Harpia Core is the foundational module of the Harpia Framework, designed exclusively for the Bun runtime. Like Express, Fastify, or Hono, it can be used independently, offering a lightweight yet powerful foundation for building modern web applications optimized for Bun.
Table of Contents
bun add harpiats- Route management
- Middleware support
- Web Socket support
- Static file support
- Template engine support
- Harpia template engine
- Custom "not found" route
- Custom cors
- Cookie handling
- Cache management
- Session management
- Upload
- Request monitor and performance metrics
- Test client (like Supertest)
- Memory storage and redis support
import harpia from "harpia";
const app = harpia();
app.listen({
port: 3000,
development: true,
reusePort: true,
hostname: "localhost",
}, () => console.log("Server is running at http://localhost:3000/"));Creating a route in a different file.
import { Router } from "harpia";
const books = Router();
books.get("/books", () => console.log("Books route"));
export default books;Creating a route with a prefix
import { Router } from "harpia";
const books = Router("books");
books.get("/", () => console.log("Books route"));
export default books;Import the route into the main application.
import harpia from "harpia";
import books from "./books.routes";
const app = harpia();
app.routes(books);
app.listen({
port: 3000,
development: true,
reusePort: true,
hostname: "localhost",
}, () => console.log("Server is running at http://localhost:3000/"));Set a global middleware
const app = harpia();
app.use((req, res, next) => {
// Your middleware logic
next();
});Set a middleware with path
app.use("/panel", (req, res, next) => {
// Your middleware logic
next();
});Set a middleware to a specific route
import { Router } from "harpia";
const books = Router();
books.get(
"/books",
() => console.log("auth middleware"),
() => console.log("Books route")
);
export default books;You can define a route and a custom data for each WebSocket connection and implement handlers for events like connection opening, message reception, connection closing, and errors.
// Define a custom type for WebSocket connection data
type CustomWebSocketData = {
userId: string;
username: string;
sessionId: string;
};
// Create a WebSocket route for chat
app.ws<CustomWebSocketData>("/chat", {
// Called when a new WebSocket connection is opened
open(ws) {
const data = ws.data;
console.log("New WebSocket connection opened at /chat");
data.userId = "123"; // Set custom data
data.username = "Alice";
data.sessionId = "abc";
ws.send(`Welcome to the chat, ${data.username}!`);
},
// Called when a message is received from the client
message(ws, message) {
const data = ws.data;
console.log(`Message received from ${data.username}: ${message}`);
},
// Called when the WebSocket connection is closed
close(ws, code, message) {
const data = ws.data;
console.log(`Connection closed: ${data.username}`);
},
// Called when an error occurs in the WebSocket connection
error(ws, error) {
const data = ws.data;
console.error(`Error in connection for ${data.username}:`, error);
},
});To serve static files, you need to create a folder for them—e.g., public.
const app = harpia();
app.static("public");To set up a template engine, you can follow these steps:
Create a file for engine configuration:
// src/ejs.ts
import ejs from "ejs";
import path from "node:path";
import type { Harpia } from "harpia";
export const ejsEngine = {
configure: (app: Harpia) => {
app.engine.set(ejsEngine);
},
render: async (view: string, data: Record<string, any>) => {
const filePath = path.resolve(process.cwd(), "src/views", `${view}.ejs`);
return await ejs.renderFile(filePath, data);
}
};Set up the application to use the engine:
import harpia from "harpia";
import { ejsEngine } from "./ejs";
const app = harpia();
ejsEngine.configure(app);
app.get("/books", async (req, res) => {
await res.render("home", { title: "Books" })
});
app.listen...Sample EJS Template (e.g., src/views/home.ejs):
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title><%= title %></title>
</head>
<body>
<h1>Hello World!</h1>
</body>
</html>To use the harpia template engine, you can follow these steps:
create a template-engine.ts file:
import path from "node:path";
import { TemplateEngine } from "harpiats/template-engine";
