⚠️

重要前提

安装AI Skills的关键前提是：必须科学上网，且开启TUN模式，这一点至关重要，直接决定安装能否顺利完成，在此郑重提醒三遍：科学上网，科学上网，科学上网。查看完整安装教程 →

Nuxt 4 服务器开发指南：基于 Nitro 的 API 路由、后端与全栈开发教程

nuxt-server by secondsky/claude-skills

108 周安装量

107 GitHub Stars

GitHub

安装命令

npx skills add https://github.com/secondsky/claude-skills --skill nuxt-server

Vue JavaScript 框架 API

🇨🇳中文介绍

Nuxt 4 服务器开发

使用 Nitro 进行服务器路由、API 模式和后端开发。

快速参考

基于文件的服务器路由

server/
├── api/                      # API 端点 (/api/*)
│   ├── users/
│   │   ├── index.get.ts      → GET  /api/users
│   │   ├── index.post.ts     → POST /api/users
│   │   ├── [id].get.ts       → GET  /api/users/:id
│   │   ├── [id].put.ts       → PUT  /api/users/:id
│   │   └── [id].delete.ts    → DELETE /api/users/:id
│   └── health.get.ts         → GET  /api/health
├── routes/                   # 非 API 路由
│   └── sitemap.xml.get.ts    → GET  /sitemap.xml
├── middleware/               # 服务器中间件
│   └── auth.ts               # 在每个请求上运行
├── plugins/                  # Nitro 插件
│   └── database.ts           # 初始化数据库
└── utils/                    # 服务器工具
    └── db.ts                 # 数据库助手

HTTP 方法后缀

后缀	HTTP 方法
`.get.ts`	GET

广告位招租

在这里展示您的产品或服务

触达数万 AI 开发者，精准高效

联系我们

何时加载参考文档

在以下情况下加载 references/server.md：

实现复杂的 API 路由
处理身份验证和会话
处理 cookies 和 headers
构建文件上传端点
理解 Nitro 内部原理

在以下情况下加载 references/database-patterns.md：

将 Cloudflare D1 与 Drizzle 集成
设置 PostgreSQL 连接
实现数据库迁移
构建查询模式

在以下情况下加载 references/websocket-patterns.md：

实现实时功能
构建 WebSocket 端点
使用 Durable Objects 处理状态

基本事件处理器

// server/api/users/index.get.ts
export default defineEventHandler(async (event) => {
  // 返回数据（自动序列化为 JSON）
  return {
    users: [
      { id: 1, name: 'John' },
      { id: 2, name: 'Jane' }
    ]
  }
})

// server/api/users/[id].get.ts
export default defineEventHandler(async (event) => {
  const id = getRouterParam(event, 'id')

  if (!id) {
    throw createError({
      statusCode: 400,
      message: 'User ID is required'
    })
  }

  return { id }
})

// GET /api/users?page=1&limit=10&search=john
export default defineEventHandler(async (event) => {
  const query = getQuery(event)

  const page = Number(query.page) || 1
  const limit = Number(query.limit) || 10
  const search = query.search as string | undefined

  return { page, limit, search }
})

// server/api/users/index.post.ts
export default defineEventHandler(async (event) => {
  const body = await readBody(event)

  // 验证请求体
  if (!body.name || !body.email) {
    throw createError({
      statusCode: 400,
      message: 'Name and email are required'
    })
  }

  // 创建用户...
  return { success: true, user: { id: 1, ...body } }
})

export default defineEventHandler(async (event) => {
  // 读取 headers
  const authHeader = getHeader(event, 'authorization')
  const contentType = getHeader(event, 'content-type')

  // 设置响应 headers
  setHeader(event, 'X-Custom-Header', 'value')
  setHeader(event, 'Cache-Control', 'max-age=3600')

  return { authHeader, contentType }
})

export default defineEventHandler(async (event) => {
  // 设置状态码
  setResponseStatus(event, 201)  // Created

  return { message: 'Resource created' }
})

export default defineEventHandler(async (event) => {
  // 重定向
  return sendRedirect(event, '/new-location', 302)
})

export default defineEventHandler(async (event) => {
  const id = getRouterParam(event, 'id')

  const user = await findUser(id)

  if (!user) {
    throw createError({
      statusCode: 404,
      statusMessage: 'Not Found',
      message: `User with ID ${id} not found`
    })
  }

  return user
})

export default defineEventHandler(async (event) => {
  // 读取 cookie
  const sessionId = getCookie(event, 'session_id')

