Package Exports
- serverless-event-orchestrator
- serverless-event-orchestrator/http
- serverless-event-orchestrator/identity
- serverless-event-orchestrator/middleware
- serverless-event-orchestrator/tenant
Readme
serverless-event-orchestrator
A lightweight, type-safe event dispatcher and middleware orchestrator for AWS Lambda. Designed for hexagonal architectures with support for segmented routing (public, private, backoffice), Cognito User Pool validation, and built-in infrastructure middlewares.
Features
- Multi-Trigger Support: Handle HTTP (API Gateway), SQS, EventBridge, and Lambda invocations with a single handler
- Segmented Routing: Organize routes by security context (
public,private,backoffice,internal) - Path Parameters: Built-in support for dynamic routes like
/users/{id} - Identity Aware: Automatic Cognito User Pool validation per segment and optional JWT extraction from headers
- Middleware Support: Global and per-segment middleware chains
- Zero Config CORS: Built-in CORS handling with sensible defaults
- Response Utilities: Standardized response helpers (success, error, etc.)
- TypeScript First: Full type safety with exported interfaces
Installation
npm install serverless-event-orchestratorQuick Start
Basic Usage (Flat Routes)
import { dispatchEvent, HttpRouter, successResponse } from 'serverless-event-orchestrator';
const routes: HttpRouter = {
get: {
'/users': {
handler: async (event) => {
return successResponse({ users: [] });
}
},
'/users/{id}': {
handler: async (event) => {
const userId = event.params.id;
return successResponse({ id: userId, name: 'John' });
}
}
},
post: {
'/users': {
handler: async (event) => {
const body = event.payload.body;
return successResponse({ created: true, data: body });
}
}
}
};
export const handler = async (event: any) => {
return dispatchEvent(event, { apigateway: routes });
};Segmented Routes (Recommended)
Organize routes by security context for cleaner code and automatic validation:
import {
dispatchEvent,
SegmentedHttpRouter,
successResponse,
forbiddenResponse
} from 'serverless-event-orchestrator';
const routes: SegmentedHttpRouter = {
// No authentication required
public: {
post: {
'/auth/login': { handler: loginHandler },
'/auth/register': { handler: registerHandler }
}
},
// Requires authenticated user (Client User Pool)
private: {
get: {
'/me': { handler: getProfileHandler },
'/orders': { handler: getOrdersHandler }
},
put: {
'/me': { handler: updateProfileHandler }
}
},
// Requires admin user (Backoffice User Pool)
backoffice: {
get: {
'/admin/users': { handler: listAllUsersHandler }
},
delete: {
'/admin/users/{id}': { handler: deleteUserHandler }
}
},
// Internal Lambda-to-Lambda calls
internal: {
post: {
'/internal/sync': { handler: syncDataHandler }
}
}
};
export const handler = async (event: any) => {
return dispatchEvent(event, { apigateway: routes }, {
debug: process.env.DEBUG === 'true',
userPools: {
private: process.env.USER_POOL_ID,
backoffice: process.env.ADMIN_POOL_ID
}
});
};With Middleware
import {
AdvancedSegmentedRouter,
NormalizedEvent,
forbiddenResponse
} from 'serverless-event-orchestrator';
// Custom middleware
const validateAdminRole = async (event: NormalizedEvent) => {
const groups = event.context.identity?.groups ?? [];
if (!groups.includes('Admins')) {
throw forbiddenResponse('Admin role required');
}
return event;
};
const routes: AdvancedSegmentedRouter = {
public: {
routes: {
get: { '/health': { handler: healthCheck } }
}
},
backoffice: {
middleware: [validateAdminRole],
routes: {
get: { '/admin/dashboard': { handler: dashboardHandler } }
}
}
};Handling Multiple Event Types
import { dispatchEvent, DispatchRoutes, NormalizedEvent } from 'serverless-event-orchestrator';
const routes: DispatchRoutes = {
// HTTP routes
apigateway: {
public: {
get: { '/status': { handler: statusHandler } }
}
},
// EventBridge events
eventbridge: {
'user.created': async (event: NormalizedEvent) => {
console.log('User created:', event.payload.body);
},
'order.completed': async (event: NormalizedEvent) => {
console.log('Order completed:', event.payload.body);
},
default: async (event: NormalizedEvent) => {
console.log('Unknown event:', event.payload.body);
}
},
// SQS queues
sqs: {
'notification-queue': async (event: NormalizedEvent) => {
console.log('Notification:', event.payload.body);
},
default: async (event: NormalizedEvent) => {
console.log('Unknown queue message:', event.payload.body);
