The latest articles on DEV Community by Harshdeep Singh (@harshdeepsingh13). https://dev.to/harshdeepsingh13 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3965372%2F96507d50-d632-47cf-81c0-0fa1b2ea41bd.png https://dev.to/harshdeepsingh13 en Harshdeep Singh Tue, 02 Jun 2026 21:33:43 +0000 https://dev.to/harshdeepsingh13/full-stack-developer-portfolio-lessons-what-i-learned-building-10-projects-2bdi https://dev.to/harshdeepsingh13/full-stack-developer-portfolio-lessons-what-i-learned-building-10-projects-2bdi <p>I applied for a role at a mid-sized SaaS company about two years into my career. Strong company, interesting problem, good pay. I sent my application, got a recruiter callback, and then nothing for two weeks. When the feedback finally came: "We went with candidates with a stronger portfolio presence."</p> <p>I had 23 GitHub repositories. I had a portfolio site. I had projects. What I didn't have — and what I didn't understand for another six months — was a portfolio that told a story. I had code. Not evidence of thinking, decision-making, or the ability to ship something real.</p> <p>I've since built, rebuilt, and advised on a lot of developer portfolios. I've seen what gets people calls and what gets them ghosted. This isn't a guide about which framework to use or how to pick colors. It's about what actually moves the needle — the things I wish someone had told me in year one.</p> <h2> Lesson 1: Two Great Projects Beat Twenty Mediocre Ones </h2> <p>The instinct is to fill the portfolio. More projects = more evidence of experience. This is wrong.</p> <p>A hiring manager or engineering lead looking at your portfolio has about three minutes. They're going to look at your two or three most prominent projects, click one or two live demo links, and form an opinion. If they see twenty repositories and most of them are "Todo App v2," "Weather App," "Netflix Clone," "Portfolio v1 through v6" — they've already categorized you as someone who builds tutorials, not someone who builds things.</p> <p>The better approach: three to five projects, each with:</p> <ul> <li>A real problem it solves (not "I wanted to learn React")</li> <li>A live deployment that actually works</li> <li>A README that explains why you made the decisions you made</li> <li>Enough complexity to have generated at least one interesting engineering problem</li> </ul> <p>Projects that tend to work: tools you built because you were frustrated with an existing tool, apps solving problems you personally had, projects where you integrated with a real API or real data source, anything with a live user base (even 10 users counts).</p> <p>Projects that tend not to work: tutorial clones (unless heavily modified), apps that only run locally, projects that stop at the MVP and never got deployed, apps with the same name as thousands of other developer portfolios ("My Todo App," "My Weather App").</p> <p>If you have 20 repos, that's fine. Pin your three best to your GitHub profile. Don't make people wade through everything — curate it.</p> <h2> Lesson 2: Case Studies Beat Code Screenshots </h2> <p>Here's the thing about showing a screenshot of your app: everyone can make an app look good in a screenshot. Filters, cropping, ideal state data. A screenshot shows what you built. It tells me nothing about how you think.</p> <p>A case study shows how you think. And how you think is what you're being hired for.</p> <p>A case study doesn't have to be a five-page document. Two or three paragraphs on each project covering:</p> <ul> <li> <strong>The problem.</strong> What did you set out to solve? Be specific. Not "I wanted to learn Next.js" — that's not a problem. "Resume submissions were getting lost in email threads, so I built a tool that…" — that's a problem.</li> <li> <strong>Your approach and the tradeoffs you considered.</strong> What did you think about? What did you try first? What didn't work? This is where you demonstrate that you can make technical decisions, not just execute instructions.</li> <li> <strong>What you shipped.</strong> Not every feature you imagined — what you actually built and deployed.</li> <li> <strong>What you'd do differently.</strong> This one is disarming in the best way. It shows self-awareness, reflection, and the ability to evaluate your own work critically. Engineers who can't critique their own code can't grow.</li> </ul> <p>I've seen portfolios with two projects and a well-written case study for each that outperformed portfolios with fifteen projects and no context. The case study gives an interviewer something to ask about. It shows you've thought deeply about the work. It makes the technical interview easier because you already answered half the questions in writing.</p> <h2> Lesson 3: If It's Not Deployed, It Doesn't Exist </h2> <p>This is the blunt version. A project that runs on localhost is a project you're still working on. It is not a portfolio piece.</p> <p>I've reviewed portfolios where the "live demo" link was a localhost URL. I've seen GitHub repositories where the README says "deployment in progress" with a date from 18 months ago. I've seen apps in screenshots that couldn't actually run because they depended on a local database with no seed data.</p> <p>Deploying has never been easier or cheaper. There's no excuse for a portfolio project that isn't live.</p> <ul> <li> <strong>Frontend:</strong> Vercel (free), Netlify (free), Cloudflare Pages (free). Zero configuration for most frameworks.</li> <li> <strong>Backend / API:</strong> Railway (free tier), Render (free tier), Fly.io (free tier). These all support Node.js, Python, Go, whatever you're running.</li> <li> <strong>Database:</strong> MongoDB Atlas free tier (512MB), Supabase free tier (PostgreSQL), PlanetScale free tier (MySQL).</li> <li> <strong>Full stack:</strong> Railway handles full-stack apps well. Render lets you deploy multiple services from one repo. Both have one-click GitHub deploys.</li> </ul> <p>Total cost of a deployed side project: $0, with a free domain subdomain. Add a custom domain for $12/year and you have a genuinely professional-looking production deployment.</p> <p>There's a secondary benefit to deploying: it forces you to actually finish things. There's a long list of problems you don't know about until you deploy — environment variable management, CORS configuration, database connection pooling, static asset serving. Deploying is part of building. A portfolio project that's never been deployed has never been truly finished.</p> <h2> Lesson 4: The README Is Your First Interview </h2> <p>When a hiring manager or senior engineer clicks the GitHub link from your portfolio, the first thing they see is the README. If it says "A project I made for learning" or has no description at all, they've already lost interest.</p> <p>The README is where you make the technical case for yourself before you're in the room. Here's what a good one contains:</p> <p><strong>First paragraph:</strong> What does this thing do and why does it exist? Not "this is a web app" — tell me the specific problem it solves. One or two sentences.</p> <p><strong>Tech stack and why:</strong> Not just a logo grid. A sentence about why you chose what you chose. "Used PostgreSQL instead of MongoDB because the data has strong relational structure with lots of joins." "Chose Next.js App Router over CRA because we needed SSR for SEO and a built-in API layer." These sentences prove you made intentional decisions.</p> <p><strong>Screenshots or a GIF:</strong> A 10-second screen recording of the app working is worth a thousand words. Not staged, not filtered — just the actual app.</p> <p><strong>How to run it:</strong> Clear, complete instructions. If I clone it and follow your README and it doesn't work, that's a flag. If it works first try, that's a positive signal — it means you document carefully and you care about the developer experience of your code.</p> <p><strong>Known limitations / what you'd do differently:</strong> One paragraph. Shows maturity. "If I built this again, I'd use a message queue for the email sending instead of doing it synchronously in the request lifecycle — it caused timeouts under load."</p> <p>This README takes maybe 45 minutes to write. It dramatically changes how your project is perceived.</p> <h2> Lesson 5: Get Your Own Domain </h2> <p>This one is simple and often skipped. Your portfolio should live at <code>yourname.com</code> or <code>yourname.dev</code> — not <code>github.io/yourname/portfolio</code> or <code>yourname.netlify.app</code>.</p> <p>A custom domain does two things: it signals that you take yourself seriously as a professional, and it's a much better URL to put on a resume, LinkedIn, or business card. "theharshdeepsingh.com" looks intentional. "harshdeep-singh-13.github.io/portfolio-2024" looks like a homework assignment.</p> <p>Domains cost $10–15 per year. That is a rounding error in any budget. Buy yours today. Redirect your GitHub Pages / Vercel / Netlify deployment to it. It takes 30 minutes and it never needs to change — you own it.</p> <p>A note on choosing the domain: use your name. Not your "developer brand" or a clever handle. Names rank in Google. If someone searches for you, they should find your portfolio at the top. A personal domain with your name is one of the easiest SEO wins available to you.</p> <h2> Lesson 6: One AI Integration Changes Everything </h2> <p>Here's the hiring landscape in 2025 from a practical perspective: companies want developers who can work with AI, build on top of AI APIs, and integrate AI capabilities into existing products. This is new enough that not everyone has done it. Old enough that "I'm planning to learn it" isn't a compelling answer.</p> <p>One project with a real AI integration moves you from the pile to the shortlist. Not because AI is a magic word — but because it demonstrates technical currency. You know what the OpenAI API looks like. You've dealt with token limits and streaming and prompt engineering. You've thought about cost and abuse prevention. These are all non-trivial.