DHC
/
bmad-template
Bevaka 4
Stjärnmärk 0
Förgrening 0
Kod Ärenden 0 Pull-förfrågningar 0 Släpp 0 Wiki Aktiviteter
Du kan inte välja fler än 25 ämnen Ämnen måste starta med en bokstav eller siffra, kan innehålla bindestreck ('-') och vara max 35 tecken långa.
2 Incheckningar
2 Grenar
Gren: master
Grenar Taggar
${ item.name }
Skapa branchen ${ searchTerm }
från 'master'
${ noResults }
bmad-template/.claude/skills/bmad-testarch-trace/resources/knowledge/api-request.md

api-request.md 17KB
Permalänk Normal View Historik

chore(repo): 初始化 BMAD 成品模板
5 dagar sedan
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563 
  1. # API Request Utility

  2. 

  3. ## Principle

  4. 

  5. Use typed HTTP client with built-in schema validation and automatic retry for server errors. The utility handles URL resolution, header management, response parsing, and single-line response validation with proper TypeScript support. **Works without a browser** - ideal for pure API/service testing.

  6. 

  7. ## Rationale

  8. 

  9. Vanilla Playwright's request API requires boilerplate for common patterns:

  10. 

  11. - Manual JSON parsing (`await response.json()`)

  12. - Repetitive status code checking

  13. - No built-in retry logic for transient failures

  14. - No schema validation

  15. - Complex URL construction

  16. 

  17. The `apiRequest` utility provides:

  18. 

  19. - **Automatic JSON parsing**: Response body pre-parsed

  20. - **Built-in retry**: 5xx errors retry with exponential backoff

  21. - **Schema validation**: Single-line validation (JSON Schema, Zod, OpenAPI)

  22. - **URL resolution**: Four-tier strategy (explicit > config > Playwright > direct)

  23. - **TypeScript generics**: Type-safe response bodies

  24. - **No browser required**: Pure API testing without browser overhead

  25. 

  26. ## Pattern Examples

  27. 

  28. ### Example 1: Basic API Request

  29. 

  30. **Context**: Making authenticated API requests with automatic retry and type safety.

  31. 

  32. **Implementation**:

  33. 

  34. ```typescript

  35. import { test } from '@seontechnologies/playwright-utils/api-request/fixtures';

  36. 

  37. test('should fetch user data', async ({ apiRequest }) => {

  38.   const { status, body } = await apiRequest<User>({

  39.     method: 'GET',

  40.     path: '/api/users/123',

  41.     headers: { Authorization: 'Bearer token' },

  42.   });

  43. 

  44.   expect(status).toBe(200);

  45.   expect(body.name).toBe('John Doe'); // TypeScript knows body is User

  46. });

  47. ```

  48. 

  49. **Key Points**:

  50. 

  51. - Generic type `<User>` provides TypeScript autocomplete for `body`

  52. - Status and body destructured from response

  53. - Headers passed as object

  54. - Automatic retry for 5xx errors (configurable)

  55. 

  56. ### Example 2: Schema Validation (Single Line)

  57. 

  58. **Context**: Validate API responses match expected schema with single-line syntax.

  59. 

  60. **Implementation**:

  61. 

  62. ```typescript

  63. import { test } from '@seontechnologies/playwright-utils/api-request/fixtures';

  64. import { z } from 'zod';

  65. 

  66. // JSON Schema validation

  67. test('should validate response schema (JSON Schema)', async ({ apiRequest }) => {

  68.   const { status, body } = await apiRequest({

  69.     method: 'GET',

  70.     path: '/api/users/123',

  71.     validateSchema: {

  72.       type: 'object',

  73.       required: ['id', 'name', 'email'],

  74.       properties: {

  75.         id: { type: 'string' },

  76.         name: { type: 'string' },

  77.         email: { type: 'string', format: 'email' },

  78.       },

  79.     },

  80.   });

  81.   // Throws if schema validation fails

  82.   expect(status).toBe(200);

  83. });

  84. 

  85. // Zod schema validation

  86. const UserSchema = z.object({

  87.   id: z.string(),

  88.   name: z.string(),

  89.   email: z.string().email(),

  90. });

  91. 

  92. test('should validate response schema (Zod)', async ({ apiRequest }) => {

  93.   const { status, body } = await apiRequest({

  94.     method: 'GET',

  95.     path: '/api/users/123',

  96.     validateSchema: UserSchema,

  97.   });

  98.   // Response body is type-safe AND validated

  99.   expect(status).toBe(200);

  100.   expect(body.email).toContain('@');

  101. });

  102. ```

  103. 

