A powerful and flexible middleware system for Google Cloud Functions that supports both HTTP and Pub/Sub triggers. This framework provides a clean, type-safe way to handle requests, validate data, manage authentication, and standardize responses.
The Handler class is the core of the framework. It manages the middleware chain and executes your business logic. Each handler instance can have multiple middlewares and one main handler function.
Middlewares are reusable pieces of logic that run before/after your main handler. They can:
- Modify the request/response objects
- Perform validation
- Handle authentication
- Process errors
- And more...
The context object is passed through the entire middleware chain and contains all request-related data:
interface Context {
req: CustomRequest; // Extended request with additional properties
res: CustomResponse; // Extended response with additional methods
container?: Container; // Dependency injection container
error: Error | null; // Holds any errors that occur
businessData: Map<string, unknown>; // Store data between middlewares
user?: unknown; // Authenticated user information
}import { Handler } from '@core/handler';
import {
bodyParser,
bodyValidator,
authentication,
errorHandler,
responseWrapper,
} from '@framework/middlewares';
import { z } from 'zod';
import { verifyToken } from '@utils/auth';
// 1. Define your request schema using Zod
const userSchema = z.object({
name: z.string().min(2),
email: z.string().email(),
age: z.number().min(18),
});
// 2. Create and configure your handler
export const createUser = new Handler()
// Add middlewares in the order they should execute
.use(errorHandler()) // Always add error handler first
.use(bodyParser()) // Parse incoming JSON
.use(bodyValidator(userSchema)) // Validate request body
.use(authentication(verifyToken)) // Verify JWT token
.use(responseWrapper()) // Standardize response format
.handle(async (context) => {
// Access validated data and user information
const { validatedBody, user } = context.req;
// Your business logic here
const newUser = await createUserInDatabase(validatedBody);
// Send response
context.res.json({
userId: newUser.id,
message: 'User created successfully',
});
});import { Handler } from '@core/handler';
import { bodyParser, bodyValidator, errorHandler } from '@framework/middlewares';
import { z } from 'zod';
// 1. Define your message schema
const messageSchema = z.object({
userId: z.string().uuid(),
action: z.enum(['CREATE', 'UPDATE', 'DELETE']),
payload: z.record(z.unknown()),
});
// 2. Create your Pub/Sub handler
export const processPubSubMessage = new Handler()
.use(errorHandler())
.use(bodyParser()) // Will decode base64 Pub/Sub message
.use(bodyValidator(messageSchema))
.handle(async (context) => {
const { validatedBody } = context.req;
// Process the message based on action
switch (validatedBody.action) {
case 'CREATE':
await handleCreateAction(validatedBody.payload);
break;
// ... handle other actions
}
});Automatically parses:
- JSON request bodies for HTTP functions
- Base64-encoded Pub/Sub messages
.use(bodyParser())Type-safe request validation using Zod schemas:
const schema = z.object({
name: z.string(),
age: z.number(),
});
.use(bodyValidator(schema))JWT token validation and user context injection:
.use(authentication(verifyToken))Ensure required headers are present:
.use(headerVariables(['x-api-key', 'correlation-id']))Extract URL parameters:
// URL: /users/:userId/posts/:postId
.use(pathParameters())
// Access via: context.req.params.userIdProcess and validate query strings:
.use(queryParameters(['page', 'limit']))Standardizes all responses:
.use(responseWrapper())
// Output format:
{
"success": true,
"statusCode": 200,
"data": { /* your response data */ },
"timestamp": "2024-01-01T00:00:00.000Z"
}Consistent error handling:
.use(errorHandler())
// Usage in your code:
throw new HttpError(400, 'Invalid input');
throw new ValidationError('Email is required');
throw new AuthenticationError();The framework provides built-in error classes:
// Basic HTTP error
