CLOUDP-271988: IPA-102: Validate paths follow expected format

Author: yelizhenden-mdb

tools/spectral/ipa/__tests__/eachPathAlternatesBetweenResourceNameAndPathParam.test.js

@@ -0,0 +1,213 @@
+import testRule from './__helpers__/testRule';
+import { DiagnosticSeverity } from '@stoplight/types';
+
+testRule('xgen-IPA-102-path-alternate-resource-name-path-param', [
+  {
+    name: 'valid paths - api/atlas/v2',
+    document: {
+      paths: {
+        '/api/atlas/v2/resourceName': {
+          post: {},
+          get: {},
+        },
+        '/api/atlas/v2/resourceName/{pathParam}': {
+          get: {},
+          patch: {},
+          delete: {},
+        },
+        '/api/atlas/v2/resourceName1/{pathParam}/resourceName2': {
+          post: {},
+          get: {},
+        },
+        '/api/atlas/v2/resourceName1/{pathParam1p}/resourceName2/{pathParam2}': {
+          get: {},
+          patch: {},
+          delete: {},
+        },
+        '/api/atlas/v2/resourceName/{pathParam}:method': {
+          post: {},
+        },
+        '/api/atlas/v2/custom:method': {
+          post: {},
+        },
+        '/api/atlas/v2': {
+          post: {},
+        }
+      },
+    },
+    errors: [],
+  },
+  {
+    name: 'valid paths - api/atlas/v2/unauth',
+    document: {
+      paths: {
+        '/api/atlas/v2/unauth/resourceName': {
+          post: {},
+          get: {},
+        },
+        '/api/atlas/v2/unauth/resourceName/{pathParam}': {
+          get: {},
+          patch: {},
+          delete: {},
+        },
+        '/api/atlas/v2/unauth/resourceName1/{pathParam}/resourceName2': {
+          post: {},
+          get: {},
+        },
+        '/api/atlas/v2/unauth/resourceName1/{pathParam1p}/resourceName2/{pathParam2}': {
+          get: {},
+          patch: {},
+          delete: {},
+        },
+        '/api/atlas/v2/unauth/resourceName/{pathParam}:method': {
+          post: {},
+        },
+        '/api/atlas/v2/unauth/custom:method': {
+          post: {},
+        },
+        '/api/atlas/v2/unauth': {
+          post: {},
+        }
+      },
+    },
+    errors: [],
+  },
+  {
+    name: 'invalid paths - api/atlas/v2',
+    document: {
+      paths: {
+        '/api/atlas/v2/resourceName1/resourceName2': {
+          post: {},
+          get: {},
+        },
+        '/api/atlas/v2/resourceName/{pathParam1}/{pathParam2}': {
+          patch: {},
+          delete: {},
+        },
+        '/api/atlas/v2/resourceName1/{pathParam1}/resourceName2/resourceName3': {
+          patch: {},
+          delete: {},
+        },
+        '/api/atlas/v2/resourceName1/{pathParam1}/resourceName2/{pathParam2}/{pathParam3}': {
+          patch: {},
+          delete: {},
+        },
+        '/api/atlas/v2/{pathParam}': {
+          post: {},
+          get: {},
+        },
+        '/api/atlas/v2/{pathParam1}/{pathParam2}': {
+          post: {},
+          get: {},
+        }
+      },
+    },
+    errors: [
+      {
+        code: 'xgen-IPA-102-path-alternate-resource-name-path-param',
+        message: 'API paths must alternate between resource name and path params. http://go/ipa/117',
+        path: ['paths', '/api/atlas/v2/resourceName1/resourceName2'],
+        severity: DiagnosticSeverity.Warning,
+      },
+      {
+        code: 'xgen-IPA-102-path-alternate-resource-name-path-param',
+        message: 'API paths must alternate between resource name and path params. http://go/ipa/117',
+        path: ['paths', '/api/atlas/v2/resourceName/{pathParam1}/{pathParam2}'],
+        severity: DiagnosticSeverity.Warning,
+      },
+      {
+        code: 'xgen-IPA-102-path-alternate-resource-name-path-param',
+        message: 'API paths must alternate between resource name and path params. http://go/ipa/117',
+        path: ['paths', '/api/atlas/v2/resourceName1/{pathParam1}/resourceName2/resourceName3'],
