npm - fastify - Versions diffs - 5.4.0 → 5.5.0 - Mend

fastify 5.4.0 → 5.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (97) hide show

package/.vscode/settings.json +22 -0
package/LICENSE +1 -1
package/SECURITY.md +158 -2
package/build/build-validation.js +19 -1
package/docs/Guides/Delay-Accepting-Requests.md +8 -5
package/docs/Guides/Ecosystem.md +11 -0
package/docs/Guides/Migration-Guide-V5.md +6 -10
package/docs/Guides/Recommendations.md +1 -1
package/docs/Reference/Errors.md +3 -1
package/docs/Reference/Hooks.md +2 -6
package/docs/Reference/Lifecycle.md +2 -2
package/docs/Reference/Request.md +1 -1
package/docs/Reference/Routes.md +4 -3
package/docs/Reference/Server.md +306 -179
package/docs/Reference/TypeScript.md +1 -3
package/docs/Reference/Validation-and-Serialization.md +55 -3
package/docs/Reference/Warnings.md +2 -1
package/fastify.d.ts +2 -2
package/fastify.js +34 -33
package/lib/configValidator.js +196 -28
package/lib/contentTypeParser.js +41 -48
package/lib/error-handler.js +3 -3
package/lib/errors.js +5 -0
package/lib/handleRequest.js +13 -17
package/lib/promise.js +23 -0
package/lib/reply.js +17 -19
package/lib/route.js +37 -3
package/lib/server.js +36 -35
package/lib/warnings.js +11 -1
package/package.json +7 -7
package/test/async-await.test.js +81 -134
package/test/async_hooks.test.js +18 -37
package/test/body-limit.test.js +51 -0
package/test/buffer.test.js +22 -0
package/test/case-insensitive.test.js +44 -65
package/test/check.test.js +17 -21
package/test/close-pipelining.test.js +24 -15
package/test/constrained-routes.test.js +231 -0
package/test/custom-http-server.test.js +7 -15
package/test/custom-parser.0.test.js +267 -348
package/test/custom-parser.1.test.js +141 -191
package/test/custom-parser.2.test.js +34 -44
package/test/custom-parser.3.test.js +56 -104
package/test/custom-parser.4.test.js +106 -144
package/test/custom-parser.5.test.js +56 -75
package/test/custom-querystring-parser.test.js +51 -77
package/test/decorator.test.js +76 -259
package/test/delete.test.js +101 -110
package/test/diagnostics-channel/404.test.js +7 -15
package/test/diagnostics-channel/async-request.test.js +8 -16
package/test/diagnostics-channel/error-request.test.js +7 -15
package/test/diagnostics-channel/sync-request-reply.test.js +9 -16
package/test/diagnostics-channel/sync-request.test.js +9 -16
package/test/fastify-instance.test.js +1 -1
package/test/header-overflow.test.js +18 -29
package/test/helper.js +138 -134
package/test/hooks-async.test.js +26 -32
package/test/hooks.test.js +261 -447
package/test/http-methods/copy.test.js +14 -19
package/test/http-methods/get.test.js +131 -143
package/test/http-methods/head.test.js +53 -84
package/test/http-methods/mkcalendar.test.js +45 -72
package/test/http-methods/move.test.js +6 -10
package/test/http-methods/propfind.test.js +34 -44
package/test/http-methods/unlock.test.js +5 -9
package/test/http2/secure-with-fallback.test.js +3 -1
package/test/https/custom-https-server.test.js +9 -13
package/test/input-validation.js +139 -150
package/test/internals/errors.test.js +50 -1
package/test/internals/handle-request.test.js +29 -5
package/test/internals/promise.test.js +63 -0
package/test/internals/reply.test.js +277 -496
package/test/plugin.1.test.js +40 -68
package/test/plugin.2.test.js +40 -70
package/test/plugin.3.test.js +25 -68
package/test/promises.test.js +42 -63
package/test/register.test.js +8 -18
package/test/request-error.test.js +57 -100
package/test/request-id.test.js +30 -49
package/test/route-hooks.test.js +12 -16
package/test/route-shorthand.test.js +9 -27
package/test/route.1.test.js +74 -131
package/test/route.8.test.js +9 -17
package/test/router-options.test.js +450 -0
package/test/schema-validation.test.js +30 -31
package/test/server.test.js +143 -5
package/test/stream.1.test.js +33 -50
package/test/stream.4.test.js +18 -28
package/test/stream.5.test.js +11 -19
package/test/types/errors.test-d.ts +13 -1
package/test/types/type-provider.test-d.ts +55 -0
package/test/use-semicolon-delimiter.test.js +117 -59
package/test/versioned-routes.test.js +39 -56
package/types/errors.d.ts +11 -1
package/types/hooks.d.ts +1 -1
package/types/instance.d.ts +1 -1
package/types/reply.d.ts +2 -2