</p> <p>What counts:</p> <ul> <li>A feature in an existing project that uses GPT-4o, Claude, or Gemini for a specific, meaningful task (not "ask AI anything" — that's too vague to be impressive)</li> <li>A RAG (retrieval-augmented generation) pipeline — document upload, embedding, search, answer generation</li> <li>An agent that takes structured actions based on LLM output (web search, database queries, API calls)</li> <li>A classification or extraction feature that uses an LLM where a simpler approach wouldn't have worked</li> </ul> <p>What doesn't count:</p> <ul> <li>"Used ChatGPT to help me write this code" (everyone does this)</li> <li>A UI wrapper around ChatGPT that just passes prompts through (no engineering decision was made)</li> <li>A project that uses AI for something that a regex would handle just as well</li> </ul> <p>The bar isn't high. Ship one genuinely useful AI feature, document the decisions you made (model selection, prompt design, cost management), and you're ahead of the majority of developers applying for the same roles.</p> <h2> Watch: Portfolio Reviews — What Actually Works </h2> <h2> Weak vs. Strong Portfolio Signals </h2> <p>Signal<br> Weak<br> Strong</p> <p>Project count<br> 20+ repos, half are tutorial clones<br> 3–5 curated projects, each with a clear purpose</p> <p>Project quality<br> Todo apps, weather apps, Netflix/Airbnb clones<br> Tools solving real problems, deployed with real users</p> <p>Live demos<br> No live link, "works on my machine," localhost screenshots<br> Deployed URLs that load in under 3 seconds</p> <p>Documentation<br> No README or "this is a project I made"<br> Problem statement, tech choices explained, known limitations</p> <p>Tech recency<br> Create React App, class components, outdated dependencies<br> Current stack (Next.js 15, TypeScript, modern APIs)</p> <p>AI integration<br> None, or "used AI to help me code"<br> One genuine AI feature with documented engineering decisions</p> <p>Domain<br> github.io/username or platform subdomain<br> yourname.com — personal, memorable, professional</p> <p>Case studies<br> Screenshots in a grid with a "View Project" button<br> Problem → approach → tradeoffs → outcome — per project</p> <h2> What I'd Do on Day 1 If I Were Starting Over </h2> <p>If I were a developer today with no portfolio and a job to find, here's the exact sequence I'd follow:</p> <p><strong>Day 1:</strong> Register <code>firstnamelastname.com</code>. It costs $12. Do it before you build anything. Having the domain makes the whole thing feel real and gives you a deadline.</p> <p><strong>Week 1:</strong> Identify one problem I genuinely have — something I do manually that should be automated, something I've searched for that doesn't exist, something at work that annoys me. Build the simplest version of the solution. Not a full product — a working tool. One feature, deployed.</p> <p><strong>Week 2:</strong> Write the case study. What was the problem? What did I consider? What did I ship? What didn't make the cut? What would I do differently? Two or three paragraphs per question. This is more valuable than the code itself.</p> <p><strong>Week 3:</strong> Add an AI integration to the project — something that actually makes the tool better, not a bolt-on. Even a single endpoint that uses an LLM for classification or text generation counts, as long as it's doing something a simpler approach couldn't.</p> <p><strong>Week 4:</strong> Point the domain at the project. Add the URL to LinkedIn's "Featured" section and your resume. Ask one person who is not a developer to try using the tool and tell you what they're confused by. Fix those things.</p> <p>That's it. One good project, one good case study, one AI integration, a custom domain, a LinkedIn presence. Four weeks. That's a portfolio that gets callbacks. Everything else is refinement.</p> <h2> TL;DR </h2> <ul> <li> <strong>Curate, don't accumulate.</strong> Three deployed projects with case studies beat twenty unfinished repos. Pin your best work. Hide the rest.</li> <li> <strong>Write case studies for every project.</strong> Problem → approach → tradeoffs → outcome → what you'd do differently. This is what interviews are about anyway — you're just answering in advance.</li> <li> <strong>Nothing without a live URL.</strong> Free tiers on Vercel, Railway, and Render make deployment trivial. An undeployed project is an unfinished project.</li> <li> <strong>The README is your first impression from GitHub.</strong> Spend 45 minutes on it. Explain the why, not just the what. Include how to run it. List the limitations. That's a professional developer.</li> <li> <strong>Get the domain.</strong> yourname.com, $12, 30 minutes. It signals intent and makes your portfolio findable in Google searches by your own name.</li> <li> <strong>Build one thing with a real AI integration.</strong> Not a ChatGPT wrapper — a feature that uses an LLM to solve a specific problem in your project, with documented decisions about model selection and prompt design.</li> </ul> portfolio career fullstack jobsearch Harshdeep Singh Tue, 02 Jun 2026 21:28:00 +0000 https://dev.to/harshdeepsingh13/how-to-integrate-the-openai-api-into-a-production-express-app-2mff https://dev.to/harshdeepsingh13/how-to-integrate-the-openai-api-into-a-production-express-app-2mff <p>Last year I helped a startup integrate the OpenAI API into their product. It was a chat feature — users could ask questions about their data and get natural language answers. The integration took about a day. Three days after launch, the founder messaged me: "Hey, something's wrong. Our AWS bill just showed an unexpected charge."</p> <p>It was $340. For three days. They had 60 users.</p> <p>The issue wasn't a bug — it was that production API usage looks nothing like a tutorial. The tutorial shows you <code>openai.chat.completions.create()</code> and returns a response. The tutorial doesn't show you what happens when users send 500-token messages, when they open 15 browser tabs each maintaining their own chat context, or when one user fires requests 30 times per minute because they think it's broken.</p> <p>This guide covers what the tutorials skip: rate limiting, token counting, cost guards, streaming, error handling with retries, and model selection. These aren't optional additions — they're what separates a demo from a production feature.</p> <h2> Why Production Is Different </h2> <p>Here's the gap between tutorial code and production code, stated plainly:</p> <p>Concern<br> Tutorial Code<br> Production Code</p> <p>Cost control<br> Not mentioned<br> Token counting, spending limits, model selection by task</p> <p>Rate limiting<br> Not mentioned<br> Per-user and per-IP limits to prevent abuse</p> <p>Error handling<br> try/catch that logs to console<br> Typed errors, retries with backoff, user-facing messages</p> <p>Response delivery<br> Wait for full completion, return at once<br> Streaming via SSE — response appears as it generates</p> <p>Context management<br> Each request is independent<br> Conversation history managed, truncated at token limit</p> <p>Secrets management<br> API key hardcoded or in <code>.env</code> (no rotation)<br> Rotation strategy, usage monitoring, per-feature keys</p> <p>Let's build a production-grade Express API that addresses all of this. We'll go layer by layer.</p> <h2> The Architecture </h2> <p>┌─────────────────────────────────────────────────────────┐<br> │ CLIENT (Browser / Mobile) │<br> │ POST /api/chat { messages: [...] } │<br> │ GET /api/chat/stream (SSE) │<br> └──────────────────────┬──────────────────────────────────┘<br> │<br> ▼<br> ┌─────────────────────────────────────────────────────────┐<br> │ EXPRESS MIDDLEWARE STACK │<br> │ │<br> │ 1. express-rate-limit (10 req/min per IP) │<br> │ 2. tokenGuard() (reject if &gt; 4,000 tokens) │<br> │ 3. auth middleware (verify user session) │<br> └──────────────────────┬──────────────────────────────────┘<br> │<br> ▼<br> ┌─────────────────────────────────────────────────────────┐<br> │ ROUTE HANDLER │<br> │ │<br> │ Select model by task type │<br> │ Build messages array from context │<br> │ Call openai.chat.completions.create() │<br> │ Stream or return response │<br> └──────────────────────┬──────────────────────────────────┘<br> │<br> ▼<br> ┌─────────────────────────────────────────────────────────┐<br> │ OPENAI API │<br> │ Model: gpt-4o-mini (default) / gpt-4o (complex tasks) │<br> └─────────────────────────────────────────────────────────┘</p> <h2> Project Setup </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>express-openai <span class="o">&amp;&amp;</span> <span class="nb">cd </span>express-openai npm init <span class="nt">-y</span> npm <span class="nb">install </span>express openai express-rate-limit tiktoken dotenv npm <span class="nb">install</span> <span class="nt">--save-dev</span> nodemon </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># .env</span> <span class="nv">OPENAI_API_KEY</span><span class="o">=</span>sk-proj-your-key-here <span class="nv">PORT</span><span class="o">=</span>3001 </code></pre> </div> <h2> Step 1: The OpenAI Client (Configured for Production) </h2> <p>Don't instantiate the OpenAI client inside route handlers. Create it once, configure it for production, and export it:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// src/openaiClient.js</span> <span class="k">import</span> <span class="nx">OpenAI</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">openai</span><span class="dl">"</span><span class="p">;</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">openai</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">OpenAI</span><span class="p">({</span> <span class="na">apiKey</span><span class="p">:</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">OPENAI_API_KEY</span><span class="p">,</span> <span class="na">maxRetries</span><span class="p">:</span> <span class="mi">3</span><span class="p">,</span> <span class="c1">// retry on transient failures (rate limits, timeouts)</span> <span class="na">timeout</span><span class="p">:</span> <span class="mi">30</span><span class="nx">_000</span><span class="p">,</span> <span class="c1">// 30 second timeout — don't hang forever</span> <span class="p">});</span> <span class="c1">// Model selection by task complexity</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">MODELS</span> <span class="o">=</span> <span class="p">{</span> <span class="na">fast</span><span class="p">:</span> <span class="dl">"</span><span class="s2">gpt-4o-mini</span><span class="dl">"</span><span class="p">,</span> <span class="c1">// classification, simple Q&amp;A, summarization</span> <span class="na">smart</span><span class="p">:</span> <span class="dl">"</span><span class="s2">gpt-4o</span><span class="dl">"</span><span class="p">,</span> <span class="c1">// complex reasoning, code generation, analysis</span> <span class="p">};</span> </code></pre> </div> <p>The <code>maxRetries: 3</code> and <code>timeout</code> settings are critical. Without a timeout, a hung OpenAI request will keep your Express server's response object open indefinitely — and if you're running on a serverless function, you'll pay for that idle time.