CLOUDP-272001: IPA-112: Disallow usages of project in the api

yelizhenden-mdb · yelizhenden-mdb · commit 372fc954ac64 · 2025-03-19T10:55:32.000Z
diff --git a/tools/spectral/ipa/__tests__/IPA112AvoidProjectFieldNames.test.js b/tools/spectral/ipa/__tests__/IPA112AvoidProjectFieldNames.test.js
@@ -0,0 +1,312 @@
+import testRule from './__helpers__/testRule';
+import { DiagnosticSeverity } from '@stoplight/types';
+
+testRule('xgen-IPA-112-avoid-project-field-names', [
+  {
+    name: 'valid schema - no project field names',
+    document: {
+      components: {
+        schemas: {
+          SchemaName: {
+            properties: {
+              group: { type: 'string' },
+              groupId: { type: 'string' },
+              otherField: { type: 'number' }
+            }
+          }
+        }
+      }
+    },
+    errors: []
+  },
+  {
+    name: 'invalid schema - with project field name',
+    document: {
+      components: {
+        schemas: {
+          SchemaName: {
+            properties: {
+              project: { type: 'string' }
+            }
+          }
+        }
+      }
+    },
+    errors: [
+      {
+        code: 'xgen-IPA-112-avoid-project-field-names',
+        message: 'Field name "project" should be avoided. Consider using "group", "groups", or "groupId" instead.',
+        path: ['components', 'schemas', 'SchemaName', 'properties', 'project'],
+        severity: DiagnosticSeverity.Warning
+      }
+    ]
+  },
+  {
+    name: 'invalid schema - with projects field name',
+    document: {
+      components: {
+        schemas: {
+          SchemaName: {
+            properties: {
+              projects: { type: 'array' }
+            }
+          }
+        }
+      }
+    },
+    errors: [
+      {
+        code: 'xgen-IPA-112-avoid-project-field-names',
+        message: 'Field name "projects" should be avoided. Consider using "group", "groups", or "groupId" instead.',
+        path: ['components', 'schemas', 'SchemaName', 'properties', 'projects'],
+        severity: DiagnosticSeverity.Warning
+      }
+    ]
+  },
+  {
+    name: 'invalid schema - with projectId field name',
+    document: {
+      components: {
+        schemas: {
+          SchemaName: {
+            properties: {
+              projectId: { type: 'string' }
+            }
+          }
+        }
+      }
+    },
+    errors: [
+      {
+        code: 'xgen-IPA-112-avoid-project-field-names',
+        message: 'Field name "projectId" should be avoided. Consider using "group", "groups", or "groupId" instead.',
+        path: ['components', 'schemas', 'SchemaName', 'properties', 'projectId'],
+        severity: DiagnosticSeverity.Warning
+      }
+    ]
+  },
+  {
+    name: 'invalid schema - with different case variants',
+    document: {
+      components: {
+        schemas: {
+          SchemaName: {
+            properties: {
+              Project: { type: 'string' },
+              PROJECTID: { type: 'string' }
+            }
+          }
+        }
+      }
+    },
+    errors: [
+      {
+        code: 'xgen-IPA-112-avoid-project-field-names',
+        message: 'Field name "Project" should be avoided. Consider using "group", "groups", or "groupId" instead.',
+        path: ['components', 'schemas', 'SchemaName', 'properties', 'Project'],
+        severity: DiagnosticSeverity.Warning
+      },
+      {
+        code: 'xgen-IPA-112-avoid-project-field-names',
+        message: 'Field name "PROJECTID" should be avoided. Consider using "group", "groups", or "groupId" instead.',
+        path: ['components', 'schemas', 'SchemaName', 'properties', 'PROJECTID'],
+        severity: DiagnosticSeverity.Warning
+      }
+    ]
+  },
+  {
+    name: 'invalid schema with exception - project field name with exception',
+    document: {
+      components: {
+        schemas: {
+          SchemaName: {
+            properties: {
+              project: {
+                type: 'string',
+                'x-xgen-IPA-exception': {
+                  'xgen-IPA-112-avoid-project-field-names': 'reason'
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    errors: []
+  },
+  {
+    name: 'paths with project field name',
+    document: {
+      paths: {
+        '/api/resource': {
+          post: {
+            requestBody: {
+              content: {
+                'application/json': {
+                  schema: {
+                    properties: {
+                      project: { type: 'string' }
+                    }
+                  }
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    errors: [
+      {
+        code: 'xgen-IPA-112-avoid-project-field-names',
+        message: 'Field name "project" should be avoided. Consider using "group", "groups", or "groupId" instead.',
+        path: ['paths', '/api/resource', 'post', 'requestBody', 'content', 'application/json', 'schema', 'properties', 'project'],
+        severity: DiagnosticSeverity.Warning
+      }
+    ]
+  },
+  {
+    name: 'field name containing project substring',
+    document: {
+      components: {
+        schemas: {
+          SchemaName: {
+            properties: {
+              myProjectDetails: { type: 'object' }
+            }
+          }
+        }
+      }
+    },
+    errors: [
+      {
+        code: 'xgen-IPA-112-avoid-project-field-names',
+        message: 'Field name "myProjectDetails" should be avoided. Consider using "group", "groups", or "groupId" instead.',
+        path: ['components', 'schemas', 'SchemaName', 'properties', 'myProjectDetails'],
+        severity: DiagnosticSeverity.Warning
+      }
+    ]
+  },
+  {
+    name: 'exception - field with project substring',
+    document: {
+      components: {
+        schemas: {
+          SchemaName: {
+            properties: {
+              myProjectDetails: {