const baseDir = process.cwd();
export const html = new TemplateEngine({
viewName: "page", // page.html will be rendered
useModules: false, // true if uses a module structure (e.g. modules/users/pages/home/page.html)
path: {
views: path.join(baseDir, "src", "resources", "pages"),
layouts: path.join(baseDir, "src", "resources", "layouts"),
partials: path.join(baseDir, "src", "resources", "partials"),
},
});And set up the application to use the engine:
import harpia from "harpiats";
import { html } from "app/config/template-engine";
const app = harpia();
html.configure(app);
app.get("/books", async (req, res) => {
await res.render("home", { title: "Books" });
});
app.listen...If you would like use a module structure, e.g. modules/users/pages/home/page.html, then create a template-engine.ts file:
import path from "node:path";
import { TemplateEngine } from "harpiats/template-engine";
const baseDir = process.cwd();
export const html = new TemplateEngine({
viewName: "page", // page.html will be rendered
useModules: true, // true if uses a module structure (e.g. modules/users/pages/home/page.html)
path: {
views: path.join(baseDir, "modules", "**", "pages"),
layouts: path.join(baseDir, "resources", "layouts"),
partials: path.join(baseDir, "resources", "partials"),
},
});And set up the application to use the engine:
import harpia from "harpiats";
import { html } from "app/config/template-engine";
const app = harpia();
html.configure(app);
app.get("/books", async (req, res) => {
await res.module("books").render("home", { title: "Books" });
});
app.listen...It is also possible to render a template from its path, regardless of where it is in the application. To do this, we can follow the example:
import harpia from "harpiats";
import { html } from "app/config/template-engine";
const app = harpia();
html.configure(app);
app.post("/send-email", async (req, res) => {
const data = {}
const content = await html.renderTemplate("app/services/mailer/templates/account-created", { data });
console.log(content);
});
app.listen...Harpia Tempate Engine Syntax
-
Use html files.
-
To use a layout:
{{= layout('default') }} -
To use variables:
{{ title }}. -
To define a block:
{{= define block("body") }}. -
To insert code into a block:
{{= block('body') }} <h1>{{ message }}</h1> {{= endblock }}. -
To include a file
{{= include('welcome', { message: 'Custom message.' }) }}. -
To use a partial
{{= partial('card', { name: 'Product A', price: 99.87 }) }}. -
To use a comment
## This is a comment; -
To define a variable:
{{~ var title = "Homepage" }}. -
To use if conditions:
{{~ if(isActive) }} <p>User is active.</p> {{~ endif }} {{~ if(isActive) }} <p>User is active.</p> {{~ else }} <p>User is not active.</p> {{~ endif }} <p>{{ isActive ? 'Active' : 'Inactive' }}</p>- To use for loops:
{{~ for num in numbers }} <p>Number: {{ num }}</p> {{~ endfor }} {{~ for [key, value] in products }} <p>Product {{ key }}: {{ value.name }} - $ {{ value.price }}</p> {{~ endfor }} -
To register a plugin, in the template-engine.ts file:
import path from "node:path"; import { TemplateEngine } from "harpiats/template-engine"; const baseDir = process.cwd(); export const html = new TemplateEngine({ viewName: "page", useModules: false, path: { views: path.join(baseDir, "src", "resources", "pages"), layouts: path.join(baseDir, "src", "resources", "layouts"), partials: path.join(baseDir, "src", "resources", "partials"), }, }); html.registerPlugin("uppercase", (str: string) => str.toUpperCase()); html.registerPlugin("sum", (a: number, b: number) => a + b);
and in the .html file:
<p>Uppercase plugin: {{{ uppercase(user.name) }}}</p>
<p>Sum plugin: {{{ sum(10, 20) }}}</p>The Method Override technique is commonly used to simulate HTTP methods like PUT, DELETE, and PATCH in web applications where the client (e.g., browsers) may not natively support these methods. This is particularly useful when working with HTML forms, which only support GET and POST methods.
The idea is to include a hidden input field (e.g., _method) within a POST form to indicate the desired HTTP method. The form must use the enctype="application/x-www-form-urlencoded" attribute to ensure the data is properly encoded. When the form is submitted, the server reads the _method value and overrides the actual POST method with the specified one.