</p> <h2> Step 2: Token Counting and Cost Guard </h2> <p>The <code>tiktoken</code> library is OpenAI's own tokenizer — it counts tokens the exact same way the API does. Use it to reject requests before they hit the API:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// src/tokenCounter.js</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">encoding_for_model</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">tiktoken</span><span class="dl">"</span><span class="p">;</span> <span class="k">export</span> <span class="kd">function</span> <span class="nf">countMessageTokens</span><span class="p">(</span><span class="nx">messages</span><span class="p">,</span> <span class="nx">model</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">gpt-4o-mini</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">enc</span> <span class="o">=</span> <span class="nf">encoding_for_model</span><span class="p">(</span><span class="nx">model</span><span class="p">);</span> <span class="kd">let</span> <span class="nx">totalTokens</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">message</span> <span class="k">of</span> <span class="nx">messages</span><span class="p">)</span> <span class="p">{</span> <span class="nx">totalTokens</span> <span class="o">+=</span> <span class="mi">4</span><span class="p">;</span> <span class="c1">// every message has ~4 tokens of overhead</span> <span class="k">if </span><span class="p">(</span><span class="nx">message</span><span class="p">.</span><span class="nx">role</span><span class="p">)</span> <span class="nx">totalTokens</span> <span class="o">+=</span> <span class="nx">enc</span><span class="p">.</span><span class="nf">encode</span><span class="p">(</span><span class="nx">message</span><span class="p">.</span><span class="nx">role</span><span class="p">).</span><span class="nx">length</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="nx">message</span><span class="p">.</span><span class="nx">content</span><span class="p">)</span> <span class="nx">totalTokens</span> <span class="o">+=</span> <span class="nx">enc</span><span class="p">.</span><span class="nf">encode</span><span class="p">(</span><span class="nx">message</span><span class="p">.</span><span class="nx">content</span><span class="p">).</span><span class="nx">length</span><span class="p">;</span> <span class="nx">totalTokens</span> <span class="o">+=</span> <span class="mi">1</span><span class="p">;</span> <span class="c1">// reply primer</span> <span class="p">}</span> <span class="nx">enc</span><span class="p">.</span><span class="nf">free</span><span class="p">();</span> <span class="c1">// tiktoken requires explicit cleanup</span> <span class="k">return</span> <span class="nx">totalTokens</span> <span class="o">+</span> <span class="mi">3</span><span class="p">;</span> <span class="c1">// overall reply overhead</span> <span class="p">}</span> <span class="c1">// Express middleware — rejects requests over the token limit</span> <span class="k">export</span> <span class="kd">function</span> <span class="nf">tokenGuard</span><span class="p">(</span><span class="nx">maxInputTokens</span> <span class="o">=</span> <span class="mi">4</span><span class="nx">_000</span><span class="p">)</span> <span class="p">{</span> <span class="k">return </span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">,</span> <span class="nx">next</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">messages</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">body</span><span class="p">?.</span><span class="nx">messages</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nb">Array</span><span class="p">.</span><span class="nf">isArray</span><span class="p">(</span><span class="nx">messages</span><span class="p">))</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">400</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">"</span><span class="s2">messages must be an array</span><span class="dl">"</span> <span class="p">});</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">tokenCount</span> <span class="o">=</span> <span class="nf">countMessageTokens</span><span class="p">(</span><span class="nx">messages</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">tokenCount</span> <span class="o">&gt;</span> <span class="nx">maxInputTokens</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">400</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="s2">`Message too long: </span><span class="p">${</span><span class="nx">tokenCount</span><span class="p">}</span><span class="s2"> tokens (limit: </span><span class="p">${</span><span class="nx">maxInputTokens</span><span class="p">}</span><span class="s2">). Shorten your message or clear the conversation.`</span><span class="p">,</span> <span class="nx">tokenCount</span><span class="p">,</span> <span class="na">limit</span><span class="p">:</span> <span class="nx">maxInputTokens</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> <span class="nx">req</span><span class="p">.</span><span class="nx">tokenCount</span> <span class="o">=</span> <span class="nx">tokenCount</span><span class="p">;</span> <span class="c1">// pass downstream for logging</span> <span class="nf">next</span><span class="p">();</span> <span class="p">};</span> <span class="p">}</span> </code></pre> </div> <p>A note on the limit: GPT-4o-mini's context window is 128K tokens, so 4,000 is conservative. But conservative is good here — a user who sends 30,000 tokens in one request is either doing something unusual or has a bug in their client. Reject it, log it, and let them know to clear their context.</p> <h2> Step 3: Rate Limiting </h2> <p>One user shouldn't be able to drain your API budget or trigger OpenAI rate limits for everyone else. Add rate limiting before the AI routes:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// src/middleware/rateLimiter.js</span> <span class="k">import</span> <span class="nx">rateLimit</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">express-rate-limit</span><span class="dl">"</span><span class="p">;</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">aiRateLimiter</span> <span class="o">=</span> <span class="nf">rateLimit</span><span class="p">({</span> <span class="na">windowMs</span><span class="p">:</span> <span class="mi">60</span> <span class="o">*</span> <span class="mi">1000</span><span class="p">,</span> <span class="c1">// 1-minute window</span> <span class="na">max</span><span class="p">:</span> <span class="mi">15</span><span class="p">,</span> <span class="c1">// 15 requests per minute per IP</span> <span class="na">standardHeaders</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="c1">// return RateLimit headers</span> <span class="na">legacyHeaders</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="na">message</span><span class="p">:</span> <span class="p">{</span> <span class="na">error</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Too many requests. Please wait a moment before trying again.</span><span class="dl">"</span><span class="p">,</span> <span class="na">retryAfter</span><span class="p">:</span> <span class="mi">60</span><span class="p">,</span> <span class="p">},</span> <span class="na">keyGenerator</span><span class="p">:</span> <span class="p">(</span><span class="nx">req</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="c1">// Use authenticated user ID if available, otherwise fall back to IP</span> <span class="k">return</span> <span class="nx">req</span><span class="p">.</span><span class="nx">user</span><span class="p">?.</span><span class="nx">id</span> <span class="o">||</span> <span class="nx">req</span><span class="p">.</span><span class="nx">ip</span><span class="p">;</span> <span class="p">},</span> <span class="p">});</span> <span class="c1">// Stricter limit for expensive models</span> <span class="k">export</span> <span class="kd">const</span> <span class="nx">smartModelLimiter</span> <span class="o">=</span> <span class="nf">rateLimit</span><span class="p">({</span> <span class="na">windowMs</span><span class="p">:</span> <span class="mi">60</span> <span class="o">*</span> <span class="mi">1000</span><span class="p">,</span> <span class="na">max</span><span class="p">:</span> <span class="mi">5</span><span class="p">,</span> <span class="na">message</span><span class="p">:</span> <span class="p">{</span> <span class="na">error</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Too many complex requests. Rate limited for 60 seconds.</span><span class="dl">"</span> <span class="p">},</span> <span class="p">});</span> </code></pre> </div> <h2> Step 4: Error Handling with Typed OpenAI Errors </h2> <p>The OpenAI Node SDK throws typed errors. Use them — don't just check <code>err.message</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// src/middleware/openaiErrorHandler.js</span> <span class="k">import</span> <span class="nx">OpenAI</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">openai</span><span class="dl">"</span><span class="p">;</span> <span class="k">export</span> <span class="kd">function</span> <span class="nf">handleOpenAIError</span><span class="p">(</span><span class="nx">err</span><span class="p">,</span> <span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">,</span> <span class="nx">next</span><span class="p">)</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">err</span> <span class="k">instanceof</span> <span class="nx">OpenAI</span><span class="p">.</span><span class="nx">APIError</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="s2">`OpenAI API error: </span><span class="p">${</span><span class="nx">err</span><span class="p">.</span><span class="nx">status</span><span class="p">}</span><span class="s2"> </span><span class="p">${</span><span class="nx">err</span><span class="p">.