Domain-Driven Design pattern is the talk of the town today.
Domain-Driven Design(DDD) is an approach to software development that simplifies the complexity developers face by connecting the implementation to an evolving model.
Note
This is not an article that explains the "ideal" way to implement DDD in Golang because the author is no way an expert on it. This article is rather the author's understanding of DDD based on his research. The author
will be very grateful to contributions on how to improve this article.
Check the github repo for the updated code:
https://github.com/victorsteven/food-app-server
Why DDD?
The following are the reasons to consider using DDD:
- Provide principles & patterns to solve difficult problems
- Base complex designs on a model of the domain
- Initiate a creative collaboration between technical and domain experts to iteratively refine a conceptual model that addresses domain problems.
The idea of Domain-Driven Design was inverted by Eric Evans. He wrote about it in a book which you can find some of the highlights here
DDD comprises of 4 Layers:
- Domain: This is where the domain and business logic of the application is defined.
- Infrastructure: This layer consists of everything that exists independently of our application: external libraries, database engines, and so on.
- Application: This layer serves as a passage between the domain and the interface layer. The sends the requests from the interface layer to the domain layer, which processes it and returns a response.
- Interface: This layer holds everything that interacts with other systems, such as web services, RMI interfaces or web applications, and batch processing frontends.
To have a thorough definition of terms of each layer, please refer to this
Let's get started.
We are going to build a food recommendation API.
You can get the code if you don't have all the time to read.
Get the API code here.
Get the Frontend code here.
The very first thing to do is to initialize the dependency management. We will be using go.mod. From the root directory(path: food-app/), initialize go.mod:
mod init food-app
This is how the project is going to be organized:
In this application, we will use postgres and redis databases to persist data. We will define a .env file that has connection information.
The .env file looks like this:
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #Postgres | |
| APP_ENV=local | |
| API_PORT=8888 | |
| DB_HOST=127.0.0.1 | |
| DB_DRIVER=postgres | |
| ACCESS_SECRET=98hbun98h | |
| REFRESH_SECRET=786dfdbjhsb | |
| DB_USER=steven | |
| DB_PASSWORD=password | |
| DB_NAME=food-app | |
| DB_PORT=5432 | |
| #Mysql | |
| #DB_HOST=127.0.0.1 | |
| #DB_DRIVER=mysql | |
| #DB_USER=steven | |
| #DB_PASSWORD=here | |
| #DB_NAME=food-app | |
| #DB_PORT=3306 | |
| #Postgres Test DB | |
| TEST_DB_DRIVER=postgres | |
| TEST_DB_HOST=127.0.0.1 | |
| TEST_DB_PASSWORD=password | |
| TEST_DB_USER=steven | |
| TEST_DB_NAME=food-app-test | |
| TEST_DB_PORT=5432 | |
| #Redis | |
| REDIS_HOST=127.0.0.1 | |
| REDIS_PORT=6379 | |
| REDIS_PASSWORD= | |
This file should be located in the root directory(path: food-app/)
Domain Layer
We will consider the domain first.
The domain has several patterns. Some of which are:
Entity, Value, Repository, Service, and so on.
Since the application we are building here is a simple one, we consider just two domain patterns: entity and repository.
Entity
This is where we define the "Schema" of things.
For example, we can define a user's struct. See the entity as the blueprint to the domain.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package entity | |
| import ( | |
| "food-app/infrastructure/security" | |
| "github.com/badoux/checkmail" | |
| "html" | |
| "strings" | |
| "time" | |
| ) | |
| type User struct { | |
| ID uint64 `gorm:"primary_key;auto_increment" json:"id"` | |
| FirstName string `gorm:"size:100;not null;" json:"first_name"` | |
| LastName string `gorm:"size:100;not null;" json:"last_name"` | |
| Email string `gorm:"size:100;not null;unique" json:"email"` | |
| Password string `gorm:"size:100;not null;" json:"password"` | |
| CreatedAt time.Time `gorm:"default:CURRENT_TIMESTAMP" json:"created_at"` | |
| UpdatedAt time.Time `gorm:"default:CURRENT_TIMESTAMP" json:"updated_at"` | |
| DeletedAt *time.Time `json:"deleted_at,omitempty"` | |
| } | |
| type PublicUser struct { | |
| ID uint64 `gorm:"primary_key;auto_increment" json:"id"` | |
| FirstName string `gorm:"size:100;not null;" json:"first_name"` | |
| LastName string `gorm:"size:100;not null;" json:"last_name"` | |
| } | |
| //BeforeSave is a gorm hook | |
| func (u *User) BeforeSave() error { | |
| hashPassword, err := security.Hash(u.Password) | |
| if err != nil { | |
| return err | |
| } | |
| u.Password = string(hashPassword) | |
| return nil | |
| } | |
| type Users []User | |
| //So that we dont expose the user's email address and password to the world | |
| func (users Users) PublicUsers() []interface{} { | |
| result := make([]interface{}, len(users)) | |
| for index, user := range users { | |
| result[index] = user.PublicUser() | |
| } | |
| return result | |
| } | |
| //So that we dont expose the user's email address and password to the world | |
| func (u *User) PublicUser() interface{} { | |
| return &PublicUser{ | |
| ID: u.ID, | |
| FirstName: u.FirstName, | |
| LastName: u.LastName, | |
| } | |
| } | |
| func (u *User) Prepare() { | |
| u.FirstName = html.EscapeString(strings.TrimSpace(u.FirstName)) | |
| u.LastName = html.EscapeString(strings.TrimSpace(u.LastName)) | |
| u.Email = html.EscapeString(strings.TrimSpace(u.Email)) | |
| u.CreatedAt = time.Now() | |
| u.UpdatedAt = time.Now() | |
| } | |
| func (u *User) Validate(action string) map[string]string { | |
| var errorMessages = make(map[string]string) | |
| var err error | |
| switch strings.ToLower(action) { | |
| case "update": | |
| if u.Email == "" { | |
| errorMessages["email_required"] = "email required" | |