+                type: 'object',
+                'x-xgen-IPA-exception': {
+                  'xgen-IPA-112-avoid-project-field-names': 'Legacy field name that cannot be changed'
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    errors: []
+  },
+  {
+    name: 'exception - multiple project fields',
+    document: {
+      components: {
+        schemas: {
+          SchemaName: {
+            properties: {
+              projectId: {
+                type: 'string',
+                'x-xgen-IPA-exception': {
+                  'xgen-IPA-112-avoid-project-field-names': 'External API compatibility'
+                }
+              },
+              projects: {
+                type: 'array',
+                'x-xgen-IPA-exception': {
+                  'xgen-IPA-112-avoid-project-field-names': 'External API compatibility'
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    errors: []
+  },
+  {
+    name: 'exception - schema level exception for all properties',
+    document: {
+      components: {
+        schemas: {
+          SchemaName: {
+            'x-xgen-IPA-exception': {
+              'xgen-IPA-112-avoid-project-field-names': 'Legacy schema that cannot be changed'
+            },
+            properties: {
+              projectId: { type: 'string' },
+              projects: { type: 'array' },
+              myProjectDetails: { type: 'object' }
+            }
+          }
+        }
+      }
+    },
+    errors: []
+  },
+  {
+    name: 'exception - in paths',
+    document: {
+      paths: {
+        '/api/resource': {
+          post: {
+            requestBody: {
+              content: {
+                'application/json': {
+                  schema: {
+                    properties: {
+                      project: {
+                        type: 'string',
+                        'x-xgen-IPA-exception': {
+                          'xgen-IPA-112-avoid-project-field-names': 'Third-party integration requirement'
+                        }
+                      }
+                    }
+                  }
+                }
+              }
+            }
+          }
+        }
+      }
+    },
+    errors: []
+  },
+  {
+    name: 'mixed valid, invalid, and exception fields',
+    document: {
+      components: {
+        schemas: {
+          SchemaName: {
+            properties: {
+              project: {
+                type: 'string',
+                'x-xgen-IPA-exception': {
+                  'xgen-IPA-112-avoid-project-field-names': 'Legacy field'
+                }
+              },
+              projectId: { type: 'string' },
+              group: { type: 'string' }
+            }
+          }
+        }
+      }
+    },
+    errors: [
+      {
+        code: 'xgen-IPA-112-avoid-project-field-names',
+        message: 'Field name "projectId" should be avoided. Consider using "group", "groups", or "groupId" instead.',
+        path: ['components', 'schemas', 'SchemaName', 'properties', 'projectId'],
+        severity: DiagnosticSeverity.Warning
+      }
+    ]
+  }
+]);
diff --git a/tools/spectral/ipa/ipa-spectral.yaml b/tools/spectral/ipa/ipa-spectral.yaml
@@ -7,6 +7,7 @@ extends:
   - ./rulesets/IPA-107.yaml
   - ./rulesets/IPA-108.yaml
   - ./rulesets/IPA-109.yaml
+  - ./rulesets/IPA-112.yaml
   - ./rulesets/IPA-113.yaml
   - ./rulesets/IPA-123.yaml
 
diff --git a/tools/spectral/ipa/rulesets/IPA-112.yaml b/tools/spectral/ipa/rulesets/IPA-112.yaml
@@ -0,0 +1,23 @@
+# IPA-112: Field Names
+# http://go/ipa/112
+
+functions:
+  - IPA112AvoidProjectFieldNames
+
+rules:
+  xgen-IPA-112-avoid-project-field-names:
+    description: |
+      Schema field names should avoid using "project", "projects", or "projectId".
+      
+      ##### Implementation details
+      Rule checks for the following conditions:
+        - Searches through all schemas in the API definition
+        - Identifies property names that match "group", "groups", or "groupId" (case-insensitive)
+        - Reports any instances where these field names are used
+        - Suggests using "group", "groups", or "groupId" as alternatives
+    message: '{{error}} https://mdb.link/mongodb-atlas-openapi-validation#xgen-IPA-112-avoid-project-field-names'
+    severity: warn
+    given: '$..[?(@.properties)]'
+    then:
+      field: @key
+      function: 'IPA112AvoidProjectFieldNames'
diff --git a/tools/spectral/ipa/rulesets/functions/IPA112AvoidProjectFieldNames.js b/tools/spectral/ipa/rulesets/functions/IPA112AvoidProjectFieldNames.js
@@ -0,0 +1,46 @@
+
+import { hasException } from './utils/exceptions.js';
+import {
+  collectAdoption,
+  collectAndReturnViolation,
+  collectException, handleInternalError,
+} from './utils/collectionUtils.js';
+import { resolveObject } from './utils/componentUtils.js';
+
+const RULE_NAME = 'xgen-IPA-112-avoid-project-field-names';
+
+export default (input, _, { path, documentInventory }) => {
+  const oas = documentInventory.resolved;
+  const property = resolveObject(oas, path);
+
+  if (hasException(property, RULE_NAME)) {
+    collectException(property, RULE_NAME, path);
+    return;
+  }
+
+  const errors = checkViolationsAndReturnErrors(input, path);
+  if (errors.length !== 0) {
+    return collectAndReturnViolation(path, RULE_NAME, errors);
+  }
+  collectAdoption(input, RULE_NAME);
+};
+
+function checkViolationsAndReturnErrors(input, path) {
+  const errors = [];
+  try {
+    const prohibitedName = "project";
+
+    const lowerPropertyName = input.toLowerCase();
+
+    if (lowerPropertyName.includes(prohibitedName)) {
+      errors.push({
+        path,
+        message: `Field name "${input}" should be avoided. Consider using "group", "groups", or "groupId" instead.`
+      });
+    }
+
+    return errors;
+  } catch (e) {
+    handleInternalError(RULE_NAME, path, e);
+  }
+}
