C# – Validation inside Constructor

cdomain-driven-design

I have just read the following blog entry: Validation and DDD
By Vladimir Khorikov.

The blog talks about using the following patterns for validating an entity object:

IsValid method
Check validity in application services layer
TryExecute pattern
Execute/CanExecute pattern

Please see the code below:

public Person(AbstractValidator<Applicant> validator, IRulesOfferCalculator rulesOfferCalculator, int iD,
            string name, DateTime dateOfBirth, string Address)
        {
            _iD = iD;
            _name = name;
            _dateOfBirth = dateOfBirth;
            _Address = Address;
            _validator = validator;
            _rulesOfferCalculator = rulesOfferCalculator;
            _validator.ValidateAndThrow(this);
        }

Note that the validation is done inside the constructor here. Why is this not an option? Is this an anti pattern?

Please note that I am asking specifically in the context of a rich domain model. I am using Fluent Validation rather than attributes.

Best Answer

Is this an anti pattern?

I see two anti-patterns here

passing around references to objects before their initialization is complete is a bad idea.
using an abstract validator to do the checking suggests that you aren't respecting the principal of cohesion.

More generally, I think there's a bit of confusion in Khorikov's essay: we don't validate entities, we validate state. The entity is just an identity progressing from one state to the next.

For more on this point, see Stuart Halloway's 2011 talk.

The state that you are validating is a value object, in Evans's language.

Throwing an ArgumentException in the constructor when the state you've been given doesn't satisfy your invariant is a perfectly reasonable thing to do.

But I still wouldn't inject a validator to do the state checking -- that sounds as though we are treating the entity as a dumb bag of state, with all of the state living elsewhere. Compare with Martin Fowler's discussion of anemic domain models, and you'll see what I mean.

Would you suggest something like: Execute / CanExecute pattern for the validation?

I'm not a fan; but the reasoning is a bit complicated.

public IReadOnlyList<string> CanDeliver(string address, DateTime time)

So the first thing to notice is that this is a query, which means it should be safe; it doesn't induce a mutation in the entity.

What distinguishes this query from being a full function is the current state of the entity. That is to say, CanDeliver is partial application, with an implicit variable bound to the current (immutable) state. So let's make that binding explicit:

public IReadOnlyList<string> CanDeliver(Order.State currentState, string address, DateTime time)

Notice that the entity now goes away -- that is, the law of Demeter is telling us that CanDeliver belongs on the state, not on the entity.

If that's the case, then you can call State.CanDeliver any time you like, in the controller, or even in the client when composing the request. But as David Arno points out, you still have the race, which is why Khorikov still needs the check.

I have also injected RulesOfferCalculator into this class. What do you think of that?

Injecting domain behaviors into an entity is weird, and my guess probably wrong in most cases.

Review the definition of SERVICE in Domain Driven Design

The operation relates to a domain concept that is not a natural part of an ENTITY or VALUE OBJECT
The interface is defined in terms of other elements of the domain model
The operation is stateless

In common cases, a domain service is passed to an entity as an argument, rather than embedded within the entity as though it were a piece of state.

Related Solutions

C# Best Practices – Constructor Parameter Validation

I tend to perform all of my validation in the constructor. This is a must because I almost always create immutable objects. For your specific case I think this is acceptable.

if (string.IsNullOrEmpty(text))
    throw new ArgumentException("message", nameof(text));

If you are using .NET 4 you can do this. Of course this depends on whether you consider a string that contains only white space to be invalid.

if (string.IsNullOrWhiteSpace(text))
    throw new ArgumentException("message", nameof(text));

C# – Using struct to enforce validation of built-in type

This is fairly common in ML-style languages like Standard ML/OCaml/F#/Haskell where it's much easier to create the wrapper types. It provides you with two benefits:

It allows a piece of code to enforce that a string has undergone validation, without having to take care of that validation itself.
It allows you to localize the validation code in one place. If a ValidatedName ever contains an invalid value, you know the error is in the IsValid method.

If you get the IsValid method right, you have a guarantee that any function that receives a ValidatedName is in fact receiving a validated name.

If you need to do string manipulations you can add a public method that accepts a function that takes a String (the value of the ValidatedName) and returns a String (the new value) and validates the result of applying the function. That eliminates the boilerplate of getting the underlying String value and re-wrapping it.

A related use for wrapping values is to track their provenance. E.g. C-based OS APIs sometimes give handles for resources as integers. You can wrap the OS APIs to instead use a Handle structure and only provide access to the constructor to that part of the code. If the code that produces the Handles is correct, then only valid handles will ever be used.

Best Answer

Related Solutions

C# Best Practices – Constructor Parameter Validation

C# – Using struct to enforce validation of built-in type

Related Topic