| } | |
| if u.Email != "" { | |
| if err = checkmail.ValidateFormat(u.Email); err != nil { | |
| errorMessages["invalid_email"] = "email email" | |
| } | |
| } | |
| case "login": | |
| if u.Password == "" { | |
| errorMessages["password_required"] = "password is required" | |
| } | |
| if u.Email == "" { | |
| errorMessages["email_required"] = "email is required" | |
| } | |
| if u.Email != "" { | |
| if err = checkmail.ValidateFormat(u.Email); err != nil { | |
| errorMessages["invalid_email"] = "please provide a valid email" | |
| } | |
| } | |
| case "forgotpassword": | |
| if u.Email == "" { | |
| errorMessages["email_required"] = "email required" | |
| } | |
| if u.Email != "" { | |
| if err = checkmail.ValidateFormat(u.Email); err != nil { | |
| errorMessages["invalid_email"] = "please provide a valid email" | |
| } | |
| } | |
| default: | |
| if u.FirstName == "" { | |
| errorMessages["firstname_required"] = "first name is required" | |
| } | |
| if u.LastName == "" { | |
| errorMessages["lastname_required"] = "last name is required" | |
| } | |
| if u.Password == "" { | |
| errorMessages["password_required"] = "password is required" | |
| } | |
| if u.Password != "" && len(u.Password) < 6 { | |
| errorMessages["invalid_password"] = "password should be at least 6 characters" | |
| } | |
| if u.Email == "" { | |
| errorMessages["email_required"] = "email is required" | |
| } | |
| if u.Email != "" { | |
| if err = checkmail.ValidateFormat(u.Email); err != nil { | |
| errorMessages["invalid_email"] = "please provide a valid email" | |
| } | |
| } | |
| } | |
| return errorMessages | |
| } |
From the above file, the user's struct is defined that contains the user information, we also added helper functions that will validate and sanitize inputs. A Hash method is called that helps hash password. That is defined in the infrastructure layer.
Gorm is used as the ORM of choice.
The same approach is taken when defining the food entity. You can look up the repo.
Repository
The repository defines a collection of methods that the infrastructure implements. This gives a vivid picture of the number of methods that interact with a given database or a third-party API.
The user's repository will look like this:
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package repository | |
| import ( | |
| "food-app/domain/entity" | |
| ) | |
| type UserRepository interface { | |
| SaveUser(*entity.User) (*entity.User, map[string]string) | |
| GetUser(uint64) (*entity.User, error) | |
| GetUsers() ([]entity.User, error) | |
| GetUserByEmailAndPassword(*entity.User) (*entity.User, map[string]string) | |
| } |
The methods are defined in an interface. These methods will later be implemented in the infrastructure layer.
Almost the same applies to the food repository here.
Infrastructure Layer
This layer implements the methods defined in the repository. The methods interact with the database or a third-party API. This article will only consider database interaction.
We can see how the user's repository implementation looks like:
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package persistence | |
| import ( | |
| "errors" | |
| "food-app/domain/entity" | |
| "food-app/domain/repository" | |
| "food-app/infrastructure/security" | |
| "github.com/jinzhu/gorm" | |
| "golang.org/x/crypto/bcrypt" | |
| "strings" | |
| ) | |
| type UserRepo struct { | |
| db *gorm.DB | |
| } | |
| func NewUserRepository(db *gorm.DB) *UserRepo { | |
| return &UserRepo{db} | |
| } | |
| //UserRepo implements the repository.UserRepository interface | |
| var _ repository.UserRepository = &UserRepo{} | |
| func (r *UserRepo) SaveUser(user *entity.User) (*entity.User, map[string]string) { | |
| dbErr := map[string]string{} | |
| err := r.db.Debug().Create(&user).Error | |
| if err != nil { | |
| //If the email is already taken | |
| if strings.Contains(err.Error(), "duplicate") || strings.Contains(err.Error(), "Duplicate") { | |
| dbErr["email_taken"] = "email already taken" | |
| return nil, dbErr | |
| } | |
| //any other db error | |
| dbErr["db_error"] = "database error" | |
| return nil, dbErr | |
| } | |
| return user, nil | |
| } | |
| func (r *UserRepo) GetUser(id uint64) (*entity.User, error) { | |
| var user entity.User | |
| err := r.db.Debug().Where("id = ?", id).Take(&user).Error | |
| if err != nil { | |
| return nil, err | |
| } | |
| if gorm.IsRecordNotFoundError(err) { | |
| return nil, errors.New("user not found") | |
| } | |
| return &user, nil | |
| } | |
| func (r *UserRepo) GetUsers() ([]entity.User, error) { | |
| var users []entity.User | |
| err := r.db.Debug().Find(&users).Error | |
| if err != nil { | |
| return nil, err | |
| } | |
| if gorm.IsRecordNotFoundError(err) { | |
| return nil, errors.New("user not found") | |
| } | |
| return users, nil | |
| } | |
| func (r *UserRepo) GetUserByEmailAndPassword(u *entity.User) (*entity.User, map[string]string) { | |
| var user entity.User | |
| dbErr := map[string]string{} | |
| err := r.db.Debug().Where("email = ?", u.Email).Take(&user).Error | |
| if gorm.IsRecordNotFoundError(err) { | |
| dbErr["no_user"] = "user not found" | |
| return nil, dbErr | |
| } | |
| if err != nil { | |
| dbErr["db_error"] = "database error" | |
| return nil, dbErr | |
| } | |
| //Verify the password | |
| err = security.VerifyPassword(user.Password, u.Password) | |
| if err != nil && err == bcrypt.ErrMismatchedHashAndPassword { | |
| dbErr["incorrect_password"] = "incorrect password" | |
| return nil, dbErr | |
| } | |
| return &user, nil | |
| } |
Well, you can see that we implemented the methods that were defined in the repository. This was made possible using the UserRepo struct which implements the UserRepository interface, as seen in this line:
//UserRepo implements the repository.UserRepository interface
var _ repository.UserRepository = &UserRepo{}
You can check the repository on how the food repository was implemented here.
