Forem: Ruan Muller The latest articles on Forem by Ruan Muller (@ruanmuller04). https://forem.com/ruanmuller04 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3860928%2F53c019e2-778b-483d-a3ab-8b784c674a69.jpg Forem: Ruan Muller https://forem.com/ruanmuller04 en Day 2 of my 21-day API challenge, built a Password Strength & Security Scorer API Ruan Muller Sun, 05 Apr 2026 11:23:59 +0000 https://forem.com/ruanmuller04/day-2-of-my-21-day-api-challenge-built-a-password-strength-security-scorer-api-489c https://forem.com/ruanmuller04/day-2-of-my-21-day-api-challenge-built-a-password-strength-security-scorer-api-489c <p>Day 2 of my 21-day API challenge is done.</p> <p>Yesterday I built an Invoice &amp; Receipt Parser API. Today I built a <strong>Password Strength &amp; Security Scorer API</strong> — a complete password security toolkit that any developer can drop into their signup flow in minutes.</p> <p>If you missed Day 1, catch up here: <a href="https://dev.to/ruanmuller04">https://dev.to/ruanmuller04</a></p> <h2> The Problem </h2> <p>Every app with a login form needs password validation. Most developers end up writing the same basic checks:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// The lazy version every dev writes at 2am</span> <span class="k">if </span><span class="p">(</span><span class="nx">password</span><span class="p">.</span><span class="nx">length</span> <span class="o">&lt;</span> <span class="mi">8</span><span class="p">)</span> <span class="k">return</span> <span class="dl">"</span><span class="s2">too short</span><span class="dl">"</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="sr">/</span><span class="se">[</span><span class="sr">A-Z</span><span class="se">]</span><span class="sr">/</span><span class="p">.</span><span class="nf">test</span><span class="p">(</span><span class="nx">password</span><span class="p">))</span> <span class="k">return</span> <span class="dl">"</span><span class="s2">needs uppercase</span><span class="dl">"</span><span class="p">;</span> </code></pre> </div> <p>It works. But it misses so much — common breached passwords, keyboard patterns, crack time estimates, entropy calculations. Building all of that properly takes days.</p> <p>So I built an API that does it properly in one call.</p> <h2> What I Built </h2> <p>The <strong>Password Strength &amp; Security Scorer API</strong> — send it a password, get back a full security report.</p> <p><strong>Input:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"password"</span><span class="p">:</span><span class="w"> </span><span class="s2">"password123"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p><strong>Output:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"success"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"data"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"score"</span><span class="p">:</span><span class="w"> </span><span class="mi">0</span><span class="p">,</span><span class="w"> </span><span class="nl">"grade"</span><span class="p">:</span><span class="w"> </span><span class="s2">"F"</span><span class="p">,</span><span class="w"> </span><span class="nl">"strength"</span><span class="p">:</span><span class="w"> </span><span class="s2">"very weak"</span><span class="p">,</span><span class="w"> </span><span class="nl">"entropy_bits"</span><span class="p">:</span><span class="w"> </span><span class="mf">58.5</span><span class="p">,</span><span class="w"> </span><span class="nl">"crack_time"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"display"</span><span class="p">:</span><span class="w"> </span><span class="s2">"5 months"</span><span class="p">,</span><span class="w"> </span><span class="nl">"online_attack"</span><span class="p">:</span><span class="w"> </span><span class="s2">"58 years"</span><span class="p">,</span><span class="w"> </span><span class="nl">"offline_attack"</span><span class="p">:</span><span class="w"> </span><span class="s2">"5 months"</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="nl">"patterns"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"is_common_password"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"has_sequential_nums"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"ends_with_number"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="nl">"feedback"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"This is one of the most common passwords"</span><span class="p">,</span><span class="w"> </span><span class="s2">"Contains sequential numbers (e.g. 123)"</span><span class="p">,</span><span class="w"> </span><span class="s2">"Ends with a number — very predictable"</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"suggestions"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="s2">"Choose a completely different password"</span><span class="p">,</span><span class="w"> </span><span class="s2">"Add uppercase letters (A-Z)"</span><span class="p">,</span><span class="w"> </span><span class="s2">"Add symbols (!