Skip to content

feat: add OpenAPI/Swagger documentation for backend endpoints #103

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
devcarole wants to merge 4 commits into
base: main
Choose a base branch
from
Open

feat: add OpenAPI/Swagger documentation for backend endpoints #103

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
e67f5c7
feat: add OpenAPI/Swagger documentation for backend endpoints
Feb 26, 2026
24bb153
resolve: merge conflict in package.json - keep Swagger dependencies
Feb 26, 2026
e43e413
resolve: merge conflicts - keep Swagger docs, remove conflicting func…
Feb 26, 2026
ac0ab4a
resolve: final merge conflicts - keep Swagger docs and all dependencies
Feb 26, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
38 changes: 38 additions & 0 deletions CI_INSTRUCTIONS.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,38 @@
# CI Validation Instructions

## What was pushed
✅ All OpenAPI/Swagger documentation implementation
✅ Swagger UI setup for non-production environments
✅ Complete API endpoint documentation
✅ Validation scripts and dependencies

## What needs to be added manually
The CI validation step couldn't be pushed due to GitHub token permissions. To complete the implementation:

### Option 1: Via GitHub Web UI (Recommended)
1. Go to: https://github.com/devcarole/Disciplr-backend/pull/new/feature/api-docs
2. Create the pull request
3. In the PR, manually edit `.github/workflows/ci.yml`
4. Add this step after "Migration status":

```yaml
- name: Validate API documentation
run: npm run validate:docs
```

### Option 2: Update token permissions
1. Generate a new GitHub Personal Access Token with `workflow` scope
2. Update your local git credentials with the new token
3. Run: `git add .github/workflows/ci.yml && git commit -m "ci: add API docs validation" && git push`

## Current Status
- ✅ Branch pushed: `feature/api-docs`
- ✅ Ready for PR creation
- ✅ All core functionality implemented
- ⏳ CI validation pending (manual step required)

## Next Steps
1. Create PR at: https://github.com/devcarole/Disciplr-backend/pull/new/feature/api-docs
2. Add the CI validation step manually
3. Request review from backend maintainers
4. Merge after approval
158 changes: 125 additions & 33 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,24 +4,60 @@ API and milestone engine for Disciplr: programmable time-locked capital vaults o

## What it does

- **Health:** `GET /api/health` — service status and timestamp.
- **Vaults:**
- `GET /api/vaults` — list all vaults with pagination, sorting, and filtering.
- `POST /api/vaults` — create a vault (body: `creator`, `amount`, `endTimestamp`, `successDestination`, `failureDestination`).
- `GET /api/vaults/:id` — get a vault by id.
- **Health:** `GET /api/health` - service status and timestamp.
- **Auth:**
- `POST /api/auth/login` - mock login and audit logging.
- `POST /api/auth/users/:id/role` - role changes (admin only) with audit logging.
- **Vaults:**
- `GET /api/vaults` - list all vaults with pagination, sorting, and filtering.
- `POST /api/vaults` - create a vault.
- `GET /api/vaults/:id` - get a vault by id.
- `POST /api/vaults/:id/cancel` - cancel a vault (creator/admin) with audit logging.
- **Health:**
- `GET /api/health` - service status and timestamp.
- `GET /api/health/security` - abuse monitoring metrics snapshot.
- **Vaults:**
- `GET /api/vaults` - list all vaults with pagination, sorting, and filtering.
- `POST /api/vaults` - create a vault (body: `creator`, `amount`, `endTimestamp`, `successDestination`, `failureDestination`).
- `GET /api/vaults/:id` - get a vault by id.
- **Transactions:**
- `GET /api/transactions` list all transactions with pagination, sorting, and filtering.
- `GET /api/transactions/:id` get a transaction by id.
- `GET /api/transactions` - list all transactions with pagination, sorting, and filtering.
- `GET /api/transactions/:id` - get a transaction by id.
- **Analytics:**
- `GET /api/analytics` — list analytics views with pagination, sorting, and filtering.
- `GET /api/analytics` - list analytics views with pagination, sorting, and filtering.
- **Admin:**
- `POST /api/admin/overrides/vaults/:id/cancel` - admin override to cancel vault with audit logging.
- `GET /api/admin/audit-logs` - admin-only audit log query endpoint.
- `GET /api/admin/audit-logs/:id` - admin-only single audit log lookup.

All list endpoints support consistent query parameters for pagination (`page`, `pageSize`), sorting (`sortBy`, `sortOrder`), and filtering (endpoint-specific fields). See [API Patterns Documentation](docs/API_PATTERNS.md) for details.