</span><span class="nx">name</span><span class="p">}</span><span class="s2">`</span><span class="p">,</span> <span class="p">{</span> <span class="na">message</span><span class="p">:</span> <span class="nx">err</span><span class="p">.</span><span class="nx">message</span><span class="p">,</span> <span class="na">requestId</span><span class="p">:</span> <span class="nx">err</span><span class="p">.</span><span class="nx">headers</span><span class="p">?.[</span><span class="dl">"</span><span class="s2">x-request-id</span><span class="dl">"</span><span class="p">],</span> <span class="p">});</span> <span class="k">if </span><span class="p">(</span><span class="nx">err</span><span class="p">.</span><span class="nx">status</span> <span class="o">===</span> <span class="mi">429</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">429</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">"</span><span class="s2">AI service is busy. Please try again in a moment.</span><span class="dl">"</span><span class="p">,</span> <span class="na">retryAfter</span><span class="p">:</span> <span class="nf">parseInt</span><span class="p">(</span><span class="nx">err</span><span class="p">.</span><span class="nx">headers</span><span class="p">?.[</span><span class="dl">"</span><span class="s2">retry-after</span><span class="dl">"</span><span class="p">]</span> <span class="o">||</span> <span class="dl">"</span><span class="s2">5</span><span class="dl">"</span><span class="p">),</span> <span class="p">});</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">err</span><span class="p">.</span><span class="nx">status</span> <span class="o">===</span> <span class="mi">400</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">400</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Invalid request to AI service. Check your message format.</span><span class="dl">"</span><span class="p">,</span> <span class="p">});</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">err</span><span class="p">.</span><span class="nx">status</span> <span class="o">===</span> <span class="mi">401</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">OpenAI authentication failed — check OPENAI_API_KEY</span><span class="dl">"</span><span class="p">);</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">503</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">"</span><span class="s2">AI service unavailable.</span><span class="dl">"</span> <span class="p">});</span> <span class="p">}</span> <span class="p">}</span> <span class="c1">// Not an OpenAI error — pass to your generic error handler</span> <span class="nf">next</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h2> Step 5: The Chat Endpoint (Non-Streaming) </h2> <p>Let's wire everything together for a standard, non-streaming response first:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// src/routes/chat.js</span> <span class="k">import</span> <span class="nx">express</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">express</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">openai</span><span class="p">,</span> <span class="nx">MODELS</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../openaiClient.js</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">tokenGuard</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../tokenCounter.js</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">aiRateLimiter</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../middleware/rateLimiter.js</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">router</span> <span class="o">=</span> <span class="nx">express</span><span class="p">.</span><span class="nc">Router</span><span class="p">();</span> <span class="nx">router</span><span class="p">.</span><span class="nf">post</span><span class="p">(</span> <span class="dl">"</span><span class="s2">/</span><span class="dl">"</span><span class="p">,</span> <span class="nx">aiRateLimiter</span><span class="p">,</span> <span class="nf">tokenGuard</span><span class="p">(</span><span class="mi">4</span><span class="nx">_000</span><span class="p">),</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">,</span> <span class="nx">next</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">messages</span><span class="p">,</span> <span class="nx">useSmartModel</span> <span class="o">=</span> <span class="kc">false</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">body</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">model</span> <span class="o">=</span> <span class="nx">useSmartModel</span> <span class="p">?</span> <span class="nx">MODELS</span><span class="p">.</span><span class="nx">smart</span> <span class="p">:</span> <span class="nx">MODELS</span><span class="p">.</span><span class="nx">fast</span><span class="p">;</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">completion</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">openai</span><span class="p">.</span><span class="nx">chat</span><span class="p">.</span><span class="nx">completions</span><span class="p">.</span><span class="nf">create</span><span class="p">({</span> <span class="nx">model</span><span class="p">,</span> <span class="nx">messages</span><span class="p">,</span> <span class="na">max_tokens</span><span class="p">:</span> <span class="mi">1</span><span class="nx">_000</span><span class="p">,</span> <span class="c1">// cap output tokens to control cost</span> <span class="na">temperature</span><span class="p">:</span> <span class="mf">0.7</span><span class="p">,</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">reply</span> <span class="o">=</span> <span class="nx">completion</span><span class="p">.</span><span class="nx">choices</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">message</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">usage</span> <span class="o">=</span> <span class="nx">completion</span><span class="p">.</span><span class="nx">usage</span><span class="p">;</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">message</span><span class="p">:</span> <span class="nx">reply</span><span class="p">,</span> <span class="na">usage</span><span class="p">:</span> <span class="p">{</span> <span class="na">inputTokens</span><span class="p">:</span> <span class="nx">usage</span><span class="p">.</span><span class="nx">prompt_tokens</span><span class="p">,</span> <span class="na">outputTokens</span><span class="p">:</span> <span class="nx">usage</span><span class="p">.</span><span class="nx">completion_tokens</span><span class="p">,</span> <span class="na">totalTokens</span><span class="p">:</span> <span class="nx">usage</span><span class="p">.</span><span class="nx">total_tokens</span><span class="p">,</span> <span class="na">estimatedCostUsd</span><span class="p">:</span> <span class="nf">estimateCost</span><span class="p">(</span><span class="nx">usage</span><span class="p">,</span> <span class="nx">model</span><span class="p">),</span> <span class="p">},</span> <span class="p">});</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="p">{</span> <span class="nf">next</span><span class="p">(</span><span class="nx">err</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="p">);</span> <span class="kd">function</span> <span class="nf">estimateCost</span><span class="p">(</span><span class="nx">usage</span><span class="p">,</span> <span class="nx">model</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Prices per million tokens (as of mid-2025)</span> <span class="kd">const</span> <span class="nx">pricing</span> <span class="o">=</span> <span class="p">{</span> <span class="dl">"</span><span class="s2">gpt-4o-mini</span><span class="dl">"</span><span class="p">:</span> <span class="p">{</span> <span class="na">input</span><span class="p">:</span> <span class="mf">0.15</span><span class="p">,</span> <span class="na">output</span><span class="p">:</span> <span class="mf">0.60</span> <span class="p">},</span> <span class="dl">"</span><span class="s2">gpt-4o</span><span class="dl">"</span><span class="p">:</span> <span class="p">{</span> <span class="na">input</span><span class="p">:</span> <span class="mf">5.00</span><span class="p">,</span> <span class="na">output</span><span class="p">:</span> <span class="mf">15.00</span> <span class="p">},</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">p</span> <span class="o">=</span> <span class="nx">pricing</span><span class="p">[</span><span class="nx">model</span><span class="p">]</span> <span class="o">||</span> <span class="nx">pricing</span><span class="p">[</span><span class="dl">"</span><span class="s2">gpt-4o-mini</span><span class="dl">"</span><span class="p">];</span> <span class="kd">const</span> <span class="nx">inputCost</span> <span class="o">=</span> <span class="p">(</span><span class="nx">usage</span><span class="p">.</span><span class="nx">prompt_tokens</span> <span class="o">/</span> <span class="mi">1</span><span class="nx">_000_000</span><span class="p">)</span> <span class="o">*</span> <span class="nx">p</span><span class="p">.</span><span class="nx">input</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">outputCost</span> <span class="o">=</span> <span class="p">(</span><span class="nx">usage</span><span class="p">.</span><span class="nx">completion_tokens</span> <span class="o">/</span> <span class="mi">1</span><span class="nx">_000_000</span><span class="p">)</span> <span class="o">*</span> <span class="nx">p</span><span class="p">.</span><span class="nx">output</span><span class="p">;</span> <span class="k">return</span> <span class="nc">Number</span><span class="p">((</span><span class="nx">inputCost</span> <span class="o">+</span> <span class="nx">outputCost</span><span class="p">).</span><span class="nf">toFixed</span><span class="p">(</span><span class="mi">6</span><span class="p">));</span> <span class="p">}</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">router</span><span class="p">;</span> </code></pre> </div> <p>Notice <code>max_tokens: 1_000</code>. Without this, GPT-4o can produce 4,096 output tokens per request. If a user asks it to "write me a book," it will try. The <code>max_tokens</code> cap is your backstop.</p> <h2> Step 6: Streaming Responses with Server-Sent Events </h2> <p>Streaming makes AI features feel responsive. Instead of a blank screen for 3–8 seconds, the user sees text appear word by word. It's the difference between "this feels AI-powered" and "this is broken."