donlih2986 2018-02-12 18:14
浏览 281
已采纳

Golang中的OpenAPI规范验证

I want to validate an openapi spec in a similar fashion as its done here : http://bigstickcarpet.com/swagger-parser/www/index.html but the difference is that Ill use GO to code the tool and its only a CLI.

I am trying to use this :

https://github.com/go-openapi/validate

But the main problem is that the documentation is almost non existent. I came here looking for help of someone that might previously used this library and can give me a MINIMAL example of sending a file containing a spec like such and having this library to throw all the errors or warnings in a similar fashion to the online Swagger validator.

I already can read a file and do some manual validation of the fields on it but of course thats not what I need to do and its just a sample.

Additionally, as a secondary question, I want to post this same question on their GitHub repo but I get this :

enter image description here

and I have no idea how to "review" these guidelines so I can post my question.

What I have :

func validate_spec(spec string) []validator_error {
    // RULES HERE. Now I am hardcoding since this is just a dummy app. On the real app we will need to use goapenapi plus a schema validator
    var errors []validator_error
    name_regex, _ := regexp.Compile("^[a-zA-Z]+[ ][a-zA-Z]+")

    // Validate _.name field
        if ( ! gjson.Get(spec, "name").Exists() ) {
            n := validator_error{Path: "_.name", Message: "Does not exist!"}
            errors = append(errors,n)
        }

        if gjson.Get(spec, "name").Exists() {
            if _, ok := gjson.Get(spec, "name").Value().(string); !ok {
                n := validator_error{Path: "_.name", Message: "should be a string"}
                errors = append(errors,n)
            }
            if ( ! name_regex.MatchString(gjson.Get(spec, "name").String() ) ) {
                n := validator_error{Path: "_.name", Message: "should match " + name_regex.String()}
                errors = append(errors,n)
            }
        }
    // ***************************

    // Validate _.age field
        if ( ! gjson.Get(spec, "age").Exists() ) {
            n := validator_error{Path: "_.age", Message: "Does not exist!"}
            errors = append(errors,n)
        }
        if gjson.Get(spec, "age").Exists() {
            if _, ok := gjson.Get(spec, "age").Value().(float64); !ok {
                n := validator_error{Path: "_.age", Message: "should be an int"}
                errors = append(errors,n)
            }

        }
    // ***************************
    return errors
}

What I need :

func validate_spec(spec string) []validator_error {
        // Something like this is what I am looking for. On the above example I am just hard-coding some dummy rules. I need to use the library here to get the validity of the spec being passed.
        return goopenapi.validate(spec )
    }
  • 写回答

1条回答 默认 最新

  • dongzuo9096 2018-02-15 10:29
    关注

    I use https://github.com/go-openapi quite a lot and find that packages very useful to work with OpenAPI spec, validations and other related stuff.

    Validate the spec itself

    Take a look at the following code:

    document, err = loads.Spec(fpath)
if err != nil {
    return nil, errors.Wrap(err, "Failed to load spec")
}

document, err = document.Expanded(&spec.ExpandOptions{RelativeBase: fpath})
if err != nil {
    return nil, errors.Wrap(err, "Failed to expand spec")
}

if err := validate.Spec(document, strfmt.Default); err != nil {
    return nil, errors.Wrap(err, "Spec is invalid")
}

    First of all, it loads spec. Then it expands all references ($ref-s) in that spec. After that it validates the spec itself.

    Validate by spec

    So the spec itself is correct. Now we want to validate, for example, a request body by that spec.

    // sch here is the schema object that can be extracted from
// the spec that you created above.

