The latest articles on DEV Community by Haikel Fazzani (@haikelfazzani). https://dev.to/haikelfazzani https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F274858%2F99efdd99-4b7b-4e3b-8266-ef3e66622ef5.jpeg https://dev.to/haikelfazzani en Haikel Fazzani Sun, 14 Sep 2025 02:21:28 +0000 https://dev.to/haikelfazzani/the-ultimate-typescript-fetch-wrapper-for-modern-web-applications-51io https://dev.to/haikelfazzani/the-ultimate-typescript-fetch-wrapper-for-modern-web-applications-51io <p>Tired of wrestling with the limitations of the native <code>fetch</code> API? Meet <strong>Stretto</strong>, a lightweight, high-performance TypeScript fetch wrapper that brings enterprise-grade resilience and simplicity to your HTTP requests. Built for modern web applications, Stretto combines the elegance of <code>fetch</code> with powerful features like retries, timeouts, and streaming—without the boilerplate.</p> <h2> Why Native Fetch Falls Short </h2> <p>The <code>fetch</code> API is great for quick HTTP requests, but in production, it leaves gaps:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// Basic fetch - looks simple, but what if it fails?</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://jsonplaceholder.typicode.com/todos/1</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">data</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">response</span><span class="p">.</span><span class="nf">json</span><span class="p">();</span> </code></pre> </div> <p>Real-world challenges like network failures, 503 errors, rate limits, or timeouts can derail your app. Writing custom retry logic, backoff strategies, or stream handling? That’s a lot of code to maintain. Stretto solves these problems while keeping things developer-friendly.</p> <h2> Why Choose Stretto? ✨ </h2> <p>Stretto enhances <code>fetch</code> with production-ready features, making your HTTP requests robust, efficient, and easy to use. Here’s what makes it stand out:</p> <h3> 🔄 <strong>Smart Retries with Exponential Backoff</strong> </h3> <p>Handle transient failures like a pro with Stretto’s intelligent retry mechanism:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">stretto</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">stretto</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">stretto</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://jsonplaceholder.typicode.com/todos/1</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">retries</span><span class="p">:</span> <span class="mi">5</span><span class="p">,</span> <span class="c1">// Try up to 5 times</span> <span class="na">timeout</span><span class="p">:</span> <span class="mi">10000</span> <span class="c1">// 10-second timeout</span> <span class="p">});</span> </code></pre> </div> <p>Stretto uses <strong>exponential backoff with jitter</strong> to avoid overwhelming servers, ensuring your app stays resilient without flooding recovering endpoints.</p> <h3> ⏰ <strong>Effortless Timeout Management</strong> </h3> <p>Timeouts and cancellations shouldn’t be a headache. Stretto’s <code>createTimeoutController</code> simplifies both:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">controller</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">AbortController</span><span class="p">();</span> <span class="nf">setTimeout</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="nx">controller</span><span class="p">.</span><span class="nf">abort</span><span class="p">(),</span> <span class="mi">5000</span><span class="p">);</span> <span class="c1">// Cancel after 5s</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">stretto</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://jsonplaceholder.typicode.com/todos/1</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">signal</span><span class="p">:</span> <span class="nx">controller</span><span class="p">.</span><span class="nx">signal</span><span class="p">,</span> <span class="na">timeout</span><span class="p">:</span> <span class="mi">30000</span> <span class="c1">// 30-second timeout</span> <span class="p">});</span> </code></pre> </div> <p>Optimized for performance, Stretto minimizes memory leaks and ensures clean cancellation.</p> <h3> 🌊 <strong>Zero-Copy Streaming for Big Data</strong> </h3> <p>Need to process large responses or real-time streams? Stretto’s <code>StrettoStreamableResponse</code> delivers <strong>zero-copy streaming</strong> for maximum efficiency:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">stretto</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://sse.dev/test</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">stream</span><span class="p">:</span> <span class="kc">true</span> <span class="p">});</span> <span class="k">for</span> <span class="k">await </span><span class="p">(</span><span class="kd">const</span> <span class="nx">chunk</span> <span class="k">of</span> <span class="nx">response</span><span class="p">)</span> <span class="p">{</span> <span class="nf">processChunk</span><span class="p">(</span><span class="nx">chunk</span><span class="p">);</span> <span class="c1">// Handle data as it arrives</span> <span class="p">}</span> </code></pre> </div> <p>No unnecessary copying, just pure performance.