throw new HttpError(statusCode, message, code?, details?);
// Validation error (400 Bad Request)
throw new ValidationError(message, details?);
// Authentication error (401 Unauthorized)
throw new AuthenticationError(message?);gcloud functions deploy your-function \
--runtime nodejs18 \
--trigger-http \
--entry-point yourFunction \
--allow-unauthenticated # If public access is needed# 1. Create a Pub/Sub topic
gcloud pubsub topics create your-topic
# 2. Deploy the function
gcloud functions deploy your-pubsub-function \
--runtime nodejs18 \
--trigger-topic your-topic \
--entry-point yourPubSubFunction- Always add
errorHandler()as the first middleware - Use
bodyParser()beforebodyValidator() - Add
authentication()before accessing user context - Place
responseWrapper()last in the chain - Use TypeScript interfaces for better type safety
- Implement proper error handling in your business logic
- Use environment variables for sensitive configuration
The framework is built with TypeScript and provides full type safety. Use the provided interfaces and types for better development experience:
import { Context, CustomRequest, CustomResponse } from '@framework/middlewares/base/Middleware';
import { BaseMiddleware } from '../../core/handler';# Health Check
curl http://localhost:8080/health
# List Users - No parameters
curl http://localhost:8080/api/users
# List Users - With age filter
curl "http://localhost:8080/api/users?age=25"
# List Users - With active filter
curl "http://localhost:8080/api/users?active=true"
# List Users - With both filters
curl "http://localhost:8080/api/users?age=25&active=true"
# Get User by ID
curl http://localhost:8080/api/users/123
# Create User - Minimal required fields
curl -X POST \
-H "Content-Type: application/json" \
-d '{"name":"John Doe","email":"john@example.com"}' \
http://localhost:8080/api/users
# Create User - All fields
curl -X POST \
-H "Content-Type: application/json" \
-d '{
"name": "Jane Doe",
"email": "jane@example.com",
"age": 30
}' \
http://localhost:8080/api/users
# Create User - Test validation error (missing email)
curl -X POST \
-H "Content-Type: application/json" \
-d '{"name":"John Doe"}' \
http://localhost:8080/api/users
# Create User - Test validation error (invalid email)
curl -X POST \
-H "Content-Type: application/json" \
-d '{
"name": "John Doe",
"email": "invalid-email"
}' \
http://localhost:8080/api/users
# Get Non-existent User (should return 404)
curl http://localhost:8080/api/users/nonexistent-id
# Test without Content-Type header (should fail)
curl -X POST \
-d '{"name":"John Doe","email":"john@example.com"}' \
http://localhost:8080/api/users
# Pretty print responses (add to any command)
# Windows PowerShell
curl http://localhost:8080/api/users | ConvertFrom-Json | ConvertTo-Json
# Unix/Linux/MacOS
curl http://localhost:8080/api/users | json_pp url: https://us-central1-javierhbr-lab.cloudfunctions.net/userApi
gcloud endpoints services deploy openapi.yaml --project [PROJECT_ID]
export GCP_REGION=us-central1
export GCP_PROJECT_ID=javierhbr-lab
❯ chmod u+rw ./openapi/user-api-spec.yaml
./openapi/user-api-spec.yaml
--backend-auth-service-account=${{ secrets.GCP_SERVICE_ACCOUNT_EMAIL }}
to change the openAPI. it's need to be updated in the openapi.yaml file and then create a new version of it
gcloud api-gateway api-configs create gtw-user-api-config-v1-2 \
--api=user-api \
--openapi-spec=swagger.yaml
[//]: # (--backend-auth-service-account=sa-javierhbr-lab@javierhbr-lab.iam.gserviceaccount.com)
CReate a new gateways with api config
gcloud api-gateway gateways create gtw-user-api \
--api=user-api \
--api-config=gtw-user-api-config \
--location=us-central1 \
--project=javierhbr-lab
Update the gateway with the new api config
gcloud api-gateway gateways update gtw-user-api \
--api=user-api \
--api-config=gtw-user-api-config-v1-2 \
--location=us-central1 \
--project=javierhbr-lab
gcloud api-gateway apis describe user-api --project=my-project
gcloud api-gateway gateways describe gtw-user-api --location=us-central1 --project=my-project