<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// src/routes/chat-stream.js</span> <span class="k">import</span> <span class="nx">express</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">express</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">openai</span><span class="p">,</span> <span class="nx">MODELS</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../openaiClient.js</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">tokenGuard</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../tokenCounter.js</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">aiRateLimiter</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../middleware/rateLimiter.js</span><span class="dl">"</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">router</span> <span class="o">=</span> <span class="nx">express</span><span class="p">.</span><span class="nc">Router</span><span class="p">();</span> <span class="nx">router</span><span class="p">.</span><span class="nf">post</span><span class="p">(</span> <span class="dl">"</span><span class="s2">/stream</span><span class="dl">"</span><span class="p">,</span> <span class="nx">aiRateLimiter</span><span class="p">,</span> <span class="nf">tokenGuard</span><span class="p">(</span><span class="mi">4</span><span class="nx">_000</span><span class="p">),</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">,</span> <span class="nx">next</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">messages</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">body</span><span class="p">;</span> <span class="c1">// Establish SSE connection</span> <span class="nx">res</span><span class="p">.</span><span class="nf">setHeader</span><span class="p">(</span><span class="dl">"</span><span class="s2">Content-Type</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">text/event-stream</span><span class="dl">"</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">setHeader</span><span class="p">(</span><span class="dl">"</span><span class="s2">Cache-Control</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">no-cache</span><span class="dl">"</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">setHeader</span><span class="p">(</span><span class="dl">"</span><span class="s2">Connection</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">keep-alive</span><span class="dl">"</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">setHeader</span><span class="p">(</span><span class="dl">"</span><span class="s2">Access-Control-Allow-Origin</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">*</span><span class="dl">"</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">flushHeaders</span><span class="p">();</span> <span class="c1">// send headers immediately</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">stream</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">openai</span><span class="p">.</span><span class="nx">chat</span><span class="p">.</span><span class="nx">completions</span><span class="p">.</span><span class="nf">create</span><span class="p">({</span> <span class="na">model</span><span class="p">:</span> <span class="nx">MODELS</span><span class="p">.</span><span class="nx">fast</span><span class="p">,</span> <span class="nx">messages</span><span class="p">,</span> <span class="na">max_tokens</span><span class="p">:</span> <span class="mi">1</span><span class="nx">_000</span><span class="p">,</span> <span class="na">stream</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="p">});</span> <span class="kd">let</span> <span class="nx">totalOutputTokens</span> <span class="o">=</span> <span class="mi">0</span><span class="p">;</span> <span class="k">for</span> <span class="k">await </span><span class="p">(</span><span class="kd">const</span> <span class="nx">chunk</span> <span class="k">of</span> <span class="nx">stream</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">delta</span> <span class="o">=</span> <span class="nx">chunk</span><span class="p">.</span><span class="nx">choices</span><span class="p">[</span><span class="mi">0</span><span class="p">]?.</span><span class="nx">delta</span><span class="p">?.</span><span class="nx">content</span> <span class="o">??</span> <span class="dl">""</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="nx">delta</span><span class="p">)</span> <span class="p">{</span> <span class="nx">totalOutputTokens</span> <span class="o">+=</span> <span class="mi">1</span><span class="p">;</span> <span class="c1">// approximate; tiktoken is more accurate</span> <span class="nx">res</span><span class="p">.</span><span class="nf">write</span><span class="p">(</span><span class="s2">`data: </span><span class="p">${</span><span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">delta</span><span class="dl">"</span><span class="p">,</span> <span class="na">content</span><span class="p">:</span> <span class="nx">delta</span> <span class="p">})}</span><span class="s2"> `</span><span class="p">);</span> <span class="p">}</span> <span class="c1">// Check for stop reason</span> <span class="k">if </span><span class="p">(</span><span class="nx">chunk</span><span class="p">.</span><span class="nx">choices</span><span class="p">[</span><span class="mi">0</span><span class="p">]?.</span><span class="nx">finish_reason</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">length</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">write</span><span class="p">(</span><span class="s2">`data: </span><span class="p">${</span><span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">warning</span><span class="dl">"</span><span class="p">,</span> <span class="na">message</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Response truncated at token limit</span><span class="dl">"</span> <span class="p">})}</span><span class="s2"> `</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="nx">res</span><span class="p">.</span><span class="nf">write</span><span class="p">(</span><span class="s2">`data: </span><span class="p">${</span><span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">done</span><span class="dl">"</span> <span class="p">})}</span><span class="s2"> `</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">end</span><span class="p">();</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// Send error over SSE before closing</span> <span class="nx">res</span><span class="p">.</span><span class="nf">write</span><span class="p">(</span><span class="s2">`data: </span><span class="p">${</span><span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">type</span><span class="p">:</span> <span class="dl">"</span><span class="s2">error</span><span class="dl">"</span><span class="p">,</span> <span class="na">message</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Generation failed. Please try again.</span><span class="dl">"</span> <span class="p">})}</span><span class="s2"> `</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">end</span><span class="p">();</span> <span class="c1">// Also pass to error handler for logging</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Streaming error:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">err</span><span class="p">.</span><span class="nx">message</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> <span class="p">);</span> <span class="k">export</span> <span class="k">default</span> <span class="nx">router</span><span class="p">;</span> </code></pre> </div> <h2> Watch: OpenAI API with Node.js + Express </h2> <h2> Streaming vs. Non-Streaming — When to Use Which </h2> <p>Factor<br> Non-Streaming<br> Streaming (SSE)</p> <p>User experience<br> Blank screen until done (3–8s)<br> Text appears word by word — feels instant</p> <p>Complexity<br> Standard REST response<br> SSE connection, chunked parsing on frontend</p> <p>Usage logging<br> Easy — <code>completion.usage</code> has exact token counts<br> Harder — token counts only available via the final chunk</p> <p>Caching<br> Can cache the full response<br> Can't cache a stream</p> <p>Best for<br> API-to-API calls, short responses, classification tasks<br> User-facing chat, long completions, code generation</p> <p>Serverless functions<br> Works everywhere<br> Needs long-running connection — use Vercel Edge Functions or a real server</p> <h2> Testing Your OpenAI Integration </h2> <p>Mocking the OpenAI API in tests is a trap. The mock will pass but the real integration will fail in ways you didn't anticipate — different error formats, unexpected token usage, streaming chunk structure variations.</p> <p>Instead:</p> <ul> <li> <strong>Unit test everything except the API call.</strong> Test your token counting, your error handler, your response formatter — all without touching OpenAI. These functions should be pure and deterministic.</li> <li> <strong>Use a cheap model for integration tests.</strong> <code>gpt-4o-mini</code> is $0.15 per million input tokens. Your integration test suite probably costs fractions of a cent to run. Run it.</li> <li> <strong>Record and replay for expensive tests.</strong> Libraries like <code>nock</code> or VCR-style recording let you record real API responses and replay them in future test runs without hitting the API. </li> </ul> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// Example: testing the token guard middleware in isolation</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">tokenGuard</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">../src/tokenCounter.js</span><span class="dl">"</span><span class="p">;</span> <span class="k">import</span> <span class="p">{</span> <span class="nx">createMockMiddlewareContext</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">./helpers.js</span><span class="dl">"</span><span class="p">;</span> <span class="nf">test</span><span class="p">(</span><span class="dl">"</span><span class="s2">tokenGuard rejects messages over the limit</span><span class="dl">"</span><span class="p">,</span> <span class="k">async </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">guard</span> <span class="o">=</span> <span class="nf">tokenGuard</span><span class="p">(</span><span class="mi">10</span><span class="p">);</span> <span class="c1">// tiny limit for test</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">,</span> <span class="nx">next</span> <span class="p">}</span> <span class="o">=</span> <span class="nf">createMockMiddlewareContext</span><span class="p">({</span> <span class="na">body</span><span class="p">:</span> <span class="p">{</span> <span class="na">messages</span><span class="p">:</span> <span class="p">[{</span> <span class="na">role</span><span class="p">:</span> <span class="dl">"</span><span class="s2">user</span><span class="dl">"</span><span class="p">,</span> <span class="na">content</span><span class="p">:</span> <span class="dl">"</span><span class="s2">a</span><span class="dl">"</span><span class="p">.