Fastify

## Factory The Fastify module exports a factory function that is used to create new Fastify server instances. This factory function accepts an options object which is used to customize the resulting instance. This document describes the properties available in that options object. - [Factory](#factory) - [`http`](#http) - [`http2`](#http2) - [`https`](#https) - [`connectionTimeout`](#connectiontimeout) - [`keepAliveTimeout`](#keepalivetimeout) - [`forceCloseConnections`](#forcecloseconnections) - [`maxRequestsPerSocket`](#maxrequestspersocket) - [`requestTimeout`](#requesttimeout) - [`ignoreTrailingSlash`](#ignoretrailingslash) - [`ignoreDuplicateSlashes`](#ignoreduplicateslashes) - [`maxParamLength`](#maxparamlength) - [`bodyLimit`](#bodylimit) - [`onProtoPoisoning`](#onprotopoisoning) - [`onConstructorPoisoning`](#onconstructorpoisoning) - [`logger`](#logger) - [`disableRequestLogging`](#disablerequestlogging) - [`serverFactory`](#serverfactory) - [`jsonShorthand`](#jsonshorthand) - [`caseSensitive`](#casesensitive) - [`allowUnsafeRegex`](#allowunsaferegex) - [`requestIdHeader`](#requestidheader) - [`requestIdLogLabel`](#requestidloglabel) - [`genReqId`](#genreqid) - [`trustProxy`](#trustproxy) - [`pluginTimeout`](#plugintimeout) - [`querystringParser`](#querystringparser) - [`exposeHeadRoutes`](#exposeheadroutes) - [`constraints`](#constraints) - [`return503OnClosing`](#return503onclosing) - [`ajv`](#ajv) - [`serializerOpts`](#serializeropts) - [`http2SessionTimeout`](#http2sessiontimeout) - [`frameworkErrors`](#frameworkerrors) - [`clientErrorHandler`](#clienterrorhandler) - [`rewriteUrl`](#rewriteurl) - [Instance](#instance) - [Server Methods](#server-methods) - [server](#server) - [after](#after) - [ready](#ready) - [listen](#listen) - [addresses](#addresses) - [getDefaultRoute](#getdefaultroute) - [setDefaultRoute](#setdefaultroute) - [routing](#routing) - [route](#route) - [hasRoute](#hasRoute) - [close](#close) - [decorate*](#decorate) - [register](#register) - [addHook](#addhook) - [prefix](#prefix) - [pluginName](#pluginname) - [hasPlugin](#hasplugin) - [log](#log) - [version](#version) - [inject](#inject) - [addSchema](#addschema) - [getSchemas](#getschemas) - [getSchema](#getschema) - [setReplySerializer](#setreplyserializer) - [setValidatorCompiler](#setvalidatorcompiler) - [setSchemaErrorFormatter](#setschemaerrorformatter) - [setSerializerCompiler](#setserializercompiler) - [validatorCompiler](#validatorcompiler) - [serializerCompiler](#serializercompiler) - [schemaErrorFormatter](#schemaerrorformatter) - [schemaController](#schemacontroller) - [setNotFoundHandler](#setnotfoundhandler) - [setErrorHandler](#seterrorhandler) - [addConstraintStrategy](#addconstraintstrategy) - [hasConstraintStrategy](#hasconstraintstrategy) - [printRoutes](#printroutes) - [printPlugins](#printplugins) - [addContentTypeParser](#addcontenttypeparser) - [hasContentTypeParser](#hascontenttypeparser) - [removeContentTypeParser](#removecontenttypeparser) - [removeAllContentTypeParsers](#removeallcontenttypeparsers) - [getDefaultJsonParser](#getdefaultjsonparser) - [defaultTextParser](#defaulttextparser) - [errorHandler](#errorhandler) - [initialConfig](#initialconfig) ### `http` An object used to configure the server's listening socket. The options are the same as the Node.js core [`createServer` method](https://nodejs.org/dist/latest-v14.x/docs/api/http.html#http_http_createserver_options_requestlistener). This option is ignored if options [`http2`](#factory-http2) or [`https`](#factory-https) are set. + Default: `null` ### `http2` If `true` Node.js core's [HTTP/2](https://nodejs.org/dist/latest-v14.x/docs/api/http2.html) module is used for binding the socket. + Default: `false` ### `https` An object used to configure the server's listening socket for TLS. The options are the same as the Node.js core [`createServer` method](https://nodejs.org/dist/latest-v14.x/docs/api/https.html#https_https_createserver_options_requestlistener). When this property is `null`, the socket will not be configured for TLS. This option also applies when the [`http2`](#factory-http2) option is set. + Default: `null` ### `connectionTimeout` Defines the server timeout in milliseconds. See documentation for [`server.timeout` property](https://nodejs.org/api/http.html#http_server_timeout) to understand the effect of this option. When `serverFactory` option is specified, this option is ignored. + Default: `0` (no timeout) ### `keepAliveTimeout` Defines the server keep-alive timeout in milliseconds. See documentation for [`server.keepAliveTimeout` property](https://nodejs.org/api/http.html#http_server_keepalivetimeout) to understand the effect of this option. This option only applies when HTTP/1 is in use. Also, when `serverFactory` option is specified, this option is ignored. + Default: `72000` (72 seconds) ### `forceCloseConnections` When set to `true`, upon [`close`](#close) the server will iterate the current persistent connections and [destroy their sockets](https://nodejs.org/dist/latest-v16.x/docs/api/net.html#socketdestroyerror). > Important: connections are not inspected to determine if requests have been > completed. Fastify will prefer the HTTP server's [`closeAllConnections`](https://nodejs.org/dist/latest-v18.x/docs/api/http.html#servercloseallconnections) method if supported, otherwise it will use internal connection tracking. When set to `"idle"`, upon [`close`](#close) the server will iterate the current persistent connections which are not sending a request or waiting for a response and destroy their sockets. The valueΒ is supported only if the HTTP server supports the [`closeIdleConnections`](https://nodejs.org/dist/latest-v18.x/docs/api/http.html#servercloseidleconnections) method, otherwise attempting to set it will throw an exception. + Default: `"idle"` if the HTTP server allows it, `false`Β otherwise ### `maxRequestsPerSocket` Defines the maximum number of requests socket can handle before closing keep alive connection. See documentation for [`server.maxRequestsPerSocket` property](https://nodejs.org/dist/latest/docs/api/http.html#http_server_maxrequestspersocket) to understand the effect of this option. This option only applies when HTTP/1.1 is in use. Also, when `serverFactory` option is specified, this option is ignored. > At the time of this writing, only node version greater or equal to 16.10.0 > support this option. Check the Node.js documentation for availability in the > version you are running. + Default: `0` (no limit) ### `requestTimeout` Defines the maximum number of milliseconds for receiving the entire request from the client. [`server.requestTimeout` property](https://nodejs.org/dist/latest/docs/api/http.html#http_server_requesttimeout) to understand the effect of this option. Also, when `serverFactory` option is specified, this option is ignored. It must be set to a non-zero value (e.g. 120 seconds) to protect against potential Denial-of-Service attacks in case the server is deployed without a reverse proxy in front. > At the time of this writing, only node version greater or equal to 14.11.0 > support this option. Check the Node.js documentation for availability in the > version you are running. + Default: `0` (no limit) ### `ignoreTrailingSlash` Fastify uses [find-my-way](https://github.com/delvedor/find-my-way) to handle routing. By default, Fastify is set to take into account the trailing slashes. Paths like `/foo` and `/foo/` will be treated as different paths. If you want to change this, set this flag to `true`. That way, both `/foo` and `/foo/` will point to the same route. This option applies to *all* route registrations for the resulting server instance. + Default: `false` ```js const fastify = require('fastify')({ ignoreTrailingSlash: true }) // registers both "/foo" and "/foo/" fastify.get('/foo/', function (req, reply) { reply.send('foo') }) // registers both "/bar" and "/bar/" fastify.get('/bar', function (req, reply) { reply.send('bar') }) ``` ### `ignoreDuplicateSlashes` Fastify uses [find-my-way](https://github.com/delvedor/find-my-way) to handle routing. You can use `ignoreDuplicateSlashes` option to remove duplicate slashes from the path. It removes duplicate slashes in the route path and in the request URL. This option applies to *all* route registrations for the resulting server instance. Note that when `ignoreTrailingSlash` and `ignoreDuplicateSlashes` are both set to true, Fastify will remove duplicate slashes, and then trailing slashes, meaning //a//b//c// will be converted to /a/b/c. + Default: `false` ```js const fastify = require('fastify')({ ignoreDuplicateSlashes: true }) // registers "/foo/bar/" fastify.get('///foo//bar//', function (req, reply) { reply.send('foo') }) ``` ### `maxParamLength` You can set a custom length for parameters in parametric (standard, regex, and multi) routes by using `maxParamLength` option; the default value is 100 characters. This can be useful especially if you have a regex-based route, protecting you against [DoS attacks](https://www.owasp.org/index.php/Regular_expression_Denial_of_Service_-_ReDoS). *If the maximum length limit is reached, the not found route will be invoked.* ### `bodyLimit` Defines the maximum payload, in bytes, the server is allowed to accept. + Default: `1048576` (1MiB) ### `onProtoPoisoning` Defines what action the framework must take when parsing a JSON object with `__proto__`. This functionality is provided by [secure-json-parse](https://github.com/fastify/secure-json-parse). See [Prototype Poisoning](../Guides/Prototype-Poisoning.md) for more details about prototype poisoning attacks. Possible values are `'error'`, `'remove'` and `'ignore'`. + Default: `'error'` ### `onConstructorPoisoning` Defines what action the framework must take when parsing a JSON object with `constructor`. This functionality is provided by [secure-json-parse](https://github.com/fastify/secure-json-parse). See [Prototype Poisoning](../Guides/Prototype-Poisoning.md) for more details about prototype poisoning attacks. Possible values are `'error'`, `'remove'` and `'ignore'`. + Default: `'error'` ### `logger` Fastify includes built-in logging via the [Pino](https://getpino.io/) logger. This property is used to configure the internal logger instance. The possible values this property may have are: + Default: `false`. The logger is disabled. All logging methods will point to a null logger [abstract-logging](https://npm.im/abstract-logging) instance. + `pinoInstance`: a previously instantiated instance of Pino. The internal logger will point to this instance. + `object`: a standard Pino [options object](https://github.com/pinojs/pino/blob/c77d8ec5ce/docs/API.md#constructor). This will be passed directly to the Pino constructor. If the following properties are not present on the object, they will be added accordingly: * `level`: the minimum logging level. If not set, it will be set to `'info'`. * `serializers`: a hash of serialization functions. By default, serializers are added for `req` (incoming request objects), `res` (outgoing response objects), and `err` (standard `Error` objects). When a log method receives an object with any of these properties then the respective serializer will be used for that property. For example: ```js fastify.get('/foo', function (req, res) { req.log.info({req}) // log the serialized request object res.send('foo') }) ``` Any user-supplied serializer will override the default serializer of the corresponding property. + `loggerInstance`: a custom logger instance. The logger must conform to the Pino interface by having the following methods: `info`, `error`, `debug`, `fatal`, `warn`, `trace`, `child`. For example: ```js const pino = require('pino')(); const customLogger = { info: function (o, ...n) {}, warn: function (o, ...n) {}, error: function (o, ...n) {}, fatal: function (o, ...n) {}, trace: function (o, ...n) {}, debug: function (o, ...n) {}, child: function() { const child = Object.create(this); child.pino = pino.child(...arguments); return child; }, }; const fastify = require('fastify')({logger: customLogger}); ``` ### `disableRequestLogging` By default, when logging is enabled, Fastify will issue an `info` level log message when a request is received and when the response for that request has been sent. By setting this option to `true`, these log messages will be disabled. This allows for more flexible request start and end logging by attaching custom `onRequest` and `onResponse` hooks. + Default: `false` ```js // Examples of hooks to replicate the disabled functionality. fastify.addHook('onRequest', (req, reply, done) => { req.log.info({ url: req.raw.url, id: req.id }, 'received request') done() }) fastify.addHook('onResponse', (req, reply, done) => { req.log.info({ url: req.raw.originalUrl, statusCode: reply.raw.statusCode }, 'request completed') done() }) ``` Please note that this setting will also disable an error log written by the default `onResponse` hook on reply callback errors. Other log messages emitted by Fastify will stay enabled, like deprecation warnings and messages emitted when requests are received while the server is closing. ### `serverFactory` You can pass a custom HTTP server to Fastify by using the `serverFactory` option. `serverFactory` is a function that takes a `handler` parameter, which takes the `request` and `response` objects as parameters, and an options object, which is the same you have passed to Fastify. ```js const serverFactory = (handler, opts) => { const server = http.createServer((req, res) => { handler(req, res) }) return server } const fastify = Fastify({ serverFactory }) fastify.get('/', (req, reply) => { reply.send({ hello: 'world' }) }) fastify.listen({ port: 3000 }) ``` Internally Fastify uses the API of Node core HTTP server, so if you are using a custom server you must be sure to have the same API exposed. If not, you can enhance the server instance inside the `serverFactory` function before the `return` statement. ### `jsonShorthand` + Default: `true` Internally, and by default, Fastify will automatically infer the root properties of JSON Schemas if it does not find valid root properties according to the JSON Schema spec. If you wish to implement your own schema validation compiler, for example: to parse schemas as JTD instead of JSON Schema, then you can explicitly set this option to `false` to make sure the schemas you receive are unmodified and are not being treated internally as JSON Schema. ```js const AjvJTD = require('ajv/dist/jtd'/* only valid for AJV v7+ */) const ajv = new AjvJTD({ // This would let you throw at start for invalid JTD schema objects allErrors: process.env.NODE_ENV === 'development' }) const fastify = Fastify({ jsonShorthand: false }) fastify.setValidatorCompiler(({ schema }) => { return ajv.compile(schema) }) fastify.post('/', { schema: { body: { properties: { foo: { type: 'uint8' } } } }, handler (req, reply) { reply.send({ ok: 1 }) } }) ``` **Note: Fastify does not currently throw on invalid schemas, so if you turn this off in an existing project, you need to be careful that none of your existing schemas become invalid as a result, since they will be treated as a catch-all.** ### `caseSensitive` By default, value equal to `true`, routes are registered as case sensitive. That is, `/foo` is not equivalent to `/Foo`. When set to `false`, routes are registered in a fashion such that `/foo` is equivalent to `/Foo` which is equivalent to `/FOO`. By setting `caseSensitive` to `false`, all paths will be matched as lowercase, but the route parameters or wildcards will maintain their original letter casing. ```js fastify.get('/user/:username', (request, reply) => { // Given the URL: /USER/NodeJS console.log(request.params.username) // -> 'NodeJS' }) ``` Please note that setting this option to `false` goes against [RFC3986](https://tools.ietf.org/html/rfc3986#section-6.2.2.1). Also note, this setting will not affect query strings. If you want to change the way query strings are handled take a look at [`querystringParser`](#querystringparser). ### `allowUnsafeRegex` The allowUnsafeRegex setting is false by default, so routes only allow safe regular expressions. To use unsafe expressions, set allowUnsafeRegex to true. ```js fastify.get('/user/:id(^([0-9]+){4}$)', (request, reply) => { // Throws an error without allowUnsafeRegex = true }) ``` Under the hood: [FindMyWay](https://github.com/delvedor/find-my-way) More info about safe regexp: [Safe-regex2](https://www.npmjs.com/package/safe-regex2) ### `requestIdHeader` The header name used to set the request-id. See [the request-id](./Logging.md#logging-request-id) section. Setting `requestIdHeader` to `false` will always use [genReqId](#genreqid) + Default: `'request-id'` ```js const fastify = require('fastify')({ requestIdHeader: 'x-custom-id', // -> use 'X-Custom-Id' header if available //requestIdHeader: false, // -> always use genReqId }) ``` ### `requestIdLogLabel` Defines the label used for the request identifier when logging the request. + Default: `'reqId'` ### `genReqId` Function for generating the request-id. It will receive the incoming request as a parameter. This function is expected to be error-free. + Default: `value of 'request-id' header if provided or monotonically increasing integers` Especially in distributed systems, you may want to override the default ID generation behavior as shown below. For generating `UUID`s you may want to check out [hyperid](https://github.com/mcollina/hyperid) ```js let i = 0 const fastify = require('fastify')({ genReqId: function (req) { return i++ } }) ``` **Note: genReqId will _not_ be called if the header set in [requestIdHeader](#requestidheader) is available (defaults to 'request-id').** ### `trustProxy` By enabling the `trustProxy` option, Fastify will know that it is sitting behind a proxy and that the `X-Forwarded-*` header fields may be trusted, which otherwise may be easily spoofed. ```js const fastify = Fastify({ trustProxy: true }) ``` + Default: `false` + `true/false`: Trust all proxies (`true`) or do not trust any proxies (`false`). + `string`: Trust only given IP/CIDR (e.g. `'127.0.0.1'`). May be a list of comma separated values (e.g. `'127.0.0.1,192.168.1.1/24'`). + `Array`: Trust only given IP/CIDR list (e.g. `['127.0.0.1']`). + `number`: Trust the nth hop from the front-facing proxy server as the client. + `Function`: Custom trust function that takes `address` as first arg ```js function myTrustFn(address, hop) { return address === '1.2.3.4' || hop === 1 } ``` For more examples, refer to the [`proxy-addr`](https://www.npmjs.com/package/proxy-addr) package. You may access the `ip`, `ips`, `hostname` and `protocol` values on the [`request`](./Request.md) object. ```js fastify.get('/', (request, reply) => { console.log(request.ip) console.log(request.ips) console.log(request.hostname) console.log(request.protocol) }) ``` **Note: if a request contains multiple x-forwarded-host or x-forwarded-proto headers, it is only the last one that is used to derive request.hostname and request.protocol** ### `pluginTimeout` The maximum amount of time in *milliseconds* in which a plugin can load. If not, [`ready`](#ready) will complete with an `Error` with code `'ERR_AVVIO_PLUGIN_TIMEOUT'`. When set to `0`, disables this check. This controls [avvio](https://www.npmjs.com/package/avvio) 's `timeout` parameter. + Default: `10000` ### `querystringParser` The default query string parser that Fastify uses is the Node.js's core `querystring` module. You can change this default setting by passing the option `querystringParser` and use a custom one, such as [`qs`](https://www.npmjs.com/package/qs). ```js const qs = require('qs') const fastify = require('fastify')({ querystringParser: str => qs.parse(str) }) ``` You can also use Fastify's default parser but change some handling behaviour, like the example below for case insensitive keys and values: ```js const querystring = require('querystring') const fastify = require('fastify')({ querystringParser: str => querystring.parse(str.toLowerCase()) }) ``` Note, if you only want the keys (and not the values) to be case insensitive we recommend using a custom parser to convert only the keys to lowercase. ### `exposeHeadRoutes` Automatically creates a sibling `HEAD` route for each `GET` route defined. If you want a custom `HEAD` handler without disabling this option, make sure to define it before the `GET` route. + Default: `true` ### `constraints` Fastify's built in route constraints are provided by `find-my-way`, which allow constraining routes by `version` or `host`. You are able to add new constraint strategies, or override the built in strategies by providing a `constraints` object with strategies for `find-my-way`. You can find more information on constraint strategies in the [find-my-way](https://github.com/delvedor/find-my-way) documentation. ```js const customVersionStrategy = { storage: function () { const versions = {} return { get: (version) => { return versions[version] || null }, set: (version, store) => { versions[version] = store } } }, deriveVersion: (req, ctx) => { return req.headers['accept'] } } const fastify = require('fastify')({ constraints: { version: customVersionStrategy } }) ``` ### `return503OnClosing` Returns 503 after calling `close` server method. If `false`, the server routes the incoming request as usual. + Default: `true` ### `ajv` Configure the Ajv v8 instance used by Fastify without providing a custom one. The default configuration is explained in the [#schema-validator](./Validation-and-Serialization.md#schema-validator) section. ```js const fastify = require('fastify')({ ajv: { customOptions: { removeAdditional: 'all' // Refer to [ajv options](https://ajv.js.org/options.html#removeadditional) }, plugins: [ require('ajv-merge-patch'), [require('ajv-keywords'), 'instanceof'] // Usage: [plugin, pluginOptions] - Plugin with options // Usage: plugin - Plugin without options ] } }) ``` ### `serializerOpts` Customize the options of the default [`fast-json-stringify`](https://github.com/fastify/fast-json-stringify#options) instance that serialize the response's payload: ```js const fastify = require('fastify')({ serializerOpts: { rounding: 'ceil' } }) ``` ### `http2SessionTimeout` Set a default [timeout](https://nodejs.org/api/http2.html#http2_http2session_settimeout_msecs_callback) to every incoming HTTP/2 session. The session will be closed on the timeout. Default: `72000` ms. Note that this is needed to offer the graceful "close" experience when using HTTP/2. The low default has been chosen to mitigate denial of service attacks. When the server is behind a load balancer or can scale automatically this value can be increased to fit the use case. Node core defaults this to `0`. ` ### `frameworkErrors` + Default: `null` Fastify provides default error handlers for the most common use cases. It is possible to override one or more of those handlers with custom code using this option. *Note: Only `FST_ERR_BAD_URL` and `FST_ERR_ASYNC_CONSTRAINT` are implemented at the moment.* ```js const fastify = require('fastify')({ frameworkErrors: function (error, req, res) { if (error instanceof FST_ERR_BAD_URL) { res.code(400) return res.send("Provided url is not valid") } else if(error instanceof FST_ERR_ASYNC_CONSTRAINT) { res.code(400) return res.send("Provided header is not valid") } else { res.send(err) } } }) ``` ### `clientErrorHandler` Set a [clientErrorHandler](https://nodejs.org/api/http.html#http_event_clienterror) that listens to `error` events emitted by client connections and responds with a `400`. It is possible to override the default `clientErrorHandler` using this option. + Default: ```js function defaultClientErrorHandler (err, socket) { if (err.code === 'ECONNRESET') { return } const body = JSON.stringify({ error: http.STATUS_CODES['400'], message: 'Client Error', statusCode: 400 }) this.log.trace({ err }, 'client error') if (socket.writable) { socket.end([ 'HTTP/1.1 400 Bad Request', `Content-Length: ${body.length}`, `Content-Type: application/json\r\n\r\n${body}` ].join('\r\n')) } } ``` *Note: `clientErrorHandler` operates with raw socket. The handler is expected to return a properly formed HTTP response that includes a status line, HTTP headers and a message body. Before attempting to write the socket, the handler should check if the socket is still writable as it may have already been destroyed.* ```js const fastify = require('fastify')({ clientErrorHandler: function (err, socket) { const body = JSON.stringify({ error: { message: 'Client error', code: '400' } }) // `this` is bound to fastify instance this.log.trace({ err }, 'client error') // the handler is responsible for generating a valid HTTP response socket.end([ 'HTTP/1.1 400 Bad Request', `Content-Length: ${body.length}`, `Content-Type: application/json\r\n\r\n${body}` ].join('\r\n')) } }) ``` ### `rewriteUrl` Set a sync callback function that must return a string that allows rewriting URLs. > Rewriting a URL will modify the `url` property of the `req` object ```js function rewriteUrl (req) { // req is the Node.js HTTP request return req.url === '/hi' ? '/hello' : req.url; } ``` Note that `rewriteUrl` is called _before_ routing, it is not encapsulated and it is an instance-wide configuration. ## Instance ### Server Methods #### server `fastify.server`: The Node core [server](https://nodejs.org/api/http.html#http_class_http_server) object as returned by the [**`Fastify factory function`**](#factory). #### after Invoked when the current plugin and all the plugins that have been registered within it have finished loading. It is always executed before the method `fastify.ready`. ```js fastify .register((instance, opts, done) => { console.log('Current plugin') done() }) .after(err => { console.log('After current plugin') }) .register((instance, opts, done) => { console.log('Next plugin') done() }) .ready(err => { console.log('Everything has been loaded') }) ``` In case `after()` is called without a function, it returns a `Promise`: ```js fastify.register(async (instance, opts) => { console.log('Current plugin') }) await fastify.after() console.log('After current plugin') fastify.register(async (instance, opts) => { console.log('Next plugin') }) await fastify.ready() console.log('Everything has been loaded') ``` #### ready Function called when all the plugins have been loaded. It takes an error parameter if something went wrong. ```js fastify.ready(err => { if (err) throw err }) ``` If it is called without any arguments, it will return a `Promise`: ```js fastify.ready().then(() => { console.log('successfully booted!') }, (err) => { console.log('an error happened', err) }) ``` #### listen Starts the server and internally waits for the `.ready()` event. The signature is `.listen([options][, callback])`. Both the `options` object and the `callback` parameters follow the [Node.js core](https://nodejs.org/api/net.html#serverlistenoptions-callback) parameter definitions. By default, the server will listen on the address(es) resolved by `localhost` when no specific host is provided. If listening on any available interface is desired, then specifying `0.0.0.0` for the address will listen on all IPv4 addresses. The following table details