// data is just an interface{} that represents your data
// structure that you need to validate. data is a struct
// you decoded a json body into like json.Unmarshal(b, &data)

err := validate.AgainstSchema(sch, data, strfmt.Default)
ve, ok := err.(*errors.CompositeError)

// now you can extract errors from ve.Errors

    I've build some wrappers around it for easy request validations, for example:

    // op here is the OpenAPI operation object that can also be extracted
// from the spec loaded above.
if errs := validate.Body(op.Parameters, body); len(errs) > 0 {
    // work with errs
}

    Disclaimer: Some links above lead to the repository oas2 where I am an author and a maintainer. That repository is build on top of go-openapi where I am not the author.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

  • Golang的单点登录身份验证
    2016-05-13 07:35
    回答 1 已采纳 While your solution will certainly work. It could make writing the browser/mobile/general frontend
  • 基于Golang会话的身份验证
    2016-02-07 10:22
    回答 2 已采纳 Importantly, you should check all of your errors - e.g.: - hashedPassword, _ := bcrypt.GenerateFr
  • Golang的对齐
    2018-12-13 20:49
    回答 2 已采纳 According to Adrian and Volker's comment, Q1: No Q2: Do some programming to unpack fields in
  • Golang Fuego web框架从源代码生成OpenAPI 3规范.zip
    2024-05-26 19:29
    1. **安装必要的工具**:确保你已经安装了Golang环境,并且有`go-swagger`工具,这是一个用于处理OpenAPI规范的命令行工具。你可以通过运行`go get -u github.com/go-openapi/agen`和`go get -u github....
  • Golang的MySQL空值 mysql
    2019-05-23 18:12
    回答 1 已采纳 You can use option 2 but instead of scanning into your struct and having to change the types of yo
  • Golang一起验证两个结构字段
    2017-10-05 00:36
    回答 3 已采纳 You can use custom validation function. Playground - https://play.golang.org/p/vYtp5xKakJ packag
  • golang优先使用goroutine
    2018-12-21 20:09
    回答 2 已采纳 I have created threadpools on golang. This should allow easily one to prioritize certain goroutine
  • Go OpenAPI Specification 3.0 教程
    2024-09-11 07:55
    羿辰果Gemstone的博客 Go OpenAPI Specification 3.0 教程 spec3 项目地址: https://gitcode.com/gh_mirrors/sp/spec3 项目...
  • Golang证书验证 ssl
    2017-12-09 23:01
    回答 1 已采纳 You need to do two things: add the CA certificate on the server side as well, the CA needs to be
  • Golang验证语言环境字符串
    2016-06-09 17:52
    回答 1 已采纳 bcd is a valid ISO 639-3 language code for the North Babar language, and by extension it's a valid
  • golang怎么将极小的float64扩大指定倍数? golang
    2023-03-30 18:15
    回答 2 已采纳 引用chatgpt回答,希望对博主有帮助:你可以使用科学计数法来表示这两个浮点数,例如: var f1 float64 = 1.640513915e0 var f2 float64 = 5.80863
  • api-golang
    2021-02-22 11:32
    11. **API 文档**:生成 API 的文档,例如使用 Swagger 或 OpenAPI 规范,使其他开发者能够理解和使用你的 API。 12. **安全性**:了解如何处理跨站请求伪造(CSRF)、XSS 攻击、SQL 注入等安全问题,以及使用 ...
  • 验证您的Kubernetes配置文件,支持多个Kubernetes版本-Golang开发
    2021-05-26 14:24
    它使用从Kubernetes OpenAPI规范生成的架构来执行此操作,因此可以验证Kube的多个版本的架构Kubeval kubeval是用于验证Kubernetes YAML或JSON配置文件的工具。 它使用从Kubernetes OpenAPI规范生成的架构来执行此...
  • dapperdox:漂亮的,集成的OpenAPI文档
    2021-05-03 21:06
    适用于OpenAPI(Swagger)规范的主题文档生成器,服务器和API资源管理器。 帮助您构建集成的,可浏览的参考文档和指南。 例如,使用Alpha版本构建的。特征在GitHub Flavored Markdown编写完整文档。 将多个API...
  • go openapi
    2024-04-12 20:43
    leijmdas的博客 通过将OpenAPI规范文件嵌入到Go代码,gin-swagger可以自动生成在线文档,并提供测试API的功能。swag是一个Go语言的代码生成器,它可以从Go代码的注释生成Swagger (OpenAPI 2.0) 文档。go-openapi是另一个Go社区...
  • 没有解决我的问题, 去提问