So, let's configure our database by creating the db.go file with the content:
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package persistence | |
| import ( | |
| "fmt" | |
| "food-app/domain/entity" | |
| "food-app/domain/repository" | |
| "github.com/jinzhu/gorm" | |
| _ "github.com/jinzhu/gorm/dialects/postgres" | |
| ) | |
| type Repositories struct { | |
| User repository.UserRepository | |
| Food repository.FoodRepository | |
| db *gorm.DB | |
| } | |
| func NewRepositories(Dbdriver, DbUser, DbPassword, DbPort, DbHost, DbName string) (*Repositories, error) { | |
| DBURL := fmt.Sprintf("host=%s port=%s user=%s dbname=%s sslmode=disable password=%s", DbHost, DbPort, DbUser, DbName, DbPassword) | |
| db, err := gorm.Open(Dbdriver, DBURL) | |
| if err != nil { | |
| return nil, err | |
| } | |
| db.LogMode(true) | |
| return &Repositories{ | |
| User: NewUserRepository(db), | |
| Food: NewFoodRepository(db), | |
| db: db, | |
| }, nil | |
| } | |
| //closes the database connection | |
| func (s *Repositories) Close() error { | |
| return s.db.Close() | |
| } | |
| //This migrate all tables | |
| func (s *Repositories) Automigrate() error { | |
| return s.db.AutoMigrate(&entity.User{}, &entity.Food{}).Error | |
| } |
From the above file, we defined the Repositories struct which holds all the repositories in the application. We have the user and the food repositories. The Repositories also have a db instance, which is passed to the "constructors" of user and food(that is, NewUserRepository and NewFoodRepository).
Application Layer
We have successfully defined the API business logic in our domain. The application connects the domain and the interfaces layers.
We will only consider the user's application. You can check out that of the food in the repo.
This is the user's application:
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package application | |
| import ( | |
| "food-app/domain/entity" | |
| "food-app/domain/repository" | |
| ) | |
| type userApp struct { | |
| us repository.UserRepository | |
| } | |
| //UserApp implements the UserAppInterface | |
| var _ UserAppInterface = &userApp{} | |
| type UserAppInterface interface { | |
| SaveUser(*entity.User) (*entity.User, map[string]string) | |
| GetUsers() ([]entity.User, error) | |
| GetUser(uint64) (*entity.User, error) | |
| GetUserByEmailAndPassword(*entity.User) (*entity.User, map[string]string) | |
| } | |
| func (u *userApp) SaveUser(user *entity.User) (*entity.User, map[string]string) { | |
| return u.us.SaveUser(user) | |
| } | |
| func (u *userApp) GetUser(userId uint64) (*entity.User, error) { | |
| return u.us.GetUser(userId) | |
| } | |
| func (u *userApp) GetUsers() ([]entity.User, error) { | |
| return u.us.GetUsers() | |
| } | |
| func (u *userApp) GetUserByEmailAndPassword(user *entity.User) (*entity.User, map[string]string) { | |
| return u.us.GetUserByEmailAndPassword(user) | |
| } |
The above have methods to save and retrieve user data. The UserApp struct has the UserRepository interface, which made it possible to call the user repository methods.
Interfaces Layer
The interfaces is the layer that handles HTTP requests and responses. This is where we get incoming requests for authentication, user-related stuff, and food-related stuff.
User Handler
We define methods for saving a user, getting all users and getting a particular user. These are found in the user_handler.go file.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package interfaces | |
| import ( | |
| "food-app/application" | |
| "food-app/domain/entity" | |
| "food-app/infrastructure/auth" | |
| "github.com/gin-gonic/gin" | |
| "net/http" | |
| "strconv" | |
| ) | |
| //Users struct defines the dependencies that will be used | |
| type Users struct { | |
| us application.UserAppInterface | |
| rd auth.AuthInterface | |
| tk auth.TokenInterface | |
| } | |
| //Users constructor | |
| func NewUsers(us application.UserAppInterface, rd auth.AuthInterface, tk auth.TokenInterface) *Users { | |
| return &Users{ | |
| us: us, | |
| rd: rd, | |
| tk: tk, | |
| } | |
| } | |
| func (s *Users) SaveUser(c *gin.Context) { | |
| var user entity.User | |
| if err := c.ShouldBindJSON(&user); err != nil { | |
| c.JSON(http.StatusUnprocessableEntity, gin.H{ | |
| "invalid_json": "invalid json", | |
| }) | |
| return | |
| } | |
| //validate the request: | |
| validateErr := user.Validate("") | |
| if len(validateErr) > 0 { | |
| c.JSON(http.StatusUnprocessableEntity, validateErr) | |
| return | |
| } | |
| newUser, err := s.us.SaveUser(&user) | |
| if err != nil { | |
| c.JSON(http.StatusInternalServerError, err) | |
| return | |
| } | |
| c.JSON(http.StatusCreated, newUser.PublicUser()) | |
| } | |
| func (s *Users) GetUsers(c *gin.Context) { | |
| users := entity.Users{} //customize user | |
| var err error | |
| //us, err = application.UserApp.GetUsers() | |
| users, err = s.us.GetUsers() | |
| if err != nil { | |
| c.JSON(http.StatusInternalServerError, err.Error()) | |
| return | |
| } | |
| c.JSON(http.StatusOK, users.PublicUsers()) | |
| } | |
| func (s *Users) GetUser(c *gin.Context) { | |
| userId, err := strconv.ParseUint(c.Param("user_id"), 10, 64) | |
| if err != nil { | |
| c.JSON(http.StatusBadRequest, err.Error()) | |
| return | |
| } | |
| user, err := s.us.GetUser(userId) | |
| if err != nil { | |
| c.JSON(http.StatusInternalServerError, err.Error()) | |
| return | |
| } | |
| c.JSON(http.StatusOK, user.PublicUser()) | |
| } |
I want you to observe that when returning the user, we only return a public user(which is defined in the entity). The public user does not have sensitive user details such as email and password.