<form action="/account" method="POST" enctype="application/x-www-form-urlencoded">
<input type="hidden" name="_method" value="DELETE">
<button type="submit">Delete</button>
</form>You can define a custom "Not Found" route to handle requests to undefined paths.
const app = harpia();
app.setNotFound((req, res) => {
res.json({ status: 404, message: "Not Found" });
});If you want to specify a particular HTTP method for the "Not Found" route (e.g., only for GET requests), you can do it as follows:
const app = harpia();
app.setNotFound((req, res) => {
res.json({ status: 404, message: "Not Found" });
}, ["GET"]);Note: Currently, the framework does not support multiple "Not Found" routes for different HTTP methods or paths. You can only define one "Not Found" route.
Harpia provides a way to configure Cross-Origin Resource Sharing (CORS) for your application, allowing you to specify which origins, HTTP methods, and headers are permitted.
You can define CORS settings globally for the entire application or specify them for individual routes.
To set up basic CORS for your application:
import harpia from "harpia";
const app = harpia();
app.cors({
origin: "*", // Allow all origins
methods: ["GET", "POST", "PUT", "DELETE"], // Allow specific HTTP methods
allowedHeaders: ["Content-Type", "Authorization"], // Allow specific headers
});
app.listen...You can also apply different CORS configurations to specific routes or groups of routes.
import harpia, { Router } from "harpia";
const books = Router();
books.get("/books", () => {
console.log("Books route with custom CORS");
});
const app = harpia();
app.routes(books);
app.cors({
origin: "https://example.com", // Allow only this origin
methods: "GET", // Allow only GET method
}, "/books"); // Apply CORS only to the "/books" route
app.listen...You can configure the following options for CORS:
-
origin: Specifies the allowed origins. Can be a boolean (trueto allow all), a string (a specific origin), a regular expression, or an array of origins or regular expressions.Example:
-
true: Allow all origins. -
"https://example.com": Allow onlyexample.com. -
/^https:\/\/.*\.com$/: Allow any.comdomain.
-
-
methods: Defines the allowed HTTP methods. It can be a single method ("GET","POST", etc.), an array of methods, or"*", which means all methods are allowed. -
allowedHeaders: Specifies which headers can be included in the request. It can be a string (e.g.,"Content-Type") or an array of headers. -
exposedHeaders: Allows you to specify which headers can be exposed to the browser. It can be a string or an array of headers. -
credentials: Indicates whether the browser should send cookies and HTTP authentication information with cross-origin requests. Set totrueto allow credentials. -
maxAge: Specifies the maximum time (in seconds) that the browser should cache the CORS response. -
preflightContinue: Iftrue, the framework will not respond to preflight requests automatically; this must be handled by the user manually. -
optionsSuccessStatus: Allows you to specify a custom success status code for preflight requests (defaults to204).
import type { CorsOptions } from 'harpia';
const corsOptions: CorsOptions = {
origin: "https://example.com", // Allow only requests from example.com
methods: ["GET", "POST"], // Allow only GET and POST methods
allowedHeaders: ["Content-Type", "Authorization"], // Allow specific headers
exposedHeaders: ["X-Custom-Header"], // Expose custom headers to the client
credentials: true, // Allow credentials (cookies) in cross-origin requests
maxAge: 3600, // Cache the CORS preflight response for 1 hour
optionsSuccessStatus: 200, // Custom success status code for preflight requests
}
app.cors(corsOptions);You can use this to store session information, authentication tokens, or any other data that needs to persist across requests.
To set a cookie, you can use the res.cookies.set method. You can specify various options such as expiration date, domain, path, and security settings.
import harpia, { type CookiesOptions } from "harpia";
const app = harpia();
app.get("/set-cookie", (req, res) => {
const cookieOptions: CookiesOptions = {
path: "/",
maxAge: 3600, // 1 hour
secure: true, // Only send cookie over HTTPS
httpOnly: true, // Make the cookie inaccessible to JavaScript
sameSite: "Strict", // Restrict the cookie to first-party contexts
};
res.cookies.set("userSession", "abcd1234", cookieOptions); // Set a cookie with options
res.send("Cookie has been set!");
});
app.listen...To retrieve a cookie, you can use the get method. It returns the value of the specified cookie if it exists, or undefined if the cookie is not found.