  // 设置 cookie
  setCookie(event, 'session_id', 'abc123', {
    httpOnly: true,
    secure: true,
    sameSite: 'lax',
    maxAge: 60 * 60 * 24 * 7  // 1 week
  })

  // 删除 cookie
  deleteCookie(event, 'old_cookie')

  return { sessionId }
})

// server/middleware/auth.ts
export default defineEventHandler(async (event) => {
  // 跳过公共路由
  const publicRoutes = ['/api/auth/login', '/api/health']
  if (publicRoutes.includes(event.path)) {
    return  // 继续到下一个处理器
  }

  // 检查身份验证
  const token = getHeader(event, 'authorization')?.replace('Bearer ', '')

  if (!token) {
    throw createError({
      statusCode: 401,
      message: 'Authentication required'
    })
  }

  // 验证令牌并将用户附加到上下文
  const user = await verifyToken(token)
  event.context.user = user
})

在路由中访问上下文

// server/api/profile.get.ts
export default defineEventHandler(async (event) => {
  // 由中间件附加的用户
  const user = event.context.user

  if (!user) {
    throw createError({ statusCode: 401, message: 'Not authenticated' })
  }

  return { user }
})

Cloudflare D1 与 Drizzle

// server/utils/db.ts
import { drizzle } from 'drizzle-orm/d1'
import * as schema from '~/server/database/schema'

export function useDB(event: H3Event) {
  const { DB } = event.context.cloudflare.env
  return drizzle(DB, { schema })
}

// server/api/users/index.get.ts
export default defineEventHandler(async (event) => {
  const db = useDB(event)

  const users = await db.select().from(schema.users).limit(10)

  return { users }
})

// server/database/schema.ts
import { sqliteTable, text, integer } from 'drizzle-orm/sqlite-core'

export const users = sqliteTable('users', {
  id: integer('id').primaryKey({ autoIncrement: true }),
  name: text('name').notNull(),
  email: text('email').notNull().unique(),
  createdAt: integer('created_at', { mode: 'timestamp' })
    .notNull()
    .$defaultFn(() => new Date())
})

export const posts = sqliteTable('posts', {
  id: integer('id').primaryKey({ autoIncrement: true }),
  userId: integer('user_id').notNull().references(() => users.id),
  title: text('title').notNull(),
  content: text('content'),
  createdAt: integer('created_at', { mode: 'timestamp' })
    .notNull()
    .$defaultFn(() => new Date())
})

// server/api/users/index.post.ts
import { users } from '~/server/database/schema'
import { eq } from 'drizzle-orm'

export default defineEventHandler(async (event) => {
  const db = useDB(event)
  const body = await readBody(event)

  // 创建
  const [user] = await db.insert(users)
    .values({ name: body.name, email: body.email })
    .returning()

  return { user }
})

// server/api/users/[id].put.ts
export default defineEventHandler(async (event) => {
  const db = useDB(event)
  const id = getRouterParam(event, 'id')
  const body = await readBody(event)

  // 更新
  const [user] = await db.update(users)
    .set({ name: body.name })
    .where(eq(users.id, Number(id)))
    .returning()

  if (!user) {
    throw createError({ statusCode: 404, message: 'User not found' })
  }

  return { user }
})

// server/api/users/[id].delete.ts
export default defineEventHandler(async (event) => {
  const db = useDB(event)
  const id = getRouterParam(event, 'id')

  // 删除
  await db.delete(users).where(eq(users.id, Number(id)))

  return { success: true }
})

使用 Zod 进行验证

// server/api/users/index.post.ts
import { z } from 'zod'

const createUserSchema = z.object({
  name: z.string().min(2).max(100),
  email: z.string().email(),
  age: z.number().int().min(0).max(150).optional()
})

export default defineEventHandler(async (event) => {
  const body = await readBody(event)

