Security News
JSR Working Group Kicks Off with Ambitious Roadmap and Plans for Open Governance
At its inaugural meeting, the JSR Working Group outlined plans for an open governance model and a roadmap to enhance JavaScript package management.
content-type
Advanced tools
The content-type npm package is used to create and parse HTTP Content-Type header according to RFC 7231. It allows you to parse content-type strings to objects and format content-type objects to strings.
Parsing Content-Type
This feature allows you to parse a Content-Type string, returning an object with the media type and parameters like charset.
const contentType = require('content-type');
const parsed = contentType.parse('text/html; charset=utf-8');
Formatting Content-Type
This feature enables you to format an object representing a Content-Type into a string that can be used in HTTP headers.
const contentType = require('content-type');
const format = contentType.format({ type: 'text/html', parameters: { charset: 'utf-8' } });
The mime-types package is similar to content-type as it provides the ability to look up the content-type based on a file extension and vice versa. It is more focused on the association between file extensions and mime types rather than parsing and formatting Content-Type headers.
The mime package is another alternative that allows you to map between MIME types and file extensions. It provides functionality to define custom mime type mappings and is more comprehensive in terms of the number of file types it supports compared to content-type.
Negotiator is an HTTP content negotiation library that goes beyond just handling Content-Type headers. It can be used to negotiate language, charset, encoding, etc., based on the Accept-* headers from the client. It is more complex and offers broader functionality for handling HTTP negotiations.
Create and parse HTTP Content-Type header according to RFC 7231
$ npm install content-type
var contentType = require('content-type')
var obj = contentType.parse('image/svg+xml; charset=utf-8')
Parse a content type string. This will return an object with the following
properties (examples are shown for the string 'image/svg+xml; charset=utf-8'
):
type
: The media type (the type and subtype, always lower case).
Example: 'image/svg+xml'
parameters
: An object of the parameters in the media type (name of parameter
always lower case). Example: {charset: 'utf-8'}
Throws a TypeError
if the string is missing or invalid.
var obj = contentType.parse(req)
Parse the content-type
header from the given req
. Short-cut for
contentType.parse(req.headers['content-type'])
.
Throws a TypeError
if the Content-Type
header is missing or invalid.
var obj = contentType.parse(res)
Parse the content-type
header set on the given res
. Short-cut for
contentType.parse(res.getHeader('content-type'))
.
Throws a TypeError
if the Content-Type
header is missing or invalid.
var str = contentType.format({type: 'image/svg+xml'})
Format an object into a content type string. This will return a string of the
content type for the given object with the following properties (examples are
shown that produce the string 'image/svg+xml; charset=utf-8'
):
type
: The media type (will be lower-cased). Example: 'image/svg+xml'
parameters
: An object of the parameters in the media type (name of the
parameter will be lower-cased). Example: {charset: 'utf-8'}
Throws a TypeError
if the object contains an invalid type or parameter names.
FAQs
Create and parse HTTP Content-Type header
The npm package content-type receives a total of 24,707,621 weekly downloads. As such, content-type popularity was classified as popular.
We found that content-type demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
At its inaugural meeting, the JSR Working Group outlined plans for an open governance model and a roadmap to enhance JavaScript package management.
Security News
Research
An advanced npm supply chain attack is leveraging Ethereum smart contracts for decentralized, persistent malware control, evading traditional defenses.
Security News
Research
Attackers are impersonating Sindre Sorhus on npm with a fake 'chalk-node' package containing a malicious backdoor to compromise developers' projects.