+        severity: DiagnosticSeverity.Warning,
+      },
+      {
+        code: 'xgen-IPA-102-path-alternate-resource-name-path-param',
+        message: 'API paths must alternate between resource name and path params. http://go/ipa/117',
+        path: ['paths', '/api/atlas/v2/resourceName1/{pathParam1}/resourceName2/{pathParam2}/{pathParam3}'],
+        severity: DiagnosticSeverity.Warning,
+      },
+      {
+        code: 'xgen-IPA-102-path-alternate-resource-name-path-param',
+        message: 'API paths must alternate between resource name and path params. http://go/ipa/117',
+        path: ['paths', '/api/atlas/v2/{pathParam}'],
+        severity: DiagnosticSeverity.Warning,
+      },
+      {
+        code: 'xgen-IPA-102-path-alternate-resource-name-path-param',
+        message: 'API paths must alternate between resource name and path params. http://go/ipa/117',
+        path: ['paths', '/api/atlas/v2/{pathParam1}/{pathParam2}'],
+        severity: DiagnosticSeverity.Warning,
+      },
+    ]
+  },
+  {
+    name: 'invalid paths - api/atlas/v2/unauth',
+    document: {
+      paths: {
+        '/api/atlas/v2/unauth/resourceName1/resourceName2': {
+          post: {},
+          get: {},
+        },
+        '/api/atlas/v2/unauth/resourceName/{pathParam1}/{pathParam2}': {
+          patch: {},
+          delete: {},
+        },
+        '/api/atlas/v2/unauth/resourceName1/{pathParam1}/resourceName2/resourceName3': {
+          patch: {},
+          delete: {},
+        },
+        '/api/atlas/v2/unauth/resourceName1/{pathParam1}/resourceName2/{pathParam2}/{pathParam3}': {
+          patch: {},
+          delete: {},
+        },
+        '/api/atlas/v2/unauth/{pathParam}': {
+          post: {},
+          get: {},
+        },
+        '/api/atlas/v2/unauth/{pathParam1}/{pathParam2}': {
+          post: {},
+          get: {},
+        }
+      },
+    },
+    errors: [
+      {
+        code: 'xgen-IPA-102-path-alternate-resource-name-path-param',
+        message: 'API paths must alternate between resource name and path params. http://go/ipa/117',
+        path: ['paths', '/api/atlas/v2/unauth/resourceName1/resourceName2'],
+        severity: DiagnosticSeverity.Warning,
+      },
+      {
+        code: 'xgen-IPA-102-path-alternate-resource-name-path-param',
+        message: 'API paths must alternate between resource name and path params. http://go/ipa/117',
+        path: ['paths', '/api/atlas/v2/unauth/resourceName/{pathParam1}/{pathParam2}'],
+        severity: DiagnosticSeverity.Warning,
+      },
+      {
+        code: 'xgen-IPA-102-path-alternate-resource-name-path-param',
+        message: 'API paths must alternate between resource name and path params. http://go/ipa/117',
+        path: ['paths', '/api/atlas/v2/unauth/resourceName1/{pathParam1}/resourceName2/resourceName3'],
+        severity: DiagnosticSeverity.Warning,
+      },
+      {
+        code: 'xgen-IPA-102-path-alternate-resource-name-path-param',
+        message: 'API paths must alternate between resource name and path params. http://go/ipa/117',
+        path: ['paths', '/api/atlas/v2/unauth/resourceName1/{pathParam1}/resourceName2/{pathParam2}/{pathParam3}'],
+        severity: DiagnosticSeverity.Warning,
+      },
+      {
+        code: 'xgen-IPA-102-path-alternate-resource-name-path-param',
+        message: 'API paths must alternate between resource name and path params. http://go/ipa/117',
+        path: ['paths', '/api/atlas/v2/unauth/{pathParam}'],
+        severity: DiagnosticSeverity.Warning,
+      },
+      {
+        code: 'xgen-IPA-102-path-alternate-resource-name-path-param',
+        message: 'API paths must alternate between resource name and path params. http://go/ipa/117',
+        path: ['paths', '/api/atlas/v2/unauth/{pathParam1}/{pathParam2}'],
+        severity: DiagnosticSeverity.Warning,
+      },
+    ],
+  },
+]);