}
}
};
export const handler = async (event: any) => {
return dispatchEvent(event, routes);
};Response Utilities
Built-in response helpers for consistent API responses:
import {
successResponse,
createdResponse,
badRequestResponse,
unauthorizedResponse,
forbiddenResponse,
notFoundResponse,
conflictResponse,
validationErrorResponse,
internalErrorResponse,
customErrorResponse
} from 'serverless-event-orchestrator';
// Success responses
successResponse({ user: { id: 1 } });
// { statusCode: 200, body: '{"status":200,"code":"SUCCESS","data":{"user":{"id":1}}}' }
createdResponse({ id: 123 });
// { statusCode: 201, body: '{"status":201,"code":"CREATED","data":{"id":123}}' }
// Error responses
badRequestResponse('Invalid email format');
notFoundResponse('User not found');
// Custom error codes (your domain-specific codes)
enum MyErrorCodes {
USER_SUSPENDED = 'USER_SUSPENDED',
QUOTA_EXCEEDED = 'QUOTA_EXCEEDED'
}
const codeToStatus = {
[MyErrorCodes.USER_SUSPENDED]: 403,
[MyErrorCodes.QUOTA_EXCEEDED]: 429
};
customErrorResponse(MyErrorCodes.QUOTA_EXCEEDED, 'API quota exceeded', codeToStatus);Identity & Security
Extract and validate Cognito claims:
import {
extractIdentity,
hasAnyGroup,
hasAllGroups,
validateIssuer
} from 'serverless-event-orchestrator';
const myHandler = async (event: NormalizedEvent) => {
const identity = event.context.identity;
// Access user info
console.log(identity?.userId); // Cognito sub
console.log(identity?.email); // User email
console.log(identity?.groups); // Cognito groups
// Check groups
if (hasAnyGroup(identity, ['Admins', 'Moderators'])) {
// User has admin or moderator role
}
if (hasAllGroups(identity, ['Premium', 'Verified'])) {
// User has both premium and verified status
}
};CORS Handling
import { withCors, applyCorsHeaders } from 'serverless-event-orchestrator';
// Option 1: Wrap handler
const handler = withCors(async (event) => {
return successResponse({ data: 'Hello' });
}, {
origins: ['https://myapp.com', 'https://admin.myapp.com'],
credentials: true,
maxAge: 86400
});
// Option 2: Apply to response
const response = successResponse({ data: 'Hello' });
return applyCorsHeaders(response, { origins: '*' });Configuration
import { dispatchEvent, OrchestratorConfig } from 'serverless-event-orchestrator';
const config: OrchestratorConfig = {
// Enable debug logging
debug: process.env.NODE_ENV !== 'production',
// Automatically extract identity from Authorization header if no authorizer is present
// Useful when you don't use Cognito Authorizers in API Gateway
autoExtractIdentity: true,
// User Pool validation per segment
userPools: {
private: 'us-east-1_ABC123',
backoffice: 'us-east-1_XYZ789'
},
// Global middleware (runs for all routes)
globalMiddleware: [
async (event) => {
console.log('Request:', event.context.requestId);
return event;
}
],
// Custom response handlers
responses: {
notFound: () => ({ statusCode: 404, body: JSON.stringify({ error: 'Not found' }) }),
forbidden: () => ({ statusCode: 403, body: JSON.stringify({ error: 'Access denied' }) })
}
};
export const handler = async (event: any) => {
return dispatchEvent(event, routes, config);
};API Reference
Core Functions
| Function | Description |
|---|---|
dispatchEvent(event, routes, config?) |
Main dispatcher function |
createOrchestrator(config) |
Creates a pre-configured dispatcher |
detectEventType(event) |
Detects AWS event type |
Response Helpers
| Function | Status Code |
|---|---|
successResponse(data?, code?) |
200 |
createdResponse(data?, code?) |
201 |
badRequestResponse(message?, code?) |
400 |
unauthorizedResponse(message?, code?) |
401 |
forbiddenResponse(message?, code?) |
403 |
notFoundResponse(message?, code?) |
404 |
conflictResponse(message?, code?) |
409 |
validationErrorResponse(message?, code?) |
422 |
internalErrorResponse(message?, code?) |
500 |
Identity Functions
| Function | Description |
|---|---|
extractIdentity(event) |
Extracts Cognito claims from event |
validateIssuer(identity, userPoolId) |
Validates token issuer |
hasAnyGroup(identity, groups) |
Checks if user has any of the groups |
hasAllGroups(identity, groups) |
Checks if user has all groups |
TypeScript Support
All types are exported for full TypeScript support:
import type {
HttpRouter,
SegmentedHttpRouter,
AdvancedSegmentedRouter,
NormalizedEvent,
IdentityContext,
RouteConfig,
OrchestratorConfig,
MiddlewareFn
} from 'serverless-event-orchestrator';License
MIT 2024