Authentication Handler
The login_handler takes care of login, logout and refresh token methods. Some methods defined in their respective files are called in this file. Do well to check them out in the repository following their file path.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package interfaces | |
| import ( | |
| "fmt" | |
| "food-app/application" | |
| "food-app/domain/entity" | |
| "food-app/infrastructure/auth" | |
| "github.com/dgrijalva/jwt-go" | |
| "github.com/gin-gonic/gin" | |
| "net/http" | |
| "os" | |
| "strconv" | |
| ) | |
| type Authenticate struct { | |
| us application.UserAppInterface | |
| rd auth.AuthInterface | |
| tk auth.TokenInterface | |
| } | |
| //Authenticate constructor | |
| func NewAuthenticate(uApp application.UserAppInterface, rd auth.AuthInterface, tk auth.TokenInterface) *Authenticate { | |
| return &Authenticate{ | |
| us: uApp, | |
| rd: rd, | |
| tk: tk, | |
| } | |
| } | |
| func (au *Authenticate) Login(c *gin.Context) { | |
| var user *entity.User | |
| var tokenErr = map[string]string{} | |
| if err := c.ShouldBindJSON(&user); err != nil { | |
| c.JSON(http.StatusUnprocessableEntity, "Invalid json provided") | |
| return | |
| } | |
| //validate request: | |
| validateUser := user.Validate("login") | |
| if len(validateUser) > 0 { | |
| c.JSON(http.StatusUnprocessableEntity, validateUser) | |
| return | |
| } | |
| u, userErr := au.us.GetUserByEmailAndPassword(user) | |
| if userErr != nil { | |
| c.JSON(http.StatusInternalServerError, userErr) | |
| return | |
| } | |
| ts, tErr := au.tk.CreateToken(u.ID) | |
| if tErr != nil { | |
| tokenErr["token_error"] = tErr.Error() | |
| c.JSON(http.StatusUnprocessableEntity, tErr.Error()) | |
| return | |
| } | |
| saveErr := au.rd.CreateAuth(u.ID, ts) | |
| if saveErr != nil { | |
| c.JSON(http.StatusInternalServerError, saveErr.Error()) | |
| return | |
| } | |
| userData := make(map[string]interface{}) | |
| userData["access_token"] = ts.AccessToken | |
| userData["refresh_token"] = ts.RefreshToken | |
| userData["id"] = u.ID | |
| userData["first_name"] = u.FirstName | |
| userData["last_name"] = u.LastName | |
| c.JSON(http.StatusOK, userData) | |
| } | |
| func (au *Authenticate) Logout(c *gin.Context) { | |
| //check is the user is authenticated first | |
| metadata, err := au.tk.ExtractTokenMetadata(c.Request) | |
| if err != nil { | |
| c.JSON(http.StatusUnauthorized, "Unauthorized") | |
| return | |
| } | |
| //if the access token exist and it is still valid, then delete both the access token and the refresh token | |
| deleteErr := au.rd.DeleteTokens(metadata) | |
| if deleteErr != nil { | |
| c.JSON(http.StatusUnauthorized, deleteErr.Error()) | |
| return | |
| } | |
| c.JSON(http.StatusOK, "Successfully logged out") | |
| } | |
| //Refresh is the function that uses the refresh_token to generate new pairs of refresh and access tokens. | |
| func (au *Authenticate) Refresh(c *gin.Context) { | |
| mapToken := map[string]string{} | |
| if err := c.ShouldBindJSON(&mapToken); err != nil { | |
| c.JSON(http.StatusUnprocessableEntity, err.Error()) | |
| return | |
| } | |
| refreshToken := mapToken["refresh_token"] | |
| //verify the token | |
| token, err := jwt.Parse(refreshToken, func(token *jwt.Token) (interface{}, error) { | |
| //Make sure that the token method conform to "SigningMethodHMAC" | |
| if _, ok := token.Method.(*jwt.SigningMethodHMAC); !ok { | |
| return nil, fmt.Errorf("unexpected signing method: %v", token.Header["alg"]) | |
| } | |
| return []byte(os.Getenv("REFRESH_SECRET")), nil | |
| }) | |
| //any error may be due to token expiration | |
| if err != nil { | |
| c.JSON(http.StatusUnauthorized, err.Error()) | |
| return | |
| } | |
| //is token valid? | |
| if _, ok := token.Claims.(jwt.Claims); !ok && !token.Valid { | |
| c.JSON(http.StatusUnauthorized, err) | |
| return | |
| } | |
| //Since token is valid, get the uuid: | |
| claims, ok := token.Claims.(jwt.MapClaims) | |
| if ok && token.Valid { | |
| refreshUuid, ok := claims["refresh_uuid"].(string) //convert the interface to string | |
| if !ok { | |
| c.JSON(http.StatusUnprocessableEntity, "Cannot get uuid") | |
| return | |
| } | |
| userId, err := strconv.ParseUint(fmt.Sprintf("%.f", claims["user_id"]), 10, 64) | |
| if err != nil { | |
| c.JSON(http.StatusUnprocessableEntity, "Error occurred") | |
| return | |
| } | |
| //Delete the previous Refresh Token | |
| delErr := au.rd.DeleteRefresh(refreshUuid) | |
| if delErr != nil { //if any goes wrong | |
| c.JSON(http.StatusUnauthorized, "unauthorized") | |
| return | |
| } | |
| //Create new pairs of refresh and access tokens | |
