zio · tusharmath · Jan 17, 2022 · Jan 12, 2022 · Jan 15, 2022 · Jan 15, 2022
diff --git a/zio-http/src/main/scala/zhttp/http/Middleware.scala b/zio-http/src/main/scala/zhttp/http/Middleware.scala
@@ -55,6 +55,14 @@ sealed trait Middleware[-R, +E, +AIn, -BIn, -AOut, +BOut] { self =>
    */
   final def apply[R1 <: R, E1 >: E](http: Http[R1, E1, AIn, BIn]): Http[R1, E1, AOut, BOut] = execute(http)
 
+  /**
+   * Makes the middleware resolve with a constant Middleware
+   */
+  final def as[BOut0](
+    bout: BOut0,
+  ): Middleware[R, E, AIn, BIn, AOut, BOut0] =
+    self.map(_ => bout)
+
   /**
    * Combines two middleware that operate on the same input and output types, into one.
    */
@@ -134,6 +142,17 @@ sealed trait Middleware[-R, +E, +AIn, -BIn, -AOut, +BOut] { self =>
       isFalse = _ => Middleware.identity,
     )
 
+  /**
+   * Applies Middleware based only if the condition effectful function evaluates to true
+   */
+  final def whenZIO[R1 <: R, E1 >: E, AOut0 <: AOut](
+    cond: AOut0 => ZIO[R1, E1, Boolean],
+  ): Middleware[R1, E1, AIn, BIn, AOut0, BOut] =
+    Middleware.ifThenElseZIO[AOut0](cond(_))(
+      isTrue = _ => self,
+      isFalse = _ => Middleware.identity,
+    )
+
   /**
    * Applies Middleware and returns a transformed Http app
    */

diff --git a/zio-http/src/main/scala/zhttp/http/middleware/Cors.scala b/zio-http/src/main/scala/zhttp/http/middleware/Cors.scala
@@ -54,7 +54,7 @@ private[zhttp] trait Cors {
             ),
           )
         case (_, Some(origin), _) if allowCORS(origin, req.method)                                                =>
-          Middleware.addHeader(corsHeaders(origin, req.method, isPreflight = false))
+          Middleware.addHeaders(corsHeaders(origin, req.method, isPreflight = false))
         case _ => Middleware.identity
       }
     })

diff --git a/zio-http/src/main/scala/zhttp/http/middleware/Web.scala b/zio-http/src/main/scala/zhttp/http/middleware/Web.scala
@@ -1,7 +1,8 @@
 package zhttp.http.middleware
 
 import zhttp.http._
-import zhttp.http.middleware.Web._
+import zhttp.http.headers.HeaderModifier
+import zhttp.http.middleware.Web.{PartialResponseMake, PartialResponseMakeZIO}
 import zio.clock.Clock
 import zio.console.Console
 import zio.duration.Duration
@@ -12,7 +13,8 @@ import java.io.IOException
 /**
  * Middlewares on an HttpApp
  */
-private[zhttp] trait Web extends Cors with Csrf with Auth {
+private[zhttp] trait Web extends Cors with Csrf with Auth with HeaderModifier[HttpMiddleware[Any, Nothing]] {
+  self =>
 
   /**
    * Logical operator to decide which middleware to select based on the predicate.
@@ -65,25 +67,13 @@ private[zhttp] trait Web extends Cors with Csrf with Auth {
    * Sets cookie in response headers
    */
   def addCookie(cookie: Cookie): HttpMiddleware[Any, Nothing] =
-    addHeader(Headers.setCookie(cookie))
+    self.addHeaders(Headers.setCookie(cookie))
 
   /**
-   * Adds the provided header and value to the response
+   * Updates the provided list of headers to the response
    */
-  def addHeader(name: String, value: String): HttpMiddleware[Any, Nothing] =
-    patch((_, _) => Patch.addHeader(name, value))
-
-  /**
-   * Adds the provided header to the response
-   */
-  def addHeader(header: Headers): HttpMiddleware[Any, Nothing] =
-    patch((_, _) => Patch.addHeader(header))
-
-  /**
-   * Adds the provided list of headers to the response
-   */
-  def addHeaders(headers: Headers): HttpMiddleware[Any, Nothing] =
-    patch((_, _) => Patch.addHeader(headers))
+  override def updateHeaders(update: Headers => Headers): HttpMiddleware[Any, Nothing] =
+    Web.updateHeaders(update)
 
   def addCookieM[R, E](cookie: ZIO[R, E, Cookie]): HttpMiddleware[R, E] =
     patchZIO((_, _) => cookie.mapBoth(Option(_), c => Patch.addHeader(Headers.setCookie(c))))
@@ -125,12 +115,6 @@ private[zhttp] trait Web extends Cors with Csrf with Auth {
   def patchZIO[R, E](f: (Status, Headers) => ZIO[R, Option[E], Patch]): HttpMiddleware[R, E] =
     makeResponseZIO(_ => ZIO.unit)((status, headers, _) => f(status, headers))
 
