redocly-cli icon indicating copy to clipboard operation
redocly-cli copied to clipboard

Published 20 hours ago verified publisher icon Redocly

Improve naming of per-format rules sections

Open lornajane opened this issue 1 year ago • 11 comments
trafficstars

Is your feature request related to a problem? Please describe.

Most users of Redocly CLI list rules under rules but as we see more customers using multiple API formats in their projects, we need to document the per-format rules config entries so that different formats can be linted using different rulesets. The per-format rules config entries currently are:

  • oas2Rules
  • oas3_0Rules
  • oas3_1Rules
  • async2Rules
  • async3Rules
  • arazzoRules

(equivalents exist for *Preprocessors and *Decorators)

Proposal: rename these config settings to something that fits our config naming scheme

In an ideal world, we could offer something like this:

rules:
  openapi-30:
    security-defined: warn
  arazzo-10:
    parameters-unique: error

Describe alternatives you've considered

Just make the config entry names more sane and leave them at the top level:

  • oas2Rules -> rules-openapi-20
  • oas3_0Rules -> rules-openapi-30
  • oas3_1Rules -> rules-openapi-31
  • async2Rules -> rules-asyncapi-26
  • async3Rules -> rules-asyncapi-30
  • arazzoRules -> rules-arazzo-10

Additional context

From a discussion with @DmitryAnansky and @tatomyr about how to thoroughly support and document our multi-format linting features.

lornajane avatar Sep 10 '24 16:09 lornajane

I vote for the top-level, but I don't like naming like openapi-30... Maybe openapi-3-0 will work better?

tatomyr avatar Sep 11 '24 08:09 tatomyr

@adamaltman or @RomanHotsiy could you comment on the requested renaming?

lornajane avatar Sep 13 '24 13:09 lornajane

It sounds good. I agree with @tatomyr though on the naming, I prefer openapi-3-0 or we can even do openapi-3.0. Both yaml and json support keys with dots.

RomanHotsiy avatar Sep 16 '24 08:09 RomanHotsiy

@RomanHotsiy It looks much nicer with dots. The only issue is that I vaguely remember we had some problems with parsing features.openapi. Or am I wrong?

tatomyr avatar Sep 16 '24 12:09 tatomyr

I think it would probably work, but it's confusing to use dots inside a yaml key IMO, just because there's a convention of using it as a separator. For example info.description , we use this pattern ourselves in Redoc rendering too. So I discarded the dot and thought that the extra dash wasn't needed with every version being one major digit and one minor one. Happy to compromise on the two-dash format though!

Will we refactor this throughout the code, or as an alias for parsing the config in? We use this type of pattern in plugins too (as well as internally)

lornajane avatar Sep 17 '24 13:09 lornajane

Will we refactor this throughout the code, or as an alias for parsing the config in?

For me, it doesn't make much sense to refactor it deeply, especially taking into account that we will have to use some artificial names for the variables anyway.

tatomyr avatar Sep 17 '24 17:09 tatomyr

I classify this issue differently. I propose a different format which would rely on the verbose syntax of each rule:

rules:
  info-description:
    severity: error
    specs:
       - openapi3.0
       - asyncapi3.0
       - arazzo1.0

This technique could be used for configurable rules too:

rules:
  rule/limit-is-integer:
    subject:
      type: Schema
      property: type
    assertions:
      const: integer
    where:
      - subject:
          type: Parameter
          property: name
        assertions:
          const: limit
    specs:
       - openapi3.0

adamaltman avatar Oct 07 '24 13:10 adamaltman

I think the current approach of listing which rules should apply to which format/family of APIs makes good sense, since different teams might manage the event-driven, legacy, or Arazzo types. We also design, maintain and document the rules on a per-specification/format basis, so configuring things along the same lines seems sensible.

The other major advantage of the existing approach is that it already works this way (when there are two ways to do things, the one that exists and is already tested and working does have some advantage points) and I think it works adequately. The only change proposed in this issue is to rename the existing top-level keys to something a bit more correct, friendly and future-proof.

lornajane avatar Oct 09 '24 13:10 lornajane

This is not quite accurate:

We also design, maintain and document the rules on a per-specification/format basis, so configuring things along the same lines seems sensible.

We have single rules that span specifications. Many rules span OpenAPI 3.1 and 3.0. Quite a few also include 2.0. Some span OpenAPI and AsyncAPI.

adamaltman avatar Oct 09 '24 13:10 adamaltman

I propose a different format which would rely on the verbose syntax of each rule:

Then there will be no way to configure different severity levels for different specifications. Say, a user might want info-license-strict to be an error for OAS3/3.1 but a warning (or turned off) for AsyncAPI. Not sure how useful that might be, but still.

tatomyr avatar Oct 22 '24 13:10 tatomyr

any recent discussions on this?

i'm starting to work on the doc updates for Overlay linting rules.

now we have up to 7 different rulesets in a config file. oas2 oas3 oas3_1 arazzo1 async2 async3 overlay1

jeremyfiel avatar Mar 03 '25 19:03 jeremyfiel

We're not addressing this in v2, so I'm closing this.

tatomyr avatar Jul 24 '25 21:07 tatomyr