Location: /packages/server
NPM package: @withtyped/server
Table of contents
This package is the core of the withtyped server. It provides:
- Factories and utilities to create and run a server
- Interfaces and abstract classes for database-related implementation
- Current official implementation: Postgres
The main concept is simple:
Use createServer() to create a withtyped server and compose() to create the middleware chain.
Call signature createServer(config?: CreateServer): ServerObject
type CreateServer = {
/** Port to listen, default to 9001. */
port?: number;
/** The middleware composer to execute. */
composer?: Composer<T, InputContext, OutputContext>;
/** An array of query clients. The server will automatically init these clients in `listen()` and end these clients when server closing. */
queryClients?: QueryClient[];
/** Use 'none' to turn off the log. */
logLevel?: 'none' | 'info';
};
type ServerObject = {
/** Shut down all query clients and the server. */
close: (() => Promise<void>);
/** Start all query clients and the server in order. */
listen: ((listener?: ((port: number) => void)) => Promise<void>);
server: Server;
};Call signature createRouter(prefix?: string): Router
Create a Router instance with the given prefix (optional). Note the prefix should be normalized.
Router
Import path '@withtyped/server/lib/preset.js'
Call signature createComposer(): Composer
Create a composer with preset middleware functions withRequest() and withBody().
Call signature compose(middleware?: MiddlewareFunction): Composer
Create a chainable composer with the given middleware function. Call .and() of the composer to chain another middleware function.
E.g.: compose(fn1).and(fn2).and(fn3)
Each composer itself is a middleware function object, i.e. it has the same call signature as a normal middleware function.
As long as it's a middleware function, it can be chained and executed in withtyped.
export type MiddlewareFunction<
InputContext extends BaseContext = BaseContext,
OutputContext extends BaseContext = InputContext
> = (context: InputContext, next: NextFunction<OutputContext>, http: HttpContext) => Promise<void>;
export type NextFunction<Context extends BaseContext> = (
context: Readonly<Context>
) => Promise<void>;
export type HttpContext = {
request: IncomingMessage;
response: ServerResponse;
};A middleware function has an input context and an output context. The function take the input context, do some jobs, and execute next() with the output context.
For example, withRequest() can take a base context and transform it to a request context with useful request info:
type RequestContext = BaseContext & {
request: { method?: RequestMethod; headers: IncomingHttpHeaders; url: URL; body?: unknown };
};Note the output can be totally different form the input:
type InputContext = BaseContent & { foo: number };
type OutputContext = BaseContent & { bar: string };
const fn: MiddlewareFunction<InputContext, OutputContext>; // OKUsually both of the context types can be automatically inferred, so no need for providing explicit generic arguments.
Calling next() function with the new context to proceed to the next middleware. You can only call next() once per middleware function.
The context is always readonly, so you need to provide a new object for the new context (can be a shallow copy):
next({ ...context, newField: 'value' });Or pass the original context if no context change:
next(context);For other advanced needs, the original request and response can be found in the third parameter.
All middleware contexts have a common base type BaseContext:
type BaseContext = {
/** A dictionary to put request info. Use `withRequest()` and `withBody()` to set it automatically. */
request?: Record<string, unknown>;
/** The response status number. Default to 404. */
status?: number;
/** The response json object. */
json?: unknown;
/** The response (outgoing) headers */
headers?: OutgoingHttpHeaders;
};Base context is just a type for key restriction, the initial middleware function will receive an empty object {} as the input context.
You can use withRequest() and withBody() to obtain request info.
After executing the last middleware function, withtyped will read status, json, and headers from the last output context and send the response properly.
export type Composer<
MiddlewareFunctions extends unknown[],
InputContext extends BaseContext,
OutputContext extends BaseContext
> = MiddlewareFunction<InputContext, OutputContext> &
ComposerProperties<MiddlewareFunctions, InputContext, OutputContext>;A composer is a middleware function with some enhanced utilities to make it chainable. With composer, you can chain any number of middleware functions without losing type.
type Ctx1 = BaseContext & { c1: string };
type Ctx2 = BaseContext & { c1: string; c2: number };
type Ctx3 = BaseContext & { c2: number; c3: number };
const fn1: MiddlewareFunction<Ctx1, Ctx2>;
const fn2: MiddlewareFunction<Ctx2, Ctx3>;
const fn3: MiddlewareFunction<Ctx3, Ctx1>;
compose(fn1).and(fn2) // MiddlewareFunction<Ctx1, Ctx3>
compose(fn1).and(fn2).and(fn3) // MiddlewareFunction<Ctx1, Ctx1>
compose(fn1).and(fn3) // TypeError: The output context of fn1 is not compatible with the input context of fn3export type ComposerProperties = {
functions: Readonly<MiddlewareFunctions>;
and: (middleware: MiddlewareFunction) => Composer;
};Use compose() to create a composer and chain middleware functions.
