New Case Study:See how Anthropic automated 95% of dependency reviews with Socket.Learn More →
nestjs-cls
Advanced tools
nestjs-cls - npm Package Compare versions
Comparing version 1.4.0 to 1.4.1
| { | ||
| "name": "nestjs-cls", | ||
| "version": "1.4.0", | ||
| "version": "1.4.1", | ||
| "description": "A continuation-local storage module compatible with NestJS's dependency injection.", | ||
@@ -5,0 +5,0 @@ "author": "papooch", |
@@ -5,2 +5,4 @@ # NestJS CLS | ||
| _Continuous-local storage allows to store state and propagate it throughout callbacks and promise chains. It allows storing data throughout the lifetime of a web request or any other asynchronous duration. It is similar to thread-local storage in other languages._ | ||
| > Note: For versions < 1.2, this package used [cls-hooked](https://www.npmjs.com/package/cls-hooked) as a peer dependency, now it uses [AsyncLocalStorage](https://nodejs.org/api/async_context.html#async_context_class_asynclocalstorage) from Node's `async_hooks` directly. The API stays the same for now but I'll consider making it more friendly for version 2. | ||
@@ -115,3 +117,3 @@ | ||
| To make CLS work, it is required to set up a cls context first. This is done by calling `cls.run()` (or `cls.enter()`) somewhere in the app. Once that is set up, anything that is called within the same callback chain has access to the same storage with `cls.set()` and `cls.get()`. | ||
| To make CLS work, it is required to set up the CLS context first. This is done by calling `cls.run()` (or `cls.enter()`) somewhere in the app. Once that is set up, anything that is called within the same callback chain has access to the same storage with `cls.set()` and `cls.get()`. | ||
@@ -131,3 +133,3 @@ ## HTTP | ||
| ```ts | ||
| export class TestHttpApp implements NestModule { | ||
| export class AppModule implements NestModule { | ||
| configure(consumer: MiddlewareConsumer) { | ||
@@ -147,3 +149,3 @@ apply(ClsMiddleware).forRoutes(AppController); | ||
| new ClsMiddleware({ | ||
| /* useEnterWith: true*/ | ||
| /* useEnterWith: true */ | ||
| }).use, | ||
@@ -159,4 +161,6 @@ ); | ||
| For all other transports that don't use middleware, this package provides a `ClsGuard` to set up the CLS context. To use it, pass its configuration to the `guard` property to the `ClsModule.register` options: | ||
| For all other transports that don't use middleware, this package provides a `ClsGuard` to set up the CLS context. While it is not a "guard" per-se, it's the second best place to set up the CLS context, since it would be too late to do it in an interceptor. | ||
| To use it, pass its configuration to the `guard` property to the `ClsModule.register` options: | ||
| ```ts | ||
@@ -168,4 +172,21 @@ ClsModule.register({ | ||
| > Please note: using the ClsGuard comes with some [security considerations](#security-considerations)! | ||
| If you need any other guards to use the `ClsService`, it's preferable mount `ClsGuard` manually as the first guard in the root module: | ||
| ```ts | ||
| @Module({ | ||
| //... | ||
| providers: [ | ||
| { | ||
| provide: APP_GUARD, | ||
| useClass: ClsGuard, | ||
| }, | ||
| ], | ||
| }) | ||
| export class AppModule {} | ||
| ``` | ||
| > Please note: using the `ClsGuard` comes with some [security considerations](#security-considerations)! | ||
| > Note: A guard might not be the best place to initiate the CLS context for all transports. I'm looking into providing alternative options for specific platforms. | ||
| # API | ||
@@ -215,2 +236,4 @@ | ||
| An optional function for generating the request ID. It takes the `Request` object as an argument and (synchronously or asynchronously) returns a string. The default implementation uses `Math.random()` to generate a string of 8 characters. | ||
| - **_`setup`_: `(cls: ClsService, req: Request) => void | Promise<void>;`** | ||
| Function that executes after the CLS context has been initialised. It can be used to put additional variables in the CLS context. | ||
| - **_`saveReq`_: `boolean`** (default _`true`_) | ||
@@ -231,6 +254,8 @@ Whether to store the _Request_ object to the context. It will be available under the `CLS_REQ` key. | ||
| An optional function for generating the request ID. It takes the `ExecutionContext` object as an argument and (synchronously or asynchronously) returns a string. The default implementation uses `Math.random()` to generate a string of 8 characters. | ||
| - **_`setup`_: `(cls: ClsService, context: ExecutionContext) => void | Promise<void>;`** | ||
| Function that executes after the CLS context has been initialised. It can be used to put additional variables in the CLS context. | ||
| # Request ID | ||
| Because of a shared storage, CLS is an ideal tool for tracking request (correlation) ids for the purpose of logging. This package provides an option to automatically generate request ids in the middleware/guard, if you pass `{ generateId: true }` to the middleware/guard options. By default, the generated ID is a string based on `Math.random()`, but you can provide a custom function in the `idGenerator` option. | ||
| Because of a shared storage, CLS is an ideal tool for tracking request (correlation) IDs for the purpose of logging. This package provides an option to automatically generate request IDs in the middleware/guard, if you pass `{ generateId: true }` to the middleware/guard options. By default, the generated ID is a string based on `Math.random()`, but you can provide a custom function in the `idGenerator` option. | ||
@@ -247,3 +272,3 @@ This function receives the `Request` (or `ExecutionContext` in case a `ClsGuard` is used) as the first parameter, which can be used in the generation process and should return a string id that will be stored in the CLS for later use. | ||
| idGenerator: (req: Request) => | ||
| req.headers['X-Correlation-Id'] ?? uuid(); | ||
| req.headers['X-Request-Id'] ?? uuid(); | ||
| } | ||
@@ -314,5 +339,5 @@ }) | ||
| It is often discussed whether [`AsyncLocalStorage`](https://nodejs.org/api/async_context.html) is safe to use for _concurrent requests_ (because of a possible context leak) and whether the context could be _lost_ throughout the life duration of a request. | ||
| It is often discussed whether [`AsyncLocalStorage`](https://nodejs.org/api/async_context.html) is safe to use for _concurrent requests_ (because of a possible context leak) and whether the context could be _lost_ throughout the duration of a request. | ||
| The `ClsMiddleware` by default uses the safe `run()` method, so it should be possible to leak context, however, that only works for REST `Controllers`. | ||
| The `ClsMiddleware` by default uses the safe `run()` method, so it should not leak context, however, that only works for REST `Controllers`. | ||
@@ -319,0 +344,0 @@ GraphQL `Resolvers`, cause the context to be lost and therefore require using the less safe `enterWith()` method. The same applies to using `ClsGuard` to set up the context, since there's no callback to wrap with the `run()` call (so the context would be not available outside of the guard otherwise). |
No alert changes
Improved metrics
- Total package byte prevSize
- increased by1.92%
71505
- Number of lines in readme file
- increased by6.33%
420
No dependency changes