@#$%^&amp;*)"</span><span class="w"> </span><span class="p">]</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>And for a strong password:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"password"</span><span class="p">:</span><span class="w"> </span><span class="s2">"K#9mP$vL2@nQ8xR!"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"score"</span><span class="p">:</span><span class="w"> </span><span class="mi">75</span><span class="p">,</span><span class="w"> </span><span class="nl">"grade"</span><span class="p">:</span><span class="w"> </span><span class="s2">"B"</span><span class="p">,</span><span class="w"> </span><span class="nl">"strength"</span><span class="p">:</span><span class="w"> </span><span class="s2">"strong"</span><span class="p">,</span><span class="w"> </span><span class="nl">"crack_time"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"display"</span><span class="p">:</span><span class="w"> </span><span class="s2">"2 million years"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h2> The 6 Endpoints </h2> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Method</th> <th>Endpoint</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td>GET</td> <td><code>/health</code></td> <td>Health check</td> </tr> <tr> <td>POST</td> <td><code>/analyze</code></td> <td>Full password analysis</td> </tr> <tr> <td>POST</td> <td><code>/analyze/batch</code></td> <td>Analyze up to 20 passwords at once</td> </tr> <tr> <td>POST</td> <td><code>/check/breach</code></td> <td>Check against 500+ breached passwords</td> </tr> <tr> <td>POST</td> <td><code>/generate</code></td> <td>Generate strong passwords</td> </tr> <tr> <td>POST</td> <td><code>/compare</code></td> <td>Compare two passwords side by side</td> </tr> </tbody> </table></div> <p>The <code>/generate</code> endpoint is my favourite — it returns strong passwords with their scores so you can show users exactly how secure the suggested password is.</p> <h2> How the Scoring Works </h2> <p>The score (0-100) is calculated from four components:</p> <p><strong>1. Length (0-30 points)</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>6 chars → 5 pts 8 chars → 10 pts 12 chars → 20 pts 16 chars → 25 pts 20+ chars → 30 pts </code></pre> </div> <p><strong>2. Character sets (0-28 points)</strong><br> Each charset adds 7 points:</p> <ul> <li>Lowercase letters</li> <li>Uppercase letters</li> <li>Numbers</li> <li>Symbols</li> </ul> <p><strong>3. Unique character ratio (0-15 points)</strong><br> Rewards passwords where characters don't repeat.</p> <p><strong>4. Entropy (0-15 points)</strong><br> Calculated as: <code>length × log2(pool_size)</code></p> <p><strong>Penalties applied for:</strong></p> <ul> <li>Common passwords: -40 points</li> <li>Keyboard walks (qwerty, asdfgh): -20 points</li> <li>Repeated characters (aaa): -10 points</li> <li>Sequential numbers (123): -10 points</li> <li>All numbers or all letters: -15 points</li> </ul> <h2> Crack Time Estimation </h2> <p>This was the most interesting part to build. The formula:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">function</span> <span class="nf">estimateCrackTime</span><span class="p">(</span><span class="nx">password</span><span class="p">,</span> <span class="nx">charsets</span><span class="p">)</span> <span class="p">{</span> <span class="kd">let</span> <span class="nx">poolSize</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="nx">charsets</span><span class="p">.</span><span class="nx">has_lowercase</span><span class="p">)</span> <span class="nx">poolSize</span> <span class="o">+=</span> <span class="mi">26</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="nx">charsets</span><span class="p">.</span><span class="nx">has_uppercase</span><span class="p">)</span> <span class="nx">poolSize</span> <span class="o">+=</span> <span class="mi">26</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="nx">charsets</span><span class="p">.</span><span class="nx">has_numbers</span><span class="p">)</span> <span class="nx">poolSize</span> <span class="o">+=</span> <span class="mi">10</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="nx">charsets</span><span class="p">.</span><span class="nx">has_symbols</span><span class="p">)</span> <span class="nx">poolSize</span> <span class="o">+=</span> <span class="mi">32</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">combinations</span> <span class="o">=</span> <span class="nb">Math</span><span class="p">.</span><span class="nf">pow</span><span class="p">(</span><span class="nx">poolSize</span><span class="p">,</span> <span class="nx">password</span><span class="p">.