-  /**
-   * Removes the header by name
-   */
-  def removeHeader(name: String): HttpMiddleware[Any, Nothing] =
-    patch((_, _) => Patch.removeHeaders(List(name)))
-
   /**
    * Runs the effect before the request is passed on to the HttpApp on which the middleware is applied.
    */
@@ -142,6 +126,19 @@ private[zhttp] trait Web extends Cors with Csrf with Auth {
    */
   def setStatus(status: Status): HttpMiddleware[Any, Nothing] = patch((_, _) => Patch.setStatus(status))
 
+  /**
+   * Creates a middleware for signing cookies
+   */
+  def signCookies(secret: String): HttpMiddleware[Any, Nothing] =
+    updateHeaders {
+      case h if h.getHeader(HeaderNames.setCookie).isDefined =>
+        Headers(
+          HeaderNames.setCookie,
+          Cookie.decodeResponseCookie(h.getHeader(HeaderNames.setCookie).get._2.toString).get.sign(secret).encode,
+        )
+      case h                                                 => h
+    }
+
   /**
    * Creates a new constants middleware that always executes the app provided, independent of where the middleware is
    * applied
@@ -167,7 +164,7 @@ private[zhttp] trait Web extends Cors with Csrf with Auth {
     Middleware.makeZIO(req => f(MiddlewareRequest(req)))
 }
 
-object Web {
+object Web extends HeaderModifier[HttpMiddleware[Any, Nothing]] {
 
   final case class PartialResponseMake[S](req: MiddlewareRequest => S) extends AnyVal {
     def apply(res: (Status, Headers, S) => Patch): HttpMiddleware[Any, Nothing] = {
@@ -189,4 +186,10 @@ object Web {
           outgoing = (response, state) => res(response.status, response.getHeaders, state).map(patch => patch(response)),
         )
   }
+
+  /**
+   * Updates the current Headers with new one, using the provided update function passed.
+   */
+  override def updateHeaders(update: Headers => Headers): HttpMiddleware[Any, Nothing] =
+    Middleware.intercept[Request, Response](req => MiddlewareRequest(req))((r, _) => r.updateHeaders(update))
 }
diff --git a/zio-http/src/test/scala/zhttp/http/MiddlewareSpec.scala b/zio-http/src/test/scala/zhttp/http/MiddlewareSpec.scala
@@ -19,6 +19,11 @@ object MiddlewareSpec extends DefaultRunnableSpec with HExitAssertion {
         val app = Http.succeed(1) @@ mid
         assertM(app(()))(equalTo("OK"))
       } +
+      testM("as") {
+        val mid = Middleware.fromHttp(Http.succeed("Not OK")).as("OK")
+        val app = Http.succeed(1) @@ mid
+        assertM(app(()))(equalTo("OK"))
+      } +
       testM("interceptZIO") {
         for {
           ref <- Ref.make(0)
@@ -109,6 +114,28 @@ object MiddlewareSpec extends DefaultRunnableSpec with HExitAssertion {
             assertM(app(0))(equalTo("0Foo0FooBar"))
           }
       } +
+      suite("When") {
-      suite("When") {
+      suite("when") {
-      suite("When") {
+      suite("when") {
+        val mid = Middleware.succeed(0)
+        testM("condition is true") {
+          val app = Http.identity[Int] @@ mid.when[Int](_ => true)
+          assertM(app(10))(equalTo(0))
+        } +
+          testM("condition is false") {
+            val app = Http.identity[Int] @@ mid.when[Int](_ => false)
+            assertM(app(1))(equalTo(1))
+          }
+      } +
+      suite("WhenZIO") {
-      suite("WhenZIO") {
+      suite("whenZIO") {
-      suite("WhenZIO") {
+      suite("whenZIO") {
+        val mid = Middleware.succeed(0)
+        testM("condition is true") {
+          val app = Http.identity[Int] @@ mid.whenZIO[Any, Nothing, Int](_ => UIO(true))
+          assertM(app(10))(equalTo(0))
+        } +
+          testM("condition is false") {
+            val app = Http.identity[Int] @@ mid.whenZIO[Any, Nothing, Int](_ => UIO(false))
+            assertM(app(1))(equalTo(1))
+          }
+      } +
       suite("codec") {
         testM("codec success") {
           val mid = Middleware.codec[String, Int](a => Right(a.toInt), b => Right(b.toString))

