https://github.com/yoanesber/typescript-idempotency-with-redis
TypeScript API demo using Redis to ensure idempotency in POST/PUT ops, avoiding duplicate processing from retries or refreshes.
https://github.com/yoanesber/typescript-idempotency-with-redis
idempotency redis typescript
Last synced: about 1 month ago
JSON representation
TypeScript API demo using Redis to ensure idempotency in POST/PUT ops, avoiding duplicate processing from retries or refreshes.
- Host: GitHub
- URL: https://github.com/yoanesber/typescript-idempotency-with-redis
- Owner: yoanesber
- Created: 2025-07-15T18:53:05.000Z (12 months ago)
- Default Branch: main
- Last Pushed: 2025-07-28T14:37:37.000Z (11 months ago)
- Last Synced: 2025-08-29T08:59:58.274Z (10 months ago)
- Topics: idempotency, redis, typescript
- Language: TypeScript
- Homepage:
- Size: 57.6 KB
- Stars: 0
- Watchers: 0
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Idempotency Demo with Redis
This project demonstrates implementing an idempotency mechanism in a **TypeScript-based API** using **Express** and **Redis**. It ensures duplicate requests (from retries, refreshes, etc.) do not cause repeated processing, especially in `POST`/`PUT` operations like payments or transactions.
---
## π Flow
Below is the high-level flow describing how the Idempotency Middleware and Transaction Service work together to ensure safe and reliable processing of requests:
```text
ββββββββββββββββββββββββββββββββββββββββββββββββ
β [1] Client Sends Request β
β----------------------------------------------β
β - POST /transactions β
β - Headers: β
β - Idempotency-Key: β
β - Body: { type, amount, consumerId } β
ββββββββββββββββββββββββββββββββββββββββββββββββ
β
βΌ
ββββββββββββββββββββββββββββββββββββββββββββββββ
β [2] Middleware: Validate Idempotency β
β----------------------------------------------β
β - Ensure Idempotency-Key is present β
β - Hash request body using SHA256 β
ββββββββββββββββββββββββββββββββββββββββββββββββ
β
βΌ
ββββββββββββββββββββββββββββββββββββββββββββββββ
β [3] Redis Lookup: Cached Response? β
β----------------------------------------------β
β - If found β β
β - Compare stored bodyHash β
β - Mismatch β reject (409 Conflict) β
β - Match β β
β - Check expiredAt (in payload) β
β - If expired β reject (419 Expired)β
β - If valid β return 200 β
β - If not found β check PostgreSQL DB [4] β
ββββββββββββββββββββββββββββββββββββββββββββββββ
β
βΌ
ββββββββββββββββββββββββββββββββββββββββββββββββ
β [4] DB Lookup: Idempotency Record Exists? β
β----------------------------------------------β
β - If found β β
β - Compare stored bodyHash with current β
β - Mismatch β reject (409 Conflict) β
β - Match β β
β - If expired β reject (419 Expired) β
β - If valid β return 200 β
β - If not found β proceed to service [5] β
ββββββββββββββββββββββββββββββββββββββββββββββββ
β
βΌ
ββββββββββββββββββββββββββββββββββββββββββββββββββ
β [5] Service Layer Processing β
β------------------------------------------------β
β - Validate and parse request body β
β - Destructure the validated data β
β - Begin database transaction β
β - Create transaction with status = "pending" β
β - Create idempotency_meta with: β
β (key, bodyHash, responsePayload, expiredAt)β
β - Save response to Redis (short TTL) β
β - Commit transaction β
ββββββββββββββββββββββββββββββββββββββββββββββββββ
β
βΌ
ββββββββββββββββββββββββββββββββββββββββββββββββ
β [6] API Response Handler β
β----------------------------------------------β
β - HTTP 201 Created β
β - Body: { transactionId, status, ... } β
ββββββββββββββββββββββββββββββββββββββββββββββββ
```
---
## π€ Tech Stack
This project leverages a modern and robust **Node.js-based** stack to implement an idempotent-safe REST API using Redis as a caching mechanism. Below is an overview of the core technologies and tools used:
| **Component** | **Description** |
|------------------------|----------------------------------------------------------------------------------------------------------|
| Language | **TypeScript** β statically typed superset of JavaScript for safer and scalable development |
| Runtime | **Node.js** β JavaScript runtime built on Chromeβs V8 engine |
| Web Framework | **Express.js** β minimalist and flexible web application framework |
| Caching Layer | **Redis** β in-memory data structure store used for idempotency key tracking and response caching |
| Idempotency Logic | **Custom Middleware** β detects repeated requests and replays cached responses using key + body hash |
| Request Hashing | **Crypto (SHA256)** β used to hash request bodies to detect changes in content |
| Environment Config | **dotenv** β loads environment variables from `.env` file into `process.env` |
| Rate Limiting | **express-rate-limit** β limits repeated requests to APIs to prevent abuse |
| Validation | **Zod** β TypeScript-first schema declaration and validation library |
| Migration & Seeding | **Sequelize CLI** β for database schema generation and initial data population |
| Containerization | **Docker** β optional, Redis can be containerized for local testing and production deployment |
---
## 𧱠Architecture Overview
The project follows a modular and layered folder structure for maintainability, scalability, and separation of concerns. Below is a high-level overview of the folder architecture:
```
πtypescript-idempotency-demo/
βββ πdocker/
β βββ πapp/ # Dockerfile and setup for Node.js app container
β βββ πpostgres/ # PostgreSQL Docker setup with init scripts or volumes
β βββ πredis/ # Redis Docker setup
βββ πlogs/ # Directory for application and HTTP logs
βββ πmigrations/ # Sequelize migrations
βββ πsrc/ # Application source code
β βββ πconfig/ # Configuration files (DB, environment, Sequelize)
β βββ πcontrollers/ # Express route handlers, business logic endpoints
β βββ πdtos/ # Data Transfer Objects for validation and typing
β βββ πexceptions/ # Custom error classes for centralized error handling
β βββ πmiddlewares/ # Express middlewares (security, logging, rate limiters, etc.)