</span><span class="nx">length</span><span class="p">);</span> <span class="c1">// Modern GPU: 10 billion guesses/second</span> <span class="kd">const</span> <span class="nx">seconds</span> <span class="o">=</span> <span class="nx">combinations</span> <span class="o">/</span> <span class="mi">1</span><span class="nx">e10</span><span class="p">;</span> <span class="k">return</span> <span class="nf">formatTime</span><span class="p">(</span><span class="nx">seconds</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>The difference between online and offline attacks matters:</p> <ul> <li> <strong>Online attack</strong> — 10 million/sec (limited by server rate limiting)</li> <li> <strong>Offline attack</strong> — 10 billion/sec (attacker has the hash file)</li> </ul> <p><code>password123</code> cracks in 5 months offline but 58 years online. That's why rate limiting matters even if your hashing is weak.</p> <h2> Breach Detection </h2> <p>The API checks against the 500 most common breached passwords — the ones that appear in every data breach dump.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">COMMON_PASSWORDS</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">Set</span><span class="p">([</span> <span class="dl">"</span><span class="s2">password</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">123456</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">qwerty</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">abc123</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">monkey</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">letmein</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">trustno1</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">dragon</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">baseball</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">iloveyou</span><span class="dl">"</span><span class="p">,</span> <span class="c1">// ... 490 more</span> <span class="p">]);</span> <span class="kd">function</span> <span class="nf">checkBreach</span><span class="p">(</span><span class="nx">password</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">is_compromised</span> <span class="o">=</span> <span class="nx">COMMON_PASSWORDS</span><span class="p">.</span><span class="nf">has</span><span class="p">(</span><span class="nx">password</span><span class="p">.</span><span class="nf">toLowerCase</span><span class="p">());</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">is_compromised</span><span class="p">,</span> <span class="na">risk_level</span><span class="p">:</span> <span class="nx">is_compromised</span> <span class="p">?</span> <span class="dl">"</span><span class="s2">critical</span><span class="dl">"</span> <span class="p">:</span> <span class="dl">"</span><span class="s2">low</span><span class="dl">"</span><span class="p">,</span> <span class="p">};</span> <span class="p">}</span> </code></pre> </div> <h2> Tech Stack </h2> <ul> <li> <strong>Runtime:</strong> Node.js + Express</li> <li> <strong>Hosting:</strong> Railway (free tier)</li> <li> <strong>Marketplace:</strong> RapidAPI</li> <li> <strong>Dependencies:</strong> express, cors, helmet, morgan, express-rate-limit</li> </ul> <p>Zero paid APIs. Zero AI. The whole thing costs less than $5/month to run.</p> <h2> Score Guide </h2> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Score</th> <th>Grade</th> <th>Strength</th> </tr> </thead> <tbody> <tr> <td>80-100</td> <td>A</td> <td>Very Strong</td> </tr> <tr> <td>60-79</td> <td>B</td> <td>Strong</td> </tr> <tr> <td>40-59</td> <td>C</td> <td>Moderate</td> </tr> <tr> <td>20-39</td> <td>D</td> <td>Weak</td> </tr> <tr> <td>0-19</td> <td>F</td> <td>Very Weak</td> </tr> </tbody> </table></div> <p>Recommended minimum for most apps: <strong>Grade B (60+)</strong><br> Recommended for financial apps: <strong>Grade A (80+)</strong></p> <h2> Try It </h2> <p>Live on RapidAPI — search <strong>Password Strength Security Scorer</strong> or find me at <a href="https://rapidapi.com/user/ruanmul04" rel="noopener noreferrer">rapidapi.com/user/ruanmul04</a>.</p> <p>Free tier: 10 requests/month. No credit card required.</p> <h2> What's Next </h2> <p>Day 3 tomorrow — <strong>VAT Number Validator API.</strong></p> <p>Every e-commerce platform selling to Europe needs VAT validation. There are almost no good free options on RapidAPI. That's the gap I'm filling tomorrow.</p> <p>Follow me here on dev.to to catch every day of the challenge. 🇿🇦</p> <p><em>21 APIs in 21 days. Built in South Africa. Sold globally.</em></p> node javascript api security I Built an Invoice Parser API in One Day Ruan Muller Sat, 04 Apr 2026 16:02:23 +0000 https://forem.com/ruanmuller04/i-built-an-invoice-parser-api-in-one-day-and-listed-it-on-rapidapi-day-1-of-21-27gb https://forem.com/ruanmuller04/i-built-an-invoice-parser-api-in-one-day-and-listed-it-on-rapidapi-day-1-of-21-27gb <p>I'm a developer from South Africa, currently studying for my Bachelor of Accounting. Today I started a challenge: <strong>build and publish a new API every day for 21 days straight.