</p> <h3> 📡 <strong>Seamless Server-Sent Events (SSE)</strong> </h3> <p>Real-time apps love Server-Sent Events, but parsing them can be tricky. Stretto’s <code>JSONStreamTransformer</code> makes it a breeze:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">stretto</span><span class="p">,</span> <span class="p">{</span> <span class="nx">JSONStreamTransformer</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">stretto</span><span class="dl">'</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">stretto</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://sse.dev/test</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">stream</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">transformers</span><span class="p">:</span> <span class="p">[</span><span class="k">new</span> <span class="nc">JSONStreamTransformer</span><span class="p">({</span> <span class="na">maxBuffer</span><span class="p">:</span> <span class="mi">8192</span><span class="p">,</span> <span class="na">parseData</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">onParseError</span><span class="p">:</span> <span class="dl">'</span><span class="s1">skip</span><span class="dl">'</span> <span class="p">})]</span> <span class="p">});</span> <span class="k">for</span> <span class="k">await </span><span class="p">(</span><span class="kd">const</span> <span class="nx">event</span> <span class="k">of</span> <span class="nx">response</span><span class="p">)</span> <span class="p">{</span> <span class="nf">handleRealtimeEvent</span><span class="p">(</span><span class="nx">event</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <p>It’s secure, performant, and handles edge cases like buffer overflows with ease.</p> <h2> 🚀 Performance &amp; Security: Built for the Real World </h2> <p>Stretto isn’t just about features—it’s designed for <strong>speed</strong> and <strong>safety</strong>:</p> <ul> <li> <strong>Memory Efficiency</strong>: Zero-copy streaming and buffer reuse keep memory usage low.</li> <li> <strong>Minimal Allocations</strong>: Optimized hot paths reduce overhead.</li> <li> <strong>Buffer Overflow Protection</strong>: Configurable limits prevent memory exhaustion attacks.</li> <li> <strong>Data Security</strong>: Internal buffers are zeroed out to avoid leaks in memory dumps.</li> </ul> <h2> Get Started in Minutes! 🛠️ </h2> <p>Ready to level up your HTTP requests? Installing Stretto is as easy as:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>npm <span class="nb">install </span>stretto </code></pre> </div> <p>Try it with a simple request:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="k">import</span> <span class="nx">stretto</span> <span class="k">from</span> <span class="dl">'</span><span class="s1">stretto</span><span class="dl">'</span><span class="p">;</span> <span class="c1">// Quick and simple</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">stretto</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://jsonplaceholder.typicode.com/todos</span><span class="dl">'</span><span class="p">);</span> <span class="kd">const</span> <span class="nx">data</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">response</span><span class="p">.</span><span class="nf">json</span><span class="p">();</span> <span class="c1">// Or go robust</span> <span class="kd">const</span> <span class="nx">robustResponse</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">stretto</span><span class="p">(</span><span class="dl">'</span><span class="s1">https://api.example.com/data</span><span class="dl">'</span><span class="p">,</span> <span class="p">{</span> <span class="na">retries</span><span class="p">:</span> <span class="mi">3</span><span class="p">,</span> <span class="na">timeout</span><span class="p">:</span> <span class="mi">10000</span><span class="p">,</span> <span class="na">stream</span><span class="p">:</span> <span class="kc">true</span> <span class="p">});</span> </code></pre> </div> <h2> Why Developers ❤️ Stretto </h2> <ul> <li> <strong>Familiar API</strong>: Builds on <code>fetch</code>, so there’s no steep learning curve.</li> <li> <strong>Production-Ready</strong>: Retries, timeouts, and streaming out of the box.</li> <li> <strong>TypeScript-Powered</strong>: Full type safety for confident coding.</li> <li> <strong>Lightweight</strong>: Minimal footprint, maximum impact.</li> </ul> <h2> Join the Stretto Community! 🌟 </h2> <p>Stretto is more than a library—it’s a tool to make your apps more reliable and your life easier. Want to dive in?</p> <ul> <li>📦 Install it: <code>npm install stretto</code> </li> <li>📚 Explore the docs: <a href="https://github.com/wutility/stretto" rel="noopener noreferrer">Stretto GitHub</a> </li> <li>💬 Share your feedback: Join our community discussions!</li> </ul> <p>Try Stretto in your next project and experience HTTP requests done right. Your users—and your future self—will thank you! 🚀</p> Haikel Fazzani Sun, 31 Aug 2025 02:54:19 +0000 https://dev.to/haikelfazzani/simplify-otp-generation-with-one-time-pass-1dbj https://dev.to/haikelfazzani/simplify-otp-generation-with-one-time-pass-1dbj <p>One-Time Passwords (OTPs) are a crucial component of modern authentication systems, providing an extra layer of security through Two-Factor Authentication (2FA).