  104. **Key Points**:

  105. 

  106. - Single `validateSchema` parameter

  107. - Supports JSON Schema, Zod, YAML files, OpenAPI specs

  108. - Throws on validation failure with detailed errors

  109. - Zero boilerplate validation code

  110. 

  111. ### Example 3: POST with Body and Retry Configuration

  112. 

  113. **Context**: Creating resources with custom retry behavior for error testing.

  114. 

  115. **Implementation**:

  116. 

  117. ```typescript

  118. test('should create user', async ({ apiRequest }) => {

  119.   const newUser = {

  120.     name: 'Jane Doe',

  121.     email: 'jane@example.com',

  122.   };

  123. 

  124.   const { status, body } = await apiRequest({

  125.     method: 'POST',

  126.     path: '/api/users',

  127.     body: newUser, // Automatically sent as JSON

  128.     headers: { Authorization: 'Bearer token' },

  129.   });

  130. 

  131.   expect(status).toBe(201);

  132.   expect(body.id).toBeDefined();

  133. });

  134. 

  135. // Disable retry for error testing

  136. test('should handle 500 errors', async ({ apiRequest }) => {

  137.   await expect(

  138.     apiRequest({

  139.       method: 'GET',

  140.       path: '/api/error',

  141.       retryConfig: { maxRetries: 0 }, // Disable retry

  142.     }),

  143.   ).rejects.toThrow('Request failed with status 500');

  144. });

  145. ```

  146. 

  147. **Key Points**:

  148. 

  149. - `body` parameter auto-serializes to JSON

  150. - Default retry: 5xx errors, 3 retries, exponential backoff

  151. - Disable retry with `retryConfig: { maxRetries: 0 }`

  152. - Only 5xx errors retry (4xx errors fail immediately)

  153. 

  154. ### Example 4: URL Resolution Strategy

  155. 

  156. **Context**: Flexible URL handling for different environments and test contexts.

  157. 

  158. **Implementation**:

  159. 

  160. ```typescript

  161. // Strategy 1: Explicit baseUrl (highest priority)

  162. await apiRequest({

  163.   method: 'GET',

  164.   path: '/users',

  165.   baseUrl: 'https://api.example.com', // Uses https://api.example.com/users

  166. });

  167. 

  168. // Strategy 2: Config baseURL (from fixture)

  169. import { test } from '@seontechnologies/playwright-utils/api-request/fixtures';

  170. 

  171. test.use({ configBaseUrl: 'https://staging-api.example.com' });

  172. 

  173. test('uses config baseURL', async ({ apiRequest }) => {

  174.   await apiRequest({

  175.     method: 'GET',

  176.     path: '/users', // Uses https://staging-api.example.com/users

  177.   });

  178. });

  179. 

  180. // Strategy 3: Playwright baseURL (from playwright.config.ts)

  181. // playwright.config.ts

  182. export default defineConfig({

  183.   use: {

  184.     baseURL: 'https://api.example.com',

  185.   },

  186. });

  187. 

  188. test('uses Playwright baseURL', async ({ apiRequest }) => {

  189.   await apiRequest({

  190.     method: 'GET',

  191.     path: '/users', // Uses https://api.example.com/users

  192.   });

  193. });

  194. 

  195. // Strategy 4: Direct path (full URL)

  196. await apiRequest({

  197.   method: 'GET',

  198.   path: 'https://api.example.com/users', // Full URL works too

  199. });

  200. ```

  201. 

  202. **Key Points**:

  203. 

  204. - Four-tier resolution: explicit > config > Playwright > direct

  205. - Trailing slashes normalized automatically

  206. - Environment-specific baseUrl easy to configure

  207. 

  208. ### Example 5: Integration with Recurse (Polling)

  209. 

  210. **Context**: Waiting for async operations to complete (background jobs, eventual consistency).

  211. 

  212. **Implementation**:

  213. 

  214. ```typescript

  215. import { test } from '@seontechnologies/playwright-utils/fixtures';

  216. 

  217. test('should poll until job completes', async ({ apiRequest, recurse }) => {

  218.   // Create job

  219.   const { body } = await apiRequest({

  220.     method: 'POST',

  221.     path: '/api/jobs',

  222.     body: { type: 'export' },

  223.   });

  224. 