app.get("/get-cookie", (req, res) => {
const userSession = req.cookies.get("userSession"); // Get the cookie
if (userSession) {
res.send(`User session: ${userSession}`);
} else {
res.send("No user session cookie found.");
}
});To delete a cookie, you can use the delete method. This sets the cookie value to an empty string and expires it immediately.
app.get("/delete-cookie", (req, res) => {
res.cookies.delete("userSession"); // Delete the cookie
res.send("Cookie has been deleted.");
});You can customize cookies using the following options:
-
path: The URL path for which the cookie is valid. Defaults to the root path (/). -
domain: The domain for which the cookie is valid. Defaults to the current domain. -
maxAge: The maximum age of the cookie in seconds. If not set, the cookie will be a session cookie, expiring when the browser closes. -
expires: The exact expiration date for the cookie. Can be set as aDateobject. -
httpOnly: Iftrue, the cookie will be inaccessible to JavaScript, protecting it from cross-site scripting (XSS) attacks. -
secure: Iftrue, the cookie will only be sent over HTTPS connections, ensuring its security. -
sameSite: Controls whether the cookie should be sent with cross-origin requests. Possible values are:-
"Strict": The cookie will only be sent in a first-party context (i.e., when navigating to the origin site). -
"Lax": The cookie will be sent for top-level navigations and GET requests. -
"None": The cookie will be sent with all requests, including cross-origin requests. If using"None", thesecureflag must also be set totrue.
-
Example of using SameSite:
const cookieOptions: CookiesOptions = {
sameSite: "Strict", // Only send the cookie in a first-party context
secure: true, // Send only over HTTPS
};
res.cookie("userSession", "abcd1234", cookieOptions);To retrieve all cookies in the request, you can use the getAll method, which returns a dictionary of cookie names and values.
app.get("/get-all-cookies", (req, res) => {
const allCookies = req.cookies.getAll(); // Get all cookies
res.json(allCookies);
});Harpia includes a Cache class that allows you to store and manage cached data for your web applications.
To create a new cache instance, simply instantiate the Cache class. You can optionally provide a custom store (e.g., using a custom memory store or a third-party store like Redis).
import harpia from "harpia";
import { Cache } from "harpia/cache";
const app = harpia();
const cache = new Cache();You can store data in the cache or retrieve it from the cache within route handlers. Here's an example of caching a value in a route and retrieving it from the cache in a different route:
import harpia from "harpia";
import { Cache } from "harpia/cache";
const app = harpia();
const cache = new Cache();
// Route to set data in the cache
app.get("/set-cache", async (req, res) => {
const userProfile = { username: "john_doe", age: 30 };
await cache.set("userProfile", userProfile);
res.json({ message: "User profile cached!" });
});
// Route to retrieve data from the cache
app.get("/get-cache", async (req, res) => {
const userProfile = await cache.get("userProfile");
if (!userProfile) {
res.json({ status: "not found", message: "User profile not found in cache." });
return;
}
res.json({ status: "success", data: userProfile });
});
app.listen(3000, () => console.log("Server started at http://localhost:3000/"));In the example above:
-
/set-cachestores a user profile object in the cache under the keyuserProfile. -
/get-cacheretrieves the cached user profile if available. If it's not found, it returns a "not found" message.
You can also delete cached data using a route. Here's an example of how to delete a cache entry:
app.get("/delete-cache", async (req, res) => {
await cache.delete("userProfile");
res.json({ message: "User profile cache deleted!" });
});Here's an example of using caching in a real-world scenario, such as caching user profile data for performance optimization. In this case, if the user profile is already cached, it will be returned from the cache instead of fetching it again from the database.
app.get("/user-profile/:id", async (req, res) => {
const userId = req.params.id;
const cacheKey = `userProfile:${userId}`;
// Try to fetch the user profile from the cache
const cachedProfile = await cache.get(cacheKey);
if (cachedProfile) {
res.json({ status: "success", data: cachedProfile });
return;
}
// If not in cache, fetch the profile from the database (simulated here)
const profile = { id: userId, username: "john_doe", age: 30 };
// Store the profile in cache for future requests
await cache.set(cacheKey, profile);
// Respond with the fetched profile
res.json({ status: "success", data: profile });
});Harpia includes a Session class that allows you to manage user sessions. The Session class utilizes a store (default is in-memory) to manage session data, and a cookie is used to track the session ID on the client-side.
