axum_jsonschema/

lib.rs

#![cfg_attr(docsrs, feature(doc_cfg))]
//! A simple crate provides a drop-in replacement for [`axum::Json`]
//! that uses [`jsonschema`] to validate requests schemas
//! generated via [`schemars`].
//!
//! You might want to do this in order to provide a better
//! experience for your clients and not leak serde's error messages.
//!
//! All schemas are cached in a thread-local storage for
//! the life of the application (or thread).
//!
//! # Features
//!
//! - aide: support for [aide](https://docs.rs/aide/latest/aide/)

#![warn(clippy::pedantic, missing_docs)]
#![allow(clippy::wildcard_imports)]
use std::{
    any::{type_name, TypeId},
    cell::RefCell,
    collections::{HashMap, VecDeque},
};

use axum::{
    body::Body,
    extract::{rejection::JsonRejection, FromRequest},
    response::IntoResponse,
};
use http::{Request, StatusCode};
use itertools::Itertools;
use jsonschema::{Evaluation, Validator};
use schemars::generate::SchemaSettings;
use schemars::{JsonSchema, SchemaGenerator};
use serde::{de::DeserializeOwned, Serialize};
use serde_json::{Map, Value};
use serde_path_to_error::Segment;

/// Wrapper type over [`axum::Json`] that validates
/// requests and responds with a more helpful validation
/// message.
pub struct Json<T>(pub T);

impl<S, T> FromRequest<S> for Json<T>
where
    S: Send + Sync,
    T: DeserializeOwned + JsonSchema + 'static,
{
    type Rejection = JsonSchemaRejection;

    /// Perform the extraction.
    async fn from_request(req: Request<Body>, state: &S) -> Result<Self, Self::Rejection> {
        let value: Value = axum::Json::from_request(req, state)
            .await
            .map_err(JsonSchemaRejection::Json)?
            .0;

        let validation_result = CONTEXT.with(|ctx| {
            let ctx = &mut *ctx.borrow_mut();
            let schema = ctx.schemas.entry(TypeId::of::<T>()).or_insert_with(|| {
                jsonschema::validator_for(ctx.generator.root_schema_for::<T>().as_value())
                    .unwrap_or_else(|error| {
                        tracing::error!(
                            %error,
                            type_name = type_name::<T>(),
                            "invalid JSON schema for type"
                        );
                        jsonschema::validator_for(&Value::Object(Map::default())).unwrap()
                    })
            });

            schema.evaluate(&value)
        });

        if !validation_result.flag().valid {
            return Err(JsonSchemaRejection::Schema(validation_result));
        }

        match serde_path_to_error::deserialize(value) {
            Ok(v) => Ok(Json(v)),
            Err(error) => Err(JsonSchemaRejection::Serde(error)),
        }
    }
}

impl<T> IntoResponse for Json<T>
where
    T: Serialize,
{
    fn into_response(self) -> axum::response::Response {
        axum::Json(self.0).into_response()
    }
}

thread_local! {
    static CONTEXT: RefCell<SchemaContext> = RefCell::new(SchemaContext::new());
}

struct SchemaContext {
    generator: SchemaGenerator,
    schemas: HashMap<TypeId, Validator>,
}

impl SchemaContext {
    fn new() -> Self {
        Self {
            generator: SchemaSettings::draft07()
                .with(|g| g.inline_subschemas = true)
                .into_generator(),
            schemas: HashMap::default(),
        }
    }
}

/// Rejection for [`Json`].
#[derive(Debug)]
pub enum JsonSchemaRejection {
    /// A rejection returned by [`axum::Json`].
    Json(JsonRejection),
    /// A serde error.
    Serde(serde_path_to_error::Error<serde_json::Error>),
    /// A schema validation error.
    Schema(Evaluation),
}

/// The response that is returned by default.
#[derive(Debug, Serialize)]
struct JsonSchemaErrorResponse {
    error: String,
    #[serde(flatten)]
    extra: AdditionalError,
}

#[derive(Debug, Serialize)]
#[serde(tag = "type", rename_all = "snake_case")]
enum AdditionalError {
    Json,
    Deserialization(DeserializationResponse),
    Schema(SchemaResponse),
}

#[derive(Debug, Serialize)]
struct DeserializationResponse {
    deserialization_error: VecDeque<PathError>,
}

#[derive(Debug, Serialize)]
struct SchemaResponse {
    schema_validation: VecDeque<PathError>,
}

#[derive(Debug, Serialize)]
struct PathError {
    instance_location: String,
    #[serde(skip_serializing_if = "Option::is_none")]
    keyword_location: Option<String>,
    error: String,
}

impl From<JsonSchemaRejection> for JsonSchemaErrorResponse {
    fn from(rejection: JsonSchemaRejection) -> Self {
        match rejection {
            JsonSchemaRejection::Json(v) => Self {
                error: v.to_string(),
                extra: AdditionalError::Json,
            },
            JsonSchemaRejection::Serde(s) => Self {
                error: "deserialization failed".to_string(),
                extra: AdditionalError::Deserialization(DeserializationResponse {
                    deserialization_error: VecDeque::from([PathError {
                        // keys and index separated by a '/'
                        // enum is ignored because it doesn't exist in json
                        instance_location: std::iter::once(String::new())
                            .chain(s.path().iter().map(|s| match s {
                                Segment::Map { key } => key.to_string(),
                                Segment::Seq { index } => index.to_string(),
                                _ => "?".to_string(),
                            }))
                            .join("/"),
                        keyword_location: None,
                        error: s.into_inner().to_string(),
                    }]),
                }),
            },
            JsonSchemaRejection::Schema(s) => Self {
                error: "request schema validation failed".to_string(),
                extra: AdditionalError::Schema(SchemaResponse {
                    schema_validation: s
                        .iter_errors()
                        .map(|v| PathError {
                            instance_location: v.instance_location.to_string(),
                            keyword_location: v.absolute_keyword_location.map(|it| it.to_string()),
                            error: v.error.to_string(),
                        })
                        .collect(),
                }),
            },
        }
    }
}

impl IntoResponse for JsonSchemaRejection {
    fn into_response(self) -> axum::response::Response {
        let mut res = axum::Json(JsonSchemaErrorResponse::from(self)).into_response();
        *res.status_mut() = StatusCode::BAD_REQUEST;
        res
    }
}

#[cfg(feature = "aide")]
mod impl_aide {
    use super::*;

    impl<T> aide::OperationInput for Json<T>
    where
        T: JsonSchema,
    {
        fn operation_input(
            ctx: &mut aide::generate::GenContext,
            operation: &mut aide::openapi::Operation,
        ) {
            axum::Json::<T>::operation_input(ctx, operation);
        }
    }

    impl<T> aide::OperationOutput for Json<T>
    where
        T: JsonSchema,
    {
        type Inner = <axum::Json<T> as aide::OperationOutput>::Inner;

        fn operation_response(
            ctx: &mut aide::generate::GenContext,
            op: &mut aide::openapi::Operation,
        ) -> Option<aide::openapi::Response> {
            axum::Json::<T>::operation_response(ctx, op)
        }

        fn inferred_responses(
            ctx: &mut aide::generate::GenContext,
            operation: &mut aide::openapi::Operation,
        ) -> Vec<(Option<u16>, aide::openapi::Response)> {
            axum::Json::<T>::inferred_responses(ctx, operation)
        }
    }
}