diff --git a/zio-http/src/test/scala/zhttp/http/middleware/WebSpec.scala b/zio-http/src/test/scala/zhttp/http/middleware/WebSpec.scala
@@ -17,17 +17,38 @@ object WebSpec extends DefaultRunnableSpec with HttpAppTestExtensions {
   private val midB = Middleware.addHeader("X-Custom", "B")
 
   def spec = suite("HttpMiddleware") {
-
-    suite("debug") {
-      testM("log status method url and time") {
-        val program = run(app @@ debug) *> TestConsole.output
-        assertM(program)(equalTo(Vector("200 GET /health 1000ms\n")))
+    suite("headers suite") {
+      testM("addHeaders") {
+        val middleware = addHeaders(Headers("KeyA", "ValueA") ++ Headers("KeyB", "ValueB"))
+        val headers    = (Http.ok @@ middleware).getHeaderValues
+        assertM(headers(Request()))(contains("ValueA") && contains("ValueB"))
       } +
-        testM("log 404 status method url and time") {
-          val program = run(Http.empty ++ Http.notFound @@ debug) *> TestConsole.output
-          assertM(program)(equalTo(Vector("404 GET /health 0ms\n")))
+        testM("addHeader") {
+          val middleware = addHeader("KeyA", "ValueA")
+          val headers    = (Http.ok @@ middleware).getHeaderValues
+          assertM(headers(Request()))(contains("ValueA"))
+        } +
+        testM("updateHeaders") {
+          val middleware = updateHeaders(_ => Headers("KeyA", "ValueA"))
+          val headers    = (Http.ok @@ middleware).getHeaderValues
+          assertM(headers(Request()))(contains("ValueA"))
+        } +
+        testM("removeHeader") {
+          val middleware = removeHeader("KeyA")
+          val headers = (Http.succeed(Response.ok.setHeaders(Headers("KeyA", "ValueA"))) @@ middleware) getHeader "KeyA"
+          assertM(headers(Request()))(isNone)
         }
     } +
+      suite("debug") {
+        testM("log status method url and time") {
+          val program = run(app @@ debug) *> TestConsole.output
+          assertM(program)(equalTo(Vector("200 GET /health 1000ms\n")))
+        } +
+          testM("log 404 status method url and time") {
+            val program = run(Http.empty ++ Http.notFound @@ debug) *> TestConsole.output
+            assertM(program)(equalTo(Vector("404 GET /health 0ms\n")))
+          }
+      } +
       suite("when") {
         testM("condition is true") {
           val program = run(app @@ debug.when(_ => true)) *> TestConsole.output
@@ -38,6 +59,16 @@ object WebSpec extends DefaultRunnableSpec with HttpAppTestExtensions {
             assertM(log)(equalTo(Vector()))
           }
       } +
+      suite("whenZIO") {
+        testM("condition is true") {
+          val program = run(app @@ debug.whenZIO(_ => UIO(true))) *> TestConsole.output
+          assertM(program)(equalTo(Vector("200 GET /health 1000ms\n")))
+        } +
+          testM("condition is false") {
+            val log = run(app @@ debug.whenZIO(_ => UIO(false))) *> TestConsole.output
+            assertM(log)(equalTo(Vector()))
+          }
+      } +
       suite("race") {
         testM("achieved") {
           val program = run(app @@ timeout(5 seconds)).map(_.status)
@@ -122,6 +153,17 @@ object WebSpec extends DefaultRunnableSpec with HttpAppTestExtensions {
               equalTo(Some(cookie.encode)),
             )
           }
+      } +
+      suite("signCookies") {
+        testM("should sign cookies") {
+          val cookie = Cookie("key", "value").withHttpOnly
+          val app    = Http.ok.withSetCookie(cookie) @@ signCookies("secret") getHeader "set-cookie"
+          assertM(app(Request()))(isSome(equalTo(cookie.sign("secret").encode)))
+        } +
+          testM("sign cookies no cookie header") {
+            val app = (Http.ok.addHeader("keyA", "ValueA") @@ signCookies("secret")).getHeaderValues
+            assertM(app(Request()))(contains("ValueA"))
+          }
       }
   }