</span><span class="nf">repeat</span><span class="p">(</span><span class="mi">500</span><span class="p">)</span> <span class="p">}],</span> <span class="p">},</span> <span class="p">});</span> <span class="k">await</span> <span class="nf">guard</span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">,</span> <span class="nx">next</span><span class="p">);</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">res</span><span class="p">.</span><span class="nx">statusCode</span><span class="p">).</span><span class="nf">toBe</span><span class="p">(</span><span class="mi">400</span><span class="p">);</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">res</span><span class="p">.</span><span class="nx">body</span><span class="p">.</span><span class="nx">error</span><span class="p">).</span><span class="nf">toContain</span><span class="p">(</span><span class="dl">"</span><span class="s2">too long</span><span class="dl">"</span><span class="p">);</span> <span class="nf">expect</span><span class="p">(</span><span class="nx">next</span><span class="p">).</span><span class="nx">not</span><span class="p">.</span><span class="nf">toHaveBeenCalled</span><span class="p">();</span> <span class="p">});</span> </code></pre> </div> <h2> TL;DR </h2> <ul> <li> <strong>Initialize the OpenAI client once</strong> with <code>maxRetries</code> and <code>timeout</code> set. Don't instantiate it in route handlers or you'll get a new client per request with no retry or timeout configuration.</li> <li> <strong>Count tokens before you call the API.</strong> Use <code>tiktoken</code> to measure input size and reject oversized requests before they cost you money. Set a <code>max_tokens</code> cap on output for the same reason.</li> <li> <strong>Rate limit by user ID, not just IP.</strong> Authenticated users with the same IP (corporate NAT, mobile networks) would all share a single IP limit — use their user ID as the rate limit key.</li> <li> <strong>Use typed error handling</strong> — <code>instanceof OpenAI.APIError</code> gives you the status code, request ID, and message. Turn 429s into user-friendly retry prompts, not 500 errors.</li> <li> <strong>Stream for user-facing features, skip it for internal calls.</strong> SSE streaming transforms the UX for chat interfaces. For batch processing or API-to-API calls, non-streaming is simpler to implement and log.</li> <li> <strong>Test everything except the API call.</strong> Token counting, error handling, and response formatting are all pure functions you can test cheaply. For integration tests, use <code>gpt-4o-mini</code> — it's cheap enough to run in CI.</li> </ul> openai express node ai Harshdeep Singh Tue, 02 Jun 2026 21:27:52 +0000 https://dev.to/harshdeepsingh13/deploying-a-nextjs-app-to-aws-with-cicd-pipelines-step-by-step-2j76 https://dev.to/harshdeepsingh13/deploying-a-nextjs-app-to-aws-with-cicd-pipelines-step-by-step-2j76 <p>The first time I deployed a Next.js app to production, it took me three days. Not because the app was complicated — it was a straightforward portfolio site. It took three days because I had no idea what I was doing with AWS, I'd never written a GitHub Actions workflow, and every tutorial I found either skipped the hard parts or assumed I already knew them.</p> <p>By the time I was done, I had a deployment pipeline I was genuinely proud of: push to main, GitHub Actions runs the build, tests pass, the app deploys to an EC2 instance behind CloudFront. Zero manual steps. Zero downtime deploys. Total cost: about $5/month.</p> <p>This guide is the one I wish had existed. We're going to deploy a Next.js app to AWS from scratch — EC2 for compute, CloudFront for CDN, GitHub Actions for CI/CD — with every step explained so you understand what you're building, not just copying commands.</p> <h2> Why AWS Instead of Vercel? </h2> <p>This is a fair question. Vercel is genuinely excellent for Next.js, and for most projects it's the right call. You push, it deploys. Done.</p> <p>AWS makes sense when:</p> <ul> <li>You need to control the infrastructure (compliance, data residency, custom VPC configuration)</li> <li>You're running other services (databases, queues, lambdas) in AWS and want everything in the same network</li> <li>You want to learn infrastructure skills that transfer to enterprise environments</li> <li>Your app has specific performance requirements that benefit from custom CloudFront configuration</li> <li>You're a freelancer or consultant who wants to bill separately for infrastructure</li> </ul> <p>If none of those apply to you, use Vercel. This guide is for when they do.</p> <h2> The Architecture </h2> <p>Here's what we're building:</p> <p>┌────────────────────────────────────────────────────────┐<br> │ GITHUB ACTIONS CI/CD │<br> │ │<br> │ Push to main → Build → Test → Deploy to EC2 │<br> └──────────────────────┬─────────────────────────────────┘<br> │ SSH deploy<br> ▼<br> ┌────────────────────────────────────────────────────────┐<br> │ AWS EC2 INSTANCE │<br> │ │<br> │ Ubuntu 22.04 LTS │<br> │ Node.js 20 + PM2 (process manager) │<br> │ Next.js app running on port 3000 │<br> │ Nginx reverse proxy (port 80/443 → 3000) │<br> └──────────────────────┬─────────────────────────────────┘<br> │ Origin<br> ▼<br> ┌────────────────────────────────────────────────────────┐<br> │ CLOUDFRONT CDN │<br> │ │<br> │ Static assets cached at edge (/_next/static/*) │<br> │ TTL: 1 year for static, 0 for HTML │<br> │ SSL termination via ACM certificate │<br> │ Custom domain: yourapp.com │<br> └────────────────────────────────────────────────────────┘</p> <p>This isn't the only way to run Next.js on AWS. You could use Elastic Beanstalk, App Runner, ECS, or deploy static exports to S3 + CloudFront. The EC2 + CloudFront approach gives you the most control and transfers the most skills to enterprise environments.</p> <h2> Prerequisites </h2> <ul> <li>An AWS account (free tier works for learning; a t3.micro is enough for small apps)</li> <li>A domain name (optional but recommended — we'll set up SSL)</li> <li>A GitHub repository with your Next.js app</li> <li>Basic familiarity with the AWS console</li> </ul> <p>The total setup takes about 90 minutes the first time. After that, every deployment is automatic.</p> <h2> Step 1: Set Up the EC2 Instance </h2> <p>In the AWS Console, navigate to EC2 and launch a new instance. The settings that matter:</p> <ul> <li> <strong>AMI:</strong> Ubuntu Server 22.04 LTS (free tier eligible)</li> <li> <strong>Instance type:</strong> t3.micro (1 vCPU, 1GB RAM) for small apps; t3.small for medium traffic</li> <li> <strong>Key pair:</strong> Create a new one, download it — you'll need this for SSH and GitHub Actions</li> <li> <strong>Security group:</strong> Allow inbound traffic on ports 22 (SSH), 80 (HTTP), and 443 (HTTPS). Add your IP as the only source for port 22 (don't expose SSH to 0.0.0.0/0).</li> </ul> <p>Once the instance is running, SSH in and set up the environment:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Connect to your instance</span> ssh <span class="nt">-i</span> your-key.pem ubuntu@YOUR_EC2_PUBLIC_IP <span class="c"># Update system packages</span> <span class="nb">sudo </span>apt-get update <span class="o">&amp;&amp;</span> <span class="nb">sudo </span>apt-get upgrade <span class="nt">-y</span> <span class="c"># Install Node.js 20 via NodeSource</span> curl <span class="nt">-fsSL</span> https://deb.nodesource.com/setup_20.x | <span class="nb">sudo</span> <span class="nt">-E</span> bash - <span class="nb">sudo </span>apt-get <span class="nb">install</span> <span class="nt">-y</span> nodejs <span class="c"># Install PM2 globally (process manager for Node.js)</span> <span class="nb">sudo </span>npm <span class="nb">install</span> <span class="nt">-g</span> pm2 <span class="c"># Install Nginx</span> <span class="nb">sudo </span>apt-get <span class="nb">install</span> <span class="nt">-y</span> nginx <span class="c"># Verify everything installed correctly</span> node <span class="nt">--version</span> <span class="c"># v20.x.x</span> npm <span class="nt">--version</span> <span class="c"># 10.x.x</span> pm2 <span class="nt">--version</span> <span class="c"># 5.x.x</span> nginx <span class="nt">-v</span> <span class="c"># nginx/1.24.x</span> </code></pre> </div> <h2> Step 2: Configure Nginx as a Reverse Proxy </h2> <p>Nginx will listen on port 80 and forward requests to your Next.js app on port 3000. This is the standard setup for Node.js apps on Linux servers.