  225.   const jobId = body.id;

  226. 

  227.   // Poll until ready

  228.   const completedJob = await recurse(

  229.     () => apiRequest({ method: 'GET', path: `/api/jobs/${jobId}` }),

  230.     (response) => response.body.status === 'completed',

  231.     { timeout: 60000, interval: 2000 },

  232.   );

  233. 

  234.   expect(completedJob.body.result).toBeDefined();

  235. });

  236. ```

  237. 

  238. **Key Points**:

  239. 

  240. - `apiRequest` returns full response object

  241. - `recurse` polls until predicate returns true

  242. - Composable utilities work together seamlessly

  243. 

  244. ### Example 6: Microservice Testing (Multiple Services)

  245. 

  246. **Context**: Test interactions between microservices without a browser.

  247. 

  248. **Implementation**:

  249. 

  250. ```typescript

  251. import { test, expect } from '@seontechnologies/playwright-utils/fixtures';

  252. 

  253. const USER_SERVICE = process.env.USER_SERVICE_URL || 'http://localhost:3001';

  254. const ORDER_SERVICE = process.env.ORDER_SERVICE_URL || 'http://localhost:3002';

  255. 

  256. test.describe('Microservice Integration', () => {

  257.   test('should validate cross-service user lookup', async ({ apiRequest }) => {

  258.     // Create user in user-service

  259.     const { body: user } = await apiRequest({

  260.       method: 'POST',

  261.       path: '/api/users',

  262.       baseUrl: USER_SERVICE,

  263.       body: { name: 'Test User', email: 'test@example.com' },

  264.     });

  265. 

  266.     // Create order in order-service (validates user via user-service)

  267.     const { status, body: order } = await apiRequest({

  268.       method: 'POST',

  269.       path: '/api/orders',

  270.       baseUrl: ORDER_SERVICE,

  271.       body: {

  272.         userId: user.id,

  273.         items: [{ productId: 'prod-1', quantity: 2 }],

  274.       },

  275.     });

  276. 

  277.     expect(status).toBe(201);

  278.     expect(order.userId).toBe(user.id);

  279.   });

  280. 

  281.   test('should reject order for invalid user', async ({ apiRequest }) => {

  282.     const { status, body } = await apiRequest({

  283.       method: 'POST',

  284.       path: '/api/orders',

  285.       baseUrl: ORDER_SERVICE,

  286.       body: {

  287.         userId: 'non-existent-user',

  288.         items: [{ productId: 'prod-1', quantity: 1 }],

  289.       },

  290.     });

  291. 

  292.     expect(status).toBe(400);

  293.     expect(body.code).toBe('INVALID_USER');

  294.   });

  295. });

  296. ```

  297. 

  298. **Key Points**:

  299. 

  300. - Test multiple services without browser

  301. - Use `baseUrl` to target different services

  302. - Validate cross-service communication

  303. - Pure API testing - fast and reliable

  304. 

  305. ### Example 7: GraphQL API Testing

  306. 

  307. **Context**: Test GraphQL endpoints with queries and mutations.

  308. 

  309. **Implementation**:

  310. 

  311. ```typescript

  312. test.describe('GraphQL API', () => {

  313.   const GRAPHQL_ENDPOINT = '/graphql';

  314. 

  315.   test('should query users via GraphQL', async ({ apiRequest }) => {

  316.     const query = `

  317.       query GetUsers($limit: Int) {

  318.         users(limit: $limit) {

  319.           id

  320.           name

  321.           email

  322.         }

  323.       }

  324.     `;

  325. 

  326.     const { status, body } = await apiRequest({

  327.       method: 'POST',

  328.       path: GRAPHQL_ENDPOINT,

  329.       body: {

  330.         query,

  331.         variables: { limit: 10 },

  332.       },

  333.     });

  334. 

  335.     expect(status).toBe(200);

  336.     expect(body.errors).toBeUndefined();

  337.     expect(body.data.users).toHaveLength(10);

  338.   });

  339. 

  340.   test('should create user via mutation', async ({ apiRequest }) => {

  341.     const mutation = `

  342.       mutation CreateUser($input: CreateUserInput!) {

  343.         createUser(input: $input) {

  344.           id

  345.           name

  346.         }

  347.       }

  348.     `;

  349. 

