Add the ability to throw on empty string paths

src/resources/HttpResource.ts

@@ -9,6 +9,9 @@ export type Endpoint = string | ((id?: string) => string);
 
 export type HttpContext<TApi extends HttpApi = HttpApi> = Context & {
   readonly httpApi: TApi;
+  readonly options?: {
+    throwOnEmptyStringPaths?: boolean;
+  };
 };
 
 export type HttpResourceOptions = {
@@ -56,6 +59,15 @@ export default class HttpResource<
 
   getPath(id?: string) {
     const endpoint = this._endpoint;
+
+    // this protects against GraphQL inputs of empty string hitting list endpoints
+    // example: GET /users/<user_id> with an empty string user_id will request /users
+    if (this.context.options?.throwOnEmptyStringPaths && id === '') {
+      throw new TypeError(
+        "id can't be an empty string; pass a value or undefined",
+      );
+    }
+
     if (typeof endpoint === 'function') {
       return endpoint(id);
     }

test/HttpResource.test.ts

@@ -135,4 +135,23 @@
 
     expect(await resource.delete('5')).toEqual(null);
   });
+
+  it('should throw an error if an empty string is provided and the option is enabled', async () => {
+    const data = [{ spicy: true }, { spicy: true }, { spicy: true }];
+    mockedFetch.get('https://gateway/v1/salads', {
+      status: 200,
+      body: { data },
+    });
+
+    const resource = new HttpResource(mockContext, { endpoint: 'salads' });
+    expect(await resource.get('')).toEqual(data);
+
+    mockContext.options = { throwOnEmptyStringPaths: true };
+    expect(() => {
+      resource.get('');
+    }).toThrowErrorMatchingInlineSnapshot(
+      `"id can't be an empty string; pass a value or undefined"`,
+    );
+    expect(await resource.get()).toEqual(data);
+  });
 });