New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
@alterior/express
Advanced tools
@alterior/express - npm Package Versions
Changelog
v3.9.4
@/web-server- Fixes a bug where failing to provide a body when using the
Responseclass would cause an exception within Express. Failing to provide a body now ends the response without outputting a body. - Corrects the type of
ConnectMiddlewareto require thenext()function to be passed. This fixes type errors when using many Connect middlewares.
- Fixes a bug where failing to provide a body when using the
Changelog
v3.9.3
@/expressExpressEventnow properly exposescurrentas an Express-specificWebEvent,requestasexpress.Requestandresponseasexpress.Responseas intended. Previously this class returned the same values asWebEventwhich was not useful.
Changelog
v3.9.2
@/web-server- Fixed an issue where
Session.current().foo = 123would not set the session variable as expected.
- Fixed an issue where
Changelog
v3.9.0
@/web-server- Adds support for "interceptors". Interceptors let you wrap the execution of all controller methods in
the web service. They can be defined in the optionss for
@WebService(),@Controlleror the@Route()family of decorators. They are similar to applying a mutator, but without needing to use decorators, and without needing to declare the interception on every controller method. UseWebEvent.currentto access details about the request. - Adds
@Intercept()decorator as a convenient way to apply a function conforming to theInterceptortype directly to a method definition. WebEvent.inject()is a convenience function forWebEvent.current.get()webEvent.inject()is a convenience function forwebEvent.server.injector.get()
- Adds support for "interceptors". Interceptors let you wrap the execution of all controller methods in
the web service. They can be defined in the optionss for
Changelog
v3.8.0
@/web-server- Route-specific middleware can now use
WebEvent.currentto acquire the web event being processed. While middleware has always had access to the request/response pair, the current WebEvent also provides access to the controller and method which is about to be executed, amongst other things. This enables middleware to introspect the method call that is about to occur, enabling a broad set of use cases that were previously impossible. NOTE: Global and controller-level middleware cannot accessWebEvent.currentas they occur before any Alterior-specific processing occurs. - Alterior-style middleware classes are now resolved per request, allowing dependency injection providers to
differ per call. This has been used to allow
WebEventto be dependency injected as an alternative way of acquiring it. - The new
preRouteMiddlewareandpostRouteMiddlewareoptions allow you to specify route-specific middleware at the global and controller levels, enabling you to use the new introspection capabilities without specifying middleware on every route. The order of application is: (1) global pre-middleware, (2) controller pre-middleware, (3) route-specific middleware, (4) controller post-middleware, (5) global post-middleware. - It is no longer necessary to mark middleware classes with
@Middleware(). All classes are now treated as Alterior-style middleware (dependency injected, implements ahandle()method). This is not a breaking change since passing a class not marked with@Middleware()would have caused a runtime error prior. As a result of this@Middleware()has been deprecated, and will be removed in 4.0.0. - Correctness change: The type safety of the middleware-related properties of
WebServerOptions,@Controller()and the@Route()family of decorators has been strengthened.
- Route-specific middleware can now use
@/common: AddsleftPad(),rightPad(),zeroPad()andisConstructor()
Changelog
v3.7.6
@/web-server: [(!!) Potential security issue] Fixes an issue which causes the optional secondary HTTP listener to be enabled even when not configured. This would cause Alterior web services to listen on a random high TCP port in addition to the primary port you configure. This may be security impacting for some deployment / firewall configurations.
Changelog
v3.7.5
@/web-server:- Added the ability to override the default web server engine on specific
@WebServiceclasses - Fixes an issue where installing Express' Typescript types alongside
@/web-servermay have been needed even though@/web-serverdoes not have a direct dependency on Express
- Added the ability to override the default web server engine on specific
@/common:getParameterNames()will now look for a__parameterNamesproperty and use that before trying to introspect the function, which allows code that transforms/replaces functions to carry parameter name metadata across more easily.@/annotations:- When running a mutator against a function, preserve parameter names by setting a
__parameterNamesproperty on the resulting function, containing the parameter names of the original function. - Type safety has been improved around
Mutator.create()andMutator.define()
- When running a mutator against a function, preserve parameter names by setting a
Changelog
v3.7.4
@/runtime: AddparentInjectorbootstrap option to allow for more complex application bootstrapping.