Forget Express.js — opt for these alternatives instead

Editor’s note: This post was updated on 10 March 2023 to include information about additional Node.js frameworks that may be worth considering as alternatives to Express.js.

Node.js offers some powerful primitives when it comes to building HTTP servers. By default, you get a function that runs every time an HTTP request has been received by the server. The proverbial server example that parses an incoming POST request containing a JSON body looks a bit like this:

const http = require('http');

const server = http.createServer((req, res) => {
  // This function is called once the headers have been received
  res.setHeader('Content-Type', 'application/json');

  if (req.method !== 'POST' || req.url !== '/user') {
    res.statusCode = 405;
    res.end('{"error":"METHOD_NOT_ALLOWED"}');
    return;
  }

  let body = '';

  req.on('data', (data) => {
    // This function is called as chunks of body are received
    body += data;
  });

  req.on('end', () => {
    // This function is called once the body has been fully received
    let parsed;

    try {
      parsed = JSON.parse(body);
    } catch (e) {
      res.statusCode = 400;
      res.end('{"error":"CANNOT_PARSE"}');
    }

    res.end(JSON.stringify({
      error: false,
      username: parsed.username
    }));
  });
});

server.listen(3000, () => {
  console.log('Server running at http://localhost:3000/');
});

By default, Node.js allows us to run a function whenever any request is received. There is no inbuilt router based on paths. Node.js does perform some basic parsing — for example, parsing the incoming HTTP message and extracting different components like the path, header pairs, encoding (Gzip and SSL), etc.

However, the need for higher-level functionality means that we usually have to reach for a web framework. For example, if a multipart/form-data or application/x-www-form-urlencoded request is received, we need to use a module to handle decoding the content for us. If we want to simply route requests based on pattern matching and HTTP methods, we’ll need either a module — or, often, a full web framework — to handle this for us.

That’s where tools like Express.js come into play.

In this article, we’ll investigate Express.js as well as several other Node.js frameworks that you may wish to consider for your next project.

Jump ahead:

• Getting to know Express.js
• Considering an ideal example of an HTTP server
• Adapting Express.js
• Using an alternative Node.js framework
  • Fastify
  • Koa
  • Nest.js
  • Hapi
  • DerbyJS

Getting to know Express.js

Express.js fairly early became the go-to framework for building web applications using Node.js. It scratched an itch that many developers had. It provided a nice syntax for routing HTTP requests and a standardized interface for building out middleware. Also, it used the familiar callback pattern embraced by the core Node.js APIs and most of the npm ecosystem.

Express.js became so popular that it’s almost ubiquitously associated with Node.js — much like when we read about the language Ruby, we’re already conjuring up thoughts of the framework Rails. In fact, Express.js and Node.js are members of the popular MEAN and MERN stack acronyms.

Let’s take a look at what our previous example might look like when we bring Express.js into the picture:

const express = require('express');
const app = express();

app.post('/user', (req, res) => {
  // This function is called once the headers have been received

  let body = '';

  req.on('data', (data) => {
    // This function is called as chunks of body are received
    body += data;
  });

  req.on('end', () => {
    // This function is called once the body has been fully received
    let parsed;

    try {
      parsed = JSON.parse(body);
    } catch (e) {
      res.statusCode = 400;
      res.json({
        error: 'CANNOT_PARSE'
      });
    }

    res.json({
      error: false,
      username: parsed.username
    });
  });

});

app.listen(3000, () => {
  console.log('Server running at http://localhost:3000/');
});

In this example, we see that things get a little nicer. We’re able to specifically state the method and path we want to match by using app.post('/user'). This is much simpler than writing a big branching statement within the handler.

We’re also given some other niceties. Consider the res.json({}) method: this not only serializes an object into its JSON equivalent, but it also sets the appropriate Content-Type header for us!

However, Express.js still gives us the same paradigm that we get when using the inbuilt http module; we’re still calling methods on req and res objects, for example.

Considering an ideal example of an HTTP server

Let’s take a step back and look at what an ideal example of an HTTP server might look like. Routing is desirable, and Express.js has a powerful routing syntax (it supports dynamic routing patterns, for instance). However, the code that runs within the controller function is where we really want to clean things up.

In the above example, we’re doing a lot of work with asynchronous code. The request object is an Event Emitter that emits two events we care about, namely data and end. But, really, we often just want the ability to convert an HTTP request into a JSON object that we can easily extract values from.

---

Over 200k developers use LogRocket to create better digital experiences

Learn more →

---

Also, we’re given both a request (req) and a response (res) object. The reqobject makes sense — it contains information about the request we’re receiving. But does the res really make all that much sense? We only want to provide a result from our controller function as a reply.