To use the session management functionality, you first need to create an instance of the Session class.
import harpia from "harpia";
import { Session } from "harpia/session";
const app = harpia();
const session = new Session();You can create a new session with a given data object. When a session is created, a session ID is generated and the session data is stored.
app.get("/login", async (req, res) => {
const userData = { username: "john_doe", role: "admin" };
const sessionId = await session.create(userData);
// Set the session ID in the cookie
session.setCookie(res, sessionId, { httpOnly: true, secure: true });
res.json({ message: "User logged in successfully!" });
});In this example, when a user logs in, a new session is created with the user data, and the session ID is stored in a cookie on the client.
You can retrieve session data from the store using the session ID stored in the client's cookies. The session ID is sent with each request in the cookie.
app.get("/profile", async (req, res) => {
const userSession = await session.fromRequest(req);
if (userSession) {
res.json({ status: "success", data: userSession });
} else {
res.json({ status: "not authenticated", message: "Please log in first." });
}
});Here, the session data is retrieved based on the session ID from the client's cookies. If the session exists, the user's data is returned; otherwise, the user is prompted to log in.
Session data can be updated by fetching the existing data and modifying it.
app.get("/update-profile", async (req, res) => {
const sessionId = req.cookies.get("session_id");
if (sessionId) {
const updatedData = { role: "super_admin" };
const success = await session.update(sessionId, updatedData);
if (success) {
res.json({ status: "success", message: "Profile updated." });
} else {
res.json({ status: "error", message: "Session not found." });
}
} else {
res.json({ status: "error", message: "Session not found." });
}
});In this example, the session data is updated by passing the new data. If the session is valid, the updated information is stored in the session.
When a user logs out or you want to clear the session data, you can delete the session both from the store and the client's cookies.
app.get("/logout", async (req, res) => {
const sessionId = req.cookies.get("session_id");
if (sessionId) {
await session.delete(sessionId, res);
res.json({ message: "User logged out successfully!" });
} else {
res.json({ message: "No active session found." });
}
});Here, the session is deleted, and the corresponding cookie is also cleared.
When setting the session cookie, you can specify options such as httpOnly, secure, and maxAge.
app.get("/set-cookie", (req, res) => {
const sessionId = "example-session-id";
session.setCookie(res, sessionId, { httpOnly: true, secure: true, maxAge: 3600 });
res.json({ message: "Session cookie set." });
});In this example, the session cookie is set with options that make it HTTP-only (not accessible via JavaScript) and secure (only sent over HTTPS). The maxAge option is also set to define how long the cookie should last (in seconds).
You can set up a middleware to manage single or multiple file uploads, specifying options like allowed file types, extensions, and maximum file size.
First, create an instance of the Upload module with your desired configuration:
import { Upload } from "harpiats/upload";
export const upload = new Upload({
fieldName: "file", // Field name for the file in the request
prefix: "profile", // Prefix for the uploaded file name
fileName: Date.now().toString(), // Custom file name (e.g., using a timestamp)
path: "tmp", // Directory to save the uploaded files
options: {
allowedExtensions: [".jpg"], // Allowed file extensions
allowedTypes: ["image/jpeg"], // Allowed MIME types
maxSize: 1024 * 1024 * 2, // Maximum file size (2MB in this case)
},
});Once the Upload instance is configured, you can use it as middleware in your routes to handle file uploads.
For Single File Uploads:
app.post("/user", upload.single, async (req, res) => {
// Handle the uploaded file here
});For Multiple File Uploads:
app.post("/user", upload.multiple, async (req, res) => {
// Handle the uploaded files here
});The Request Monitor tracks and analyzes request metrics, including visitor data, traffic sources, response times, and errors. It helps monitor application performance and user behavior.