| ts, createErr := au.tk.CreateToken(userId) | |
| if createErr != nil { | |
| c.JSON(http.StatusForbidden, createErr.Error()) | |
| return | |
| } | |
| //save the tokens metadata to redis | |
| saveErr := au.rd.CreateAuth(userId, ts) | |
| if saveErr != nil { | |
| c.JSON(http.StatusForbidden, saveErr.Error()) | |
| return | |
| } | |
| tokens := map[string]string{ | |
| "access_token": ts.AccessToken, | |
| "refresh_token": ts.RefreshToken, | |
| } | |
| c.JSON(http.StatusCreated, tokens) | |
| } else { | |
| c.JSON(http.StatusUnauthorized, "refresh token expired") | |
| } | |
| } |
Food Handler
In the food_handler.go file, we have methods for basic food crud: creating, reading, updating, and deleting food. The file has explanations of how the code works.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package interfaces | |
| import ( | |
| "fmt" | |
| "food-app/application" | |
| "food-app/domain/entity" | |
| "food-app/infrastructure/auth" | |
| "food-app/interfaces/fileupload" | |
| "github.com/gin-gonic/gin" | |
| "net/http" | |
| "os" | |
| "strconv" | |
| "time" | |
| ) | |
| type Food struct { | |
| foodApp application.FoodAppInterface | |
| userApp application.UserAppInterface | |
| fileUpload fileupload.UploadFileInterface | |
| tk auth.TokenInterface | |
| rd auth.AuthInterface | |
| } | |
| //Food constructor | |
| func NewFood(fApp application.FoodAppInterface, uApp application.UserAppInterface, fd fileupload.UploadFileInterface, rd auth.AuthInterface, tk auth.TokenInterface) *Food { | |
| return &Food{ | |
| foodApp: fApp, | |
| userApp: uApp, | |
| fileUpload: fd, | |
| rd: rd, | |
| tk: tk, | |
| } | |
| } | |
| func (fo *Food) SaveFood(c *gin.Context) { | |
| //check is the user is authenticated first | |
| metadata, err := fo.tk.ExtractTokenMetadata(c.Request) | |
| if err != nil { | |
| c.JSON(http.StatusUnauthorized, "unauthorized") | |
| return | |
| } | |
| //lookup the metadata in redis: | |
| userId, err := fo.rd.FetchAuth(metadata.TokenUuid) | |
| if err != nil { | |
| c.JSON(http.StatusUnauthorized, "unauthorized") | |
| return | |
| } | |
| //We we are using a frontend(vuejs), our errors need to have keys for easy checking, so we use a map to hold our errors | |
| var saveFoodError = make(map[string]string) | |
| title := c.PostForm("title") | |
| description := c.PostForm("description") | |
| if fmt.Sprintf("%T", title) != "string" || fmt.Sprintf("%T", description) != "string" { | |
| c.JSON(http.StatusUnprocessableEntity, gin.H{ | |
| "invalid_json": "Invalid json", | |
| }) | |
| return | |
| } | |
| //We initialize a new food for the purpose of validating: in case the payload is empty or an invalid data type is used | |
| emptyFood := entity.Food{} | |
| emptyFood.Title = title | |
| emptyFood.Description = description | |
| saveFoodError = emptyFood.Validate("") | |
| if len(saveFoodError) > 0 { | |
| c.JSON(http.StatusUnprocessableEntity, saveFoodError) | |
| return | |
| } | |
| file, err := c.FormFile("food_image") | |
| if err != nil { | |
| saveFoodError["invalid_file"] = "a valid file is required" | |
| c.JSON(http.StatusUnprocessableEntity, saveFoodError) | |
| return | |
| } | |
| //check if the user exist | |
| _, err = fo.userApp.GetUser(userId) | |
| if err != nil { | |
| c.JSON(http.StatusBadRequest, "user not found, unauthorized") | |
| return | |
| } | |
| uploadedFile, err := fo.fileUpload.UploadFile(file) | |
| if err != nil { | |
| saveFoodError["upload_err"] = err.Error() //this error can be any we defined in the UploadFile method | |
| c.JSON(http.StatusUnprocessableEntity, saveFoodError) | |
| return | |
| } | |
| var food = entity.Food{} | |
| food.UserID = userId | |
| food.Title = title | |
| food.Description = description | |
| food.FoodImage = uploadedFile | |
| savedFood, saveErr := fo.foodApp.SaveFood(&food) | |
| if saveErr != nil { | |
| c.JSON(http.StatusInternalServerError, saveErr) | |
| return | |
| } | |
| c.JSON(http.StatusCreated, savedFood) | |
| } | |
| func (fo *Food) UpdateFood(c *gin.Context) { | |
| //Check if the user is authenticated first | |
| metadata, err := fo.tk.ExtractTokenMetadata(c.Request) | |
| if err != nil { | |
| c.JSON(http.StatusUnauthorized, "Unauthorized") | |
| return | |
| } | |
| //lookup the metadata in redis: | |
| userId, err := fo.rd.FetchAuth(metadata.TokenUuid) | |
| if err != nil { | |
| c.JSON(http.StatusUnauthorized, "unauthorized") | |
| return | |
| } | |
| //We we are using a frontend(vuejs), our errors need to have keys for easy checking, so we use a map to hold our errors | |
| var updateFoodError = make(map[string]string) | |
| foodId, err := strconv.ParseUint(c.Param("food_id"), 10, 64) | |
