fix: implement validateAndSetFieldValue method for improved data validation in AdminForthBaseConnector and update MongoConnector to utilize it

NoOne7135 · NoOne7135 · commit 2c449a46fc2a · 2026-01-05T12:29:50.000+02:00
diff --git a/adminforth/dataConnectors/baseConnector.ts b/adminforth/dataConnectors/baseConnector.ts
@@ -9,6 +9,7 @@ import {
 import { suggestIfTypo } from "../modules/utils.js";
 import { AdminForthDataTypes, AdminForthFilterOperators, AdminForthSortDirections } from "../types/Common.js";
 import { randomUUID } from "crypto";
+import dayjs from "dayjs";
 
 
 export default class AdminForthBaseConnector implements IAdminForthDataSourceConnectorBase {
@@ -164,9 +165,9 @@ export default class AdminForthBaseConnector implements IAdminForthDataSourceCon
             return { ok: false, error: `Value for operator '${filters.operator}' should not be empty array, in filter object: ${JSON.stringify(filters) }` };
           }
         }
-        filters.value = filters.value.map((val: any) => this.setFieldValue(fieldObj, val));
+        filters.value = filters.value.map((val: any) => this.validateAndSetFieldValue(fieldObj, val));
       } else {
-        filtersAsSingle.value = this.setFieldValue(fieldObj, filtersAsSingle.value);
+        filtersAsSingle.value = this.validateAndSetFieldValue(fieldObj, filtersAsSingle.value);
       }
     } else if (filtersAsSingle.insecureRawSQL || filtersAsSingle.insecureRawNoSQL) {
       // if "insecureRawSQL" filter is insecure sql string
@@ -219,6 +220,97 @@ export default class AdminForthBaseConnector implements IAdminForthDataSourceCon
     throw new Error('Method not implemented.');
   }
 
+  validateAndSetFieldValue(field: AdminForthResourceColumn, value: any): any {
+    // Int
+    if (field.type === AdminForthDataTypes.INTEGER) {
+      if (value === "" || value === null) return this.setFieldValue(field, null); 
+      if (!Number.isFinite(value) || Math.trunc(value) !== value) {
+        throw new Error(`Value is not an integer. Field ${field.name} with type is ${field.type}, but got value: ${value} with type ${typeof value}`);
+      }
+      return this.setFieldValue(field, Math.trunc(value));
+    }
+
+    // Float
+    if (field.type === AdminForthDataTypes.FLOAT) {
+      if (value === "" || value === null) return this.setFieldValue(field, null);
+      const n =
+        typeof value === "number"
+          ? value
+          : (typeof value === "object" && value !== null ? (value as any).valueOf() : NaN);
+
+      if (typeof n !== "number" || !Number.isFinite(n)) {
+        throw new Error(
+          `Value is not a float. Field ${field.name} with type is ${field.type}, but got value: ${String(value)} with type ${typeof value}`
+        );
+      }
+
+      return this.setFieldValue(field, n);
+    }
+
+    // Decimal
+    if (field.type === AdminForthDataTypes.DECIMAL) {
+      if (value === "" || value === null) return this.setFieldValue(field, null);
+
+      if (typeof value === "number") {
+        if (!Number.isFinite(value)) {
+          throw new Error(`Value is not a decimal. Field ${field.name} got: ${value} (number)`);
+        }
+        return this.setFieldValue(field, value);
+      }
+
+      if (typeof value === "string") {
+        const s = value.trim();
+        if (!s) return this.setFieldValue(field, null);
+        if (Number.isFinite(Number(s))) return this.setFieldValue(field, s);
+        throw new Error(`Value is not a decimal. Field ${field.name} got: ${value} (string)`);
+      }
+
+      if (typeof value === "object" && value) {
+        const v: any = value;
+        if (typeof v.toString !== "function") {
+          throw new Error(`Decimal object has no toString(). Field ${field.name} got: ${String(value)}`);
+        }
+        const s = v.toString().trim();
+        if (!s) return this.setFieldValue(field, null);
+        if (Number.isFinite(Number(s))) return this.setFieldValue(field, s);
+        throw new Error(`Value is not a decimal. Field ${field.name} got: ${s} (object->string)`);
+      }
+
+      throw new Error(`Value is not a decimal. Field ${field.name} got: ${String(value)} (${typeof value})`);
+    }
+
+    // Date
+
+
+    // DateTime
+    if (field.type === AdminForthDataTypes.DATETIME) {
+      if (value === "" || value === null) return this.setFieldValue(field, null);
+      if (!dayjs(value).isValid()) {
+        throw new Error(`Value is not a valid datetime. Field ${field.name} with type is ${field.type}, but got value: ${value} with type ${typeof value}`);
+      }
+      return this.setFieldValue(field, dayjs(value).toISOString());
+    }
+
+    // Time
+
+    // Boolean
+    if (field.type === AdminForthDataTypes.BOOLEAN) {
+      if (value === "" || value === null) return this.setFieldValue(field, null);
+      if (typeof value !== 'boolean') {
+        throw new Error(`Value is not a boolean. Field ${field.name} with type is ${field.type}, but got value: ${value} with type ${typeof value}`);
+      }
+      return this.setFieldValue(field, value);
+    }
+    
+    // JSON
+
+    // String
+    if (field.type === AdminForthDataTypes.STRING) {
+      if (value === "" || value === null) return this.setFieldValue(field, null);
+    }
+    return this.setFieldValue(field, value);
+  }
+
   getMinMaxForColumnsWithOriginalTypes({ resource, columns }: { resource: AdminForthResource; columns: AdminForthResourceColumn[]; }): Promise<{ [key: string]: { min: any; max: any; }; }> {
     throw new Error('Method not implemented.');
   }
@@ -268,7 +360,7 @@ export default class AdminForthBaseConnector implements IAdminForthDataSourceCon
       }
       if (filledRecord[col.name] !== undefined) {
         // no sense to set value if it is not defined
-        recordWithOriginalValues[col.name] = this.setFieldValue(col, filledRecord[col.name]);
+        recordWithOriginalValues[col.name] = this.validateAndSetFieldValue(col, filledRecord[col.name]);
       }
     }
 
