node package manager


nodejs/expressjs/deepjs related tools and middlewares


deepjs/server oriented tools and middlewares for expressjs.

Autobahnjs comes with two kind of tools :

  • middlewares for expressjs
    • context : assign context to each incoming request
    • modes : assign modes (ocm related) to each incoming request (based on current session)
    • restful : map-to-service middleware (HTTP/rest dynamic routing)
    • html : map-to-html middleware (deep-views/routes render map)
    • statics : map-to-files middleware (dynamic map for statics files server)
    • login : retrieve matched user and hold user in current session.
    • logout : break current session.
  • "App" object definition and tools for session/user management through deepjs chained API.


As autobahnjs is an environnement that tie a bunch of tools together and should be piloted from your own index.js : You should use the yeoman autobahnjs generator to get a workable structure.

coming really soon.

Or simply use the example folder, provided in autobahn lib under autobahnjs/lib. when you're in (after clone or npm install) :

npm install
node index.js


Example of autobahnjs "app" and expressjs skeleton

var deep = require("deepjs"),
    express = require('express'),
    autobahn = require("autobahnjs"), // bunch of middlware for expressjs 
    Unit = require("deepjs/lib/unit");  // for deepjs unit testing 
var cookieParser = require('cookie-parser');
var session = require('express-session');
var bodyParser = require('body-parser');
// bind actual JSON-Schema validator. taking one from deepjs core. 
// set root path and cwd (used in certain protocol/stores/chains) 
deep.globals.rootPath = __dirname;
deep.context("cwd", __dirname);
// assign default modes. 
//_________________________ Start your app construction 
var app = express();
// simple app example 
var autobahnApp ={
    // initialise context for each request 
    initContext: function(context){
        // do something 
        return context;
    // Decorate session when logged in.  
    // Used by login middleware and chained API 
    loggedIn: function(session) {
        // logged user is already stored in session. 
        session.myDecoration = true;
        return session;
    // Returns current request modes depending on session.  
    // Used by "modes" middleware and chained API (on login). 
    sessionModes: function(session) 
        // You could use session to make decision.  
        // If you have login, session contains your user. 
        if (session && session.user) // if you have logged in : you're a "user" 
            return { roles: "user" }; 
        else // else you're "public" 
            return { roles: "public" }; 
    // login handler (used by login middleware and chained API) 
    loginConfig: {
        store: "user", // users collection (deepjs protocol or direct reference). 
        encryption: "sha1", // how compare login 
        loginField: "email",  // which field to look in posted json. 
        passwordField: 'password'  // same 
}, app);
// set simple session management (pure expressjs) 
    secret: 'paezijp7YlhgiGOUYgtogz',
    maxAge: new Date( + 3600000)
// to get posted body parsed automatically (json/files/..) 
.use(bodyParser.json({ strict:false, extended:true }))
// ------ context and modes 
.use(autobahn.context.middleware(autobahnApp.initContext)) // create and bind unique context to each incoming request 
.use(autobahn.modes.middleware(autobahnApp.sessionModes)) // assign OCM modes to each incoming req. context 
// ------ login and logout 
.post("/logout", autobahn.logout.middleware())  // catch post on /logout and break session. 
.post("/login", autobahn.login.middleware(autobahnApp))  // catch post on /login and try to login 
// ------ Your maps-to-* middleware 
.use( // deep-restful map-to-services 
.use( // deep-views/deep-routes map-to-html rendering. 
.use(autobahn.statics.middleware(YOUR_STATICS_MAP))  // map-to-statics file server 
///____________________________________________________      Finish app construction 
.use(function(req, res, next) {
    console.log("nothing to do with : ", req.url);
    res.writeHead(404, {
        'Content-Type': 'text/html'
    res.end("error : 404");
// bind global app. Allow us to apply login/logout/impersonate (and more) from chained API. 
console.log("server is listening on port : ", autobahnApp.port);
var repl = require("repl")
    prompt: "node via stdin> ",
    input: process.stdin,
    output: process.stdout

Example of restful map

For full info on how managing/designing restful stores, see deep-restful and deepjs core documentation.

var deep = require("deepjs/deep");
module.exports = {
    "/user": deep.ocm({
        admin: deep.Mongo(null, "mongodb://", "user"),
        user: {
            backgrounds: ["this::../admin", deep.Disallow("del", "flush")]
        "public": {
            backgrounds: ["this::../user", deep.AllowOnly("get")]
    }, {
        protocol: "user",
        sensibleTo: "roles"
    "/foo":deep.Collection("foo", [{ id:"e1", bar:true, zoo:"hello world" }])

Example of html map

For full info on how managing/designing html routes map, see deep-views and deep-routes documentation.

var deep = require("deepjs");
require("deep-node/lib/rest/file/json")({ // create json client that look from /www. use it under "json" protocol. 
    protocol: "json",
    basePath: "/www"
require("deep-swig/lib/nodejs")({ // create swigjs client that look from /www. use it under "swig" protocol. 
    protocol: "swig",
    basePath: "/www"
// map for html pages produced by server. the map itself, or the entries of the map, could be OCM. 
// example of map : 
module.exports = {
        how:"<title>html from server</title>",
        how:"swig::/app.html", // load index from www 
        where:"dom.appendTo::", // NO Selector says : use html merge rules (see deep-jquery) 
                how:"<div>default content</div>",
                how:"<div>hello { name+'!' | 'dude!'}</div>",

Example of statics map

var deep = require("deepjs/deep");
// map for static files served by server (the map itself could be OCM) 
module.exports = {
    "/": [{ // serve root 
        path: deep.globals.rootPath + '/www',
        options: { // native expressjs connect-statics options 
            maxAge: 86400000,
            redirect: false

Usage from outside.

Outside means from you prefered http client (maybe your browser) to the server. If you use previous map in your autobahnjs/express skeleton (as above) :

Open your browser and try by example : ...

And with your prefered restful client, you should try to post/put/patch/del/get/range/... to /foo service.

Usage from "inside"

Inside means from nodejs CLI or from any script executed server side.

  • deep.App(appObj) : holds appObj as main app accessible through chains.
  • deep.login({ email:"", password:"test123"}) : start a contextualised chain, create session, retrieve user, etc. exactly as if you had really logged in from outside (i.e. through http client)
  • .login(...) : from anywhere in a chain, do the same thing than deep.login
  • deep.impersonate({ id:"..." }) : start a contextualised chain, rerieve user an do login without password.
  • .impersonate(...) : from anywhere in a chain, do the same than deep.impersonate
  • .logout() : : from anywhere in a chain, break current session

example :

deep.login({ email:"", password:"..." }) // endoss localy user identity (context, session, modes, ...) 
.restful("myCollection") // take "myCollection" restful collection 
.put({ /*...*/ }) // put something in it as john doe. 
.logout() // break current chain session 
.impersonate({ id:"some_user_id" }) // endoss localy other user identity 
.restful("someCollection")  // ... 
.done(function(s){ /*...*/ })

deepjs core provides additionnaly the .modes(...) API that allow you, by example, to do :

deep.modes({ roles:"admin" }).restful("user").get().log(); // you should see an array with users. 

Manage multiple app (advanced)

Imagine that you produce different expressjs skeleton/autobhan js app in the same nodejs process.

You should want to switch from one to another and/or execute each in its own context. For that you have two method that encapsulate the provided app in chain context.

  • : start a contextualised chain that hold appObj in its context. (advanced)
  • .app(appObj) : from anywhere in a chain, hold appObj in its context. (advanced)