Webda

Stores Guide

A Store service is a special service that handles storage for JSON objects

Overview

The store services allow you to store object in a NoSQL database it handles for you mapping between objects, have a security policy and check the object with JSON Schema

We have currently File, DynamoDB and MongoDB storage

Expose REST API

Inside the configuration you can add a block for expose the store as a REST API

{
  ...
  "expose": {
     "url": "/storeurl", // By default the URL is the store name in lower case
     "restrict": {
       "update": true, // Prevent the creation of an object the PUT method wont be exposed
       "delete": false // Allow delete for the object
     }
  }
  ...
}

The above configuration will end up creating the following routes:

POST /storeurl

GET /storeurl/[uuid]

DELETE /storeurl/[uuid]

You can see that by default, once the store exposed all the methods are available unless you restrict them.

Configuring Mapping

As an example we will use the Users / Idents stores used by the Authentication module.

A User has several Idents so in NoSQL we need to deduplicate a part of the Ident object inside an array inside the User object

The following is the Idents store configuration

{
  ...
  "map": {
     "Users": { // Target store
        "key": "user", // Property inside Ident Object
        "target": "idents", // Property on the User Object
        "fields": "type", // Fields from the Ident Object ( uuid is added by default )
        "cascade": true // If User object is delete then delete all the linked Idents
     }
  }

So if you have a user like

{
  ...
  "uuid": "user_01"
}

Then you save a new Ident object like

{
  ...
  "uuid": "ident_01",
  "user": "user_01",
  "type": "Google"
}

Once the Ident saved, the User object will look like

{
  ...
  "uuid": "user_01",
  "idents": [{"uuid":"ident_01","type":"Google"}]
  ...
}

Then if you update the field type on your Ident object the User object will reflect the change, as well as if you delete the ident object it will be removed from the User object.

If cascade = true, then if you delete the User object, all attached Idents will be delete aswell.

Events

The Stores emit events to let you implement some auto completion of the object if needed or taking any others action even deny the action by throwing an exception

The store event looks like

{
  'object': object,
  'store': this
}

Store.Save: Before saving the object

Store.Saved: After saving the object

Store.Update: Before updating the object

Store.Updated: After updating the object

Store.Delete: Before deleting the object

Store.Deleted: After deleting the object

Store.Get: When getting the object

Models

The store is using a Model to map your object.

It allows you to implement security constraint on the object itself, add some custom actions and validation

Custom actions

As we saw before the store will expose your objects via an URL

You can also add any specific behavior while saving / updating / deleting

class MyModel extends CoreModel {
  canAct(context, action) {
    if (action === 'get') {
      return true;
    } else if (action === 'update') {
      return true;
    } else if (action === 'delete') {
      return true;
    } else if (action === 'create') {
      return true;
    }
  }
}

If not specified the Store will pick the Owner policy as default. Policies are implicit service, so you can get them with a getService("OwnerPolicy"), but don't appear by default in the configuration file. That also means you can override a Policy if you want or create your own to implement your business model

Owner Policy

POST: Add the current user in the user field of the object

PUT: Verify the current user is the user inside the user field

GET: Verify the current user is the user inside the user field, or a public=true field exists on the object

DELETE: Verify the current user is the user inside the user field

Void policy

No verification, not recommended at all

Validation

To ensure that the input is correct, you can setup a JSON schema this way any update or creation will verify that the object is correct.

{
  ...
  "validator": "schema"
  ...
}

All the input of POST or PUT will then be validate against it.

DynamoDB

The DynamoDB stores requires at least accessKeyId, secretAccessKey and table

For more information on DynamoDB : AWS DynamoDB

MongoDB

The MongoDB configuration requires a collection and a mongo parameter where mongo is the MongoDB url

FileDB

The FileDB only requires a folder where to store the datas. It creates it if not exists

MemoryDB

The MemoryDB only store the in a Map, so it will loose all the datas if you shutdown the server. It can be usefull for local cache or for some unit test

Polymer

You have a behavior defined for you, once added to your component you have the model property and a save/get/update/delete method for you to communicate with the API

Contribute on Github! Edit this section.