</strong></p> <p>Day 1 is done. Here's exactly what I built, how it works, and how you can use it.</p> <p>The Problem:</p> <p>Every accounting app, expense tracker, and bookkeeping tool has the same pain point, invoices come in as PDFs, images, or plain text, and somebody has to pull the structured data out of them.</p> <p>Vendor name. Invoice number. Line items. Tax. Total. Due date.</p> <p>It's repetitive, error-prone work. And every developer building a finance tool ends up writing the same messy regex logic to solve it.</p> <p>So I built an API that does it for them.</p> <p>What I Built:</p> <p>The Invoice &amp; Receipt Parser API — send it raw invoice text, get back clean structured JSON.</p> <p><strong>Input:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"text"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Acme Corp</span><span class="se">\n</span><span class="s2">Invoice No: INV-2024-0042</span><span class="se">\n</span><span class="s2">Date: 15/03/2024</span><span class="se">\n</span><span class="s2">Due: 15/04/2024</span><span class="se">\n\n</span><span class="s2">Web Design Services 2 $1500.00 $3000.00</span><span class="se">\n</span><span class="s2">SEO Optimization 1 $800.00 $800.00</span><span class="se">\n\n</span><span class="s2">Subtotal: $3800.00</span><span class="se">\n</span><span class="s2">VAT 15%: $570.00</span><span class="se">\n</span><span class="s2">Total Due: $4370.00"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p><strong>Output:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="p">{</span><span class="w"> </span><span class="nl">"success"</span><span class="p">:</span><span class="w"> </span><span class="kc">true</span><span class="p">,</span><span class="w"> </span><span class="nl">"data"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"document_type"</span><span class="p">:</span><span class="w"> </span><span class="s2">"invoice"</span><span class="p">,</span><span class="w"> </span><span class="nl">"vendor_name"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Acme Corp"</span><span class="p">,</span><span class="w"> </span><span class="nl">"invoice_number"</span><span class="p">:</span><span class="w"> </span><span class="s2">"INV-2024-0042"</span><span class="p">,</span><span class="w"> </span><span class="nl">"dates"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"invoice_date"</span><span class="p">:</span><span class="w"> </span><span class="s2">"15/03/2024"</span><span class="p">,</span><span class="w"> </span><span class="nl">"due_date"</span><span class="p">:</span><span class="w"> </span><span class="s2">"15/04/2024"</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="nl">"currency"</span><span class="p">:</span><span class="w"> </span><span class="s2">"USD"</span><span class="p">,</span><span class="w"> </span><span class="nl">"totals"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"subtotal"</span><span class="p">:</span><span class="w"> </span><span class="mi">3800</span><span class="p">,</span><span class="w"> </span><span class="nl">"tax_rate"</span><span class="p">:</span><span class="w"> </span><span class="mi">15</span><span class="p">,</span><span class="w"> </span><span class="nl">"tax_amount"</span><span class="p">:</span><span class="w"> </span><span class="mi">570</span><span class="p">,</span><span class="w"> </span><span class="nl">"discount"</span><span class="p">:</span><span class="w"> </span><span class="kc">null</span><span class="p">,</span><span class="w"> </span><span class="nl">"shipping"</span><span class="p">:</span><span class="w"> </span><span class="kc">null</span><span class="p">,</span><span class="w"> </span><span class="nl">"total"</span><span class="p">:</span><span class="w"> </span><span class="mi">4370</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="nl">"line_items"</span><span class="p">:</span><span class="w"> </span><span class="p">[</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"description"</span><span class="p">:</span><span class="w"> </span><span class="s2">"Web Design Services"</span><span class="p">,</span><span class="w"> </span><span class="nl">"quantity"</span><span class="p">:</span><span class="w"> </span><span class="mi">2</span><span class="p">,</span><span class="w"> </span><span class="nl">"unit_price"</span><span class="p">:</span><span class="w"> </span><span class="mi">1500</span><span class="p">,</span><span class="w"> </span><span class="nl">"amount"</span><span class="p">:</span><span class="w"> </span><span class="mi">3000</span><span class="w"> </span><span class="p">},</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"description"</span><span class="p">:</span><span class="w"> </span><span class="s2">"SEO Optimization"</span><span class="p">,</span><span class="w"> </span><span class="nl">"quantity"</span><span class="p">:</span><span class="w"> </span><span