Security News
Node.js EOL Versions CVE Dubbed the "Worst CVE of the Year" by Security Experts
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
@middy/http-response-serializer
Advanced tools
Http response serializer middleware for the middy framework
HTTP response serializer middleware for the middy framework, the stylish Node.js middleware engine for AWS Lambda
The Http Serializer middleware lets you define serialization mechanisms based on the current content negotiation.
To install this middleware you can use NPM:
npm install --save @middy/http-response-serializer
The middleware is configured by defining some serializers
.
{
serializers: [
{
regex: /^application\/xml$/,
serializer: ({ body }) => `<message>${body}</message>`,
},
{
regex: /^application\/json$/,
serializer: ({ body }) => JSON.stringify(body)
},
{
regex: /^text\/plain$/,
serializer: ({ body }) => body
}
],
default: 'application/json'
}
The default
(optional) option is used if the request and handler don't specify what type is wanted.
When a matching serializer is found, the Content-Type
header is set and the serializer function is run.
The function is passed the entire response
object, and should return either a string or an object.
If a string is returned, the body
attribute of the response is updated.
If an object is returned, the entire response object is replaced. This is useful if you want to manipulate headers or add additional attributes in the Lambda response.
The header is not the only way the middleware decides which serializer to execute.
The content type is determined in the following order:
event.requiredContentType
-- allows the handler to override everything elseAccept
header via acceptevent.preferredContentType
-- allows the handler to override the default, but lets the request ask firstdefault
middleware configurationAll options allow for multiple types to be specified in your order of preference, and the first matching serializer will be executed.
This middleware does work with http-error-handler
. To serialize error responses, ensure the httpErrorHandler
middleware is configured before httpResponseSerializer
.
Thie middleware does not rely on any other middlewares.
const middy = require('@middy/core')
const httpResponseSerializer = require('@middy/http-response-serializer')
const handler = middy((event, context, cb) => {
const body = 'Hello World'
return cb(null, {
statusCode: 200,
body
})
})
handler
.use(httpResponseSerializer({
serializers: [
{
regex: /^application\/xml$/,
serializer: ({ body }) => `<message>${body}</message>`,
},
{
regex: /^application\/json$/,
serializer: ({ body }) => JSON.stringify(body)
},
{
regex: /^text\/plain$/,
serializer: ({ body }) => body
}
],
default: 'application/json'
}))
const event = {
headers: {
'Accept': 'application/xml;q=0.9, text/x-dvi; q=0.8, text/x-c'
}
}
handler(event, {}, (_, response) => {
expect(response.body).toEqual('<message>Hello World</message>')
})
For more documentation and examples, refers to the main Middy monorepo on GitHub or Middy official website.
Everyone is very welcome to contribute to this repository. Feel free to raise issues or to submit Pull Requests.
Licensed under MIT License. Copyright (c) 2017-2018 Luciano Mammino and the Middy team.
FAQs
The Http Serializer middleware lets you define serialization mechanisms based on the current content negotiation.
The npm package @middy/http-response-serializer receives a total of 25,217 weekly downloads. As such, @middy/http-response-serializer popularity was classified as popular.
We found that @middy/http-response-serializer demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Critics call the Node.js EOL CVE a misuse of the system, sparking debate over CVE standards and the growing noise in vulnerability databases.
Security News
cURL and Go security teams are publicly rejecting CVSS as flawed for assessing vulnerabilities and are calling for more accurate, context-aware approaches.
Security News
Bun 1.2 enhances its JavaScript runtime with 90% Node.js compatibility, built-in S3 and Postgres support, HTML Imports, and faster, cloud-first performance.