With synchronous functions, it’s simple to receive a result from a function call: just return the value. We can do the same thing if we make use of async functions. By returning a call to an async function, the controller function can resolve a value that ultimately represents the response we intend for the consumer to receive.

Let’s look at an example of this:

const server = someCoolFramework();

server.post('/user', async (req) => {
  let parsed;

  try {
    parsed = await req.requestBodyJson();
  } catch (e) {
    return [400, {
      error: 'CANNOT_PARSE'
    }];
  }

  return {
    error: false,
    username: parsed.username
  };
});

server.listen(3000, () => {
  console.log('Server running at http://localhost:3000/');
});

There are a few concepts going on in this idealized example of ours. First, we’re maintaining the existing router syntax used by Express.js because it’s pretty solid. Second, our req object provides a helper for converting an incoming request into JSON.

The third feature is that we’re able to provide a representation of the response by simply returning a result. Since JavaScript doesn’t support tuples, we’re essentially recreating one by using an array. So with this fictional example, a returned string could be sent directly to the client as a body, a returned array can be used to represent the status code and the body (and perhaps a third parameter for metadata like headers), and a returned object can be converted into its JSON representation.

Adapting Express.js

Now, it actually is possible to recreate some of this behavior with Express.js using a set of middleware.

The express-async-handler npm module provides a wrapper function that can interpose and allow an async controller function to interact nicely with the Express.js app.use API. Unfortunately, this requires the developer to manually wrap each controller function:

const asyncHandler = require('express-async-handler')

app.post('/user', asyncHandler(async (req, res, next) => {
  const bar = await foo.findAll();
  res.send(bar);
}))

The response tuple unwrapping can also be handled by middleware. Such a middleware would need to run after the controller code has run and would replace the array with a representation Express.js is expecting.

The ability to promisify the request body stream parsing can also be built in a generic manner:

app.use((req, res, next) => {
  req.bodyToJson = requestBodyJson(req);
  next();
});

function requestBodyJson(req) {
  return new Promise((resolve, reject) => {
    let body = '';

    req.on('data', (data) => {
      // This function is called as chunks of body are received
      body += data;
    });

    req.on('end', () => {
      // This function is called once the body has been fully received
      let parsed;

      try {
        parsed = JSON.parse(body);
      } catch (e) {
        reject(e);
        return;
      }

      resolve(parsed);
    });
  });
}

With the above code, we can then await the parsing using Express.js (and really any other situation where we’re given an instance of an HTTP Request object):

// When using the Express.js middleware:
const parsed = await req.bodyToJson();

// Using the function generically:
const parsed = await requestBodyJson(req);

Using an alternative Node.js framework

It is true that we can reproduce some of these desired patterns using Express.js, but there are frameworks that have been built from the ground up with support for promises and the async/await paradigm. Let’s see what our example controller might look like when written using different web server frameworks.

Fastify

Fastify, as its name implies, was built with the intention of being a very fast Node.js web framework. Despite its main goal of speed, it actually does a very nice job of achieving our ideal controller syntax.

This example is so terse that it almost feels like cheating:

const fastify = require('fastify');
const app = fastify();

app.post('/user', async (req, reply) => {
  return {
    error: false,
    username: req.body.username
  };
});

app.listen(3000).then(() => {
  console.log('Server running at http://localhost:3000/');
});

Fastify not only supports async functions for use as controller code, but it also automatically parses incoming requests into JSON if the Content-Type header suggests the body is JSON. This is why the example code ends up being so tiny.

This also means that we can rely on Fastify to respond with a sane error when parsing fails. For example, when the client sends invalid JSON to Fastify, the response will look something like this:

{
  "statusCode": 400,
  "error": "Bad Request",
  "message": "Unexpected string in JSON at position 19"
}

Quick start

npm install fastify

Koa

Koa is a sort of spiritual successor to Express.js, having been written by some of the original Express.js authors. It does support async functions out the door, but it doesn’t come with a router of its own. We can make use of koa-router to provide routing.

Here’s what our example controller might look like with Koa:

const Koa = require('koa');
const Router = require('koa-router');
const app = new Koa();
const router = new Router();

router.post('/user', async (ctx) => {
  try {
    const parsed = await requestBodyJson(ctx.req);
    ctx.body = {
      error: false,
      username: parsed.username
    };
  } catch (e) {
    ctx.status = 400;
    ctx.body = {
      error: 'CANNOT_PARSE'
    };
  }
});

app.use(router.routes());
app.listen(3000);

This Koa example isn’t as succinct as the Fastify version. It doesn’t perform the automatic JSON parsing, but we’re able to reuse the requestBodyJson()method we created earlier. It also doesn’t use the returned/resolved value from our controller but instead works by consuming data attached to the ctx argument.