Setting Up the Request Monitor First, instantiate the RequestMonitor and configure it with a storage mechanism (e.g., MemoryStore). You can also define routes to ignore, such as favicon.ico.
import type { NextFunction, Request, Response } from "harpiats";
import { MemoryStore } from "harpiats/memory-store";
import { RequestMonitor } from "harpiats/monitor";
import { app } from "start/server";
// Initialize the RequestMonitor
export const Monitor = new RequestMonitor({
store: new MemoryStore(), // Use MemoryStore for storing metrics
ignore: ["favicon.ico"], // Ignore specific routes
});
// Middleware to track requests
export const monitor = (req: Request, res: Response, next: NextFunction) => {
if (process.env.ENV === "test") {
return next(); // Skip monitoring in test environment
}
// Extract traffic source data from the request
const trafficSource = {
utm: {
id: req.query?.utm_id,
source: req.query?.utm_source,
medium: req.query?.utm_medium,
campaign: req.query?.utm_campaign,
sourcePlatform: req.query?.utm_source_platform,
term: req.query?.utm_term,
content: req.query?.utm_content,
creativeFormat: req.query?.utm_creative_format,
marketingTactic: req.query?.utm_marketing_tactic,
},
referer: req.headers.get("referer") || undefined, // Referer header
userAgent: req.headers.get("User-Agent") || undefined, // User-Agent header
};
// Initialize monitoring for the request
Monitor.initialize(req, app.requestIP() as string, trafficSource);
Monitor.handleRequest();
next(); // Proceed to the next middleware or route handler
};Using the Request Monitor Add the monitor middleware to your application. You can access metrics via a dedicated route, such as /metrics.
const app = harpia();
// Add the monitor middleware
app.use(monitor);
// Route to fetch metrics
app.get("/metrics", async (req, res) => {
const metrics = await Monitor.getMetrics();
console.log(metrics);
res.json(metrics); // Return metrics as JSON
});Using Redis as a Store Create a redis.ts file:
import type { Store } from "harpiats";
import Redis from "ioredis";
export class RedisStore implements Store {
private client: Redis;
constructor(db?: number) {
this.client = new Redis({
host: process.env.REDIS_HOST || "localhost",
username: process.env.REDIS_USER || "",
password: process.env.REDIS_PASS || "",
port: Number(process.env.REDIS_PORT) || 6379,
db: db || 0,
lazyConnect: true,
});
this.client.on("connect", () => console.log("Connected to Redis"));
this.client.on("error", (err) => console.error("Redis error:", err));
this.client.connect().catch((err) => console.error("Failed to connect to Redis:", err));
}
async on(): Promise<boolean> {
if (this.client.on("connect", () => true)) {
return true;
}
return false;
}
async get(key: string): Promise<Record<string, any> | undefined> {
const data = await this.client.get(key);
return data ? JSON.parse(data) : undefined;
}
async set(key: string, data: any): Promise<void> {
await this.client.set(key, JSON.stringify(data));
}
async delete(key: string): Promise<void> {
await this.client.del(key);
}
}And use it like this:
import { RedisStore } from "./redis";
export const Monitor = new RequestMonitor({
store: new RedisStore(), // Use RedisStore for storing metrics
ignore: ["favicon.ico"], // Ignore specific routes
});The Shield module is designed to enhance the security of your application by automatically adding HTTP security headers to responses. These headers help protect against common web vulnerabilities such as cross-site scripting (XSS), clickjacking, and content injection.
Key Features
- Security Headers:
- Content Security Policy (CSP): Restricts sources for scripts, styles, and other resources.
- Cross-Origin Policies: Controls how resources are shared across origins.
- Strict Transport Security (HSTS): Enforces HTTPS connections.
- Referrer Policy: Controls the information sent in the Referer header.
- X-Content-Type-Options: Prevents MIME type sniffing.
- X-Frame-Options: Protects against clickjacking.
- X-XSS-Protection: Disables browser XSS filters (if not needed).
- Customizable:
- Override default headers by passing options to the constructor.
- Middleware:
- Easily integrate into your application as middleware.