the possible values for `host` when targeting `localhost`, and what the result of those values for `host` will be. Host | IPv4 | IPv6 --------------|------|------- `::` | βœ…* | βœ… `::` + [`ipv6Only`](https://nodejs.org/api/net.html#serverlistenoptions-callback) | 🚫 | βœ… `0.0.0.0` | βœ… | 🚫 `localhost` | βœ… | βœ… `127.0.0.1` | βœ… | 🚫 `::1` | 🚫 | βœ… * Using `::` for the address will listen on all IPv6 addresses and, depending on OS, may also listen on [all IPv4 addresses](https://nodejs.org/api/net.html#serverlistenport-host-backlog-callback). Be careful when deciding to listen on all interfaces; it comes with inherent [security risks](https://web.archive.org/web/20170831174611/https://snyk.io/blog/mongodb-hack-and-secure-defaults/). The default is to listen on `port: 0` (which picks the first available open port) and `host: 'localhost'`: ```js fastify.listen((err, address) => { if (err) { fastify.log.error(err) process.exit(1) } }) ``` Specifying an address is also supported: ```js fastify.listen({ port: 3000, host: '127.0.0.1' }, (err, address) => { if (err) { fastify.log.error(err) process.exit(1) } }) ``` If no callback is provided a Promise is returned: ```js fastify.listen({ port: 3000 }) .then((address) => console.log(`server listening on ${address}`)) .catch(err => { console.log('Error starting server:', err) process.exit(1) }) ``` When deploying to a Docker, and potentially other, containers, it is advisable to listen on `0.0.0.0` because they do not default to exposing mapped ports to `localhost`: ```js fastify.listen({ port: 3000, host: '0.0.0.0' }, (err, address) => { if (err) { fastify.log.error(err) process.exit(1) } }) ``` If the `port` is omitted (or is set to zero), a random available port is automatically chosen (available via `fastify.server.address().port`). The default options of listen are: ```js fastify.listen({ port: 0, host: 'localhost', exclusive: false, readableAll: false, writableAll: false, ipv6Only: false }, (err) => {}) ``` #### addresses This method returns an array of addresses that the server is listening on. If you call it before `listen()` is called or after the `close()` function, it will return an empty array. ```js await fastify.listen({ port: 8080 }) const addresses = fastify.addresses() // [ // { port: 8080, family: 'IPv6', address: '::1' }, // { port: 8080, family: 'IPv4', address: '127.0.0.1' } // ] ``` Note that the array contains the `fastify.server.address()` too. #### getDefaultRoute **Notice**: this method is deprecated and should be removed in the next Fastify major version. The `defaultRoute` handler handles requests that do not match any URL specified by your Fastify application. This defaults to the 404 handler, but can be overridden with [setDefaultRoute](#setdefaultroute). Method to get the `defaultRoute` for the server: ```js const defaultRoute = fastify.getDefaultRoute() ``` #### setDefaultRoute **Notice**: this method is deprecated and should be removed in the next Fastify major version. Please, consider to use `setNotFoundHandler` or a wildcard matching route. The default 404 handler, or one set using `setNotFoundHandler`, will never trigger if the default route is overridden. This sets the handler for the Fastify application, not just the current instance context. Use [setNotFoundHandler](#setnotfoundhandler) if you want to customize 404 handling instead. This method sets the `defaultRoute` for the server. Note that, its purpose is to interact with the underlying raw requests. Unlike other Fastify handlers, the arguments received are of type [RawRequest](./TypeScript.md#rawrequest) and [RawReply](./TypeScript.md#rawreply) respectively. ```js const defaultRoute = function (req, res) { // req = RawRequest // res = RawReply res.end('hello world') } fastify.setDefaultRoute(defaultRoute) ``` #### routing Method to access the `lookup` method of the internal router and match the request to the appropriate handler: ```js fastify.routing(req, res) ``` #### route Method to add routes to the server, it also has shorthand functions, check [here](./Routes.md). #### hasRoute Method to check if a route is already registered to the internal router. It expects an object as payload. `url` and `method` are mandatory fields. It is possible to also specify `constraints`. The method returns true if the route is registered, and false if it is not registered. ```js const routeExists = fastify.hasRoute({ url: '/', method: 'GET', constraints: { version: '1.0.0' } // optional }) if (routeExists === false) { // add route } ``` #### close `fastify.close(callback)`: call this function to close the server instance and run the [`'onClose'`](./Hooks.md#on-close) hook. Calling `close` will also cause the server to respond to every new incoming request with a `503` error and destroy that request. See [`return503OnClosing` flags](#factory-return-503-on-closing) for changing this behavior. If it is called without any arguments, it will return a Promise: ```js fastify.close().then(() => { console.log('successfully closed!') }, (err) => { console.log('an error happened', err) }) ``` #### decorate* Function useful if you need to decorate the fastify instance, Reply or Request, check [here](./Decorators.md). #### register Fastify allows the user to extend its functionality with plugins. A plugin can be a set of routes, a server decorator, or whatever, check [here](./Plugins.md). #### addHook Function to add a specific hook in the lifecycle of Fastify, check [here](./Hooks.md). #### prefix The full path that will be prefixed to a route. Example: ```js fastify.register(function (instance, opts, done) { instance.get('/foo', function (request, reply) { // Will log "prefix: /v1" request.log.info('prefix: %s', instance.prefix) reply.send({ prefix: instance.prefix }) }) instance.register(function (instance, opts, done) { instance.get('/bar', function (request, reply) { // Will log "prefix: /v1/v2" request.log.info('prefix: %s', instance.prefix) reply.send({ prefix: instance.prefix }) }) done() }, { prefix: '/v2' }) done() }, { prefix: '/v1' }) ``` #### pluginName Name of the current plugin. The root plugin is called `'fastify'`. There are different ways to define a name (in order). 