How to validate if input in input field is a valid credit card number using express-validator ?
In HTML forms, we often required validation of different types. Validate existing email, validate password length, validate confirm password, validate to allow only integer inputs, these are some examples of validation. In a certain input field, only valid credit card numbers are allowed i.e. there not allowed any other string or number which not follow the rule to be a valid credit card. We can also validate these input fields to only accept a valid credit card number using express-validator middleware.
Condition to be a valid credit card number:
Credit card number must follow the Luhn’s algorithm as shown below:
The Luhn Formula:
- Drop the last digit from the number. The last digit is what we want to check against.
- Reverse the numbers.
- Multiply the digits in odd positions (1, 3, 5, etc.) by 2 and subtract 9 to all any result higher than 9.
- Add all the numbers together.
- The check digit (the last number of the card) is the amount that you would need to add to get a multiple of 10 (Modulo 10).
Example:
Original Number: 4 5 5 6 7 3 7 5 8 6 8 9 9 8 5 5
Drop the last digit: 4 5 5 6 7 3 7 5 8 6 8 9 9 8 5
Reverse the digits: 5 8 9 9 8 6 8 5 7 3 7 6 5 5 4
Multiple odd place digits by 2: 10 8 18 9 16 6 16 5 14 3 14 6 10 5 8
Subtract 9 to numbers over 9: 1 8 9 9 7 6 7 5 5 3 5 6 1 5 8
Add all numbers: 1 8 9 9 7 6 7 5 5 3 5 6 1 5 8 = 85
Mod 10: 85 modulo 10 = 5 (last digit of card)
Command to install express-validator:
npm install express-validator
Steps to use express-validator to implement the logic:
- Install express-validator middleware.
- Create a validator.js file to code all the validation logic.
- Validate input by validateInputField: check(input field name) and chain on validation isCreditCard() with ‘ . ‘
- Use the validation name(validateInputField) in the routes as a middleware as an array of validations.
- Destructure ‘validationResult’ function from express-validator to use it to find any errors.
- If error occurs redirect to the same page passing the error information.
- If error list is empty, give access to the user for the subsequent request.
Note: Here we use local or custom database to implement the logic, the same steps can be followed to implement the logic in a regular database like MongoDB or MySql.
Example: This example illustrates how to validate an input field to only allow a valid credit card number.
javascript
const express = require( 'express' )
const bodyParser = require( 'body-parser' )
const {validationResult} = require( 'express-validator' )
const repo = require( './repository' )
const { validateCardNumber } = require( './validator' )
const formTemplet = require( './form' )
const app = express()
const port = process.env.PORT || 3000
app.use(bodyParser.urlencoded({extended : true }))
app.get( '/' , (req, res) => {
res.send(formTemplet({}))
})
app.post(
'/cardinfo' ,
[validateCardNumber],
async (req, res) => {
const errors = validationResult(req)
if (!errors.isEmpty()) {
return res.send(formTemplet({errors}))
}
const {cname, cno, edate} = req.body
await repo.create({
'card name' :cname,
'card number' :cno,
'expiry date' :edate.toString()
})
res.send( '<strong>Card information is saved '
+ 'to the database successfully</strong>' )
})
app.listen(port, () => {
console.log(`Server start on port ${port}`)
})
|
Filename – repository.js: This file contains all the logic to create a local database and interact with it.
javascript
const fs = require( 'fs' )
class Repository {
constructor(filename) {
if (!filename) {
throw new Error(
'Filename is required to create a datastore!' )
}
this .filename = filename try {
fs.accessSync( this .filename)
}
catch (err) {
fs.writeFileSync( this .filename, '[]' )
}
}
async getAll() {
return JSON.parse(
await fs.promises.readFile( this .filename, {
encoding: 'utf8'
}))
}
async create(attrs) {
const records = await this .getAll()
records.push(attrs)
await fs.promises.writeFile( this .filename,
JSON.stringify(records, null , 2))
return attrs
}
}
module.exports = new Repository( 'datastore.json' )
|
Filename – form.js: This file contains logic to show form to submit the card information.
javascript
const getError = (errors, prop) => {
try {
return errors.mapped()[prop].msg
} catch (error) {
return ''
}
}
module.exports = ({errors}) => {
return `
<!DOCTYPE html>
<html>
<head>
<link rel= 'stylesheet' href=
<style>
div.columns {
margin-top: 100px;
}
.button {
margin-top: 10px
}
</style>
</head>
<body>
<div class= 'container' >
<div class= 'columns is-centered' >
<div class= 'column is-5' >
<form action= '/cardinfo'
method= 'POST' >
<div>
<div>
<label class= 'label' id= 'cname' >
Card Name
</label>
</div>
<input class= 'input' type= 'text'
name= 'cname' placeholder= 'Vinit singh'
for = 'cname' >
</div>
<div>
<div>
<label class= 'label' id= 'cno' >
Card Number
</label>
</div>
<input class= 'input' type= 'text' name= 'cno'
placeholder= 'Card Number' for = 'cno' >
<p class= "help is-danger" >
${getError(errors, 'cno' )}
</p>
</div>
<div>
<div>
<label class= 'label' id= 'edate' >
Expiry Date
</label>
</div>
<input class= 'input' type= 'date' name= 'edate'
placeholder= '23/9/2026' for = 'cdate' >
</div>
<div>
<button class= 'button is-primary' >
Submit
</button>
</div>
</form>
</div>
</div>
</div>
</body>
</html>
`
}
|
Filename – validator.js: This file contain all the validation logic(Logic to validate a input field to only allow a valid credit card number).
javascript
const {check} = require( 'express-validator' )
const repo = require( './repository' )
module.exports = {
validateCardNumber : check( 'cno' )
.trim()
.isCreditCard()
.withMessage( 'Must be a valid credit card number' )
}
|
Filename – package.json
package.json file
Database:
Database
Output:
Attempt to submit the form with invalid card number(not following luhn formula)
Attempt to submit the form with invalid card number(not following luhn formula and also no credit card started with number 9)
Response when attempt to submit the form with invalid card number
Attempt to submit the form with valid card number(following luhn formula)
Response when attempt to submit the form with valid card number
Database after successful submission of form:
Database after successful submission of form
Note: We have used some Bulma classes(CSS framework) in the form.js file to design the content.
Last Updated :
08 Apr, 2022
Like Article
Save Article
Share your thoughts in the comments
Please Login to comment...