β βββ πmodels/ # Sequelize models representing DB entities
β βββ πroutes/ # API route definitions and registration
β βββ πservices/ # Business logic and service layer between controllers and models
β βββ πtypes/ # Custom global TypeScript type definitions
β βββ πutils/ # Utility functions (e.g., redis operations, logger)
βββ .env # Environment variables for configuration (DB credentials, Redis, Idempotency settings)
βββ .sequelizerc # Sequelize CLI configuration
βββ entrypoint.sh # Script executed at container startup (wait-for-db, run migrations, start app)
βββ package.json # Node.js project metadata and scripts
βββ sequelize.config.js # Wrapper to load TypeScript Sequelize config via ts-node
βββ tsconfig.json # TypeScript compiler configuration
βββ README.md # Project documentation
```
---
## π οΈ Installation & Setup
Follow the instructions below to get the project up and running in your local development environment. You may run it natively or via Docker depending on your preference.
### β
Prerequisites
Make sure the following tools are installed on your system:
| **Tool** | **Description** |
|-------------------------------------------------------------|----------------------------------------------------|
| [Node.js](https://nodejs.org/) | JavaScript runtime environment (v20+) |
| [npm](https://www.npmjs.com/) | Node.js package manager (bundled with Node.js) |
| [Make](https://www.gnu.org/software/make/) | Build automation tool (`make`) |
| [PostgreSQL](https://www.postgresql.org/) | Relational database system (v14+) |
| [Redis](https://redis.io/) | In-memory data structure store (v7+) |
| [Docker](https://www.docker.com/) | Containerization platform (optional) |
### π Clone the Project
Clone the repository:
```bash
git clone https://github.com/yoanesber/TypeScript-Idempotency-with-Redis.git
cd TypeScript-Idempotency-with-Redis
```
### βοΈ Configure `.env` File
Set up your **database** and **Redis** configurations by creating a `.env` file in the project root directory:
```properties
# Application Configuration
PORT=4000
# development, production, test
NODE_ENV=development
# Logging Configuration
LOG_LEVEL=info
LOG_DIRECTORY=../../logs
# Postgre Configuration
DB_HOST=localhost
DB_PORT=5432
DB_USER=postgres
DB_PASS=P@ssw0rd
DB_NAME=nodejs_demo
DB_DIALECT=postgres
# Redis configuration
REDIS_HOST=localhost
REDIS_PORT=6379
REDIS_USER=default
REDIS_PASS=
REDIS_DB=0
REDIS_FLUSH_DB=TRUE
REDIS_CONNECT_TIMEOUT=10000 # 10 seconds
# Idempotency configuration
IDEMPOTENCY_ENABLED=TRUE
IDEMPOTENCY_HEADER_NAME=idempotency-key
IDEMPOTENCY_PREFIX=idempotency
IDEMPOTENCY_TTL_HOURS=24
```
### π€ Create Dedicated PostgreSQL User (Recommended)
For security reasons, it's recommended to avoid using the default postgres superuser. Use the following SQL script to create a dedicated user (`appuser`) and assign permissions:
```sql
-- Create appuser and database
CREATE USER appuser WITH PASSWORD 'app@123';
-- Allow user to connect to database
GRANT CONNECT, TEMP, CREATE ON DATABASE nodejs_demo TO appuser;
-- Grant permissions on public schema
GRANT USAGE, CREATE ON SCHEMA public TO appuser;
-- Grant all permissions on existing tables
GRANT SELECT, INSERT, UPDATE, DELETE ON ALL TABLES IN SCHEMA public TO appuser;
-- Grant all permissions on sequences (if using SERIAL/BIGSERIAL ids)
GRANT USAGE, SELECT, UPDATE ON ALL SEQUENCES IN SCHEMA public TO appuser;
-- Ensure future tables/sequences will be accessible too
ALTER DEFAULT PRIVILEGES IN SCHEMA public
GRANT SELECT, INSERT, UPDATE, DELETE ON TABLES TO appuser;
-- Ensure future sequences will be accessible too
ALTER DEFAULT PRIVILEGES IN SCHEMA public
GRANT USAGE, SELECT, UPDATE ON SEQUENCES TO appuser;
```
Update your `.env` accordingly:
```properties
DB_USER=appuser
DB_PASS=app@123
```
---
## π Running the Application
This section provides step-by-step instructions to run the application either **locally** or via **Docker containers**.