package/test/check.test.js CHANGED Viewed

@@ -3,7 +3,6 @@
 const { test } = require('node:test')
 const { S } = require('fluent-json-schema')
 const Fastify = require('..')
-const sget = require('simple-get').concat
 const BadRequestSchema = S.object()
   .prop('statusCode', S.number())
@@ -105,32 +104,29 @@ const handler = (request, reply) => {
   })
 }
-test('serialize the response for a Bad Request error, as defined on the schema', (t, done) => {
+test('serialize the response for a Bad Request error, as defined on the schema', async t => {
   const fastify = Fastify({})
   t.after(() => fastify.close())
   fastify.post('/', options, handler)
-  fastify.listen({ port: 0 }, err => {
-    t.assert.ifError(err)
-    const url = `http://localhost:${fastify.server.address().port}/`
-    sget({
-      method: 'POST',
-      url,
-      json: true
-    }, (err, response, body) => {
-      t.assert.ifError(err)
-      t.assert.strictEqual(response.statusCode, 400)
-      t.assert.deepStrictEqual(body, {
-        statusCode: 400,
-        error: 'Bad Request',
-        message: 'body must be object'
-      })
-      done()
-    })
+  const fastifyServer = await fastify.listen({ port: 0 })
+  const result = await fetch(fastifyServer, {
+    method: 'POST',
+    headers: {
+      'Content-Type': 'application/json'
+    },
+    body: '12'
+  })
+  t.assert.ok(!result.ok)
+  t.assert.strictEqual(result.status, 400)
+  t.assert.deepStrictEqual(await result.json(), {
+    statusCode: 400,
+    error: 'Bad Request',
+    message: 'body must be object'
   })
 })

package/test/close-pipelining.test.js CHANGED Viewed

@@ -11,8 +11,10 @@ test('Should return 503 while closing - pipelining', async t => {
   })
   fastify.get('/', async (req, reply) => {
+    // Simulate a delay to allow pipelining to kick in
+    await new Promise(resolve => setTimeout(resolve, 5))
+    reply.send({ hello: 'world' })
     fastify.close()
-    return { hello: 'world' }
   })
   await fastify.listen({ port: 0 })
@@ -21,14 +23,19 @@ test('Should return 503 while closing - pipelining', async t => {
     pipelining: 2
   })
-  const codes = [200, 200, 503]
-  const responses = await Promise.all([
-    instance.request({ path: '/', method: 'GET' }),
-    instance.request({ path: '/', method: 'GET' }),
-    instance.request({ path: '/', method: 'GET' })
+  const [firstRequest, secondRequest, thirdRequest] = await Promise.allSettled([
+    instance.request({ path: '/', method: 'GET', blocking: false }),
+    instance.request({ path: '/', method: 'GET', blocking: false }),
+    instance.request({ path: '/', method: 'GET', blocking: false })
   ])
-  const actual = responses.map(r => r.statusCode)
-  t.assert.deepStrictEqual(actual, codes)
+  t.assert.strictEqual(firstRequest.status, 'fulfilled')
+  t.assert.strictEqual(secondRequest.status, 'fulfilled')
+  t.assert.strictEqual(firstRequest.value.statusCode, 200)
+  t.assert.strictEqual(secondRequest.value.statusCode, 200)
+  t.assert.strictEqual(thirdRequest.status, 'fulfilled')
+  t.assert.strictEqual(thirdRequest.value.statusCode, 503)
   await instance.close()
 })
@@ -42,6 +49,8 @@ test('Should close the socket abruptly - pipelining - return503OnClosing: false'
   })
   fastify.get('/', async (req, reply) => {
+    // Simulate a delay to allow pipelining to kick in
+    await new Promise(resolve => setTimeout(resolve, 5))
     reply.send({ hello: 'world' })
     fastify.close()
   })
@@ -49,21 +58,21 @@ test('Should close the socket abruptly - pipelining - return503OnClosing: false'
   await fastify.listen({ port: 0 })
   const instance = new Client('http://localhost:' + fastify.server.address().port, {
-    pipelining: 2
+    pipelining: 1
   })
   const responses = await Promise.allSettled([
-    instance.request({ path: '/', method: 'GET' }),
-    instance.request({ path: '/', method: 'GET' }),
-    instance.request({ path: '/', method: 'GET' }),
-    instance.request({ path: '/', method: 'GET' })
+    instance.request({ path: '/', method: 'GET', blocking: false }),
+    instance.request({ path: '/', method: 'GET', blocking: false }),
+    instance.request({ path: '/', method: 'GET', blocking: false }),
+    instance.request({ path: '/', method: 'GET', blocking: false })
   ])
   const fulfilled = responses.filter(r => r.status === 'fulfilled')
   const rejected = responses.filter(r => r.status === 'rejected')
-  t.assert.strictEqual(fulfilled.length, 2)
-  t.assert.strictEqual(rejected.length, 2)
+  t.assert.strictEqual(fulfilled.length, 1)
+  t.assert.strictEqual(rejected.length, 3)
   await instance.close()
 })