  // 验证
  const result = createUserSchema.safeParse(body)

  if (!result.success) {
    throw createError({
      statusCode: 400,
      message: 'Validation failed',
      data: result.error.flatten()
    })
  }

  // 使用已验证的数据
  const { name, email, age } = result.data

  // 创建用户...
  return { success: true }
})

// server/api/upload.post.ts
export default defineEventHandler(async (event) => {
  const formData = await readMultipartFormData(event)

  if (!formData) {
    throw createError({ statusCode: 400, message: 'No file uploaded' })
  }

  const file = formData.find(f => f.name === 'file')

  if (!file) {
    throw createError({ statusCode: 400, message: 'File field is required' })
  }

  // file.filename - 原始文件名
  // file.type - MIME 类型
  // file.data - 包含文件内容的 Buffer

  // 上传到 R2 (Cloudflare)
  const { R2 } = event.context.cloudflare.env
  const key = `uploads/${Date.now()}-${file.filename}`
  await R2.put(key, file.data)

  return { key, filename: file.filename, type: file.type }
})

// server/utils/auth.ts
import { H3Event } from 'h3'

export function requireAuth(event: H3Event) {
  const user = event.context.user

  if (!user) {
    throw createError({
      statusCode: 401,
      message: 'Authentication required'
    })
  }

  return user
}

export function requireRole(event: H3Event, role: string) {
  const user = requireAuth(event)

  if (user.role !== role) {
    throw createError({
      statusCode: 403,
      message: 'Insufficient permissions'
    })
  }

  return user
}

// 在路由中使用
export default defineEventHandler(async (event) => {
  const user = requireAuth(event)
  // 或者
  const admin = requireRole(event, 'admin')
})

// 错误 - 处理所有方法
// server/api/users.ts

// 正确 - 明确的方法
// server/api/users.get.ts   → GET
// server/api/users.post.ts  → POST

// 错误 - 将错误作为数据返回
export default defineEventHandler(async (event) => {
  const user = await findUser(id)
  if (!user) {
    return { error: 'Not found' }  // 200 状态码！
  }
})

// 正确 - 抛出错误
export default defineEventHandler(async (event) => {
  const user = await findUser(id)
  if (!user) {
    throw createError({ statusCode: 404, message: 'Not found' })
  }
})

// 错误 - 请求体未被等待
export default defineEventHandler((event) => {
  const body = readBody(event)  // 返回 Promise！
})

// 正确
export default defineEventHandler(async (event) => {
  const body = await readBody(event)
})

API 路由返回 404：

确保文件在 server/api/ 中（而不是 app/api/）
检查方法后缀是否与请求匹配（GET 请求使用 .get.ts）
验证文件扩展名是 .ts

请求体为空：

确保使用 await readBody(event) 而不是 readBody(event)
检查 Content-Type header 是否正确设置
对于 multipart 请求，使用 readMultipartFormData

中间件未运行：

检查文件是否在 server/middleware/ 中
除非被过滤，否则中间件会为所有请求运行

未找到 D1 绑定：

检查 wrangler.toml 是否配置了 [[d1_databases]]
通过 event.context.cloudflare.env.DB 访问

nuxt-core : 项目设置、路由、配置
nuxt-data : 组合式函数、数据获取、状态管理
nuxt-production : 性能、测试、部署
cloudflare-d1 : D1 数据库模式

版本 : 4.0.0 | 最后更新 : 2025-12-28 | 许可证 : MIT

🇺🇸English

Nuxt 4 Server Development

Server routes, API patterns, and backend development with Nitro.

