A Microservice Framework for Telescope. Because Ray said we should try microservices!
Satellite creates an Express.js based server with various common pieces already set up. Bring your own router and let us do the rest.
npm install --save @senecacdot/satellite
The following JWT verification values are required:
SECRET
: the secret used for JWT token verificationJWT_AUDIENCE
: the audience (aud) claim expected in JWT token verificationJWT_ISSUER
: the issuer (iss) claim expected in JWT token verification
In its most basic form, a Satellite-based microservice looks like this:
const {
Satellite, // the Satellite constructor
logger, // pre-configured logger
} = require('@senecacdot/satellite');
// Define your microservice
const service = new Satellite();
// Add your routes to the service's router
service.router.get('/my-route', (req, res) => {
res.json({ message: 'hello world' });
});
// Start the service on the specified port
service.start(8888, () => {
logger.info('Satellite Microservice running on port 8888');
});
healthCheck
: an optionalfunction
returning aPromise
, used to determine if the service is healthy. If no function is defined, a default one will be provided. ThehealthCheck
function is what runs at the/healthcheck
route by default.
const service = new Satellite({
healthCheck: async () => {
// Connect to db and return a promise
const ok = await doSomeAsyncTask();
return ok;
},
});
shutDown
: an optionalfunction
returning aPromise
, used to run any shutdown logic (sync or async) before the server is shut down. If no function is defined, a default one will be provided.
// Open connections to Redis and Elasticsearch
const redis = Redis();
const elastic = Elastic();
const service = new Satellite({
// On shut down, close the open connection to Redis and Elasticsearch
shutDown: () => Promise.all([redis.quit(), elastic.close()]),
});
-
cors
: the options to pass to the cors middleware. By default all options are turned on. Usecors: false
to disable cors. -
helmet
: the options to pass to the helmet middleware. By default all options are turned on. Usehelmet: false
to disable helmet. -
optOutFloc
: Enable adding the appropriate headers to Satellite to opt out of Google's Floc. Disabled by default.
const service = new Satellite({
options.optOutFloc: true,
});
beforeParsers
: an optional hook function that allows access to theapp
during creation prior to adding the body parsers
const service = new Satellite({
beforeParsers(app) {
// Optionally add some middleware before the parser are attached
app.use(myMiddlewareFunction());
},
});
beforeRouter
: an optional hook function that allows access to theapp
during creation prior to adding the router.
const service = new Satellite({
beforeRouter(app) {
// Optionally add some middleware before the router is attached
app.use(myMiddlewareFunction());
},
});
router
: an optional router to use in place of the default one created automatically.
const myRouter = require('./router);
const service = new Satellite({
router: myRouter
});
credentials
: an optional Object containing akey
andcert
, to be used in the creation of a secure HTTPS server. Ifcredentials
is not provided, an HTTP server is created instead (the default).
const service = new Satellite({
credentials: {
key: fs.readFileSync('/path/to/privkey.pem'),
cert: fs.readFileSync('/path/to/fullchain.pem'),
},
});
There are also a number of optional objects and functions available to further customize your service.
Some services are easier to write using more than one router (e.g., defining
complex routes in their own files). This is easily done with the Router
:
// custom-router.js
const { Router } = require("@senecacdot/satellite");
const router = Router();
router.get('/custom-route', (req, res) => {...});
router.post('/custom-route', (req, res) => {...});
router.put('/custom-route', (req, res) => {...});
router.delete('/custom-route', (req, res) => {...});
module.exports = router;
// index.js
const { Satellite } = require("@senecacdot/satellite");
const router = require('./custom-router");
const service = new Satellite({
// Use our custom router instead of the default router
router
});
A number of middleware functions are available to help with your routes.
isAuthenticated()
- used to make sure that a request includes a valid JWT and the user has previously been authenticated.
router.get('/private-route', isAuthenticated(), (req, res) => {...});
isAuthorized()
- used to check if an authenticated user is authorized. NOTE:isAuthorized()
must be used in conjunction withisAuthenticated()
:
Here are some examples:
const { isAuthenticated, isAuthorized } = require("@senecacdot/satellite");
// Authorize based on arbitrary user claims
router.post(
'/:user',
isAuthenticated(),
isAuthorized(
// `user` is the decoded payload of the user's token. Here we use it
// to make sure that the user param matches the user's `sub` claim,
// or that the user is an admin.
(req, user) => {
// Check if the user making the request is the same one for the route
if(user.sub === req.params.user) {
return true;
}
// If not, check if they are an admin
return user.roles.includes('admin');
}
),
(req, res) => {...}
);
The logger
object is a pre-configured logger based on Pino.
const { logger } = require('@senecacdot/satellite');
logger.info('Hello World!');
The hash()
function is a convenience hashing function, which returns a 10 character hash:
const { hash } = require('@senecacdot/satellite');
const id = hash('http://someurl.com');
Services authorize requests using the isAuthenticated()
and isAuthorized()
middleware discussed above.
For the most part, this is meant to be used for the case of user-to-service requests: an authenticated
user passes a JWT token (acquired via the auth
service), and uses it to request authorization to some
protected route.
However, in cases where you need to do a service-to-service request, you can use the createServiceToken()
function in order to get a short-lived access token that will include the "service"
role:
const { createServiceToken } = require('@senecacdot/satellite');
...
const res = await fetch(`some/protected/route`, {
headers: {
Authorization: `bearer ${createServiceToken()}`,
},
});
The receiving service can then opt-into allowing this service to be authorized by using
the isAuthenticated()
and isAuthorized()
middleware like so:
const { isAuthenticated, isAuthorized } = require("@senecacdot/satellite");
// Allow requests with a token bearing the 'service' role to proceed
router.get('/admin-or-service', isAuthenticated(), isAuthorized({ roles: ["service"] }), (req, res) => {...});
The createError()
function creates a unique HTTP Error Object which is based on http-errors.
const { createError } = require('@senecacdot/satellite');
const e = createError(404, 'This is a message that describes your Error object');
console.log(e.status); // of type: Number
console.log(e.message); // of type: String
The Elastic()
function creates an instance of ElasticSearch connected to the elasticsearch url and port number specified in your config environment.
An optional object can be passed to this function which will contain client settings that can be used with ElasticSearch.
const { Elastic } = require('@senecacdot/satellite');
const client = Elastic();
const indexPost = async ({ text, id, title, published, author }) => {
try {
await client.index({
index,
type,
id,
body: {
text,
title,
published,
author,
},
});
} catch (error) {
logger.error({ error }, `There was an error indexing a post for id ${id}`);
}
};
The fetch(url, options)
function will initiate an http request to an endpoint url specified by url
with any options also specified by the options
parameter.
This function uses node-fetch
on the side to make the http requests. Returns a promise.
const { fetch } = require('@senecacdot/satellite');
const response = await fetch('https://jsonplaceholder.typicode.com/posts');
const data = await response.json();
// Do whatever with the data you received