- **Notes**:
- All commands are defined in the `Makefile`.
- To run using `make`, ensure that `make` is installed on your system.
- To run the application in containers, make sure `Docker` is installed and running.
- Ensure you have `NodeJs` and `npm` installed on your system
### π¦ Install Dependencies
Make sure all dependencies are properly installed:
```bash
make install
```
### π§ Run Locally (Non-containerized)
Ensure PostgreSQL and Redis are running locally, then:
```bash
make dev
```
This command will run the application in development mode, listening on port `4000` by default.
### Run Migrations
To create the database schema, run:
```bash
make refresh-migrate
```
This will apply all pending migrations to your PostgreSQL database.
### π³ Run Using Docker
To build and run all services (PostgreSQL, Redis, and TypeScript app):
```bash
make docker-up
```
To stop and remove all containers:
```bash
make docker-down
```
- **Notes**:
- Before running the application inside Docker, make sure to update your environment variables `.env`
- Change `DB_HOST=localhost` to `DB_HOST=postgres-server`.
- Change `REDIS_HOST=localhost` to `REDIS_HOST=redis-server`.
### π’ Application is Running
Now your application is accessible at:
```bash
http://localhost:4000
```
---
## π§ͺ Testing Scenarios
This section outlines various test scenarios to validate the idempotency mechanism and middleware functionalities. Each scenario includes the request method, endpoint, preconditions, expected responses, and any relevant headers.
### π Idempotency Key Usage
#### Scenario 1: Create a Payment with Idempotency Key
- **Method**: `POST`
- **Endpoint**: `/api/transactions`
- **Request Body**:
```json
{
"type": "payment",
"amount": 12000.00,
"consumerId": "2e373ce7-7207-43a4-9133-c820253252f6"
}
```
- **Headers**:
```http
Content-Type: application/json
Idempotency-Key: unique-key-123
```
- **Expected Response**: Get `201 Created` response with transaction details.
```json
{
"message": "Transaction created successfully",
"error": null,
"data": {
"id": "8c825416-f74d-4a9d-aea6-9b5c82c5d22b",
"type": "payment",
"amount": "12000.00",
"status": "pending",
"consumerId": "2e373ce7-7207-43a4-9133-c820253252f6",
"createdAt": "2025-07-08T19:03:12.741Z",
"updatedAt": "2025-07-08T19:03:12.741Z"
},
"path": "/api/transactions",
"timestamp": "2025-07-08T19:03:12.754Z"
}
```
#### Scenario 2: Retry the Same Payment Request
- **Method**: `POST`
- **Endpoint**: `/api/transactions`
- **Request Body**:
```json
{
"type": "payment",
"amount": 12000.00,
"consumerId": "2e373ce7-7207-43a4-9133-c820253252f6"
}
```
- **Headers**:
```http
Content-Type: application/json
Idempotency-Key: unique-key-123
```
- **Expected Response**: Get `200 OK` response with the same transaction details, indicating the request was idempotent and already processed.
```json
{
"message": "Transaction already processed",
"error": null,
"data": {
"id": "8c825416-f74d-4a9d-aea6-9b5c82c5d22b",
"type": "payment",
"amount": "12000.00",
"status": "pending",
"consumerId": "2e373ce7-7207-43a4-9133-c820253252f6",
"createdAt": "2025-07-08T19:03:12.741Z",
"updatedAt": "2025-07-08T19:03:12.741Z"
},
"path": "/api/transactions",
"timestamp": "2025-07-08T19:04:40.975Z"
}
```
#### Scenario 3: Create a Payment with a Different Body but Same Idempotency Key
- **Method**: `POST`
- **Endpoint**: `/api/transactions`
- **Request Body**:
```json
{
"type": "payment",
"amount": 15000.00,
"consumerId": "2e373ce7-7207-43a4-9133-c820253252f6"
}
```
- **Headers**:
```http
Content-Type: application/json
Idempotency-Key: unique-key-123
```
- **Expected Response**: Get `409 Conflict` response indicating idempotency key conflict.