Quick Reference

File-Based Server Routes

server/
├── api/                      # API endpoints (/api/*)
│   ├── users/
│   │   ├── index.get.ts      → GET  /api/users
│   │   ├── index.post.ts     → POST /api/users
│   │   ├── [id].get.ts       → GET  /api/users/:id
│   │   ├── [id].put.ts       → PUT  /api/users/:id
│   │   └── [id].delete.ts    → DELETE /api/users/:id
│   └── health.get.ts         → GET  /api/health
├── routes/                   # Non-API routes
│   └── sitemap.xml.get.ts    → GET  /sitemap.xml
├── middleware/               # Server middleware
│   └── auth.ts               # Runs on every request
├── plugins/                  # Nitro plugins
│   └── database.ts           # Initialize database
└── utils/                    # Server utilities
    └── db.ts                 # Database helpers

HTTP Method Suffixes

Suffix	HTTP Method
`.get.ts`	GET
`.post.ts`	POST
`.put.ts`	PUT
`.patch.ts`	PATCH
`.delete.ts`	DELETE
`.ts`	All methods

When to Load References

Loadreferences/server.md when:

Implementing complex API routes
Handling authentication and sessions
Working with cookies and headers
Building file upload endpoints
Understanding Nitro internals

Loadreferences/database-patterns.md when:

Integrating Cloudflare D1 with Drizzle
Setting up PostgreSQL connections
Implementing database migrations
Building query patterns

Loadreferences/websocket-patterns.md when:

Implementing real-time features
Building WebSocket endpoints
Using Durable Objects for state

Basic Event Handler

// server/api/users/index.get.ts
export default defineEventHandler(async (event) => {
  // Return data (automatically serialized to JSON)
  return {
    users: [
      { id: 1, name: 'John' },
      { id: 2, name: 'Jane' }
    ]
  }
})

Request Utilities

URL Parameters

// server/api/users/[id].get.ts
export default defineEventHandler(async (event) => {
  const id = getRouterParam(event, 'id')

  if (!id) {
    throw createError({
      statusCode: 400,
      message: 'User ID is required'
    })
  }

  return { id }
})

Query Parameters

// GET /api/users?page=1&limit=10&search=john
export default defineEventHandler(async (event) => {
  const query = getQuery(event)

  const page = Number(query.page) || 1
  const limit = Number(query.limit) || 10
  const search = query.search as string | undefined

  return { page, limit, search }
})

Request Body

// server/api/users/index.post.ts
export default defineEventHandler(async (event) => {
  const body = await readBody(event)

  // Validate body
  if (!body.name || !body.email) {
    throw createError({
      statusCode: 400,
      message: 'Name and email are required'
    })
  }

  // Create user...
  return { success: true, user: { id: 1, ...body } }
})

Headers

export default defineEventHandler(async (event) => {
  // Read headers
  const authHeader = getHeader(event, 'authorization')
  const contentType = getHeader(event, 'content-type')

  // Set response headers
  setHeader(event, 'X-Custom-Header', 'value')
  setHeader(event, 'Cache-Control', 'max-age=3600')

  return { authHeader, contentType }
})

Response Utilities

Setting Status Code

export default defineEventHandler(async (event) => {
  // Set status code
  setResponseStatus(event, 201)  // Created

  return { message: 'Resource created' }
})

Redirects

export default defineEventHandler(async (event) => {
  // Redirect
  return sendRedirect(event, '/new-location', 302)
})

Error Handling

export default defineEventHandler(async (event) => {
  const id = getRouterParam(event, 'id')

  const user = await findUser(id)

  if (!user) {
    throw createError({
      statusCode: 404,
      statusMessage: 'Not Found',
      message: `User with ID ${id} not found`
    })
  }

  return user
})

Cookies

export default defineEventHandler(async (event) => {
  // Read cookie
  const sessionId = getCookie(event, 'session_id')

  // Set cookie
  setCookie(event, 'session_id', 'abc123', {
    httpOnly: true,
    secure: true,
    sameSite: 'lax',
    maxAge: 60 * 60 * 24 * 7  // 1 week
  })

  // Delete cookie
  deleteCookie(event, 'old_cookie')

  return { sessionId }
})

Server Middleware

// server/middleware/auth.ts
export default defineEventHandler(async (event) => {
  // Skip for public routes
  const publicRoutes = ['/api/auth/login', '/api/health']
  if (publicRoutes.includes(event.path)) {
    return  // Continue to next handler
  }

  // Check authentication
  const token = getHeader(event, 'authorization')?.replace('Bearer ', '')

  if (!token) {
    throw createError({
      statusCode: 401,
      message: 'Authentication required'
    })
  }