class="mi">1</span><span class="p">,</span><span class="w"> </span><span class="nl">"unit_price"</span><span class="p">:</span><span class="w"> </span><span class="mi">800</span><span class="p">,</span><span class="w"> </span><span class="nl">"amount"</span><span class="p">:</span><span class="w"> </span><span class="mi">800</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">],</span><span class="w"> </span><span class="nl">"confidence"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"score"</span><span class="p">:</span><span class="w"> </span><span class="mi">100</span><span class="p">,</span><span class="w"> </span><span class="nl">"level"</span><span class="p">:</span><span class="w"> </span><span class="s2">"high"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <p>No AI costs. No third-party dependencies. Pure Node.js, which means near-zero running costs and sub-100ms response times.</p> <p>The 6 Endpoints</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Method</th> <th>Endpoint</th> <th>Description</th> </tr> </thead> <tbody> <tr> <td>GET</td> <td><code>/health</code></td> <td>Check API is online</td> </tr> <tr> <td>POST</td> <td><code>/parse</code></td> <td>Full extraction — all fields</td> </tr> <tr> <td>POST</td> <td><code>/parse/totals</code></td> <td>Financial totals only</td> </tr> <tr> <td>POST</td> <td><code>/parse/line-items</code></td> <td>Line items only</td> </tr> <tr> <td>POST</td> <td><code>/parse/vendor</code></td> <td>Vendor details only</td> </tr> <tr> <td>POST</td> <td><code>/validate</code></td> <td>Completeness score + missing fields</td> </tr> </tbody> </table></div> <p>The lightweight endpoints are useful for high-volume pipelines where you only need one piece of data and don't want to pay for a full parse every time.</p> <p>How It Works</p> <p>The core logic is a chain of regex-based extractors, each one focused on one thing.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">function</span> <span class="nf">fullParse</span><span class="p">(</span><span class="nx">text</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="p">{</span> <span class="na">document_type</span><span class="p">:</span> <span class="nf">detectDocType</span><span class="p">(</span><span class="nx">text</span><span class="p">),</span> <span class="na">vendor_name</span><span class="p">:</span> <span class="nf">extractVendor</span><span class="p">(</span><span class="nx">text</span><span class="p">),</span> <span class="na">invoice_number</span><span class="p">:</span> <span class="nf">extractInvoiceNumber</span><span class="p">(</span><span class="nx">text</span><span class="p">),</span> <span class="na">dates</span><span class="p">:</span> <span class="nf">extractDates</span><span class="p">(</span><span class="nx">text</span><span class="p">),</span> <span class="na">currency</span><span class="p">:</span> <span class="nf">extractCurrency</span><span class="p">(</span><span class="nx">text</span><span class="p">),</span> <span class="na">totals</span><span class="p">:</span> <span class="nf">extractTotals</span><span class="p">(</span><span class="nx">text</span><span class="p">),</span> <span class="na">line_items</span><span class="p">:</span> <span class="nf">extractLineItems</span><span class="p">(</span><span class="nx">text</span><span class="p">),</span> <span class="na">payment_info</span><span class="p">:</span> <span class="nf">extractPaymentInfo</span><span class="p">(</span><span class="nx">text</span><span class="p">),</span> <span class="na">contact</span><span class="p">:</span> <span class="nf">extractContact</span><span class="p">(</span><span class="nx">text</span><span class="p">),</span> <span class="na">confidence</span><span class="p">:</span> <span class="nf">calculateConfidence</span><span class="p">(</span><span class="nx">data</span><span class="p">),</span> <span class="p">};</span> <span class="p">}</span> </code></pre> </div> <p>Currency detection checks for 25+ currency codes and symbols:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="kd">const</span> <span class="nx">CURRENCY_CODES</span> <span class="o">=</span> <span class="p">[</span><span class="dl">"</span><span class="s2">USD</span><span class="dl">"</span><span class="p">,</span><span class="dl">"</span><span class="s2">EUR</span><span class="dl">"</span><span class="p">,</span><span class="dl">"</span><span class="s2">GBP</span><span class="dl">"</span><span class="p">,</span><span class="dl">"</span><span class="s2">ZAR</span><span class="dl">"</span><span class="p">,</span><span class="dl">"</span><span class="s2">INR</span><span class="dl">"</span><span class="p">,...];</span> <span class="kd">function</span> <span class="nf">extractCurrency</span><span class="p">(</span><span class="nx">text</span><span class="p">)</span> <span class="p">{</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">code</span> <span class="k">of</span> <span class="nx">CURRENCY_CODES</span><span class="p">)</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="k">new</span> <span class="nc">RegExp</span><span class="p">(</span><span class="s2">`</span><span class="se">\\</span><span class="s2">b</span><span class="p">${</span><span class="nx">code</span><span class="p">}</span><span class="se">\\</span><span class="s2">b`</span><span class="p">).