  350.     const { status, body } = await apiRequest({

  351.       method: 'POST',

  352.       path: GRAPHQL_ENDPOINT,

  353.       body: {

  354.         query: mutation,

  355.         variables: {

  356.           input: { name: 'GraphQL User', email: 'gql@example.com' },

  357.         },

  358.       },

  359.     });

  360. 

  361.     expect(status).toBe(200);

  362.     expect(body.data.createUser.id).toBeDefined();

  363.   });

  364. });

  365. ```

  366. 

  367. **Key Points**:

  368. 

  369. - GraphQL via POST request

  370. - Variables in request body

  371. - Check `body.errors` for GraphQL errors (not status code)

  372. - Works for queries and mutations

  373. 

  374. ### Example 8: Operation-Based Overload (OpenAPI / Code Generators)

  375. 

  376. **Context**: When using a code generator (orval, openapi-generator, custom scripts) that produces typed operation definitions from an OpenAPI spec, pass the operation object directly to `apiRequest`. This eliminates manual `method`/`path` extraction and `typeof` assertions while preserving full type inference for request body, response, and query parameters. Available since v3.14.0.

  377. 

  378. **Implementation**:

  379. 

  380. ```typescript

  381. // Generated operation definition — structural typing, no import from playwright-utils needed

  382. // type OperationShape = { path: string; method: 'POST'|'GET'|'PUT'|'DELETE'|'PATCH'|'HEAD'; response: unknown; request: unknown; query?: unknown }

  383. 

  384. import { test, expect } from '@seontechnologies/playwright-utils/api-request/fixtures';

  385. 

  386. // --- Basic usage: operation replaces method + path ---

  387. test('should upsert person via operation overload', async ({ apiRequest }) => {

  388.   const { status, body } = await apiRequest({

  389.     operation: upsertPersonv2({ customerId }),

  390.     headers: getHeaders(customerId),

  391.     body: personInput, // compile-time typed as Schemas.PersonInput

  392.   });

  393. 

  394.   expect(status).toBe(200);

  395.   expect(body.id).toBeDefined(); // body typed as Schemas.Person

  396. });

  397. 

  398. // --- Typed query parameters (replaces string concatenation) ---

  399. test('should list people with typed query', async ({ apiRequest }) => {

  400.   const { body } = await apiRequest({

  401.     operation: getPeoplev2({ customerId }),

  402.     headers: getHeaders(customerId),

  403.     query: { page: 0, page_size: 5 }, // typed from operation's query definition

  404.   });

  405. 

  406.   expect(body.items).toHaveLength(5);

  407. });

  408. 

  409. // --- Params escape hatch (pre-formatted query strings) ---

  410. test('should fetch billing history with raw params', async ({ apiRequest }) => {

  411.   const { body } = await apiRequest({

  412.     operation: getBillingHistoryv2({ customerId }),

  413.     headers: getHeaders(customerId),

  414.     params: {

  415.       'filters[start_date]': getThisMonthTimestamp(),

  416.       'filters[date_type]': 'MONTH',

  417.     },

  418.   });

  419. 

  420.   expect(body.entries.length).toBeGreaterThan(0);

  421. });

  422. 

  423. // --- Works with recurse (polling) ---

  424. test('should poll until person is reviewed', async ({ apiRequest, recurse }) => {

  425.   await recurse(

  426.     async () =>

  427.       apiRequest({

  428.         operation: getPersonv2({ customerId, hash }),

  429.         headers: getHeaders(customerId),

  430.       }),

  431.     (res) => {

  432.       expect(res.status).toBe(200);

  433.       expect(res.body.status).toBe('REVIEWED');

  434.     },

  435.     { timeout: 30000, interval: 1000 },

  436.   );

  437. });

  438. 

  439. // --- Schema validation chains work identically ---

  440. test('should create movie with schema validation', async ({ apiRequest }) => {

  441.   const { body } = await apiRequest({

  442.     operation: createMovieOp,

  443.     headers: commonHeaders(authToken),

  444.     body: movie,

  445.   }).validateSchema(CreateMovieResponseSchema, {

  446.     shape: { status: 200, data: { name: movie.name } },

  447.   });

  448. 

  449.   expect(body.data.id).toBeDefined();

  450. });

  451. ```

  452. 

  453. **Key Points**:

  454. 