Data is stored in memory for now. Production would use PostgreSQL, a Horizon listener for on-chain events, and a proper milestone/verification engine.
- `GET /api/health`: service status and timestamp
- `GET /api/vaults`: list all vaults (currently in-memory placeholder)
- `POST /api/vaults`: create a vault
- `GET /api/vaults/:id`: get a vault by id

## User Audit Logging (Issue #45)

This project tracks sensitive actions in an in-memory `audit_logs` table shape:

- `id`
- `actor_user_id`
- `action`
- `target_type`
- `target_id`
- `metadata`
- `created_at`

Current audited actions:

- `auth.login`
- `auth.role_changed`
- `vault.created`
- `vault.cancelled`
- `admin.override`

Admin-only access requirements for audit query endpoints:

- `x-user-role: admin`
- `x-user-id: <admin-user-id>`

## Tech stack

Expand Down Expand Up @@ -59,6 +95,51 @@ API runs at `http://localhost:3000`.
| `npm run migrate:rollback` | Roll back the latest migration batch |
| `npm run migrate:status` | Show migration status |

## Abuse detection instrumentation

The backend includes abuse-oriented security instrumentation middleware.

- `GET /api/health/security` returns:
- failed login attempts seen by auth/login paths (`401` or `403`)
- rate limit triggers (`429`)
- suspicious pattern alerts by category
- top active source IPs in current windows
- Structured JSON logs are emitted for:
- `security.failed_login_attempt`
- `security.rate_limit_triggered`
- `security.suspicious_pattern`

### Thresholds (env-configurable)

| Env var | Default | Meaning |
|---|---|---|
| `SECURITY_RATE_LIMIT_WINDOW_MS` | `60000` | Rate-limit lookback window |
| `SECURITY_RATE_LIMIT_MAX_REQUESTS` | `120` | Max requests per IP in rate-limit window |
| `SECURITY_SUSPICIOUS_WINDOW_MS` | `300000` | Lookback window for suspicious pattern checks |
| `SECURITY_SUSPICIOUS_404_THRESHOLD` | `20` | 404 count threshold for endpoint scan detection |
| `SECURITY_SUSPICIOUS_DISTINCT_PATH_THRESHOLD` | `12` | Distinct 404 path threshold for endpoint scan detection |
| `SECURITY_SUSPICIOUS_BAD_REQUEST_THRESHOLD` | `30` | 400 count threshold for repeated bad request detection |
| `SECURITY_SUSPICIOUS_HIGH_VOLUME_THRESHOLD` | `300` | Total request threshold for high-volume bursts |
| `SECURITY_FAILED_LOGIN_WINDOW_MS` | `900000` | Lookback window for failed login burst checks |
| `SECURITY_FAILED_LOGIN_BURST_THRESHOLD` | `5` | Failed login threshold per IP before alert |
| `SECURITY_ALERT_COOLDOWN_MS` | `300000` | Minimum time between repeated alerts per IP/pattern |

### Alert wiring guidance

No dedicated monitoring stack is wired in this repo yet. If your environment has one (Datadog, CloudWatch, Grafana Loki, ELK), create alerts on these log events:

- `security.rate_limit_triggered`: alert on sustained frequency or concentration from a single IP.
- `security.suspicious_pattern` where `pattern` is:
- `endpoint_scan`
- `high_volume`
- `repeated_bad_requests`
- `failed_login_burst`

Recommended initial alert policy:

- Warning: any `security.suspicious_pattern` event.
- Critical: `security.rate_limit_triggered` over 20 times in 5 minutes from one IP.

## Database migrations

Migration tooling is standardized with Knex and PostgreSQL.
Expand All @@ -67,29 +148,40 @@ Migration tooling is standardized with Knex and PostgreSQL.
- Baseline migration: `db/migrations/20260225190000_initial_baseline.cjs`
- Full process (authoring, rollout, rollback, CI/CD): `docs/database-migrations.md`

```
```text
disciplr-backend/
├── src/
│ ├── routes/
│ │ ├── health.ts
│ │ ├── vaults.ts
│ │ ├── transactions.ts
│ │ └── analytics.ts
│ ├── middleware/
│ │ └── queryParser.ts
│ ├── utils/
│ │ └── pagination.ts
│ ├── types/
│ │ └── pagination.ts
│ └── index.ts
├── docs/
│ └── API_PATTERNS.md
├── examples/
│ └── api-usage.md
├── package.json
├── tsconfig.json
└── README.md
|- src/
| |- routes/
| | |- health.ts
| | |- vaults.ts
| | |- transactions.ts
| | |- analytics.ts
| | |- auth.ts
| | `- admin.ts
| |- middleware/
| | `- queryParser.ts
| | `- privacy.ts
| |- middleware/
| | |- queryParser.ts
| | `- privacy-logger.ts
| |- security/
| | `- abuse-monitor.ts
| |- utils/
| | `- pagination.ts
| |- types/
| | `- pagination.ts
| `- index.ts
|- docs/
| `- API_PATTERNS.md
| |- API_PATTERNS.md
| `- database-migrations.md
|- examples/
| `- api-usage.md
|- package.json
|- tsconfig.json
`- README.md
```

Required env var:

- `DATABASE_URL` (PostgreSQL connection string)
Expand Down
Loading