@@ -325,7 +417,7 @@ export default class AdminForthBaseConnector implements IAdminForthDataSourceCon
           Update record received field '${field}' (with value ${newValues[field]}), but such column not found in resource '${resource.resourceId}'. ${similar ? `Did you mean '${similar}'?` : ''}
         `);
       }
-      recordWithOriginalValues[col.name] = this.setFieldValue(col, newValues[col.name]);
+      recordWithOriginalValues[col.name] = this.validateAndSetFieldValue(col, newValues[col.name]);
     }
     const record = await this.getRecordByPrimaryKey(resource, recordId);
     let error: string | null = null;
diff --git a/adminforth/dataConnectors/mongo.ts b/adminforth/dataConnectors/mongo.ts
@@ -9,6 +9,12 @@ import { AdminForthDataTypes, AdminForthFilterOperators, AdminForthSortDirection
 const escapeRegex = (value) => {
     return value.replace(/[.*+?^${}()|[\]\\]/g, '\\$&'); // Escapes special characters
 };
+function normalizeMongoValue(v: any) {
+  if (v == null) return v;
+  if (v instanceof Decimal128) return v.toString();
+  if (typeof v === "object" && v.$numberDecimal) return String(v.$numberDecimal);
+  return v;
+}
 
 class MongoConnector extends AdminForthBaseConnector implements IAdminForthDataSourceConnector {
 
@@ -208,27 +214,14 @@ class MongoConnector extends AdminForthBaseConnector implements IAdminForthDataS
             return dayjs(value).isValid() ? dayjs(value).toDate() : null;
         }
 
-        if (field.type === AdminForthDataTypes.DATE) {
-            if (value === "" || value === null) return null;
-            const d = dayjs(value);
-            return d.isValid() ? d.startOf("day").toDate() : null;
-        }
-
-        if (field.type === AdminForthDataTypes.BOOLEAN) {
-            if (value === "" || value === null) return null;
-            return !!value;
-        }
-
         if (field.type === AdminForthDataTypes.INTEGER) {
             if (value === "" || value === null) return null;
-            const n = typeof value === "number" ? value : Number(String(value).replace(",", "."));
-            return Number.isFinite(n) ? Math.trunc(n) : null;
+            return Number.isFinite(value) ? Math.trunc(value) : null;
         }
 
         if (field.type === AdminForthDataTypes.FLOAT) {
             if (value === "" || value === null) return null;
-            const n = typeof value === "number" ? value : Number(String(value).replace(",", "."));
-            return Number.isFinite(n) ? new Double(n) : null;
+            return Number.isFinite(value) ? new Double(value) : null;
         }
 
         if (field.type === AdminForthDataTypes.DECIMAL) {
@@ -335,38 +328,39 @@ class MongoConnector extends AdminForthBaseConnector implements IAdminForthDataS
     async getMinMaxForColumnsWithOriginalTypes({ resource, columns }) {
         const tableName = resource.table;
         const collection = this.client.db().collection(tableName);
-        const result = {};
+        const result: Record<string, { min: any; max: any }> = {};
+
         for (const column of columns) {
-            result[column.name] = await collection
-                .aggregate([
-                    { $group: { _id: null, min: { $min: `$${column.name}` }, max: { $max: `$${column.name}` } } },
-                ])
-                .toArray();
+            const [doc] = await collection
+            .aggregate([
+                { $group: { _id: null, min: { $min: `$${column.name}` }, max: { $max: `$${column.name}` } } },
+                { $project: { _id: 0, min: 1, max: 1 } },
+            ])
+            .toArray();
+
+            result[column.name] = {
+            min: normalizeMongoValue(doc?.min),
+            max: normalizeMongoValue(doc?.max),
+            };
         }
         return result;
     }
 
     async createRecordOriginalValues({ resource, record }): Promise<string> {
-        const collection = this.client.db().collection(resource.table);
-        const colsByName = new Map(resource.dataSourceColumns.map((c) => [c.name, c]));
+        const tableName = resource.table;
+        const collection = this.client.db().collection(tableName);
+        const columns = Object.keys(record);
         const newRecord = {};
-        for (const [key, raw] of Object.entries(record)) {
-            const col = colsByName.get(key);
-            newRecord[key] = col ? this.setFieldValue(col, raw) : raw;
+        for (const colName of columns) {
+            newRecord[colName] = record[colName];
         }
         const ret = await collection.insertOne(newRecord);
         return ret.insertedId;
     }
 
     async updateRecordOriginalValues({ resource, recordId, newValues }) {
         const collection = this.client.db().collection(resource.table);
-        const colsByName = new Map(resource.dataSourceColumns.map((c) => [c.name, c]));
-        const updatedValues = {};
-        for (const [key, raw] of Object.entries(newValues)) {
-            const col = colsByName.get(key);
-            updatedValues[key] = col ? this.setFieldValue(col, raw) : raw;
-        }
-        await collection.updateOne({ [this.getPrimaryKey(resource)]: recordId }, { $set: updatedValues });
+        await collection.updateOne({ [this.getPrimaryKey(resource)]: recordId }, { $set: newValues });
     }
 
     async deleteRecord({ resource, recordId }): Promise<boolean> {