  455. - Pass `operation` instead of `method` + `path` — mutually exclusive at compile time

  456. - Response body, request body, and query types inferred from operation definition

  457. - Uses structural typing (duck typing) — works with any code generator producing `{ path, method, response, request, query? }`

  458. - `query` field auto-serializes to bracket notation (`filters[type]=pep`, `ids[0]=10`)

  459. - `params` escape hatch for pre-formatted strings — wins over `query` on conflict

  460. - Fully composable with `recurse`, `validateSchema`, and all existing features

  461. - `response`/`request`/`query` on the operation are type-level only — runtime never reads their values

  462. 

  463. ## Comparison with Vanilla Playwright

  464. 

  465. | Vanilla Playwright                             | playwright-utils apiRequest                                                        |

  466. | ---------------------------------------------- | ---------------------------------------------------------------------------------- |

  467. | `const resp = await request.get('/api/users')` | `const { status, body } = await apiRequest({ method: 'GET', path: '/api/users' })` |

  468. | `const body = await resp.json()`               | Response already parsed                                                            |

  469. | `expect(resp.ok()).toBeTruthy()`               | Status code directly accessible                                                    |

  470. | No retry logic                                 | Auto-retry 5xx errors with backoff                                                 |

  471. | No schema validation                           | Built-in multi-format validation                                                   |

  472. | Manual error handling                          | Descriptive error messages                                                         |

  473. 

  474. ## When to Use

  475. 

  476. **Use apiRequest for:**

  477. 

  478. - ✅ Pure API/service testing (no browser needed)

  479. - ✅ Microservice integration testing

  480. - ✅ GraphQL API testing

  481. - ✅ Schema validation needs

  482. - ✅ Tests requiring retry logic

  483. - ✅ Background API calls in UI tests

  484. - ✅ Contract testing support

  485. - ✅ Type-safe API testing with OpenAPI-generated operations (v3.14.0+)

  486. 

  487. **Stick with vanilla Playwright for:**

  488. 

  489. - Simple one-off requests where utility overhead isn't worth it

  490. - Testing Playwright's native features specifically

  491. - Legacy tests where migration isn't justified

  492. 

  493. ## Related Fragments

  494. 

  495. - `api-testing-patterns.md` - Comprehensive pure API testing patterns

  496. - `overview.md` - Installation and design principles

  497. - `auth-session.md` - Authentication token management

  498. - `recurse.md` - Polling for async operations

  499. - `fixtures-composition.md` - Combining utilities with mergeTests

  500. - `log.md` - Logging API requests

  501. - `contract-testing.md` - Pact contract testing

  502. 

  503. ## Anti-Patterns

  504. 

  505. **❌ Ignoring retry failures:**

  506. 

  507. ```typescript

  508. try {

  509.   await apiRequest({ method: 'GET', path: '/api/unstable' });

  510. } catch {

  511.   // Silent failure - loses retry information

  512. }

  513. ```

  514. 

  515. **✅ Let retries happen, handle final failure:**

  516. 

  517. ```typescript

  518. await expect(apiRequest({ method: 'GET', path: '/api/unstable' })).rejects.toThrow(); // Retries happen automatically, then final error caught

  519. ```

  520. 

  521. **❌ Disabling TypeScript benefits:**

  522. 

  523. ```typescript

  524. const response: any = await apiRequest({ method: 'GET', path: '/users' });

  525. ```

  526. 

  527. **✅ Use generic types:**

  528. 

  529. ```typescript

  530. const { body } = await apiRequest<User[]>({ method: 'GET', path: '/users' });

  531. // body is typed as User[]

  532. ```

  533. 

  534. **❌ Mixing operation overload with explicit generics:**

  535. 

  536. ```typescript

  537. // Don't pass a generic when using operation — types are inferred from the operation

  538. const { body } = await apiRequest<MyType>({

  539.   operation: getPersonv2({ customerId }),

  540.   headers: getHeaders(customerId),

  541. });

  542. ```

  543. 

  544. **✅ Let the operation infer the types:**

  545. 

  546. ```typescript

  547. const { body } = await apiRequest({

  548.   operation: getPersonv2({ customerId }),

  549.   headers: getHeaders(customerId),

  550. });

  551. // body type inferred from operation.response

  552. ```

  553. 

  554. **❌ Mixing operation with method/path:**

  555. 

  556. ```typescript

  557. // Compile error — operation and method/path are mutually exclusive

  558. await apiRequest({

  559.   operation: getPersonv2({ customerId }),

  560.   method: 'GET', // Error: method?: never

  561.   path: '/api/person', // Error: path?: never

  562. });

  563. ```