| if err != nil { | |
| c.JSON(http.StatusBadRequest, "invalid request") | |
| return | |
| } | |
| //Since it is a multipart form data we sent, we will do a manual check on each item | |
| title := c.PostForm("title") | |
| description := c.PostForm("description") | |
| if fmt.Sprintf("%T", title) != "string" || fmt.Sprintf("%T", description) != "string" { | |
| c.JSON(http.StatusUnprocessableEntity, "Invalid json") | |
| } | |
| //We initialize a new food for the purpose of validating: in case the payload is empty or an invalid data type is used | |
| emptyFood := entity.Food{} | |
| emptyFood.Title = title | |
| emptyFood.Description = description | |
| updateFoodError = emptyFood.Validate("update") | |
| if len(updateFoodError) > 0 { | |
| c.JSON(http.StatusUnprocessableEntity, updateFoodError) | |
| return | |
| } | |
| user, err := fo.userApp.GetUser(userId) | |
| if err != nil { | |
| c.JSON(http.StatusBadRequest, "user not found, unauthorized") | |
| return | |
| } | |
| //check if the food exist: | |
| food, err := fo.foodApp.GetFood(foodId) | |
| if err != nil { | |
| c.JSON(http.StatusNotFound, err.Error()) | |
| return | |
| } | |
| //if the user id doesnt match with the one we have, dont update. This is the case where an authenticated user tries to update someone else post using postman, curl, etc | |
| if user.ID != food.UserID { | |
| c.JSON(http.StatusUnauthorized, "you are not the owner of this food") | |
| return | |
| } | |
| //Since this is an update request, a new image may or may not be given. | |
| // If not image is given, an error occurs. We know this that is why we ignored the error and instead check if the file is nil. | |
| // if not nil, we process the file by calling the "UploadFile" method. | |
| // if nil, we used the old one whose path is saved in the database | |
| file, _ := c.FormFile("food_image") | |
| if file != nil { | |
| food.FoodImage, err = fo.fileUpload.UploadFile(file) | |
| //since i am using Digital Ocean(DO) Spaces to save image, i am appending my DO url here. You can comment this line since you may be using Digital Ocean Spaces. | |
| food.FoodImage = os.Getenv("DO_SPACES_URL") + food.FoodImage | |
| if err != nil { | |
| c.JSON(http.StatusUnprocessableEntity, gin.H{ | |
| "upload_err": err.Error(), | |
| }) | |
| return | |
| } | |
| } | |
| //we dont need to update user's id | |
| food.Title = title | |
| food.Description = description | |
| food.UpdatedAt = time.Now() | |
| updatedFood, dbUpdateErr := fo.foodApp.UpdateFood(food) | |
| if dbUpdateErr != nil { | |
| c.JSON(http.StatusInternalServerError, dbUpdateErr) | |
| return | |
| } | |
| c.JSON(http.StatusOK, updatedFood) | |
| } | |
| func (fo *Food) GetAllFood(c *gin.Context) { | |
| allfood, err := fo.foodApp.GetAllFood() | |
| if err != nil { | |
| c.JSON(http.StatusInternalServerError, err.Error()) | |
| return | |
| } | |
| c.JSON(http.StatusOK, allfood) | |
| } | |
| func (fo *Food) GetFoodAndCreator(c *gin.Context) { | |
| foodId, err := strconv.ParseUint(c.Param("food_id"), 10, 64) | |
| if err != nil { | |
| c.JSON(http.StatusBadRequest, "invalid request") | |
| return | |
| } | |
| food, err := fo.foodApp.GetFood(foodId) | |
| if err != nil { | |
| c.JSON(http.StatusInternalServerError, err.Error()) | |
| return | |
| } | |
| user, err := fo.userApp.GetUser(food.UserID) | |
| if err != nil { | |
| c.JSON(http.StatusInternalServerError, err.Error()) | |
| return | |
| } | |
| foodAndUser := map[string]interface{}{ | |
| "food": food, | |
| "creator": user.PublicUser(), | |
| } | |
| c.JSON(http.StatusOK, foodAndUser) | |
| } | |
| func (fo *Food) DeleteFood(c *gin.Context) { | |
| metadata, err := fo.tk.ExtractTokenMetadata(c.Request) | |
| if err != nil { | |
| c.JSON(http.StatusUnauthorized, "Unauthorized") | |
| return | |
| } | |
| foodId, err := strconv.ParseUint(c.Param("food_id"), 10, 64) | |
| if err != nil { | |
| c.JSON(http.StatusBadRequest, "invalid request") | |
| return | |
| } | |
| _, err = fo.userApp.GetUser(metadata.UserId) | |
| if err != nil { | |
| c.JSON(http.StatusInternalServerError, err.Error()) | |
| return | |
| } | |
| err = fo.foodApp.DeleteFood(foodId) | |
| if err != nil { | |
| c.JSON(http.StatusInternalServerError, err.Error()) | |
| return | |
| } | |
| c.JSON(http.StatusOK, "food deleted") | |
| } |
Please note, when testing creating or updating food methods via the API using postman, use form-data not JSON. This is because the request type is multipart/form-data.
Running the Application
So, let's test what we've got. We will wire up the routes, connect to the database and start the application.