1. If you use [fastify-plugin](https://github.com/fastify/fastify-plugin) the metadata `name` is used. 2. If the exported plugin has the `Symbol.for('fastify.display-name')` property, then the value of that property is used. Example: `pluginFn[Symbol.for('fastify.display-name')] = "Custom Name"` 3. If you `module.exports` a plugin the filename is used. 4. If you use a regular [function declaration](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Guide/Functions#Defining_functions) the function name is used. *Fallback*: The first two lines of your plugin will represent the plugin name. Newlines are replaced by ` -- `. This will help to identify the root cause when you deal with many plugins. Important: If you have to deal with nested plugins, the name differs with the usage of the [fastify-plugin](https://github.com/fastify/fastify-plugin) because no new scope is created and therefore we have no place to attach contextual data. In that case, the plugin name will represent the boot order of all involved plugins in the format of `fastify -> plugin-A -> plugin-B`. #### hasPlugin Method to check if a specific plugin has been registered. Relies on the plugin metadata name. Returns `true` if the plugin is registered. Otherwise, returns `false`. ```js const fastify = require('fastify')() fastify.register(require('@fastify/cookie'), { secret: 'my-secret', parseOptions: {} }) fastify.ready(() => { fastify.hasPlugin('@fastify/cookie') // true }) ``` #### log The logger instance, check [here](./Logging.md). #### version Fastify version of the instance. Used for plugin support. See [Plugins](./Plugins.md#handle-the-scope) for information on how the version is used by plugins. #### inject Fake HTTP injection (for testing purposes) [here](../Guides/Testing.md#benefits-of-using-fastifyinject). #### addSchema `fastify.addSchema(schemaObj)`, adds a JSON schema to the Fastify instance. This allows you to reuse it everywhere in your application just by using the standard `$ref` keyword. To learn more, read the [Validation and Serialization](./Validation-and-Serialization.md) documentation. #### getSchemas `fastify.getSchemas()`, returns a hash of all schemas added via `.addSchema`. The keys of the hash are the `$id`s of the JSON Schema provided. #### getSchema `fastify.getSchema(id)`, return the JSON schema added with `.addSchema` and the matching `id`. It returns `undefined` if it is not found. #### setReplySerializer Set the reply serializer for all the routes. This will be used as default if a [Reply.serializer(func)](./Reply.md#serializerfunc) has not been set. The handler is fully encapsulated, so different plugins can set different error handlers. Note: the function parameter is called only for status `2xx`. Check out the [`setErrorHandler`](#seterrorhandler) for errors. ```js fastify.setReplySerializer(function (payload, statusCode){ // serialize the payload with a sync function return `my serialized ${statusCode} content: ${payload}` }) ``` #### setValidatorCompiler Set the schema validator compiler for all routes. See [#schema-validator](./Validation-and-Serialization.md#schema-validator). #### setSchemaErrorFormatter Set the schema error formatter for all routes. See [#error-handling](./Validation-and-Serialization.md#schemaerrorformatter). #### setSerializerCompiler Set the schema serializer compiler for all routes. See [#schema-serializer](./Validation-and-Serialization.md#schema-serializer). **Note:** [`setReplySerializer`](#set-reply-serializer) has priority if set! #### validatorCompiler This property can be used to get the schema validator. If not set, it will be `null` until the server starts, then it will be a function with the signature `function ({ schema, method, url, httpPart })` that returns the input `schema` compiled to a function for validating data. The input `schema` can access all the shared schemas added with [`.addSchema`](#add-schema) function. #### serializerCompiler This property can be used to get the schema serializer. If not set, it will be `null` until the server starts, then it will be a function with the signature `function ({ schema, method, url, httpPart })` that returns the input `schema` compiled to a function for validating data. The input `schema` can access all the shared schemas added with [`.addSchema`](#add-schema) function. #### schemaErrorFormatter This property can be used to set a function to format errors that happen while the `validationCompiler` fails to validate the schema. See [#error-handling](./Validation-and-Serialization.md#schemaerrorformatter). #### schemaController This property can be used to fully manage: - `bucket`: where the schemas of your application will be stored - `compilersFactory`: what module must compile the JSON schemas It can be useful when your schemas are stored in another data structure that is unknown to Fastify. See [issue #2446](https://github.com/fastify/fastify/issues/2446) for an example of what this property helps to resolve. Another use case is to tweak all the schemas processing. Doing so it is possible to use Ajv v8 JTD or Standalone feature. To use such as JTD or the Standalone mode, refers to the [`@fastify/ajv-compiler` documentation](https://github.com/fastify/ajv-compiler#usage). ```js const fastify = Fastify({ schemaController: { /** * This factory is called whenever `fastify.register()` is called. * It may receive as input the schemas of the parent context if some schemas have been added. * @param {object} parentSchemas these schemas will be returned by the * `getSchemas()` method function of the returned `bucket`. */ bucket: function factory (parentSchemas) { return { add (inputSchema) { // This function must store the schema added by the user. // This function is invoked when `fastify.addSchema()` is called. }, getSchema (schema$id) { // This function must return the raw schema requested by the `schema$id`. // This function is invoked when `fastify.getSchema(id)` is called. return aSchema }, getSchemas () { // This function must return all the schemas referenced by the routes schemas' $ref // It must return a JSON where the property is the schema `$id` and the value is the raw JSON Schema. const allTheSchemaStored = { 'schema$id1': schema1, 'schema$id2': schema2 } return allTheSchemaStored } } }, /** * The compilers factory let you fully control the validator and serializer * in the Fastify's lifecycle, providing the encapsulation to your compilers. */ compilersFactory: { /** * This factory is called whenever a new validator instance is needed. * It may be called whenever `fastify.register()` is called only if new schemas have been added to the * encapsulation context. * It may receive as input the schemas of the parent context if some schemas have been added. * @param {object} externalSchemas these schemas will be returned by the * `bucket.getSchemas()`. Needed to resolve the external references $ref. * @param {object} ajvServerOption the server `ajv` options to build your compilers accordingly */ buildValidator: function factory (externalSchemas, ajvServerOption) { // This factory function must return a schema validator compiler. // See [#schema-validator](./Validation-and-Serialization.md#schema-validator) for details. const yourAjvInstance = new Ajv(ajvServerOption.customOptions) return function validatorCompiler ({ schema, method, url, httpPart }) { return yourAjvInstance.compile(schema) } }, /** * This factory is