package/test/constrained-routes.test.js CHANGED Viewed

@@ -905,3 +905,234 @@ test('Allow regex constraints in routes', async t => {
     t.assert.strictEqual(res.statusCode, 404)
   }
 })
+test('Should allow registering custom rotuerOptions constrained routes', async t => {
+  t.plan(5)
+  const constraint = {
+    name: 'secret',
+    storage: function () {
+      const secrets = {}
+      return {
+        get: (secret) => { return secrets[secret] || null },
+        set: (secret, store) => { secrets[secret] = store }
+      }
+    },
+    deriveConstraint: (req, ctx) => {
+      return req.headers['x-secret']
+    },
+    validate () { return true }
+  }
+  const fastify = Fastify({ routerOptions: { constraints: { secret: constraint } } })
+  fastify.route({
+    method: 'GET',
+    url: '/',
+    constraints: { secret: 'alpha' },
+    handler: (req, reply) => {
+      reply.send({ hello: 'from alpha' })
+    }
+  })
+  fastify.route({
+    method: 'GET',
+    url: '/',
+    constraints: { secret: 'beta' },
+    handler: (req, reply) => {
+      reply.send({ hello: 'from beta' })
+    }
+  })
+  {
+    const res = await fastify.inject({
+      method: 'GET',
+      url: '/',
+      headers: {
+        'X-Secret': 'alpha'
+      }
+    })
+    t.assert.deepStrictEqual(JSON.parse(res.payload), { hello: 'from alpha' })
+    t.assert.strictEqual(res.statusCode, 200)
+  }
+  {
+    const res = await fastify.inject({
+      method: 'GET',
+      url: '/',
+      headers: {
+        'X-Secret': 'beta'
+      }
+    })
+    t.assert.deepStrictEqual(JSON.parse(res.payload), { hello: 'from beta' })
+    t.assert.strictEqual(res.statusCode, 200)
+  }
+  {
+    const res = await fastify.inject({
+      method: 'GET',
+      url: '/',
+      headers: {
+        'X-Secret': 'gamma'
+      }
+    })
+    t.assert.strictEqual(res.statusCode, 404)
+  }
+})
+test('Custom rotuerOptions constrained routes registered also for HEAD method generated by fastify', (t, done) => {
+  t.plan(3)
+  const constraint = {
+    name: 'secret',
+    storage: function () {
+      const secrets = {}
+      return {
+        get: (secret) => { return secrets[secret] || null },
+        set: (secret, store) => { secrets[secret] = store }
+      }
+    },
+    deriveConstraint: (req, ctx) => {
+      return req.headers['x-secret']
+    },
+    validate () { return true }
+  }
+  const fastify = Fastify({ routerOptions: { constraints: { secret: constraint } } })
+  fastify.route({
+    method: 'GET',
+    url: '/',
+    constraints: { secret: 'mySecret' },
+    handler: (req, reply) => {
+      reply.send('from mySecret - my length is 31')
+    }
+  })
+  fastify.inject({
+    method: 'HEAD',
+    url: '/',
+    headers: {
+      'X-Secret': 'mySecret'
+    }
+  }, (err, res) => {
+    t.assert.ifError(err)
+    t.assert.deepStrictEqual(res.headers['content-length'], '31')
+    t.assert.strictEqual(res.statusCode, 200)
+    done()
+  })
+})
+test('allow async rotuerOptions constraints', async (t) => {
+  t.plan(5)
+  const constraint = {
+    name: 'secret',
+    storage: function () {
+      const secrets = {}
+      return {
+        get: (secret) => { return secrets[secret] || null },
+        set: (secret, store) => { secrets[secret] = store }
+      }
+    },
+    deriveConstraint: (req, ctx, done) => {
+      done(null, req.headers['x-secret'])
+    },
+    validate () { return true }
+  }
+  const fastify = Fastify({ routerOptions: { constraints: { secret: constraint } } })
+  fastify.route({
+    method: 'GET',
+    url: '/',
+    constraints: { secret: 'alpha' },
+    handler: (req, reply) => {
+      reply.send({ hello: 'from alpha' })
+    }
+  })
+  fastify.route({
+    method: 'GET',
+    url: '/',
+    constraints: { secret: 'beta' },
+    handler: (req, reply) => {
+      reply.send({ hello: 'from beta' })
+    }
+  })
+  {
+    const { statusCode, payload } = await fastify.inject({ method: 'GET', path: '/', headers: { 'X-Secret': 'alpha' } })
+    t.assert.deepStrictEqual(JSON.parse(payload), { hello: 'from alpha' })
+    t.assert.strictEqual(statusCode, 200)
+  }
+  {
+    const { statusCode, payload } = await fastify.inject({ method: 'GET', path: '/', headers: { 'X-Secret': 'beta' } })
+    t.assert.deepStrictEqual(JSON.parse(payload), { hello: 'from beta' })
+    t.assert.strictEqual(statusCode, 200)
+  }
+  {
+    const { statusCode } = await fastify.inject({ method: 'GET', path: '/', headers: { 'X-Secret': 'gamma' } })
+    t.assert.strictEqual(statusCode, 404)
+  }
+})
+test('error in async rotuerOptions constraints', async (t) => {
+  t.plan(8)
+  const constraint = {
+    name: 'secret',
+    storage: function () {
+      const secrets = {}
+      return {
+        get: (secret) => { return secrets[secret] || null },
+        set: (secret, store) => { secrets[secret] = store }
+      }
+    },
+    deriveConstraint: (req, ctx, done) => {
+      done(Error('kaboom'))
+    },
+    validate () { return true }
+  }
+  const fastify = Fastify({ routerOptions: { constraints: { secret: constraint } } })
+  fastify.route({
+    method: 'GET',
+    url: '/',
+    constraints: { secret: 'alpha' },
+    handler: (req, reply) => {
+      reply.send({ hello: 'from alpha' })
+    }
+  })
+  fastify.route({
+    method: 'GET',
+    url: '/',
+    constraints: { secret: 'beta' },
+    handler: (req, reply) => {
+      reply.send({ hello: 'from beta' })
+    }
+  })
+  {
+    const { statusCode, payload } = await fastify.inject({ method: 'GET', path: '/', headers: { 'X-Secret': 'alpha' } })
+    t.assert.deepStrictEqual(JSON.parse(payload), { error: 'Internal Server Error', message: 'Unexpected error from async constraint', statusCode: 500 })
+    t.assert.strictEqual(statusCode, 500)
+  }
+  {
+    const { statusCode, payload } = await fastify.inject({ method: 'GET', path: '/', headers: { 'X-Secret': 'beta' } })
+    t.assert.deepStrictEqual(JSON.parse(payload), { error: 'Internal Server Error', message: 'Unexpected error from async constraint', statusCode: 500 })
+    t.assert.strictEqual(statusCode, 500)
+  }
+  {
+    const { statusCode, payload } = await fastify.inject({ method: 'GET', path: '/', headers: { 'X-Secret': 'gamma' } })
+    t.assert.deepStrictEqual(JSON.parse(payload), { error: 'Internal Server Error', message: 'Unexpected error from async constraint', statusCode: 500 })
+    t.assert.strictEqual(statusCode, 500)
+  }
+  {
+    const { statusCode, payload } = await fastify.inject({ method: 'GET', path: '/' })
+    t.assert.deepStrictEqual(JSON.parse(payload), { error: 'Internal Server Error', message: 'Unexpected error from async constraint', statusCode: 500 })
+    t.assert.strictEqual(statusCode, 500)
+  }
+})