These will be done in the main.go file defined in the directory root.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package main | |
| import ( | |
| "food-app/infrastructure/auth" | |
| "food-app/infrastructure/persistence" | |
| "food-app/interfaces" | |
| "food-app/interfaces/fileupload" | |
| "food-app/interfaces/middleware" | |
| "github.com/gin-gonic/gin" | |
| "github.com/joho/godotenv" | |
| "log" | |
| "os" | |
| ) | |
| func init() { | |
| //To load our environmental variables. | |
| if err := godotenv.Load(); err != nil { | |
| log.Println("no env gotten") | |
| } | |
| } | |
| func main() { | |
| dbdriver := os.Getenv("DB_DRIVER") | |
| host := os.Getenv("DB_HOST") | |
| password := os.Getenv("DB_PASSWORD") | |
| user := os.Getenv("DB_USER") | |
| dbname := os.Getenv("DB_NAME") | |
| port := os.Getenv("DB_PORT") | |
| //redis details | |
| redis_host := os.Getenv("REDIS_HOST") | |
| redis_port := os.Getenv("REDIS_PORT") | |
| redis_password := os.Getenv("REDIS_PASSWORD") | |
| services, err := persistence.NewRepositories(dbdriver, user, password, port, host, dbname) | |
| if err != nil { | |
| panic(err) | |
| } | |
| defer services.Close() | |
| services.Automigrate() | |
| redisService, err := auth.NewRedisDB(redis_host, redis_port, redis_password) | |
| if err != nil { | |
| log.Fatal(err) | |
| } | |
| tk := auth.NewToken() | |
| fd := fileupload.NewFileUpload() | |
| users := interfaces.NewUsers(services.User, redisService.Auth, tk) | |
| foods := interfaces.NewFood(services.Food, services.User, fd, redisService.Auth, tk) | |
| authenticate := interfaces.NewAuthenticate(services.User, redisService.Auth, tk) | |
| r := gin.Default() | |
| r.Use(middleware.CORSMiddleware()) //For CORS | |
| //user routes | |
| r.POST("/users", users.SaveUser) | |
| r.GET("/users", users.GetUsers) | |
| r.GET("/users/:user_id", users.GetUser) | |
| //post routes | |
| r.POST("/food", middleware.AuthMiddleware(), middleware.MaxSizeAllowed(8192000), foods.SaveFood) | |
| r.PUT("/food/:food_id", middleware.AuthMiddleware(), middleware.MaxSizeAllowed(8192000), foods.UpdateFood) | |
| r.GET("/food/:food_id", foods.GetFoodAndCreator) | |
| r.DELETE("/food/:food_id", middleware.AuthMiddleware(), foods.DeleteFood) | |
| r.GET("/food", foods.GetAllFood) | |
| //authentication routes | |
| r.POST("/login", authenticate.Login) | |
| r.POST("/logout", authenticate.Logout) | |
| r.POST("/refresh", authenticate.Refresh) | |
| //Starting the application | |
| app_port := os.Getenv("PORT") //using heroku host | |
| if app_port == "" { | |
| app_port = "8888" //localhost | |
| } | |
| log.Fatal(r.Run(":"+app_port)) | |
| } |
The router(r) is of type Engine from the gin package we are using.
Middleware
As seen from the above file, Some routes have restrictions. The AuthMiddleware restricts access to an unauthenticated user. The CORSMiddleware enables data transfer from different domains. This is useful because VueJS is used for the frontend of this application and it points to a different domain.
The MaxSizeAllowed middleware stops any file with size above the one the middleware specifies. Since the food implementation requires file upload, the middleware stops files greater than the specified to be read into memory. This helps to prevent hackers from uploading an unreasonable huge file and slowing down the application. The middleware package is defined in the interfaces layer.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| package middleware | |
| import ( | |
| "bytes" | |
| "food-app/infrastructure/auth" | |
| "github.com/gin-gonic/gin" | |
| "io/ioutil" | |
| "net/http" | |
| ) | |
| func AuthMiddleware() gin.HandlerFunc { | |
| return func(c *gin.Context) { | |
| err := auth.TokenValid(c.Request) | |
| if err != nil { | |
| c.JSON(http.StatusUnauthorized, gin.H{ | |
| "status": http.StatusUnauthorized, | |
| "error": err.Error(), | |
| }) | |
| c.Abort() | |
| return | |
| } | |
| c.Next() | |
| } | |
| } | |
| func CORSMiddleware() gin.HandlerFunc { | |
| return func(c *gin.Context) { | |
| c.Writer.Header().Set("Access-Control-Allow-Origin", "*") | |
| c.Writer.Header().Set("Access-Control-Allow-Credentials", "true") | |
| c.Writer.Header().Set("Access-Control-Allow-Headers", "Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, accept, origin, Cache-Control, X-Requested-With") | |
| c.Writer.Header().Set("Access-Control-Allow-Methods", "POST, OPTIONS, GET, PUT, PATCH, DELETE") | |
| if c.Request.Method == "OPTIONS" { | |
| c.AbortWithStatus(204) | |
| return | |
| } | |
| c.Next() | |
| } | |
| } | |
| //Avoid a large file from loading into memory | |
| //If the file size is greater than 8MB dont allow it to even load into memory and waste our time. | |
| func MaxSizeAllowed(n int64) gin.HandlerFunc { | |
| return func(c *gin.Context) { | |
| c.Request.Body = http.MaxBytesReader(c.Writer, c.Request.Body, n) | |
| buff, errRead := c.GetRawData() | |
| if errRead != nil { | |
| //c.JSON(http.StatusRequestEntityTooLarge,"too large") | |
| c.JSON(http.StatusRequestEntityTooLarge, gin.H{ | |
| "status": http.StatusRequestEntityTooLarge, | |
| "upload_err": "too large: upload an image less than 8MB", | |
| }) | |
| c.Abort() | |
| return | |
| } | |
| buf := bytes.NewBuffer(buff) | |
| c.Request.Body = ioutil.NopCloser(buf) | |
| } | |
| } |
We can now run the application using:
go run main.go
Bonus
- Vue and VueX are used to consume the API. Get the repository here, You can also visit the url and play with it.
