Documentation Index Fetch the complete documentation index at: https://mintlify.com/juanjh1/asimilation/llms.txt
Use this file to discover all available pages before exploring further.
Overview Middlewares are functions that execute before your route handler. They can modify the request, validate data, check authentication, log information, or terminate the request early. Asimilation supports both global and route-specific middlewares.
What is a Middleware? A middleware is a function with the following signature:
type MiddlewareFunction = ( req : ArgumentedIncomingMessageAbc , res : ArgumentedServerResponseAbc , next : ( error ?: Error ) => void ) => void ; type MiddlewareFunctionAsync = ( req : ArgumentedIncomingMessageAbc , res : ArgumentedServerResponseAbc , next : ( error ?: Error ) => void ) => Promise < void >;
The next function is crucial - it tells Asimilation to continue to the next middleware or route handler.
Global Middlewares Global middlewares run on every request before any route handler. They’re perfect for logging, CORS headers, authentication, and other cross-cutting concerns.
Adding Global Middlewares import { MiddlewarePipeline } from "@asimilation/core" ; // Add a logging middleware MiddlewarePipeline . addMiddleware (( req , res , next ) => { console . log ( ` ${ req . method } ${ req . url } ` ); next (); // Continue to the next middleware or route handler }); // Add CORS headers MiddlewarePipeline . addMiddleware (( req , res , next ) => { res . setHeader ( "Access-Control-Allow-Origin" , "*" ); res . setHeader ( "Access-Control-Allow-Methods" , "GET, POST, PUT, DELETE" ); next (); });
Always call next() in your middleware unless you want to terminate the request. If you forget to call next(), the request will hang.
Global Middleware Execution Global middlewares are stored in an array and executed sequentially (see middleware-manager.ts:12). The execution flow is managed by the MiddlewareManager class using a dispatch pattern (middleware-manager.ts:23-44).
Route-Specific Middlewares Route-specific middlewares only run for particular routes. They’re added using the handlers option in addPath():
import { url } from "@asimilation/core" ; // Authentication middleware const requireAuth = ( req , res , next ) => { const token = req . headers . authorization ; if ( ! token ) { res . sendJson ({ error: "Unauthorized" }, 401 ); return ; // Don't call next() - terminate the request } // Validate token... next (); // Token is valid, continue }; // Apply middleware to specific route url . addPath ( "/api/protected" , ( req , res ) => { res . sendJson ({ data: "secret" }, 200 ); }, { handlers: [ requireAuth ] });
Route-specific middlewares execute after global middlewares but before the route handler.
Middleware Execution Order
Global Middlewares
All global middlewares run first, in the order they were registered (middleware-manager.ts:46-56).
Route-Specific Middlewares
If the route has specific middlewares, they run next in the order defined in the handlers array (middleware-manager.ts:58-67).
Route Handler
Finally, the route’s controller function executes (router-manager.ts:128-140).
// Execution order example MiddlewarePipeline . addMiddleware (( req , res , next ) => { console . log ( "1. Global middleware" ); next (); }); const middleware1 = ( req , res , next ) => { console . log ( "2. Route middleware 1" ); next (); }; const middleware2 = ( req , res , next ) => { console . log ( "3. Route middleware 2" ); next (); }; url . addPath ( "/test" , ( req , res ) => { console . log ( "4. Route handler" ); res . sendText ( "Done" , 200 ); }, { handlers: [ middleware1 , middleware2 ] });
Writing Custom Middlewares Basic Logger Middleware const logger = ( req , res , next ) => { const start = Date . now (); // Log request console . log ( `→ ${ req . method } ${ req . url } ` ); // Continue to next middleware next (); // Log response time const duration = Date . now () - start ; console . log ( `← ${ req . method } ${ req . url } ( ${ duration } ms)` ); }; MiddlewarePipeline . addMiddleware ( logger );
Authentication Middleware const authenticate = ( req , res , next ) => { const token = req . headers . authorization ?. replace ( "Bearer " , "" ); if ( ! token ) { res . sendJson ({ error: "Missing token" }, 401 ); return ; // Terminate - don't call next() } try { // Verify token (pseudo-code) const user = verifyToken ( token ); // Attach user to request for downstream handlers ( req as any ). user = user ; next (); // Continue to next middleware or handler } catch ( error ) { res . sendJson ({ error: "Invalid token" }, 401 ); // Don't call next() on error } };
