JavaScript and TypeScript utilities for Netlify Functions.
npm install @netlify/functions
To use On-demand Builders, wrap your function handler with the builder function.
-
With JavaScript:
const { builder } = require('@netlify/functions') const handler = async (event, context) => { return { statusCode: 200, body: JSON.stringify({ message: 'Hello World' }), } } exports.handler = builder(handler)
-
With TypeScript:
import { builder, Handler } from '@netlify/functions' const myHandler: Handler = async (event, context) => { return { statusCode: 200, body: JSON.stringify({ message: 'Hello World' }), } } const handler = builder(myHandler) export { handler }
This module exports typings for authoring Netlify Functions in TypeScript.
import { Handler } from '@netlify/functions'
const handler: Handler = async (event, context) => {
return {
statusCode: 200,
body: JSON.stringify({ message: 'Hello World' }),
}
}
export { handler }The following types are exported:
HandlerHandlerCallbackHandlerContextHandlerEventHandlerResponse
Note: This feature is currently in beta under Netlify Labs
To make building on and interacting with third-party APIs as simple and powerful as possible, Netlify provides API secret provisioning and management, powered by OneGraph. It’s enabled on a per-site basis under Netlify labs tab, where you can use the Netlify UI to select which services you want to make available for your functions or site builds, and which scopes you need access to.
After you’ve enabled one or more services, you can access the relevant API tokens and secrets in your serverless functions with the getSecrets function exported from the @netlify/functions package.
getSecretsis fully typed, so you’ll have in-editor autocomplete to explore everything that’s available, and to be confident that you’re handling all of the edge cases
import { getSecrets } from '@netlify/functions';
import { Octokit } from '@octokit/rest';
export async function handler(event) {
// check for a owner/org and repo name in the query params
const { owner = 'netlify', repo = 'functions' } = event.queryStringParameters;
// load the secrets enabled via Netlify Auth Management
const secrets = await getSecrets();
// ensure that GitHub auth is enabled for this site
if (!secrets.gitHub?.bearerToken) {
return {
statusCode: 412,
body: JSON.stringify({
error:
'You must enable GitHub auth in your Netlify dashboard: https://app.netlify.com/user/labs',
}),
};
}
// use Octokit with the GitHub secret
const octokit = new Octokit({ auth: secrets.gitHub.bearerToken });
// get a list of all issues assigned to the current user
const result = await octokit.repos.get({ owner, repo });
return {
statusCode: 200,
headers: {
'Content-Type': 'application/json',
},
body: JSON.stringify(result.data),
};
}Auth Token Manager also tracks metadata for installed auth tokens. You can verify that an auth has been installed with the correct scopes before calling into an API (say, for example, to give a better error message in the developer logs). Here's an example:
import { getSecrets } from "@netlify/functions";
export const handler = async (event) => {
// Handle all fetching, refreshing, rotating, etc. of tokens
const secrets = await getSecrets();
// We know that we need either "public_repo" or "repo" scopes granted
// in order to run this function properly
const sufficientScopes = ["public_repo", "repo"];
// Secrets have an optional `grantedScopes` field that has details
// on what the auth is allowed to do
const tokenHasScope = secrets.gitHub.grantedScopes?.some((grantedScope) =>
sufficientScopes.includes(grantedScope.scope)
);
// Notice how we can leave a great error message that tells us exactly what
// we need to do to fix things.
if (!tokenHasScope) {
return {
statusCode: 412,
body: JSON.stringify({
error: `You have enabled GitHub auth in your Netlify Auth dashboard, but it's missing a required scope. The auth must have one (or both) of the scopes: ${sufficientScopes.join(", ")}`,
}),
headers: {
"Content-Type": "application/json",
},
};
}
// ...
}When running your site under netlify dev, the environmental variables that power the auth management will be synced, and you can transparently develop against the third party APIs - no additional configuration necessary!
At any time you can revisit the Auth Token Manager tab for your site in Netlify Labs (select your team, then select your profile avatar, then Netlify Labs) to see the installed auth. From there, you can select new scopes for already-installed auth and then run through the browser-based auth flow again, and the new scopes will be available to all your existing, deployed functions and site builds instantly.
You can also install new services or remove currently-installed services you’re no longer using.
Please see CONTRIBUTING.md for instructions on how to set up and work on this repository. Thanks for contributing!