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sudo </span>nano /etc/nginx/sites-available/nextjs-app </code></pre> </div> <p>Paste this configuration:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>server <span class="o">{</span> listen 80<span class="p">;</span> server_name YOUR_DOMAIN.com www.YOUR_DOMAIN.com<span class="p">;</span> <span class="c"># Proxy requests to Next.js</span> location / <span class="o">{</span> proxy_pass http://localhost:3000<span class="p">;</span> proxy_http_version 1.1<span class="p">;</span> proxy_set_header Upgrade <span class="nv">$http_upgrade</span><span class="p">;</span> proxy_set_header Connection <span class="s1">'upgrade'</span><span class="p">;</span> proxy_set_header Host <span class="nv">$host</span><span class="p">;</span> proxy_set_header X-Real-IP <span class="nv">$remote_addr</span><span class="p">;</span> proxy_set_header X-Forwarded-For <span class="nv">$proxy_add_x_forwarded_for</span><span class="p">;</span> proxy_set_header X-Forwarded-Proto <span class="nv">$scheme</span><span class="p">;</span> proxy_cache_bypass <span class="nv">$http_upgrade</span><span class="p">;</span> <span class="o">}</span> <span class="c"># Cache Next.js static assets at Nginx level too</span> location /_next/static/ <span class="o">{</span> proxy_pass http://localhost:3000<span class="p">;</span> proxy_cache_valid 200 1y<span class="p">;</span> add_header Cache-Control <span class="s2">"public, max-age=31536000, immutable"</span><span class="p">;</span> <span class="o">}</span> <span class="o">}</span> </code></pre> </div> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Enable the site and test the config</span> <span class="nb">sudo ln</span> <span class="nt">-s</span> /etc/nginx/sites-available/nextjs-app /etc/nginx/sites-enabled/ <span class="nb">sudo </span>nginx <span class="nt">-t</span> <span class="c"># should say "test is successful"</span> <span class="nb">sudo </span>systemctl restart nginx </code></pre> </div> <h2> Step 3: The GitHub Actions Workflow </h2> <p>This is where the CI/CD magic happens. The workflow does four things: checks out code, runs your build, SSHs into the server, and restarts the app. Create this file in your repository:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir</span> <span class="nt">-p</span> .github/workflows </code></pre> </div> <p>Create <code>.github/workflows/deploy.yml</code>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">name</span><span class="pi">:</span> <span class="s">Deploy to AWS EC2</span> <span class="na">on</span><span class="pi">:</span> <span class="na">push</span><span class="pi">:</span> <span class="na">branches</span><span class="pi">:</span> <span class="pi">[</span><span class="nv">main</span><span class="pi">]</span> <span class="na">workflow_dispatch</span><span class="pi">:</span> <span class="c1"># also allow manual triggers</span> <span class="na">jobs</span><span class="pi">:</span> <span class="na">deploy</span><span class="pi">:</span> <span class="na">runs-on</span><span class="pi">:</span> <span class="s">ubuntu-latest</span> <span class="na">steps</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Checkout code</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/checkout@v4</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Set up Node.js</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/setup-node@v4</span> <span class="na">with</span><span class="pi">:</span> <span class="na">node-version</span><span class="pi">:</span> <span class="s2">"</span><span class="s">20"</span> <span class="na">cache</span><span class="pi">:</span> <span class="s2">"</span><span class="s">npm"</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Install dependencies</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm ci</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Run linter</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm run lint</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Build Next.js app</span> <span class="na">run</span><span class="pi">:</span> <span class="s">npm run build</span> <span class="na">env</span><span class="pi">:</span> <span class="c1"># Pass any build-time env vars here</span> <span class="na">NEXT_PUBLIC_GA_ID</span><span class="pi">:</span> <span class="s">${{ secrets.NEXT_PUBLIC_GA_ID }}</span> <span class="pi">-</span> <span class="na">name</span><span class="pi">:</span> <span class="s">Deploy to EC2</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">appleboy/ssh-action@v1.0.3</span> <span class="na">with</span><span class="pi">:</span> <span class="na">host</span><span class="pi">:</span> <span class="s">${{ secrets.EC2_HOST }}</span> <span class="na">username</span><span class="pi">:</span> <span class="s">ubuntu</span> <span class="na">key</span><span class="pi">:</span> <span class="s">${{ secrets.EC2_PRIVATE_KEY }}</span> <span class="na">script</span><span class="pi">:</span> <span class="pi">|</span> <span class="s">cd /var/www/nextjs-app</span> <span class="s"># Pull latest code</span> <span class="s">git pull origin main</span> <span class="s"># Install dependencies (production only)</span> <span class="s">npm ci --omit=dev</span> <span class="s"># Build the app on the server</span> <span class="s">npm run build</span> <span class="s"># Restart with PM2 (zero-downtime reload)</span> <span class="s">pm2 reload nextjs-app --update-env</span> <span class="s">echo "Deploy complete at $(date)"</span> </code></pre> </div> <h2> Step 4: Set Up GitHub Secrets </h2> <p>In your GitHub repository, go to Settings → Secrets and variables → Actions, and add these three secrets:</p> <p>Secret Name<br> Value</p> <p><code>EC2_HOST</code><br> Your EC2 instance's public IP address or domain</p> <p><code>EC2_PRIVATE_KEY</code><br> The full contents of your <code>.pem</code> file (including the BEGIN/END lines)</p> <p><code>NEXT_PUBLIC_GA_ID</code><br> Your Google Analytics measurement ID (or any other public env vars)</p> <p>For the private key, open the .pem file in a text editor, copy everything including <code>-----BEGIN RSA PRIVATE KEY-----</code> and <code>-----END RSA PRIVATE KEY-----</code>, and paste it as the secret value.</p> <h2> Step 5: First Deploy and PM2 Setup </h2> <p>Before the GitHub Action can work, you need to get the app running on the server for the first time:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Clone your repo to the server</span> <span class="nb">sudo mkdir</span> <span class="nt">-p</span> /var/www/nextjs-app <span class="nb">sudo chown </span>ubuntu:ubuntu /var/www/nextjs-app <span class="nb">cd</span> /var/www/nextjs-app git clone https://github.com/YOUR_USERNAME/YOUR_REPO.git <span class="nb">.</span> <span class="c"># Create .env file on the server</span> nano .env <span class="c"># Add your production environment variables here</span> <span class="c"># Install dependencies and build</span> npm ci npm run build <span class="c"># Start with PM2</span> pm2 start npm <span class="nt">--name</span> <span class="s2">"nextjs-app"</span> <span class="nt">--</span> start pm2 save <span class="c"># persist across server restarts</span> pm2 startup <span class="c"># generate startup script</span> <span class="c"># PM2 will output a command to run — run it</span> <span class="c"># Verify the app is running</span> pm2 status curl http://localhost:3000 <span class="c"># should return HTML</span> </code></pre> </div> <h2> Step 6: CloudFront CDN (Optional but Recommended) </h2> <p>CloudFront puts your app behind a global CDN, which means static assets load from an edge location near your users instead of your EC2 server. For most apps, this makes a meaningful difference in load times outside your server's region.</p> <p>In the AWS Console, go to CloudFront and create a new distribution:</p> <ul> <li> <strong>Origin domain:</strong> Your EC2 public IP or domain (not localhost)</li> <li> <strong>Origin protocol policy:</strong> HTTP only (Nginx handles the connection to EC2)</li> <li> <strong>Viewer protocol policy:</strong> Redirect HTTP to HTTPS</li> <li> <strong>Cache policy for <code>/_next/static/*</code>:</strong> <code>CachingOptimized</code> — these files are content-addressed, so they can be cached for years</li> <li> <strong>Cache policy for <code>/*</code> (HTML pages):</strong> <code>CachingDisabled</code> — Next.js handles its own cache headers; CloudFront should pass them through</li> </ul> <p>If you have a domain, attach it to the CloudFront distribution and request an ACM (AWS Certificate Manager) certificate for free SSL. DNS validation takes about 15 minutes.</p> <h2> Watch: Next.js CI/CD to AWS EC2 with GitHub Actions </h2> <h2> Common Pitfalls </h2> <h3> 1. Building on the server vs. building in CI </h3> <p>The workflow above builds in the GitHub Action AND on the server. That's redundant — you only need to do it in one place. For small apps, building on the server is fine (simpler). For larger teams, build in CI, upload the artifact, and skip the build step on the server. The tradeoff: artifacts can be large (100MB+), so you need S3 or similar to store them.</p> <h3> 2. Forgetting to set NODE_ENV=production </h3> <p>When you run <code>npm start</code> (which runs <code>next start</code>), Next.js automatically sets <code>NODE_ENV=production</code>. But PM2 doesn't always inherit this. Be explicit in your PM2 config or startup command:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>pm2 start npm <span class="nt">--name</span> <span class="s2">"nextjs-app"</span> <span class="nt">--</span> start <span class="nt">--</span> <span class="nt">--NODE_ENV</span><span class="o">=</span>production </code></pre> </div> <h3> 3. Not configuring PM2 to restart on crash </h3> <p>By default PM2 restarts crashed processes, but you want to limit restarts to prevent crash loops. Add <code>--max-restarts 10</code> and <code>--min-uptime 5000</code> to your pm2 start command. Five seconds of uptime before a restart counts is usually enough to catch truly broken deployments.</p> <h3> 4. SSH key permissions </h3> <p>The most common SSH error you'll hit is <code>UNPROTECTED PRIVATE KEY FILE</code>. GitHub Actions handles this correctly when you use <code>appleboy/ssh-action</code>, but if you're doing raw SSH commands, your .pem file needs <code>chmod 400 your-key.pem</code> — readable only by the owner, nothing else.</p> <h2> EC2 vs. Vercel vs. AWS Amplify — Which Should You Choose? </h2> <p>Factor<br> EC2 + CloudFront<br> Vercel<br> AWS Amplify</p> <p>Setup time<br> 90 min (first time)<br> 5 min<br> 20 min</p> <p>Next.js feature support<br> Full (you control the runtime)<br> Full (built for Next.js)<br> Most features, some lag</p> <p>Cost at low traffic<br> ~$5/month (t3.micro)<br> Free tier, then $20+/month<br> Pay per build + hosting</p> <p>Cost at high traffic<br> Predictable (fixed instance)<br> Can get expensive fast<br> Moderate</p> <p>Infrastructure control<br> Full — you own everything<br> None — Vercel manages it<br> Partial</p> <p>Learning value<br> High — enterprise-transferable<br> Low (it just works)<br> Medium</p> <p>Best for<br> Learning, compliance, cost control<br> Speed, simplicity, teams<br> Existing AWS customers</p> <h2> TL;DR </h2> <ul> <li> <strong>The stack:</strong> EC2 (compute) + Nginx (reverse proxy) + PM2 (process manager) + CloudFront (CDN) + GitHub Actions (CI/CD). Each layer has one job.</li> <li> <strong>GitHub Actions workflow:</strong> trigger on push to main → install → lint → build → SSH into EC2 → <code>git pull</code> → rebuild → <code>pm2 reload</code>. About 25 lines of YAML.