</span><span class="nf">test</span><span class="p">(</span><span class="nx">text</span><span class="p">))</span> <span class="k">return</span> <span class="nx">code</span><span class="p">;</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">text</span><span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="dl">"</span><span class="s2">$</span><span class="dl">"</span><span class="p">))</span> <span class="k">return</span> <span class="dl">"</span><span class="s2">USD</span><span class="dl">"</span><span class="p">;</span> <span class="p">}</span> </code></pre> </div> <p>One bug I caught during testing, the tax amount extractor was matching <code>15</code> from <code>VAT 15%</code> instead of the actual amount <code>570.00</code>. The fix was requiring a decimal point in the match:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// BROKEN — matches "15" from "VAT 15%"</span> <span class="o">/</span><span class="p">(?:</span><span class="nx">vat</span><span class="o">|</span><span class="nx">tax</span><span class="p">)[</span><span class="err">\</span><span class="nx">s</span><span class="p">:</span><span class="nx">$</span><span class="p">]</span><span class="o">*</span><span class="p">([</span><span class="mi">0</span><span class="o">-</span><span class="mi">9</span><span class="p">,.</span> <span class="p">]</span><span class="o">+</span><span class="p">)</span><span class="o">/</span><span class="nx">i</span> <span class="c1">// FIXED — requires decimal format, skips percentages</span> <span class="o">/</span><span class="p">(?:</span><span class="nx">vat</span><span class="o">|</span><span class="nx">tax</span><span class="p">)[</span><span class="err">\</span><span class="nx">s</span><span class="p">:</span><span class="o">%</span><span class="err">\</span><span class="nx">d</span><span class="p">]</span><span class="o">*</span><span class="p">?[</span><span class="err">\</span><span class="nx">s</span><span class="p">:</span><span class="nx">$</span><span class="err">£€</span><span class="p">]</span><span class="o">+</span><span class="p">([</span><span class="mi">0</span><span class="o">-</span><span class="mi">9</span><span class="p">,]</span><span class="o">+</span><span class="err">\</span><span class="p">.[</span><span class="mi">0</span><span class="o">-</span><span class="mi">9</span><span class="p">]{</span><span class="mi">2</span><span class="p">})</span><span class="o">/</span><span class="nx">i</span> </code></pre> </div> <p>Always test with real messy invoice text before shipping.</p> <p>Tech Stack</p> <ul> <li> <strong>Runtime:</strong> Node.js + Express</li> <li> <strong>Hosting:</strong> Railway (free tier)</li> <li> <strong>Marketplace:</strong> RapidAPI</li> <li> <strong>Dependencies:</strong> express, cors, helmet, morgan, express-rate-limit</li> </ul> <p>Zero paid APIs. Zero AI costs. The whole thing costs less than $5/month to run.</p> <p>Pricing on RapidAPI</p> <div class="table-wrapper-paragraph"><table> <thead> <tr> <th>Plan</th> <th>Price</th> <th>Requests</th> </tr> </thead> <tbody> <tr> <td>Free</td> <td>$0</td> <td>10/month</td> </tr> <tr> <td>Basic</td> <td>$9.99/mo</td> <td>500/month</td> </tr> <tr> <td>Pro</td> <td>$29.99/mo</td> <td>5,000/month</td> </tr> </tbody> </table></div> <p>What I Extracted From This Build</p> <p>My accounting background actually helped here. I knew exactly what fields matter on a real invoice, payment terms, VAT rates, SWIFT codes, IBAN numbers. That domain knowledge made the extractor more accurate than a generic solution would be.</p> <p>It's a reminder that your background, whatever it is, is an advantage when building in the right niche.</p> <p>Try It</p> <p>The API is live on RapidAPI, search for <strong>Invoice Receipt Parser</strong> or find my profile at [<a href="https://rapidapi.com/user/ruanmul04" rel="noopener noreferrer">https://rapidapi.com/user/ruanmul04</a>].</p> <p>Free tier gives you 10 requests/month to test it with your own invoices.</p> <p>What's Next</p> <p>Day 2 tomorrow — <strong>Password Strength &amp; Security Scorer API.</strong></p> <p>If you want to follow the 21-day build challenge, follow me here on dev.to. I'll be posting every day with the full breakdown of what I built, why, and how.</p> <p>Drop a comment if you're building APIs too, always keen to connect with other developers doing the same thing. 🇿🇦</p> <p><em>Built in South Africa. Sold globally.</em></p> node javascript api webdev