  // Verify token and attach user to context
  const user = await verifyToken(token)
  event.context.user = user
})

Accessing Context in Routes

// server/api/profile.get.ts
export default defineEventHandler(async (event) => {
  // User attached by middleware
  const user = event.context.user

  if (!user) {
    throw createError({ statusCode: 401, message: 'Not authenticated' })
  }

  return { user }
})

Database Integration

Cloudflare D1 with Drizzle

// server/utils/db.ts
import { drizzle } from 'drizzle-orm/d1'
import * as schema from '~/server/database/schema'

export function useDB(event: H3Event) {
  const { DB } = event.context.cloudflare.env
  return drizzle(DB, { schema })
}

// server/api/users/index.get.ts
export default defineEventHandler(async (event) => {
  const db = useDB(event)

  const users = await db.select().from(schema.users).limit(10)

  return { users }
})

Schema Definition

// server/database/schema.ts
import { sqliteTable, text, integer } from 'drizzle-orm/sqlite-core'

export const users = sqliteTable('users', {
  id: integer('id').primaryKey({ autoIncrement: true }),
  name: text('name').notNull(),
  email: text('email').notNull().unique(),
  createdAt: integer('created_at', { mode: 'timestamp' })
    .notNull()
    .$defaultFn(() => new Date())
})

export const posts = sqliteTable('posts', {
  id: integer('id').primaryKey({ autoIncrement: true }),
  userId: integer('user_id').notNull().references(() => users.id),
  title: text('title').notNull(),
  content: text('content'),
  createdAt: integer('created_at', { mode: 'timestamp' })
    .notNull()
    .$defaultFn(() => new Date())
})

CRUD Operations

// server/api/users/index.post.ts
import { users } from '~/server/database/schema'
import { eq } from 'drizzle-orm'

export default defineEventHandler(async (event) => {
  const db = useDB(event)
  const body = await readBody(event)

  // Create
  const [user] = await db.insert(users)
    .values({ name: body.name, email: body.email })
    .returning()

  return { user }
})

// server/api/users/[id].put.ts
export default defineEventHandler(async (event) => {
  const db = useDB(event)
  const id = getRouterParam(event, 'id')
  const body = await readBody(event)

  // Update
  const [user] = await db.update(users)
    .set({ name: body.name })
    .where(eq(users.id, Number(id)))
    .returning()

  if (!user) {
    throw createError({ statusCode: 404, message: 'User not found' })
  }

  return { user }
})

// server/api/users/[id].delete.ts
export default defineEventHandler(async (event) => {
  const db = useDB(event)
  const id = getRouterParam(event, 'id')

  // Delete
  await db.delete(users).where(eq(users.id, Number(id)))

  return { success: true }
})

Validation with Zod

// server/api/users/index.post.ts
import { z } from 'zod'

const createUserSchema = z.object({
  name: z.string().min(2).max(100),
  email: z.string().email(),
  age: z.number().int().min(0).max(150).optional()
})

export default defineEventHandler(async (event) => {
  const body = await readBody(event)

  // Validate
  const result = createUserSchema.safeParse(body)

  if (!result.success) {
    throw createError({
      statusCode: 400,
      message: 'Validation failed',
      data: result.error.flatten()
    })
  }

  // Use validated data
  const { name, email, age } = result.data

  // Create user...
  return { success: true }
})

File Uploads

// server/api/upload.post.ts
export default defineEventHandler(async (event) => {
  const formData = await readMultipartFormData(event)

  if (!formData) {
    throw createError({ statusCode: 400, message: 'No file uploaded' })
  }

  const file = formData.find(f => f.name === 'file')

  if (!file) {
    throw createError({ statusCode: 400, message: 'File field is required' })
  }

  // file.filename - Original filename
  // file.type - MIME type
  // file.data - Buffer with file contents

  // Upload to R2 (Cloudflare)
  const { R2 } = event.context.cloudflare.env
  const key = `uploads/${Date.now()}-${file.filename}`
  await R2.put(key, file.data)

  return { key, filename: file.filename, type: file.type }
})