tools/spectral/ipa/ipa-spectral.yaml

@@ -1,2 +1,3 @@
 extends:
+  - ./rulesets/IPA-102.yaml
   - ./rulesets/IPA-104.yaml

tools/spectral/ipa/rulesets/IPA-102.yaml

@@ -0,0 +1,15 @@
+# IPA-102: Resource Identifiers
+# http://go/ipa/102
+
+functions:
+  - eachPathAlternatesBetweenResourceNameAndPathParam
+
+rules:
+  xgen-IPA-102-path-alternate-resource-name-path-param:
+    description: "Paths should alternate between resource names and path params. http://go/ipa/102"
+    message: "{{error}} http://go/ipa/102"
+    severity: warn
+    given: "$.paths"
+    then:
+      field: "@key"
+      function: "eachPathAlternatesBetweenResourceNameAndPathParam"

tools/spectral/ipa/rulesets/IPA-104.yaml

@@ -7,7 +7,7 @@ functions:
 rules:
   xgen-IPA-104-resource-has-GET:
     description: "APIs must provide a get method for resources. http://go/ipa/104"
-    message: "{{error}} http://go/ipa/117"
+    message: "{{error}} http://go/ipa/104"
     severity: warn
     given: "$.paths"
     then:

tools/spectral/ipa/rulesets/functions/eachPathAlternatesBetweenResourceNameAndPathParam.js

@@ -0,0 +1,37 @@
+import { isPathParam } from './utils/pathUtils';
+
+const ERROR_MESSAGE = 'API paths must alternate between resource name and path params.';
+const ERROR_RESULT = [{ message: ERROR_MESSAGE }];
+const AUTH_PREFIX = "/api/atlas/v2";
+const UNAUTH_PREFIX = "/api/atlas/v2/unauth"
+
+const getPrefix = (path) => {
+  if (path.includes(UNAUTH_PREFIX)) return UNAUTH_PREFIX;
+  if (path.includes(AUTH_PREFIX)) return AUTH_PREFIX;
+  return null;
+};
+
+const validatePathStructure = (elements) => {
+  return elements.every((element, index) => {
+    const isEvenIndex = index % 2 === 0;
+    return isEvenIndex
+      ? !isPathParam(element)
+      : isPathParam(element);
+  });
+};
+
+// eslint-disable-next-line no-unused-vars
+export default (input, _0, _1) => {
+  const prefix = getPrefix(input);
+  if (!prefix) return [];
+
+  let suffixWithLeadingSlash = input.slice(prefix.length);
+  if(suffixWithLeadingSlash.length === 0) {
+    return [];
+  }
+
+  let suffix = suffixWithLeadingSlash.slice(1);
+  let elements = suffix.split("/");
+  return validatePathStructure(elements) ? [] : ERROR_RESULT;
+
+}

tools/spectral/ipa/rulesets/functions/utils/pathUtils.js

@@ -0,0 +1,5 @@
+export function isPathParam(str) {
+  const pathParamRegEx = new RegExp(`^{[a-z][a-zA-Z0-9]*}$`);
+  const pathParamWithCustomMethodRegEx = new RegExp(`^{[a-z][a-zA-Z0-9]*}:[a-z][a-zA-Z0-9]*$`);
+  return pathParamRegEx.test(str) || pathParamWithCustomMethodRegEx.test(str);
+}