package/test/custom-http-server.test.js CHANGED Viewed

@@ -3,7 +3,6 @@
 const { test } = require('node:test')
 const http = require('node:http')
 const dns = require('node:dns').promises
-const sget = require('simple-get').concat
 const Fastify = require('..')
 const { FST_ERR_FORCE_CLOSE_CONNECTIONS_IDLE_NOT_AVAILABLE } = require('../lib/errors')
@@ -11,7 +10,7 @@ async function setup () {
   const localAddresses = await dns.lookup('localhost', { all: true })
   test('Should support a custom http server', { skip: localAddresses.length < 1 }, async t => {
-    t.plan(4)
+    t.plan(5)
     const fastify = Fastify({
       serverFactory: (handler, opts) => {
@@ -34,20 +33,13 @@ async function setup () {
     await fastify.listen({ port: 0 })
-    await new Promise((resolve, reject) => {
-      sget({
-        method: 'GET',
-        url: 'http://localhost:' + fastify.server.address().port,
-        rejectUnauthorized: false
-      }, (err, response, body) => {
-        if (err) {
-          return reject(err)
-        }
-        t.assert.strictEqual(response.statusCode, 200)
-        t.assert.deepStrictEqual(JSON.parse(body), { hello: 'world' })
-        resolve()
-      })
+    const response = await fetch('http://localhost:' + fastify.server.address().port, {
+      method: 'GET'
     })
+    t.assert.ok(response.ok)
+    t.assert.strictEqual(response.status, 200)
+    const body = await response.text()
+    t.assert.deepStrictEqual(JSON.parse(body), { hello: 'world' })
   })
   test('Should not allow forceCloseConnection=idle if the server does not support closeIdleConnections', t => {