search

longrunningprocess / zxcvbn-api

Web API wrapper to Dropbox's zxcvbn library.
20 stars 3 forks source link

Enhancements #1

Open tracker1 opened 7 years ago

tracker1 commented 7 years ago

If the intent is to really turn this into a backing service, should probably add the following.

{ // single object response, with single property of "error"
  error: {
    code: 400 //invalid input, or 5xx for other errors
    ,message: error.message // original or custom error message
    ,...error // other properties from error, message is part of inheritance and doesn't serialize
  }
}

Possible value-adds:

longrunningprocess commented 7 years ago

I originally did this to fit our own needs and thought others may have a similar use case. I considered making it a publicly available service running but didn't want to incur the costs involved with running a server and getting a domain.

Regarding the CORS ideas, I'm open to putting that support in here but we mitigated it by simply not exposing it directly. API calls come into PHP backend for the data and it uses CURL to make calls directly to this API for the score. We were able to run this API up in a Docker container that's only available to our backend API.

I think the CORS support only makes sense if this API were available directly. Do you know of a way we could spin this up for free somewhere? If so, it would definitely need to community support.

The error object makes sense and seems like a good idea. I'll work that in next time I'm able to work on this.

Thanks for taking a look and suggesting those improvements.

tracker1 commented 7 years ago

I'm not sure if heroku offers a free dyno still, that might be an option. I'd do a PR if I had the time right now, just wanted to at least look at the implementation.

longrunningprocess commented 7 years ago

I really appreciate that, I'm definitely open to making it more valuable for others if a need develops.