
-    isRequest: boolean
-  ): Promise<void> {
-    try {
-      const result = await schema['~standard'].validate(data);
-      if (!('value' in result)) {
-        throw new Error('Validation failed');
-      }
-    } catch (error) {
-      const message = `Validation failed for ${isRequest ? 'request' : 'response'} ${component}`;
-      if (isRequest) {
-        const { RequestValidationError } = await import('./errors.js');
-        throw new RequestValidationError(
-          message,
-          component,
-          error instanceof Error ? error : undefined
-        );
-      }
-      const { ResponseValidationError } = await import('./errors.js');
-      throw new ResponseValidationError(
-        message,
-        component as 'body' | 'headers',
-        error instanceof Error ? error : undefined
-      );
-    }
-  }
-
   /**
    * Handles errors by finding a registered error handler or falling
    * back to a default handler.

package-lock.json

@@ -1,2 +1,3 @@
 export { compress } from './compress.js';
 export { cors } from './cors.js';
+export { createValidationMiddleware } from './validation.js';

packages/event-handler/debug-test.mjs

@@ -0,0 +1,100 @@
+import type { StandardSchemaV1 } from '@standard-schema/spec';
+import type { Middleware, RestRouteOptions } from '../../types/rest.js';
+import { RequestValidationError, ResponseValidationError } from '../errors.js';
+
+/**
+ * Creates a validation middleware from the provided validation configuration.
+ *
+ * @param config - Validation configuration for request and response
+ * @returns Middleware function that validates request/response
+ */
+export const createValidationMiddleware = (
+  config: RestRouteOptions['validation']
+): Middleware => {
+  const reqSchemas = config?.req;
+  const resSchemas = config?.res;
+
+  return async ({ reqCtx, next }) => {
+    // Validate request
+    if (reqSchemas) {
+      if (reqSchemas.body) {
+        let bodyData: unknown = reqCtx.event.body;
+        const contentType = reqCtx.req.headers.get('content-type');
+        if (
+          contentType?.includes('application/json') &&
+          typeof bodyData === 'string'
+        ) {
+          try {
+            bodyData = JSON.parse(bodyData);
+          } catch {
+            // If parsing fails, validate the raw string
+          }
+        }
+        await validateComponent(reqSchemas.body, bodyData, 'body', true);
+      }
+      if (reqSchemas.headers) {
+        const headers = Object.fromEntries(reqCtx.req.headers.entries());
+        await validateComponent(reqSchemas.headers, headers, 'headers', true);
+      }
+      if (reqSchemas.path) {
+        await validateComponent(reqSchemas.path, reqCtx.params, 'path', true);
+      }
+      if (reqSchemas.query) {
+        const query = Object.fromEntries(
+          new URL(reqCtx.req.url).searchParams.entries()
+        );
+        await validateComponent(reqSchemas.query, query, 'query', true);
+      }
+    }
+
+    // Execute handler
+    await next();
+
+    // Validate response
+    if (resSchemas) {
+      const response = reqCtx.res;
+      
+      if (resSchemas.body) {
+        const clonedResponse = response.clone();
+        const contentType = response.headers.get('content-type');
+        
+        let bodyData: unknown;
+        if (contentType?.includes('application/json')) {
+          bodyData = await clonedResponse.json();
+        } else {
+          bodyData = await clonedResponse.text();
+        }
+        
+        await validateComponent(resSchemas.body, bodyData, 'body', false);
+      }
+      
+      if (resSchemas.headers) {
+        const headers = Object.fromEntries(response.headers.entries());
+        await validateComponent(resSchemas.headers, headers, 'headers', false);
+      }
+    }
+  };
+};
+
+async function validateComponent(
+  schema: StandardSchemaV1,
+  data: unknown,
+  component: 'body' | 'headers' | 'path' | 'query',
+  isRequest: boolean
+): Promise<void> {
+  const result = await schema['~standard'].validate(data);
+  
+  if ('issues' in result) {
+    const message = `Validation failed for ${isRequest ? 'request' : 'response'} ${component}`;
+    const error = new Error('Validation failed');
+    
+    if (isRequest) {
+      throw new RequestValidationError(message, component, error);
+    }
+    throw new ResponseValidationError(
+      message,
+      component as 'body' | 'headers',
+      error
+    );
+  }
+}

packages/event-handler/src/http/Router.ts

@@ -3,6 +3,7 @@ import type {
   GenericLogger,
   JSONValue,
 } from '@aws-lambda-powertools/commons/types';
+import type { StandardSchemaV1 } from '@standard-schema/spec';
 import type {
   ALBEvent,
   ALBResult,
@@ -253,36 +254,22 @@ type RouterResponse =
   | APIGatewayProxyResult
   | APIGatewayProxyStructuredResultV2
   | ALBResult;
-/**
- * Standard Schema interface for validation
- * @see https://github.com/standard-schema/standard-schema
- */
-interface StandardSchema<Input = unknown, Output = Input> {
-  '~standard': {
-    version: 1;
-    vendor: string;
-    validate: (
-      value: unknown
-    ) => Promise<{ value: Output }> | { value: Output };
-  };
-}
-
 /**
  * Configuration for request validation
  */
 type RequestValidationConfig<T = unknown> = {
-  body?: StandardSchema<unknown, T>;
-  headers?: StandardSchema<unknown, Record<string, string>>;
-  path?: StandardSchema<unknown, Record<string, string>>;
-  query?: StandardSchema<unknown, Record<string, string>>;
+  body?: StandardSchemaV1<unknown, T>;
+  headers?: StandardSchemaV1<unknown, Record<string, string>>;
+  path?: StandardSchemaV1<unknown, Record<string, string>>;
+  query?: StandardSchemaV1<unknown, Record<string, string>>;
 };
 
 /**
  * Configuration for response validation
  */
 type ResponseValidationConfig<T = unknown> = {
-  body?: StandardSchema<unknown, T>;
-  headers?: StandardSchema<unknown, Record<string, string>>;
+  body?: StandardSchemaV1<unknown, T>;
+  headers?: StandardSchemaV1<unknown, Record<string, string>>;
 };
 
 /**
@@ -334,7 +321,6 @@ export type {
   NextFunction,
   V1Headers,
   WebResponseToProxyResultOptions,
-  StandardSchema,
   RequestValidationConfig,
   ResponseValidationConfig,
   ValidationConfig,