</p> <h2> What is <code>one-time-pass</code>? </h2> <p><code>one-time-pass</code> is a lightweight yet powerful library that generates both <strong>TOTP</strong> (Time-Based One-Time Password) and <strong>HOTP</strong> (HMAC-Based One-Time Password) codes. It adheres to the established standards of <strong>RFC 6238</strong> and <strong>RFC 4226</strong>, ensuring that the generated codes are compatible with popular authenticator apps like Google Authenticator.</p> <p>What makes this library stand out is its commitment to simplicity. With <strong>zero dependencies</strong>, it keeps your project's footprint small and avoids potential dependency conflicts, making it a great choice for a wide range of applications.</p> <h2> Getting Started: Installation and Usage </h2> <p>To begin using the library in your project, you can install it via npm:</p> <p><code>npm i one-time-pass</code></p> <p>The library is designed with a modern syntax, making it easy to import and use with ES modules.</p> <h3> Generating a TOTP Code </h3> <p>TOTP codes are the most common type of OTP, relying on the current time and a shared secret key. Here's how you can generate one:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">generateTOTP</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">one-time-pass</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">secretKey</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">your-super-secret-key</span><span class="dl">"</span><span class="p">;</span> <span class="c1">// This key should be unique for each user</span> <span class="kd">const</span> <span class="nx">totp</span> <span class="o">=</span> <span class="nf">generateTOTP</span><span class="p">(</span><span class="nx">secretKey</span><span class="p">,</span> <span class="p">{</span> <span class="na">timeStep</span><span class="p">:</span> <span class="mi">30</span><span class="p">,</span> <span class="c1">// The time step in seconds (default is 30)</span> <span class="na">digits</span><span class="p">:</span> <span class="mi">6</span><span class="p">,</span> <span class="c1">// The number of digits in the OTP (default is 6)</span> <span class="na">hash</span><span class="p">:</span> <span class="dl">"</span><span class="s2">sha1</span><span class="dl">"</span><span class="p">,</span> <span class="c1">// The hashing algorithm (e.g., "sha1", "sha256", "sha512")</span> <span class="p">});</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">totp</span><span class="p">);</span> <span class="c1">// Outputs a 6-digit TOTP code</span> </code></pre> </div> <h3> Generating an HOTP Code </h3> <p>HOTP codes are counter-based, meaning they change each time the counter is incremented. This is useful for systems where a reliable time source is not available.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">generateHOTP</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">one-time-pass</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">secretKey</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">your-super-secret-key</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">counter</span> <span class="o">=</span> <span class="mi">1234</span><span class="p">;</span> <span class="c1">// The counter value</span> <span class="kd">const</span> <span class="nx">hotp</span> <span class="o">=</span> <span class="nf">generateHOTP</span><span class="p">(</span><span class="nx">secretKey</span><span class="p">,</span> <span class="nx">counter</span><span class="p">,</span> <span class="p">{</span> <span class="na">digits</span><span class="p">:</span> <span class="mi">6</span><span class="p">,</span> <span class="na">hash</span><span class="p">:</span> <span class="dl">"</span><span class="s2">sha1</span><span class="dl">"</span><span class="p">,</span> <span class="p">});</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">hotp</span><span class="p">);</span> <span class="c1">// Outputs a 6-digit HOTP code</span> </code></pre> </div> <h3> Browser Usage </h3> <p>If you're building a client-side application, you can use a CDN to include the library directly via a script tag.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight html"><code><span class="nt">&lt;script </span><span class="na">src=</span><span class="s">"https://cdn.jsdelivr.net/npm/one-time-pass"</span><span class="nt">&gt;&lt;/script&gt;</span> <span class="nt">&lt;script&gt;</span> <span class="c1">// The functions are available globally under the `oneTimePass` object</span> <span class="kd">const</span> <span class="nx">totp</span> <span class="o">=</span> <span class="nx">otp</span><span class="p">.</span><span class="nf">generateTOTP</span><span class="p">(</span><span class="dl">"</span><span class="s2">your-secret-key</span><span class="dl">"</span><span class="p">);</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">totp</span><span class="p">);</span> <span class="nt">&lt;/script&gt;</span> </code></pre> </div> <h2> Conclusion </h2> <p>Whether you're developing for the back end with Node.js or a front-end application, <code>one-time-pass</code> provides a simple, dependable, and efficient way to implement OTP generation. Its zero-dependency approach and adherence to open standards make it an excellent choice for any project that needs robust two-factor authentication without the overhead.</p> <p>To learn more and contribute, check out the <a href="https://github.com/haikelfazzani/otp" rel="noopener noreferrer">one-time-pass GitHub repository</a>.</p> security node deno typescript