domainstack 1.1.1

Write validation once, use everywhere: Rust rules auto-generate JSON Schema + OpenAPI + TypeScript/Zod. WASM browser validation. Axum/Actix/Rocket adapters.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287

# Serde Integration

Complete guide to using domainstack with serde for automatic validation during deserialization.

## Two Validation Gates

domainstack offers two approaches for validating data:

| Approach | When Validation Runs | Derive Macro |
|----------|---------------------|--------------|
| **Integrated** | During deserialization | `#[derive(ValidateOnDeserialize)]` |
| **Separate** | Explicit `.validate()` call | `#[derive(Validate)]` |

Both are valid patterns with different tradeoffs. Choose based on your use case.

---

## Gate 1: Validate on Deserialize (Integrated)

**Feature flag:** `serde`

Validation runs automatically during deserialization:

```rust
use domainstack::ValidateOnDeserialize;
use serde::Deserialize;

#[derive(Deserialize, ValidateOnDeserialize)]
struct User {
    #[validate(email)]
    email: String,

    #[validate(range(min = 18, max = 120))]
    age: u8,
}

// Single step: deserialize + validate
let user: User = serde_json::from_str(json)?;
// If you have a User, it's guaranteed valid
```

### When to Use Integrated Validation

**Best for:**

- **API boundaries** - Incoming requests should be validated immediately
- **Type-safe guarantees** - "If I have a `User`, it's valid" invariant
- **Reducing boilerplate** - No forgotten `.validate()` calls
- **Fail-fast** - Reject bad data at the earliest possible point

**Use cases:**

```rust
// REST API handlers - validate on entry
async fn create_user(Json(user): Json<User>) -> Response {
    // user is guaranteed valid - no .validate() needed
    db.insert(user).await
}

// Config file loading - fail fast on startup
let config: AppConfig = serde_json::from_str(&file)?;
// Invalid config = immediate startup failure

// Message queue consumers - reject malformed messages
let event: OrderEvent = serde_json::from_slice(&payload)?;
// Invalid event never enters your system
```

---

## Gate 2: Separate Validation Step

Deserialize first, validate later:

```rust
use domainstack::Validate;
use serde::Deserialize;

#[derive(Deserialize, Validate)]
struct User {
    #[validate(email)]
    email: String,

    #[validate(range(min = 18, max = 120))]
    age: u8,
}

// Two steps: deserialize, then validate
let user: User = serde_json::from_str(json)?;  // Step 1
user.validate()?;                               // Step 2
```

### When to Use Separate Validation

**Best for:**

- **Partial/draft data** - Save incomplete forms, validate on submit
- **Multi-stage validation** - Different rules at different stages
- **Conditional validation** - Rules depend on runtime context
- **Migration/import** - Log invalid records instead of failing
- **Testing** - Create invalid instances for testing error paths

**Use cases:**

```rust
// Draft documents - save now, validate on publish
#[derive(Deserialize, Validate)]
struct BlogPost {
    #[validate(non_empty)]
    title: String,
    #[validate(length(min = 100))]
    content: String,
}

fn save_draft(post: BlogPost) -> Result<(), Error> {
    // Don't validate - drafts can be incomplete
    db.save_draft(post)
}

fn publish(post: BlogPost) -> Result<(), Error> {
    post.validate()?;  // NOW validate before publishing
    db.publish(post)
}

// Batch import with error collection
fn import_users(records: Vec<UserRecord>) -> ImportResult {
    let mut valid = vec![];
    let mut errors = vec![];

    for (i, record) in records.into_iter().enumerate() {
        match record.validate() {
            Ok(()) => valid.push(record),
            Err(e) => errors.push((i, e)),  // Log, don't fail
        }
    }
    ImportResult { imported: valid.len(), errors }
}

// Context-dependent validation
fn validate_order(order: Order, user: &User) -> Result<(), ValidationErrors> {
    order.validate()?;  // Basic validation

    // Additional context-aware checks
    if order.total > user.credit_limit {
        return Err(/* credit limit error */);
    }
    Ok(())
}
```

---

## Tradeoffs Comparison

| Aspect | Integrated (`ValidateOnDeserialize`) | Separate (`Validate`) |
|--------|--------------------------------------|----------------------|
| **Guarantees** | Type = valid data | Type = parsed data |
| **Boilerplate** | None | Must call `.validate()` |
| **Flexibility** | Fixed rules | Context-aware rules |
| **Partial data** | Not possible | Fully supported |
| **Performance** | <2% overhead ([benchmarked](../benches/README.md)) | Zero overhead until called |
| **Error type** | `serde::Error` wrapper | Native `ValidationErrors` |
| **Testing** | Can't create invalid instances | Full control |

### The Forgotten `.validate()` Problem

Separate validation has one major risk:

```rust
// BUG: Forgot to validate!
fn process_user(json: &str) -> Result<(), Error> {
    let user: User = serde_json::from_str(json)?;
    db.insert(user).await?;  // Invalid data in DB!
    Ok(())
}
```

Integrated validation eliminates this class of bugs entirely.

### The Inflexibility Problem

Integrated validation can be too strict:

```rust
// Can't save a draft with empty title
#[derive(ValidateOnDeserialize)]
struct Post {
    #[validate(non_empty)]  // Always enforced!
    title: String,
}

let draft: Post = serde_json::from_str(r#"{"title": ""}"#)?;
// Error! But we wanted to save a draft...
```

---

## Hybrid Approach

Use both patterns where appropriate:

```rust
// Strict type for API boundaries
#[derive(Deserialize, ValidateOnDeserialize)]
struct CreateUserRequest {
    #[validate(email)]
    email: String,
}

// Flexible type for internal processing
#[derive(Deserialize, Validate)]
struct UserDraft {
    #[validate(email)]
    email: String,
}

// API handler uses strict type
async fn create_user(Json(req): Json<CreateUserRequest>) -> Response {
    // Guaranteed valid
}

// Internal tool uses flexible type
fn import_from_csv(records: Vec<UserDraft>) -> ImportResult {
    // Validate selectively
}
```

---

## How ValidateOnDeserialize Works

Three-phase deserialization:

1. Deserialize into intermediate type (standard serde)
2. Construct the final struct
3. Validate and return, or return error

```rust
// Conceptually equivalent to:
impl<'de> Deserialize<'de> for User {
    fn deserialize<D>(deserializer: D) -> Result<Self, D::Error> {
        // Phase 1: Deserialize into hidden intermediate struct
        let intermediate = UserIntermediate::deserialize(deserializer)?;

        // Phase 2: Construct final struct
        let user = User {
            email: intermediate.email,
            age: intermediate.age,
        };

        // Phase 3: Validate
        user.validate()
            .map_err(|e| serde::de::Error::custom(
                format!("Validation failed: {}", e)
            ))?;

        Ok(user)
    }
}
```

The macro also generates a `Validate` impl, so you can still call `.validate()` manually if needed.

---

## Optional Field Handling

Validation runs only for `Some(_)` values:

```rust
#[derive(ValidateOnDeserialize)]
struct Profile {
    #[validate(url)]
    website: Option<String>,  // Validates URL if present, allows None

    #[validate(length(min = 10, max = 500))]
    bio: Option<String>,  // Validates length if present
}
```

---

## See Also

- Example: `domainstack/examples/serde_validation.rs`
- Tests: 12 comprehensive integration tests in serde_integration.rs
- Main guide: [Core Concepts](CORE_CONCEPTS.md)