```json
{
"message": "Idempotency key conflict",
"error": "A transaction with this idempotency key already exists with a different request body.",
"data": null,
"path": "/api/transactions",
"timestamp": "2025-07-08T19:07:48.718Z"
}
```
#### Scenario 4: Create a Payment with a Different Idempotency Key
- **Method**: `POST`
- **Endpoint**: `/api/transactions`
- **Request Body**:
```json
{
"type": "payment",
"amount": 12000.00,
"consumerId": "2e373ce7-7207-43a4-9133-c820253252f6"
}
```
- **Headers**:
```http
Content-Type: application/json
Idempotency-Key: unique-key-456
```
- **Expected Response**: Get `201 Created` response with new transaction details, indicating a new request was processed successfully.
```json
{
"message": "Transaction created successfully",
"error": null,
"data": {
"id": "46f704f5-cfd6-43b8-8a3f-563f0a97ccea",
"type": "payment",
"amount": "12000.00",
"status": "pending",
"consumerId": "2e373ce7-7207-43a4-9133-c820253252f6",
"createdAt": "2025-07-08T19:05:23.029Z",
"updatedAt": "2025-07-08T19:05:23.029Z"
},
"path": "/api/transactions",
"timestamp": "2025-07-08T19:05:23.048Z"
}
```
#### Scenario 5: Create a Payment with No Idempotency Key
- **Method**: `POST`
- **Endpoint**: `/api/transactions`
- **Request Body**:
```json
{
"type": "payment",
"amount": 12000.00,
"consumerId": "2e373ce7-7207-43a4-9133-c820253252f6"
}
```
- **Headers**:
```http
Content-Type: application/json
```
- **Expected Response**: Get `400 Bad Request` response indicating the idempotency key is required.
```json
{
"message": "Invalid idempotency key",
"error": "Idempotency key is required and must be a non-empty string",
"data": null,
"path": "/api/transactions",
"timestamp": "2025-07-08T19:10:17.104Z"
}
```
#### Scenario 6: Create a Payment with Invalid Idempotency Key
- **Method**: `POST`
- **Endpoint**: `/api/transactions`
- **Request Body**:
```json
{
"type": "payment",
"amount": 12000.00,
"consumerId": "2e373ce7-7207-43a4-9133-c820253252f6"
}
```
- **Headers**:
```http
Content-Type: application/json
Idempotency-Key: ""
```
- **Expected Response**: Get `400 Bad Request` response indicating the idempotency key is invalid.
```json
{
"message": "Invalid idempotency key",
"error": "Idempotency key is required and must be a non-empty string",
"data": null,
"path": "/api/transactions",
"timestamp": "2025-07-08T19:11:09.380Z"
}
```
#### Scenario 7: Create a Payment with Expired Idempotency Key (after TTL)
- **Method**: `POST`
- **Endpoint**: `/api/transactions`
- **Request Body**:
```json
{
"type": "payment",
"amount": 12000.00,
"consumerId": "2e373ce7-7207-43a4-9133-c820253252f6"
}
```
- **Headers**:
```http
Content-Type: application/json
Idempotency-Key: "unique-key-123"
```
- **Expected Response**: Get `419 Expired` response indicating the idempotency key has expired.
```json
{
"message": "Idempotency key expired",
"error": "The idempotency key has expired and cannot be used for this transaction.",
"data": null,
"path": "/api/transactions",
"timestamp": "2025-07-08T19:18:51.810Z"
}
```
### π Fetch All Transactions
#### Scenario 1: Fetch All Transactions
- **Method**: `GET`
- **Endpoint**: `/api/transactions`
- **Expected Response**: Get `200 OK` response with a list of all transactions.
```json
{
"message": "Transactions fetched successfully",
"error": null,
"data": [
{
"id": "39212e91-b52f-4eb0-b15c-0bec7d46e818",
"type": "payment",
"amount": "12000.00",
"status": "pending",
"consumerId": "2e373ce7-7207-43a4-9133-c820253252f6",
"createdAt": "2025-07-08T19:20:25.730Z",
"updatedAt": "2025-07-08T19:20:25.730Z"
}
],
"path": "/api/transactions?page=1&limit=10&sortBy=createdAt&sortOrder=desc",
"timestamp": "2025-07-08T19:20:30.907Z"
}
```
---
## π API Documentation
The API is documented using **Swagger (OpenAPI `3.0`)**. You can explore and test API endpoints directly from the browser using Swagger UI at:
```
http://localhost:4000/api-docs
```
This provides an interactive interface to explore the API endpoints, request/response formats, and available operations.
OpenAPI Spec can be found in [`swagger.yaml`](./swagger.yaml) file.