called whenever a new serializer instance is needed. * It may be called whenever `fastify.register()` is called only if new schemas have been added to the * encapsulation context. * It may receive as input the schemas of the parent context if some schemas have been added. * @param {object} externalSchemas these schemas will be returned by the * `bucket.getSchemas()`. Needed to resolve the external references $ref. * @param {object} serializerOptsServerOption the server `serializerOpts` * options to build your compilers accordingly */ buildSerializer: function factory (externalSchemas, serializerOptsServerOption) { // This factory function must return a schema serializer compiler. // See [#schema-serializer](./Validation-and-Serialization.md#schema-serializer) for details. return function serializerCompiler ({ schema, method, url, httpStatus, contentType }) { return data => JSON.stringify(data) } } } } }); ``` #### setNotFoundHandler `fastify.setNotFoundHandler(handler(request, reply))`: set the 404 handler. This call is encapsulated by prefix, so different plugins can set different not found handlers if a different [`prefix` option](./Plugins.md#route-prefixing-option) is passed to `fastify.register()`. The handler is treated as a regular route handler so requests will go through the full [Fastify lifecycle](./Lifecycle.md#lifecycle). *async-await* is supported as well. You can also register [`preValidation`](./Hooks.md#route-hooks) and [`preHandler`](./Hooks.md#route-hooks) hooks for the 404 handler. _Note: The `preValidation` hook registered using this method will run for a route that Fastify does not recognize and **not** when a route handler manually calls [`reply.callNotFound`](./Reply.md#call-not-found)_. In which case, only preHandler will be run. ```js fastify.setNotFoundHandler({ preValidation: (req, reply, done) => { // your code done() }, preHandler: (req, reply, done) => { // your code done() } }, function (request, reply) { // Default not found handler with preValidation and preHandler hooks }) fastify.register(function (instance, options, done) { instance.setNotFoundHandler(function (request, reply) { // Handle not found request without preValidation and preHandler hooks // to URLs that begin with '/v1' }) done() }, { prefix: '/v1' }) ``` Fastify calls setNotFoundHandler to add a default 404 handler at startup before plugins are registered. If you would like to augment the behavior of the default 404 handler, for example with plugins, you can call setNotFoundHandler with no arguments `fastify.setNotFoundHandler()` within the context of these registered plugins. > Note: Some config properties from the request object will be > undefined inside the custom not found handler. E.g: > `request.routerPath`, `routerMethod` and `context.config`. > This method design goal is to allow calling the common not found route. > To return a per-route customized 404 response, you can do it in > the response itself. #### setErrorHandler `fastify.setErrorHandler(handler(error, request, reply))`: Set a function that will be called whenever an error happens. The handler is bound to the Fastify instance and is fully encapsulated, so different plugins can set different error handlers. *async-await* is supported as well. *Note: If the error `statusCode` is less than 400, Fastify will automatically set it at 500 before calling the error handler.* *Also note* that `setErrorHandler` will ***not*** catch any error inside an `onResponse` hook because the response has already been sent to the client. ```js fastify.setErrorHandler(function (error, request, reply) { // Log error this.log.error(error) // Send error response reply.status(409).send({ ok: false }) }) ``` Fastify is provided with a default function that is called if no error handler is set. It can be accessed using `fastify.errorHandler` and it logs the error with respect to its `statusCode`. ```js var statusCode = error.statusCode if (statusCode >= 500) { log.error(error) } else if (statusCode >= 400) { log.info(error) } else { log.error(error) } ``` #### addConstraintStrategy Function to add a custom constraint strategy. To register a new type of constraint, you must add a new constraint strategy that knows how to match values to handlers, and that knows how to get the constraint value from a request. Add a custom constraint strategy using the `fastify.addConstraintStrategy` method: ```js const customResponseTypeStrategy = { // strategy name for referencing in the route handler `constraints` options name: 'accept', // storage factory for storing routes in the find-my-way route tree storage: function () { let handlers = {} return { get: (type) => { return handlers[type] || null }, set: (type, store) => { handlers[type] = store } } }, // function to get the value of the constraint from each incoming request deriveConstraint: (req, ctx) => { return req.headers['accept'] }, // optional flag marking if handlers without constraints can match requests that have a value for this constraint mustMatchWhenDerived: true } const router = Fastify(); router.addConstraintStrategy(customResponseTypeStrategy); ``` #### hasConstraintStrategy The `fastify.hasConstraintStrategy(strategyName)` checks if there already exists a custom constraint strategy with the same name. #### printRoutes `fastify.printRoutes()`: Fastify router builds a tree of routes for each HTTP method. If you call the prettyPrint without specifying an HTTP method, it will merge all the trees into one and print it. The merged tree doesn't represent the internal router structure. **Don't use it for debugging.** *Remember to call it inside or after a `ready` call.* ```js fastify.get('/test', () => {}) fastify.get('/test/hello', () => {}) fastify.get('/testing', () => {}) fastify.get('/testing/:param', () => {}) fastify.put('/update', () => {}) fastify.ready(() => { console.log(fastify.printRoutes()) // └── / // β”œβ”€β”€ test (GET) // β”‚ β”œβ”€β”€ /hello (GET) // β”‚ └── ing (GET) // β”‚ └── / // β”‚ └── :param (GET) // └── update (PUT) }) ``` If you want to print the internal router tree, you should specify the `method` param. Printed tree will represent the internal router structure. **You can use it for debugging.** ```js console.log(fastify.printRoutes({ method: 'GET' })) // └── / // └── test (GET) // β”œβ”€β”€ /hello (GET) // └── ing (GET) // └── / // └── :param (GET) console.log(fastify.printRoutes({ method: 'PUT' })) // └── / // └── update (PUT) ``` `fastify.printRoutes({ commonPrefix: false })` will print compressed trees. This might useful when you have a large number of routes with common prefixes. It doesn't represent the internal router structure. **Don't use it for debugging.