- Test cases are written for most of the functionality. If you have time, you can add to it. To achieve unit testing for each of the methods in our handler, we created a mock package(in the utils directory) that mocks all the dependencies that are used in the handler methods.
- Circle CI is used for Continuous Integration.
- Heroku is used to deploy the API
- Netlify is used to deploy the Frontend.
Conclusion
I hope you didn't have a hard time following this guideline on how to use DDD in when building a golang application. If you have questions or any observations, please don't hesitate to use the comment section. As said early, the author is not an expert on this. He simply wrote this article based on his use case.
Get the API code here.
Get the Frontend code here.
You can also visit the application url and play with it.
Check out other articles on medium here.
You can as well follow on twitter
Happy DDDing.
Top comments (26)
Hi Steven, thank you for the article, there is not much DDD articles so this is good thing.
However, I have some observations regarding implementation details.
1) You start by "DDD comprises of 4 Layers" Domain, Infrastructure, Application, Interfaces then ... You put Infrastructure inside Domain ! Infrastructure package should be on the same level as Domain, Application and Interfaces. That is because Infrastructure layer brings support to all 3 others layers, not only domain. You can define go service interface inside your application package then have its implementation inside infrastructure because the implementation brings some weird dependencies.
2) packages "utils" :S in DDD you should not have an "utils" package. Everything have a place.
Auth and Security are infrastructure stuff
Middleware and FileUpload are Interfaces stuff
3) You talk about Entities but not about Agregates, you separate Repositories from Entities, their should be colocated in the same package , the "agregate" which name should be the aggregate name. Modularity is a big principle of DDD. Interchangeable component losely coupled with big cohesion.
4) In food_app.go in the application layer, there is a Service Interface , good. But there is no Factory for it, the struct implementation is just public to everyone "type FoodApp struct{...}" , it should be private and be called something like "type foodService struct {}" Factories are important because they help construct the object (inject services if needed, instrument it, etc )
5) The factory of your repository should
a) be inside the infrastructure package
func NewUserRepository(db *gorm.DB) repository.UserRepository
b) it takes an infrastructure object gorm.DB that the caller should not handle
6) You could use the DomainRegistry pattern to handle the restitution of the different factories (service, repo, aggregates). DomainRegistry interface in domain root then the DomainRegistry implementation in the infrastructure
In fact, there are other concerns but I think you get the point. Tactical patterns of DDD are direction to follow this is not strict if we respect certain rules.
Don't get me wrong this is just a fair critics. Because every one is learning, me the first. But from what I see the article can confuse first time DDD players because you break some principles.
If you want I can fork you repository and propose something we can discuss on.
Great. Thanks, a lot Epo for the feedback.
For the first point, The Infrastructure Layer is actually on the same level as the Domain. This was not the case in the first push. It had long been corrected. Please check.
For the second point, I'm currently refactoring to have the Auth in the infrastructure(have been a bit busy at work), I will probably update before the week runs out.
For the third point, I will refactor to that. Thanks.
For the fourth point, that was an oversight. The change has been effected now.
For the fifth point, I didn't quite get you. But this no longer applies in the implementation above.
func NewUserRepository(db *gorm.DB) repository.UserRepository
The article is currently in a constant state of editing as constructive feedback such as yours are given. If you don't mind, can you elaborate on your fifth point?
Please go ahead and fork the repository, your changes are welcome.
Thanks again for the feedback.
damianopetrungaro.com/posts/ddd-us...
I think it's the best articles about DDD and Go.
Hello Victor. First of all I wanted to thank you because your project have been very helpful as an example for implementing a project of my own. I have a question for you about the code tho. Why in the api in the refresh token method you just erase the refresh token and not the previous generated access token in the redis db. It seems like it will always remain an orphan access token in the redis database if you do this I think. Is there any reason for you to do that?. Thanks again.
Hi Jose,
For we to ever use the Refresh Token, it means the Access Token must have expired(and Redis deletes it automatically).
Hi Steven. Thanks for the answer. That makes sense. I will check it out it might be something on my implementation. The other thing is I don't see in the code in the frontend where you are encripting the password with the Bcrypt. Is that missing? or am I just don't seeing it?.
Thank you.
Hi,
The password is encrypted on the backend.
Go to this path: infrastructure/security/password.go
The function that hashes the password is defined there.
Hey there! I got little confused with the Application layer in your example... It just feels a bit pointless as it only reproduces the Repository and doesn't actually do anything different than that. Could you please explain or give some example of how the application layer could grow in a way that it gets more "usefull"?
Thanks!
Hi Steven, thank you for the article, I have a question!
Why do you pass a repository as param when init interface?
Such as
services.Foodis passed as params ofinterfaces.NewFoodinitialization.foods := interfaces.NewFood(services.Food, services.User, fd, redisService.Auth, tk)I think that pass a application is better choice! How do you think about it?
Hi bro, Sorry for the late reply. Just seeing this now. interfaces.NewFood() is a constructor, so we inject dependencies of other services. This is considered best practice, so you avoid the usage of globals in your code.
Why did you choose to return interfaces e.g. in your repository creation functions? Isn't that against recommended Go best practices?
Hi Martin. Thanks for the feedback.
In order to answer your question properly, can you include a code snippet to a comment where you observed this?
Thanks.
For those who are looking for articles about DDD in Go, I would recommend reading this
damianopetrungaro.com/posts/ddd-us... very good article about DDD with Golang.
Great article. I have a question. Is it correct that the entity "User" knows about gorm? Should the entities know about de persistence strategy? thanks in advance.
I can't understand why people choose golang on this way
What's problem with Golang and DDD?
damianopetrungaro.com/posts/ddd-us...
Some comments may only be visible to logged-in visitors. Sign in to view all comments. Some comments have been hidden by the post's author - find out more