Create a Shield Instance with shield.ts file to initialize and export the middleware:
import { Shield } from "harpiats/shield";
const instance = new Shield();
export const shield = instance.middleware;Apply the shield middleware in your server setup:
import { harpia } from "harpia";
import { shield } from "./shield";
const app = harpia();
// Apply security headers middleware
app.use(shield());
// Your routes
app.get("/", (req, res) => {
res.send("Hello, World!");
});
app.listen({ port: 3000 }, () => console.log("Server running on http://localhost:3000"));You can customize the security headers by passing options to the Shield constructor:
const instance = new Shield({
contentSecurityPolicy: {
directives: {
"default-src": ["'self'", "https://trusted.com"],
"script-src": ["'self'", "'unsafe-inline'"],
},
},
strictTransportSecurity: {
maxAge: 31536000, // 1 year
includeSubDomains: true,
preload: true,
},
});
export const shield = instance.middleware;The Test Client is a powerful tool for testing your application's routes. It supports all HTTP methods (GET, POST, PUT, DELETE, PATCH, OPTIONS, HEAD), query parameters, headers, JSON payloads, form data, and file uploads. Below is a detailed explanation of its features and usage.
-
HTTP Methods:
-
.get(url)- Simulate aGETrequest. -
.post(url)- Simulate aPOSTrequest. -
.put(url)- Simulate aPUTrequest. -
.delete(url)- Simulate aDELETErequest. -
.patch(url)- Simulate aPATCHrequest. -
.options(url)- Simulate anOPTIONSrequest. -
.head(url)- Simulate aHEADrequest.
-
-
Query Parameters:
-
.query(name, value)- Add query parameters to the request.
-
-
Headers:
-
.set(name, value)- Set custom headers for the request.
-
-
Request Body:
-
.send(data)- Send raw data in the request body. -
.json(data)- Send JSON data in the request body. -
.formData(data)- Send form data in the request body.
-
-
File Uploads:
-
.file(files)- Upload a single file or multiple files. -
.files(files)- Upload multiple files for a single field.
-
-
Execution:
-
.execute()- Execute the request and return the response.
-
import { expect, test } from "bun:test";
import { TestClient } from "harpiats";
import { app } from "start/server";
test("GET /hello returns status 401", async () => {
const request = new TestClient(app)
.get("/hello")
.query("number", "123456"); // Add query parameter
const response = await request.execute();
// Validate the response
expect(response.status).toBe(401);
expect(await response.json()).toEqual({ message: "Unauthorized" });
});test("POST /user returns status 201", async () => {
const request = new TestClient(app)
.post("/user")
.json({ name: "John", age: 30 }); // Send JSON data
const response = await request.execute();
// Validate the response
expect(response.status).toBe(201);
expect(await response.json()).toEqual({ id: 1, name: "John", age: 30 });
});import path from "node:path";
test("POST /upload handles file upload", async () => {
const filePath = path.resolve(__dirname, "./uploads/image.jpg");
const request = new TestClient(app)
.post("/upload")
.file({ file: filePath }) // Upload a single file
.formData({ username: "example" }); // Add form data
const response = await request.execute();
console.log(await response.json()); // Log the response
});test("POST /upload handles multiple files", async () => {
const filePath1 = path.resolve(__dirname, "./uploads/image1.jpg");
const filePath2 = path.resolve(__dirname, "./uploads/image2.jpg");
const request = new TestClient(app)
.post("/upload")
.files({ files: [filePath1, filePath2] }); // Upload multiple files
const response = await request.execute();
console.log(await response.json()); // Log the response
});test("GET /protected requires authorization", async () => {
const request = new TestClient(app)
.get("/protected")
.set("Authorization", "Bearer token123"); // Set custom header
const response = await request.execute();
expect(response.status).toBe(200);
});test("POST /raw sends raw data", async () => {
const request = new TestClient(app)
.post("/raw")
.send("raw data"); // Send raw data
const response = await request.execute();
expect(response.status).toBe(200);
});The .execute() method returns includes:
-
Status Code:
response.status -
Headers:
response.headers -
Body:
response.json(),response.text(), orresponse.blob()
- If you try to mix incompatible body types (e.g.,
.json()after.formData()), an error will be thrown. - If a file path does not exist, an error will be thrown.
The Memory Storage module provides an in-memory key-value store for managing session data or other temporary storage needs. It implements the Store interface, offering methods to get, set, and delete data.
