Overview

​

Request Flow

​

Route Definition

const defineRoutes = (app: AppKoa) => {
  // Global middlewares (applied to all routes)
  app.use(attachCustomErrors);
  app.use(attachCustomProperties);
  app.use(routeErrorHandler);
  app.use(extractTokens);
  app.use(tryToAttachUser);

  // Route registration
  publicRoutes(app);
  privateRoutes(app);
  adminRoutes(app);
};

​

Route Types

​

Public Routes

• GET /health - Health check
• POST /account/sign-up - User registration
• POST /account/sign-in - User authentication

​

Private Routes

// Private routes use auth middleware
app.use(mount('/account', compose([auth, accountRoutes.privateRoutes])));

• GET /account - Get current user account
• PUT /account - Update user profile
• GET /users - List users

​

Admin Routes

// Admin routes use adminAuth middleware
app.use(mount('/admin/users', compose([adminAuth, userRoutes.adminRoutes])));

• GET /admin/users - Admin user management
• PUT /admin/users/:id - Admin user updates

​

Route Mounting

• koa-mount - Mount routes at a specific path prefix
• koa-compose - Compose multiple middlewares together

// Mount routes with prefix
app.use(mount('/account', accountRoutes.publicRoutes));

// Compose auth middleware with routes
app.use(mount('/account', compose([auth, accountRoutes.privateRoutes])));

​

Authentication Flow

​

See Also

• Routing Middlewares - Global and route-specific middlewares
• API Actions - Creating resource endpoints
• Middlewares - Validation and rate limiting