** ```js console.log(fastify.printRoutes({ commonPrefix: false })) // β”œβ”€β”€ /test (GET) // β”‚ β”œβ”€β”€ /hello (GET) // β”‚ └── ing (GET) // β”‚ └── /:param (GET) // └── /update (PUT) ``` `fastify.printRoutes({ includeMeta: (true | []) })` will display properties from the `route.store` object for each displayed route. This can be an `array` of keys (e.g. `['onRequest', Symbol('key')]`), or `true` to display all properties. A shorthand option, `fastify.printRoutes({ includeHooks: true })` will include all [hooks](./Hooks.md). ```js fastify.get('/test', () => {}) fastify.get('/test/hello', () => {}) const onTimeout = () => {} fastify.addHook('onRequest', () => {}) fastify.addHook('onTimeout', onTimeout) console.log(fastify.printRoutes({ includeHooks: true, includeMeta: ['errorHandler'] })) // └── / // └── test (GET) // β€’ (onTimeout) ["onTimeout()"] // β€’ (onRequest) ["anonymous()"] // β€’ (errorHandler) "defaultErrorHandler()" // test (HEAD) // β€’ (onTimeout) ["onTimeout()"] // β€’ (onRequest) ["anonymous()"] // β€’ (onSend) ["headRouteOnSendHandler()"] // β€’ (errorHandler) "defaultErrorHandler()" // └── /hello (GET) // β€’ (onTimeout) ["onTimeout()"] // β€’ (onRequest) ["anonymous()"] // β€’ (errorHandler) "defaultErrorHandler()" // /hello (HEAD) // β€’ (onTimeout) ["onTimeout()"] // β€’ (onRequest) ["anonymous()"] // β€’ (onSend) ["headRouteOnSendHandler()"] // β€’ (errorHandler) "defaultErrorHandler()" console.log(fastify.printRoutes({ includeHooks: true })) // └── / // └── test (GET) // β€’ (onTimeout) ["onTimeout()"] // β€’ (onRequest) ["anonymous()"] // test (HEAD) // β€’ (onTimeout) ["onTimeout()"] // β€’ (onRequest) ["anonymous()"] // β€’ (onSend) ["headRouteOnSendHandler()"] // └── /hello (GET) // β€’ (onTimeout) ["onTimeout()"] // β€’ (onRequest) ["anonymous()"] // /hello (HEAD) // β€’ (onTimeout) ["onTimeout()"] // β€’ (onRequest) ["anonymous()"] // β€’ (onSend) ["headRouteOnSendHandler()"] ``` #### printPlugins `fastify.printPlugins()`: Prints the representation of the internal plugin tree used by the avvio, useful for debugging require order issues. *Remember to call it inside or after a `ready` call.* ```js fastify.register(async function foo (instance) { instance.register(async function bar () {}) }) fastify.register(async function baz () {}) fastify.ready(() => { console.error(fastify.printPlugins()) // will output the following to stderr: // └── root // β”œβ”€β”€ foo // β”‚ └── bar // └── baz }) ``` #### addContentTypeParser `fastify.addContentTypeParser(content-type, options, parser)` is used to pass custom parser for a given content type. Useful for adding parsers for custom content types, e.g. `text/json, application/vnd.oasis.opendocument.text`. `content-type` can be a string, string array or RegExp. ```js // The two arguments passed to getDefaultJsonParser are for ProtoType poisoning // and Constructor Poisoning configuration respectively. The possible values are // 'ignore', 'remove', 'error'. ignore skips all validations and it is similar // to calling JSON.parse() directly. See the // [`secure-json-parse` documentation](https://github.com/fastify/secure-json-parse#api) for more information. fastify.addContentTypeParser('text/json', { asString: true }, fastify.getDefaultJsonParser('ignore', 'ignore')) ``` #### hasContentTypeParser `fastify.hasContentTypeParser(contentType)` is used to check whether there is a content type parser in the current context for the specified content type. ```js fastify.hasContentTypeParser('text/json') fastify.hasContentTypeParser(/^.+\/json$/) ``` #### removeContentTypeParser `fastify.removeContentTypeParser(contentType)` is used to remove content type parsers in the current context. This method allows for example to remove the both built-in parsers for `application/json` and `text/plain`. ```js fastify.removeContentTypeParser('application/json') fastify.removeContentTypeParser(['application/json', 'text/plain']) ``` #### removeAllContentTypeParsers The `fastify.removeAllContentTypeParsers()` method allows all content type parsers in the current context to be removed. A use case of this method is the implementation of catch-all content type parser. Before adding this parser with `fastify.addContentTypeParser()` one could call the `removeAllContentTypeParsers` method. For more details about the usage of the different content type parser APIs see [here](./ContentTypeParser.md#usage). #### getDefaultJsonParser `fastify.getDefaultJsonParser(onProtoPoisoning, onConstructorPoisoning)` takes two arguments. First argument is ProtoType poisoning configuration and second argument is constructor poisoning configuration. See the [`secure-json-parse` documentation](https://github.com/fastify/secure-json-parse#api) for more information. #### defaultTextParser `fastify.defaultTextParser()` can be used to parse content as plain text. ```js fastify.addContentTypeParser('text/json', { asString: true }, fastify.defaultTextParser) ``` #### errorHandler `fastify.errorHandler` can be used to handle errors using fastify's default error handler. ```js fastify.get('/', { errorHandler: (error, request, reply) => { if (error.code === 'SOMETHING_SPECIFIC') { reply.send({ custom: 'response' }) return } fastify.errorHandler(error, request, response) } }, handler) ``` #### initialConfig `fastify.initialConfig`: Exposes a frozen read-only object registering the initial options passed down by the user to the Fastify instance. Currently the properties that can be exposed are: - connectionTimeout - keepAliveTimeout - bodyLimit - caseSensitive - allowUnsafeRegex - http2 - https (it will return `false`/`true` or `{ allowHTTP1: true/false }` if explicitly passed) - ignoreTrailingSlash - disableRequestLogging - maxParamLength - onProtoPoisoning - onConstructorPoisoning - pluginTimeout - requestIdHeader - requestIdLogLabel - http2SessionTimeout ```js const { readFileSync } = require('fs') const Fastify = require('fastify') const fastify = Fastify({ https: { allowHTTP1: true, key: readFileSync('./fastify.key'), cert: readFileSync('./fastify.cert') }, logger: { level: 'trace'}, ignoreTrailingSlash: true, maxParamLength: 200, caseSensitive: true, trustProxy: '127.0.0.1,192.168.1.1/24', }) console.log(fastify.initialConfig) /* will log : { caseSensitive: true, https: { allowHTTP1: true }, ignoreTrailingSlash: true, maxParamLength: 200 } */ fastify.register(async (instance, opts) => { instance.get('/', async (request, reply) => { return instance.initialConfig /* will return : { caseSensitive: true, https: { allowHTTP1: true }, ignoreTrailingSlash: true, maxParamLength: 200 } */ }) instance.get('/error', async (request, reply) => { // will throw an error because initialConfig is read-only // and can not be modified instance.initialConfig.https.allowHTTP1 = false return instance.initialConfig }) }) // Start listening. fastify.listen({ port: 3000 }, (err) => { if (err) { fastify.log.error(err) process.exit(1) } }) ```