Server Utilities

// server/utils/auth.ts
import { H3Event } from 'h3'

export function requireAuth(event: H3Event) {
  const user = event.context.user

  if (!user) {
    throw createError({
      statusCode: 401,
      message: 'Authentication required'
    })
  }

  return user
}

export function requireRole(event: H3Event, role: string) {
  const user = requireAuth(event)

  if (user.role !== role) {
    throw createError({
      statusCode: 403,
      message: 'Insufficient permissions'
    })
  }

  return user
}

// Usage in routes
export default defineEventHandler(async (event) => {
  const user = requireAuth(event)
  // or
  const admin = requireRole(event, 'admin')
})

Common Anti-Patterns

Missing Method Suffix

// WRONG - Handles all methods
// server/api/users.ts

// CORRECT - Explicit method
// server/api/users.get.ts   → GET
// server/api/users.post.ts  → POST

Not Throwing Errors

// WRONG - Returns error as data
export default defineEventHandler(async (event) => {
  const user = await findUser(id)
  if (!user) {
    return { error: 'Not found' }  // 200 status!
  }
})

// CORRECT - Throw error
export default defineEventHandler(async (event) => {
  const user = await findUser(id)
  if (!user) {
    throw createError({ statusCode: 404, message: 'Not found' })
  }
})

Forgetting Async/Await

// WRONG - Body not awaited
export default defineEventHandler((event) => {
  const body = readBody(event)  // Returns Promise!
})

// CORRECT
export default defineEventHandler(async (event) => {
  const body = await readBody(event)
})

Troubleshooting

404 on API Routes:

Ensure file is in server/api/ (not app/api/)
Check method suffix matches request (.get.ts for GET)
Verify file extension is .ts

Body is Empty:

Ensure await readBody(event) not readBody(event)
Check Content-Type header is set correctly
For multipart, use readMultipartFormData

Middleware Not Running:

Check file is in server/middleware/
Middleware runs for ALL requests unless filtered

D1 Binding Not Found:

Check wrangler.toml has [[d1_databases]] configured
Access via event.context.cloudflare.env.DB

Related Skills

nuxt-core : Project setup, routing, configuration
nuxt-data : Composables, data fetching, state
nuxt-production : Performance, testing, deployment
cloudflare-d1 : D1 database patterns

Version : 4.0.0 | Last Updated : 2025-12-28 | License : MIT

Weekly Installs

Repository

secondsky/claude-skills

GitHub Stars

First Seen

Jan 25, 2026

Security Audits

Gen Agent Trust HubPass SocketPass SnykPass

Installed on

claude-code66

codex56

gemini-cli55

opencode53

github-copilot52

cursor52

Lark Skill Maker 教程：基于飞书CLI创建AI技能，自动化工作流与API调用指南

45,100 周安装

Nuxt 4 服务器开发指南：基于 Nitro 的 API 路由、后端与全栈开发教程

🇨🇳中文介绍

Nuxt 4 服务器开发

快速参考

基于文件的服务器路由

HTTP 方法后缀

相关 Skills

何时加载参考文档

基本事件处理器

请求工具

URL 参数

查询参数

请求体

Headers

响应工具

设置状态码

重定向

错误处理

Cookies

服务器中间件

在路由中访问上下文

数据库集成

Cloudflare D1 与 Drizzle

模式定义

CRUD 操作

使用 Zod 进行验证

文件上传

服务器工具

常见反模式

缺少方法后缀

未抛出错误

忘记 Async/Await

故障排除

相关技能

🇺🇸English

Nuxt 4 Server Development

Quick Reference

File-Based Server Routes

HTTP Method Suffixes

When to Load References

Basic Event Handler

Request Utilities

URL Parameters

Query Parameters

Request Body

Headers

Response Utilities

Setting Status Code

Redirects

Error Handling

Cookies

Server Middleware

Accessing Context in Routes

Database Integration

Cloudflare D1 with Drizzle

Schema Definition

CRUD Operations

Validation with Zod

File Uploads

Server Utilities

Common Anti-Patterns

Missing Method Suffix

Not Throwing Errors

Forgetting Async/Await

Troubleshooting

Related Skills

最新 Skills