Node.js/Express/TypeScript 后端开发指南：微服务架构最佳实践与代码规范

backend-dev-guidelines by davila7/claude-code-templates

255 周安装量

23,400 GitHub Stars

GitHub

安装命令

npx skills add https://github.com/davila7/claude-code-templates --skill backend-dev-guidelines

Node.js TypeScript 代码规范

🇨🇳中文介绍

后端开发指南

目的

在使用现代 Node.js/Express/TypeScript 模式的后端微服务（blog-api、auth-service、notifications-service）中建立一致性和最佳实践。

使用时机

在以下场景中自动激活：

创建或修改路由、端点、API
构建控制器、服务、仓库
实现中间件（身份验证、验证、错误处理）
使用 Prisma 进行数据库操作
使用 Sentry 进行错误追踪
使用 Zod 进行输入验证
配置管理
后端测试和重构

快速开始

新后端功能清单

路由：清晰的定义，委托给控制器
控制器：继承 BaseController
服务：包含依赖注入的业务逻辑
仓库：数据库访问（如果复杂）
验证：Zod 模式
Sentry：错误追踪
测试：单元测试 + 集成测试
配置：使用 unifiedConfig

新微服务清单

目录结构（参见 architecture-overview.md）
用于 Sentry 的 instrument.ts
unifiedConfig 设置
BaseController 类
中间件栈
错误边界
测试框架

广告位招租

在这里展示您的产品或服务

触达数万 AI 开发者，精准高效

联系我们

核心原则（7 条关键规则）

1. 路由只负责路由，控制器负责控制

// ❌ 禁止：在路由中编写业务逻辑
router.post('/submit', async (req, res) => {
    // 200 行逻辑代码
});

// ✅ 始终：委托给控制器
router.post('/submit', (req, res) => controller.submit(req, res));

2. 所有控制器继承 BaseController

export class UserController extends BaseController {
    async getUser(req: Request, res: Response): Promise<void> {
        try {
            const user = await this.userService.findById(req.params.id);
            this.handleSuccess(res, user);
        } catch (error) {
            this.handleError(error, res, 'getUser');
        }
    }
}

3. 所有错误上报至 Sentry

try {
    await operation();
} catch (error) {
    Sentry.captureException(error);
    throw error;
}

4. 使用 unifiedConfig，绝不使用 process.env

// ❌ 禁止
const timeout = process.env.TIMEOUT_MS;

// ✅ 始终
import { config } from './config/unifiedConfig';
const timeout = config.timeouts.default;

5. 使用 Zod 验证所有输入

const schema = z.object({ email: z.string().email() });
const validated = schema.parse(req.body);

6. 使用仓库模式进行数据访问

// 服务 → 仓库 → 数据库
const users = await userRepository.findActive();

7. 需要全面的测试

describe('UserService', () => {
    it('should create user', async () => {
        expect(user).toBeDefined();
    });
});

// Express
import express, { Request, Response, NextFunction, Router } from 'express';

// 验证
import { z } from 'zod';

// 数据库
import { PrismaClient } from '@prisma/client';
import type { Prisma } from '@prisma/client';

// Sentry
import * as Sentry from '@sentry/node';

// 配置
import { config } from './config/unifiedConfig';

// 中间件
import { SSOMiddlewareClient } from './middleware/SSOMiddleware';
import { asyncErrorWrapper } from './middleware/errorBoundary';

代码	使用场景
200	成功
201	已创建
400	错误请求
401	未授权
403	禁止访问
404	未找到
500	服务器错误

博客 API (✅ 成熟) - 用作 REST API 的模板
认证服务 (✅ 成熟) - 用作认证模式的模板

应避免的反模式

❌ 在路由中编写业务逻辑
❌ 直接使用 process.env
❌ 缺少错误处理
❌ 没有输入验证
❌ 到处直接使用 Prisma
❌ 使用 console.log 而不是 Sentry

需要...	阅读此文档
理解架构	architecture-overview.md
创建路由/控制器	routing-and-controllers.md
组织业务逻辑	services-and-repositories.md
验证输入	validation-patterns.md
添加错误追踪	sentry-and-monitoring.md
创建中间件	middleware-guide.md
数据库访问	database-patterns.md
管理配置	configuration.md
处理异步/错误	async-and-errors.md
编写测试	testing-guide.md
查看示例	complete-examples.md

分层架构、请求生命周期、关注点分离

路由定义、BaseController、错误处理、示例

服务模式、依赖注入、仓库模式、缓存

Zod 模式、验证、DTO 模式

Sentry 初始化、错误捕获、性能监控

认证、审计、错误边界、AsyncLocalStorage

PrismaService、仓库、事务、优化

UnifiedConfig、环境配置、密钥

异步模式、自定义错误、asyncErrorWrapper

单元/集成测试、模拟、覆盖率

完整示例、重构指南

database-verification - 验证列名和模式一致性
error-tracking - Sentry 集成模式
skill-developer - 用于创建和管理技能的元技能

技能状态：已完成 ✅
代码行数：< 500 ✅
渐进式披露：11 个资源文件 ✅

🇺🇸English

Backend Development Guidelines

Purpose

Establish consistency and best practices across backend microservices (blog-api, auth-service, notifications-service) using modern Node.js/Express/TypeScript patterns.