Body Parser Middleware const bodyParser = async ( req , res , next ) => { if ( req . method === "POST" || req . method === "PUT" ) { let body = "" ; req . on ( "data" , ( chunk ) => { body += chunk . toString (); }); req . on ( "end" , () => { try { ( req as any ). body = JSON . parse ( body ); next (); // Body parsed successfully } catch ( error ) { res . sendJson ({ error: "Invalid JSON" }, 400 ); // Don't call next() on parse error } }); } else { next (); // No body to parse } }; MiddlewarePipeline . addMiddleware ( bodyParser );
CORS Middleware const cors = ( req , res , next ) => { res . setHeader ( "Access-Control-Allow-Origin" , "*" ); res . setHeader ( "Access-Control-Allow-Methods" , "GET, POST, PUT, DELETE, OPTIONS" ); res . setHeader ( "Access-Control-Allow-Headers" , "Content-Type, Authorization" ); // Handle preflight requests if ( req . method === "OPTIONS" ) { res . writeHead ( 204 ); res . end (); return ; // Terminate preflight request } next (); }; MiddlewarePipeline . addMiddleware ( cors );
Async Middlewares Asimilation supports async middlewares that return a Promise:
const asyncMiddleware = async ( req , res , next ) => { try { // Perform async operations const data = await fetchFromDatabase (); ( req as any ). data = data ; next (); // Continue after async operation } catch ( error ) { res . sendJson ({ error: "Database error" }, 500 ); // Don't call next() on error } }; MiddlewarePipeline . addMiddleware ( asyncMiddleware );
The next() Function The next function is the key to middleware chaining:
Call next() to continue const middleware = ( req , res , next ) => { // Do some processing next (); // Continue to next middleware or handler };
Don’t call next() to terminate const authMiddleware = ( req , res , next ) => { if ( ! isAuthenticated ( req )) { res . sendJson ({ error: "Unauthorized" }, 401 ); return ; // Don't call next() - request ends here } next (); };
Error handling with next() const middleware = ( req , res , next ) => { try { // Processing... next (); } catch ( error ) { next ( error ); // Pass error to next middleware } };
If you call next() after sending a response, the next middleware will still execute. Make sure to return after sending a response if you don’t want further processing.
Middleware Pipeline Implementation The middleware pipeline is implemented using a recursive dispatch pattern (see middleware-manager.ts:23-44):
Middlewares are stored in an array
A dispatch function processes them one at a time
Each middleware receives a next function that calls dispatch for the next index
The pipeline continues until all middlewares complete or one terminates the request
// Simplified version of the internal implementation function dispatch ( index : number ) : Promise < void > { if ( middlewareList . length == 0 ) return Promise . resolve (); let current = middlewareList [ index ]; if ( current ) { return Promise . resolve ( current ( req , res , () => { dispatch ( index + 1 ) }) ); } return Promise . resolve (); }
Combining Global and Route Middlewares import { MiddlewarePipeline , url } from "@asimilation/core" ; // Global: runs on all routes MiddlewarePipeline . addMiddleware (( req , res , next ) => { console . log ( "Global logger" ); next (); }); // Route-specific: runs only on /admin routes const adminAuth = ( req , res , next ) => { // Check admin privileges next (); }; url . addPath ( "/admin/users" , ( req , res ) => { res . sendJson ({ users: [] }, 200 ); }, { handlers: [ adminAuth ] // Only runs for this route }); url . addPath ( "/public" , ( req , res ) => { res . sendText ( "Public page" , 200 ); }); // Only global middleware runs
Best Practices
Always call next() Unless you’re terminating the request, always call next() to continue the pipeline.
Keep middlewares focused Each middleware should do one thing well. Create separate middlewares for different concerns.
Order matters Register middlewares in the order you want them to execute. Authentication should come before authorization.
Handle errors gracefully Always handle errors in async middlewares to prevent unhandled promise rejections.
Common Use Cases
Logging : Track all requests and responsesAuthentication : Verify user identityAuthorization : Check user permissionsBody Parsing : Parse JSON or form dataCORS : Handle cross-origin requestsRate Limiting : Prevent abuseRequest Validation : Validate input dataResponse Compression : Compress responsesCaching : Cache responsesError Handling : Centralized error handling
Next Steps
Request & Response Learn about the request and response objects available in middlewares
Routing Understand how routes work with middlewares