Storing and Retrieving Data
const memoryStore = new MemoryStore();
// Store session data
await memoryStore.set("session123", { userId: 1, username: "Alice" });
// Retrieve session data
const sessionData = await memoryStore.get("session123");
console.log(sessionData); // { userId: 1, username: "Alice" }
// Delete session data
await memoryStore.delete("session123");
console.log(await memoryStore.get("session123")); // undefinedUsing with Session Management
import { MemoryStore } from "harpiats/memory-store";
import { SessionManager } from "harpiats/session";
const memoryStore = new MemoryStore();
const sessionManager = new SessionManager({ store: memoryStore });
// Create a new session
const sessionId = await sessionManager.createSession({ userId: 1, username: "Alice" });
// Retrieve session data
const session = await sessionManager.getSession(sessionId);
console.log(session); // { userId: 1, username: "Alice" }
// Delete the session
await sessionManager.deleteSession(sessionId);The Redis Storage provides a persistent key-value store using Redis. It implements the Store interface, offering methods to get, set, and delete data. Redis is ideal for distributed systems, caching, and persistent session storage.
Implementation
import type { Store } from "harpiats";
import Redis from "ioredis";
export class RedisStore implements Store {
private client: Redis;
constructor(db?: number) {
this.client = new Redis({
host: process.env.REDIS_HOST || "localhost",
username: process.env.REDIS_USER || "",
password: process.env.REDIS_PASS || "",
port: Number(process.env.REDIS_PORT) || 6379,
db: db || 0,
lazyConnect: true,
});
this.client.on("connect", () => console.log("Connected to Redis"));
this.client.on("error", (err) => console.error("Redis error:", err));
this.client.connect().catch((err) => console.error("Failed to connect to Redis:", err));
}
async on(): Promise<boolean> {
if (this.client.on("connect", () => true)) {
return true;
}
return false;
}
async get(key: string): Promise<Record<string, any> | undefined> {
const data = await this.client.get(key);
return data ? JSON.parse(data) : undefined;
}
async set(key: string, data: any): Promise<void> {
await this.client.set(key, JSON.stringify(data));
}
async delete(key: string): Promise<void> {
await this.client.del(key);
}
}Once you've set up the RedisStore, you can use it in your routes to manage sessions. Below is an example of how to use Redis to manage user sessions in a Harpia app:
import { Router } from "harpia";
import { Session } from "harpia/session";
import { RedisStore } from "redis.ts";
// Redis Setup
const redisStore = new RedisStore();
const useSession = new Session({ store: redisStore, cookieName: "my_session_id" });
// Routes Setup
const session = Router();
session.post("/login", async (req, res) => {
const sessionExists = await useSession.fromRequest(req);
if (sessionExists) {
res.json({ message: "Session does not exists." });
} else {
const sessionData = { userId: "12345", username: "pyro" };
const sessionId = await useSession.create(sessionData);
useSession.setCookie(res, sessionId, { maxAge: 3600, httpOnly: true, secure: true });
res.cookies.set("theme", "dark");
res.json({ message: "Successful login!" });
}
});
session.get("/profile", async (req, res) => {
const sessionData = await useSession.fromRequest(req);
if (sessionData) {
res.json({ profile: sessionData });
} else {
res.status(401).json({ message: "Session expired or not found!" });
}
});
session.post("/logout", async (req, res) => {
const sessionId = req.cookies.get("my_session_id");
if (sessionId) {
await useSession.delete(sessionId, res);
res.json({ message: "Successful logout!" });
} else {
res.status(400).json({ message: "Session not found!" });
}
});
export { session };-
Login Route (
/login): When a user logs in, a new session is created with the user's data. The session ID is stored in a Redis database and sent to the client as a cookie. If a session already exists, the user is notified. -
Profile Route (
/profile): The user's session data is fetched from Redis using the session ID stored in the client's cookie. If the session is valid, the user's profile data is returned. -
Logout Route (
/logout): When the user logs out, the session is deleted from Redis, and the session cookie is cleared from the client.
This integration provides a persistent session management system backed by Redis, allowing you to scale your application efficiently. The session data is stored securely and can be accessed across different instances of your application.