When to Use This Skill

Automatically activates when working on:

Creating or modifying routes, endpoints, APIs
Building controllers, services, repositories
Implementing middleware (auth, validation, error handling)
Database operations with Prisma
Error tracking with Sentry
Input validation with Zod
Configuration management
Backend testing and refactoring

Quick Start

New Backend Feature Checklist

Route : Clean definition, delegate to controller
Controller : Extend BaseController
Service : Business logic with DI
Repository : Database access (if complex)
Validation : Zod schema
Sentry : Error tracking
Tests : Unit + integration tests
Config : Use unifiedConfig

New Microservice Checklist

Directory structure (see architecture-overview.md)
instrument.ts for Sentry
unifiedConfig setup
BaseController class
Middleware stack
Error boundary
Testing framework

Architecture Overview

Layered Architecture

HTTP Request
    ↓
Routes (routing only)
    ↓
Controllers (request handling)
    ↓
Services (business logic)
    ↓
Repositories (data access)
    ↓
Database (Prisma)

Key Principle: Each layer has ONE responsibility.

See architecture-overview.md for complete details.

Directory Structure

service/src/
├── config/              # UnifiedConfig
├── controllers/         # Request handlers
├── services/            # Business logic
├── repositories/        # Data access
├── routes/              # Route definitions
├── middleware/          # Express middleware
├── types/               # TypeScript types
├── validators/          # Zod schemas
├── utils/               # Utilities
├── tests/               # Tests
├── instrument.ts        # Sentry (FIRST IMPORT)
├── app.ts               # Express setup
└── server.ts            # HTTP server

Naming Conventions:

Controllers: PascalCase - UserController.ts
Services: camelCase - userService.ts
Routes: camelCase + Routes - userRoutes.ts
Repositories: PascalCase + Repository - UserRepository.ts

Core Principles (7 Key Rules)

1. Routes Only Route, Controllers Control

// ❌ NEVER: Business logic in routes
router.post('/submit', async (req, res) => {
    // 200 lines of logic
});

// ✅ ALWAYS: Delegate to controller
router.post('/submit', (req, res) => controller.submit(req, res));

2. All Controllers Extend BaseController

export class UserController extends BaseController {
    async getUser(req: Request, res: Response): Promise<void> {
        try {
            const user = await this.userService.findById(req.params.id);
            this.handleSuccess(res, user);
        } catch (error) {
            this.handleError(error, res, 'getUser');
        }
    }
}

3. All Errors to Sentry

try {
    await operation();
} catch (error) {
    Sentry.captureException(error);
    throw error;
}

4. Use unifiedConfig, NEVER process.env

// ❌ NEVER
const timeout = process.env.TIMEOUT_MS;

// ✅ ALWAYS
import { config } from './config/unifiedConfig';
const timeout = config.timeouts.default;

5. Validate All Input with Zod

const schema = z.object({ email: z.string().email() });
const validated = schema.parse(req.body);

6. Use Repository Pattern for Data Access

// Service → Repository → Database
const users = await userRepository.findActive();

7. Comprehensive Testing Required

describe('UserService', () => {
    it('should create user', async () => {
        expect(user).toBeDefined();
    });
});

Common Imports

// Express
import express, { Request, Response, NextFunction, Router } from 'express';

// Validation
import { z } from 'zod';

// Database
import { PrismaClient } from '@prisma/client';
import type { Prisma } from '@prisma/client';

// Sentry
import * as Sentry from '@sentry/node';

// Config
import { config } from './config/unifiedConfig';

// Middleware
import { SSOMiddlewareClient } from './middleware/SSOMiddleware';
import { asyncErrorWrapper } from './middleware/errorBoundary';

Quick Reference

HTTP Status Codes

Code	Use Case
200	Success
201	Created
400	Bad Request
401	Unauthorized
403	Forbidden
404	Not Found
500	Server Error

Service Templates

Blog API (✅ Mature) - Use as template for REST APIs Auth Service (✅ Mature) - Use as template for authentication patterns

Anti-Patterns to Avoid

❌ Business logic in routes ❌ Direct process.env usage ❌ Missing error handling ❌ No input validation ❌ Direct Prisma everywhere ❌ console.log instead of Sentry

Navigation Guide

Need to...	Read this
Understand architecture	architecture-overview.md
Create routes/controllers	routing-and-controllers.md
Organize business logic	services-and-repositories.md
Validate input	validation-patterns.md
Add error tracking	sentry-and-monitoring.md
Create middleware	middleware-guide.md
Database access

Resource Files

architecture-overview.md

Layered architecture, request lifecycle, separation of concerns

routing-and-controllers.md

Route definitions, BaseController, error handling, examples

services-and-repositories.md

Service patterns, DI, repository pattern, caching

validation-patterns.md

Zod schemas, validation, DTO pattern

sentry-and-monitoring.md

Sentry init, error capture, performance monitoring

middleware-guide.md

Auth, audit, error boundaries, AsyncLocalStorage

database-patterns.md

PrismaService, repositories, transactions, optimization

configuration.md

UnifiedConfig, environment configs, secrets

async-and-errors.md

Async patterns, custom errors, asyncErrorWrapper

testing-guide.md

Unit/integration tests, mocking, coverage

complete-examples.md

Full examples, refactoring guide

Related Skills

database-verification - Verify column names and schema consistency
error-tracking - Sentry integration patterns
skill-developer - Meta-skill for creating and managing skills

Skill Status : COMPLETE ✅ Line Count : < 500 ✅ Progressive Disclosure : 11 resource files ✅

Weekly Installs

229

Repository

davila7/claude-…emplates

GitHub Stars

22.6K

First Seen

Jan 25, 2026

Security Audits

Gen Agent Trust HubPass SocketPass SnykPass

Installed on

opencode196

gemini-cli185

codex180

github-copilot173

claude-code164

cursor154

OWASP 十大安全风险防范指南：Web应用安全漏洞与代码示例

824 周安装