This section includes withtyped built-in middleware functions. You can also write your own.
Call signature withRequest() => MiddlewareFunction<InputContext, WithRequestContext<InputContext>>
Create a middleware function that extracts some useful info from HttpContext and inject into the context.
type WithRequestContext<InputContext> = InputContext & {
request: { method?: RequestMethod; headers: IncomingHttpHeaders; url: URL; body?: unknown };
};Alternatively, you can use RequestContext as your middleware function's input context:
const fn: MiddlewareFunction = (context, next) => {
typeof context.request.url // unknown
};
const fn: MiddlewareFunction<RequestContext> = (context, next) => {
typeof context.request.url // URL
};Call signature withBody() => MiddlewareFunction<InputContext, WithBodyContext<InputContext>>
Create a middleware function that reads request body and tries to parse as JSON, inject the result into context.request.body. Do nothing if parse failed.
compose(withBody()).and((context, next) => {
context.request.body // Json
});Call signature withCors(config?: WithCorsConfig) => MiddlewareFunction<InputContext, InputContext>
Create a middleware function that follows the CORS policy specified.
type WithCorsConfig<T extends string> = {
/** Default to 'adaptive' */
allowedOrigin?: (T extends 'adaptive' | '*' ? never : T) | RegExp | 'adaptive';
/** Default to '*' */
allowedHeaders?: string[] | RegExp | '*';
/** Default to '*' */
allowedMethods?: Array<string | RequestMethod> | '*';
/** Default to `false` */
allowCredentials?: boolean;
/** Default to 600 */
maxAge?: number;
};- For
allowOrigin, we replaced*withadaptivesince*has the limit of using credentials. - Header
access-control-allow-headers,access-control-allow-methods, andaccess-control-max-agepresent inOPTIONSrequest responses only. - For detailed explanation of how CORS works, see MDN CORS page.
Using router class is a descriptive way to build typed RESTful APIs and even enables type-safety in client.
// Class constructor
const router = new Router();
// "Functional" way
const router = createRouter();
// With prefix
const router = createRouter('/books');Note you can pass a prefix to the router, if so, this prefix will prepend to every route.
- Start with
/, but not end with/ - Have NO continuous
/, e.g./foo//bar - Have NO path parameter, e.g.
/:foo
Call signature [method](path: string, guard: RequestGuard<Search, Body, Response>, fn: MiddlewareFunction)
[method] indicates the identical string to the lowercased HTTP method:
router.get('/', {}, (context, next) => {
console.log('GET /');
});Available methods: get, post, put, patch, delete, copy, head, options
The request guard is an object that guards search parameters, body, and response:
type RequestGuard<Search, Body, Response> = {
search?: Parser<Search>;
body?: Parser<Body>;
response?: Parser<Response>;
};
type Parser<T> = {
parse: (data: unknown) => T;
};We'll go through the detail usage in the sections below.
Calling [method]() will append the route to the CURRENT router (for performance concern) and return the router with the new type.
Thus, to have a comprehensive type definition of the router, calling in a chain is preferred:
const newRouter = router
.get('/', {...}, ...)
.get('/:id', {...}, ...)
.post('/', {...}, ...)