Quick start

 npm i koa

Nest.js

Nest.js offers inbuilt support for TypeScript, which guarantees type safety and provides an architecture for creating testable, scalable, modular, and maintainable applications. Like other popular frameworks, such as Fastify and Express.js, Nest.js offers a wide range of features, including dependency injection, middleware, routing, and asynchronous programming.

Here’s what our example controller might look like with Nest.js:

import { Controller, Post, Body } from '@nestjs/common';

@Controller()
export class UserController {
  @Post('/user')
  async createUser(@Body() body: { username: string }): Promise<{ error: boolean, username: string }> {
    return {
      error: false,
      username: body.username,
    };
  }
}

Nest also automatically parses incoming requests into JSON and supports async functions for controller codes. However, it isn’t as succinct as Fastify due to its object-oriented, module, dependency injection, and decorator architectural pattern, which isn’t easy to pick up, especially for novice developers.

Quick start

npm i @nestjs/core

Hapi

Hapi was originally built to handle Walmart’s Black Friday sale, thus making it one of the best choices for developers to build scalable and robust applications. It is perfect for our choice of controller syntax as it offers many inbuilt features, such as routing and asynchronous programming.

Here’s what our example controller might look like with Hapi:

const Hapi = require('@hapi/hapi');

const init = async () => {
  const server = Hapi.server({
    port: 3000,
    host: 'localhost'
  });

  server.route({
    method: 'POST',
    path: '/user',
    handler: async (request, h) => {
      return {
        error: false,
        username: request.payload.username
      };
    }
  });

  await server.start();
  console.log('Server running at:', server.info.uri);
};

process.on('unhandledRejection', (err) => {
  console.error(err);
  process.exit(1);
});

init();

Hapi uses the request.payload object in the example above to extract the incoming request body and automatically parse it based on the request’s content-type header.

Hapi not only parses incoming requests by default but also provides a range of features that helps developers to work with request data. For example, Hapi’s validation system allows developers to define input validation rules for incoming request data, ensuring that the data is valid and secure before it is processed by the application.

Quick start

npm install @hapi/hapi

DerbyJS

DerbyJS takes a different approach to how we can create server-side applications. It is a model-view-controller framework that can be used to write real-time backend or frontend applications. The framework provides inbuilt support for templating, routing, asynchronous programming, and other features commonly found in backend frameworks.

Here’s what our example controller might look like with DerbyJS:

const app = require('derby').createApp();
const http = require('http');

app.post('/user', async function(page, model, params, next) {
  try {
    const username = params.body.username;
    await new Promise(resolve => setTimeout(resolve, 1000));
    next(null, {error: false, username: username});
  } catch (err) {
    next(err);
  }
});

const server = http.createServer(app.run());

server.listen(3000, function() {
  console.log('Server running at http://localhost:3000/');
});

Despite its unconventional architecture, DerbyJS provides automatic parsing of request bodies, eliminating the need to parse them manually using middleware or libraries, as is required in some other Node.js frameworks.

Quick start

git clone https://github.com/derbyjs/derby-examples.git

Takeaways

When Node.js was still in its infancy, Express.js became the obvious choice for building web applications. Express.js had the goal of being a convenient web server that followed the callback paradigm. It achieved that goal, and the product is now essentially complete.

However, as the JavaScript ecosystem has matured, we’ve gained new language tools and syntax. Dozens, if not hundreds, of frameworks, have arisen since then, many of which have embraced these new language features.

If you find yourself working on a new project written in Node.js that acts as a web server, I encourage you to consider newer contenders such as Koa, Nest.js, Hapi, DerbyJS, and Fastify instead of defaulting to the familiar Express.js.

200’s only Monitor failed and slow network requests in production

Deploying a Node-based web app or website is the easy part. Making sure your Node instance continues to serve resources to your app is where things get tougher. If you’re interested in ensuring requests to the backend or third party services are successful, try LogRocket. https://logrocket.com/signup/

LogRocket is like a DVR for web and mobile apps, recording literally everything that happens while a user interacts with your app. Instead of guessing why problems happen, you can aggregate and report on problematic network requests to quickly understand the root cause.

LogRocket instruments your app to record baseline performance timings such as page load time, time to first byte, slow network requests, and also logs Redux, NgRx, and Vuex actions/state. Start monitoring for free.