.delete('/:id', {...}, ...);
// `newRouter` refer to the same instance of `router`,
// but with 4 new routes inside its type definition.Path segment starts with : will be converted to a string parameter, and stores in the request object of the input context. E.g.:
router.get('/books/:id', {}, (context, next) => {
typeof context.request.params.id // string
});You can have multiple path parameters too:
router.get('/books/:id/:another', {}, (context, next) => {
typeof context.request.params // { id: string, another: string }
});You can guard URL search as an object with string or string array values:
// Use zod as an example, replace with your favorite
router.get(
'/search',
{ search: z.object({ name: z.string(), years: z.string().array() }) },
async (context, next) => {
typeof context.request.search // { name: string; years: string[]; }
}
);If the key appeared more than once in the search parameters, it'll be treated as an array:
https://your.domain.com/search?name=Pale%20Fire&years=1990&years=2000
Request body can be guarded as arbitrary JSON object:
// Use zod as an example, replace with your favorite
router.post(
'/books',
{
body: z.object({
name: z.string(),
year: z.number(),
authors: z.object({ name: z.string(), email: z.string().optional() }).array()
})
},
async (context, next) => {
typeof context.request.body // { name: string; year: number; authors: Array<{ name: string; email?: string }> }
}
);Warning Router does NOT read the request body. Make sure a
withBody()middleware function has been put in front of the router.
The benefits of response guard:
- Make sure the response type is correct when calling
next() - Be able to generate the response info in the OpenAPI endpoint
- Higher engineering quality
router.post(
'/books',
{
response: z.object({
name: z.string(),
year: z.number(),
authors: z.object({ name: z.string(), email: z.string().optional() }).array()
})
},
async (context, next) => {
return next(context); // TypeError: Type of `context.json` mismatch the guard
return next({ ...context, json: { name: 'Pale Fire', year: 1962, authors: [] } }); // OK
}
);Call signature pack(another: Router): Router
Pack all routes in another into the current router and return the current router with the new type. The prefix of another will be kept.
const routerA = createRouter('/foo');
const routerB = createRouter('/bar').get('/baz', {}, ...);
routerA.pack(routerB); // Available route: `GET /foo/bar/baz`Call signature routes(): MiddlewareFunction<RequestContext>
Create a middleware function for withtyped server.
const routerA = createRouter('/foo');
const routerB = createRouter('/bar').get('/baz', {}, ...);
compose(routerA.routes()).and(routerB.routes()); // Available route: `GET /bar/baz`Call signature
withOpenApi(
parseSearch?: <T>(guard?: Parser<T>) => OpenAPIV3.ParameterObject[],
parse?: <T>(guard?: Parser<T>) => OpenAPIV3.SchemaObject,
info?: Partial<OpenAPIV3.InfoObject>
): Router;Calling this method will add a GET /openapi.json that returns an OpenAPI V3 Document JSON of all the routes in the router.
The router will recognize withtyped Model and transpile it to the valid OpenAPI V3 objects.
If you are using any third-party parser/validator (Zod, Yup, Joi, etc.), even if inside the model, the first two parameters will be required to help the router of transform a parser into the OpenAPI V3 compatible objects.
See this file for an example of transforming Zod parsers.
A model includes a database schema, the TypeScript types, and a model parser.
Use the native SQL as you are in the database tool to create the model:
const Book = createModel(`
create table books (
id varchar(128) not null,
name varchar(128) not null,
authors jsonb not null default '[]',
price decimal not null default 99.99,
year int,
created_at timestamptz not null default(now()),
primary key id
); -- The ending ';' here is required for type inference
`);
const data: InferModelType<typeof Book>;
// Actual type
{
id: string;
name: string;
authors: JsonObject | JsonArray;
price: number;
year: number | null;
createdAt: Date;
}All constraints and primary/foreign keys will be ignored.
Call signature extend(key: ModelKey, parser: Parser): Model
You may want to have customized parsers on some columns (like for jsonb in Postgres):
const Book = createModel(`...`)
.extend(
'authors',
z.object({
name: z.string(),
email: z.string().optional()
}).array()
);
const data: InferModelType<typeof Book>;
// Actual type
{
// ...other types
authors: Array<{ name: string; email?: string }>;
}Call signature
parse(data: unknown): ModelType;
parse(data: unknown, forType: 'create'): CreateType;
parse(data: unknown, forType: 'patch'): Partial<CreateType>;Parse the unknown object to the desired model type. Throw an error if parse failed.
ModelType represents the actual data type in the database, regardless if the column has a default value.
CreateType represents the minimal data to provide for creating a new row, i.e. columns with default value in database can be undefined.
In withtyped data model, all explicit empty will be and should be null, while undefined means "to ignore".
The foundation of platform-related implementations.
WIP