</li> <li> <strong>Store secrets properly:</strong> EC2 host, private key, and env vars go in GitHub repository secrets — never hardcoded in workflow files.</li> <li> <strong>PM2 is essential</strong> for production Node.js — it keeps the process alive, restarts on crash, and enables zero-downtime reloads. Run <code>pm2 startup</code> to make it persist across server reboots.</li> <li> <strong>CloudFront is optional but worth it</strong> — static assets cached at the edge make a real difference for users outside your server's region, and the free ACM SSL certificate saves you the hassle of Certbot configuration.</li> </ul> nextjs aws cicd devops Harshdeep Singh Tue, 02 Jun 2026 21:21:57 +0000 https://dev.to/harshdeepsingh13/react-typescript-best-practices-in-2025-what-actually-matters-22dn https://dev.to/harshdeepsingh13/react-typescript-best-practices-in-2025-what-actually-matters-22dn <p>You open a new React project, add TypeScript, and immediately hit Stack Overflow for how to type your first prop. The first answer says use <code>interface</code>. The second says <code>type</code>. The third is a six-paragraph thread about why one is semantically superior to the other. You close the tab and just write <code>any</code> to get on with your life.</p> <p>Sound familiar? TypeScript in React has a reputation problem. Not because it's hard — it's genuinely great once it clicks — but because the community has generated a staggering volume of contradictory, context-free advice. Every dev tool tutorial starts with TypeScript. Every linting config bans <code>any</code>. Every PR reviewer has a hot take on generics.</p> <p>This guide cuts through that. I'm not going to cover every TypeScript feature or every React pattern. What I'm going to do is share the specific conventions I use in production React + TypeScript apps in 2025 — the things that have made codebases genuinely easier to work in, not just theoretically safer.</p> <h2> What this guide is NOT </h2> <p>Before we get into it, let me set expectations clearly:</p> <ul> <li> <strong>Not a TypeScript basics tutorial.</strong> I'm assuming you know what a type is, what an interface is, and that <code>string !== String</code>.</li> <li> <strong>Not exhaustive.</strong> TypeScript has dozens of utility types, conditional types, template literal types, and more. I'm not covering all of them — just the ones I reach for constantly.</li> <li> <strong>Not framework-neutral.</strong> This is specifically about TypeScript in React apps. Some of these patterns won't apply to a Node.js CLI or a library.</li> <li> <strong>Not about configuration.</strong> Strict mode settings, tsconfig targets, module resolution — another article for another day.</li> </ul> <p>What this guide IS is opinionated. I'm going to tell you what I think the right call is in most situations, and why. You'll disagree with some of it. That's fine.</p> <h2> Typing Props the Right Way </h2> <p>Let's start here because it's where every React + TypeScript journey begins, and where a lot of the confusion lives.</p> <h3> Interface vs. Type Alias </h3> <p>Here's my rule: <strong>use <code>interface</code> for component props, <code>type</code> for everything else</strong>.</p> <p>Why? Interfaces have declaration merging, which can occasionally bite you in unexpected ways, but they also produce cleaner error messages and feel more natural for describing object shapes. They're also what the React community defaults to, so your code will look familiar to anyone joining your team.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Good — interface for component props</span> <span class="kr">interface</span> <span class="nx">ButtonProps</span> <span class="p">{</span> <span class="nl">label</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">onClick</span><span class="p">:</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="k">void</span><span class="p">;</span> <span class="nl">variant</span><span class="p">?:</span> <span class="dl">"</span><span class="s2">primary</span><span class="dl">"</span> <span class="o">|</span> <span class="dl">"</span><span class="s2">secondary</span><span class="dl">"</span> <span class="o">|</span> <span class="dl">"</span><span class="s2">ghost</span><span class="dl">"</span><span class="p">;</span> <span class="nl">disabled</span><span class="p">?:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// Good — type alias for unions and computed shapes</span> <span class="kd">type</span> <span class="nx">ButtonVariant</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">primary</span><span class="dl">"</span> <span class="o">|</span> <span class="dl">"</span><span class="s2">secondary</span><span class="dl">"</span> <span class="o">|</span> <span class="dl">"</span><span class="s2">ghost</span><span class="dl">"</span><span class="p">;</span> <span class="kd">type</span> <span class="nx">Theme</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">light</span><span class="dl">"</span> <span class="o">|</span> <span class="dl">"</span><span class="s2">dark</span><span class="dl">"</span><span class="p">;</span> </code></pre> </div> <p>You'll see guides that say "always use <code>type</code>" or "always use <code>interface</code>." Honestly? Consistency matters more than which one you pick. Pick a rule and stick to it across your codebase.</p> <h3> Required vs. Optional Props </h3> <p>Default to required. Make something optional only when it genuinely has a sensible default or when it's truly not needed in many use cases.</p> <p>This is the inverse of what a lot of developers do. They add <code>?</code> to everything to make TypeScript stop complaining, and then their components have fifteen optional props where most of them are actually always passed. That erases the value of having types at all.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Bad — over-optionalized</span> <span class="kr">interface</span> <span class="nx">CardProps</span> <span class="p">{</span> <span class="nl">title</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">description</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">imageUrl</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">href</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// Good — be explicit about what's truly optional</span> <span class="kr">interface</span> <span class="nx">CardProps</span> <span class="p">{</span> <span class="nl">title</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">description</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">imageUrl</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="c1">// genuinely optional — card can work without an image</span> <span class="nl">href</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="c1">// optional — sometimes cards aren't clickable</span> <span class="p">}</span> </code></pre> </div> <h3> Extending HTML Element Props </h3> <p>This is one of the most useful patterns in React + TypeScript, and it's underused. When you're building a component that wraps an HTML element, extend that element's props so your component accepts all the native attributes automatically.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Without this pattern — you have to manually add every HTML attribute</span> <span class="kr">interface</span> <span class="nx">ButtonProps</span> <span class="p">{</span> <span class="nl">label</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">onClick</span><span class="p">:</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="k">void</span><span class="p">;</span> <span class="c1">// what about type="submit"? aria-label? data-testid? className?</span> <span class="c1">// you'll spend forever adding these one by one</span> <span class="p">}</span> <span class="c1">// With this pattern — extend React's built-in types</span> <span class="kr">interface</span> <span class="nx">ButtonProps</span> <span class="kd">extends</span> <span class="nx">React</span><span class="p">.</span><span class="nx">ButtonHTMLAttributes</span> <span class="p">{</span> <span class="nl">label</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">variant</span><span class="p">?:</span> <span class="dl">"</span><span class="s2">primary</span><span class="dl">"</span> <span class="o">|</span> <span class="dl">"</span><span class="s2">secondary</span><span class="dl">"</span><span class="p">;</span> <span class="c1">// ...and you automatically get onClick, type, aria-*, data-*, className, etc.</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">Button</span> <span class="o">=</span> <span class="p">({</span> <span class="nx">label</span><span class="p">,</span> <span class="nx">variant</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">primary</span><span class="dl">"</span><span class="p">,</span> <span class="p">...</span><span class="nx">rest</span> <span class="p">}:</span> <span class="nx">ButtonProps</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">return </span><span class="p">(</span> <span class="p">{</span><span class="nx">label</span><span class="p">}</span> <span class="p">);</span> <span class="p">};</span> </code></pre> </div> <p>The <code>...rest</code> spread pattern combined with extended HTML props is one of those things that once you start using, you can't go back. Your components become instantly more composable and you stop maintaining a manual list of passthrough props.</p> <h2> Custom Hooks with TypeScript </h2> <p>Custom hooks are where TypeScript really earns its keep, because hooks often manage complex state and return multiple values. If your hook's return type is just inferred as <code>any[]</code>, you've lost all the benefit.</p> <h3> Typing Return Values Explicitly </h3> <p>Always define the return type of custom hooks explicitly. Don't rely on inference here — it breaks down the moment your hook has multiple return paths or conditional logic.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Bad — inferred return type is unreliable</span> <span class="kd">function</span> <span class="nf">useUser</span><span class="p">(</span><span class="nx">id</span><span class="p">:</span> <span class="kr">string</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">user</span><span class="p">,</span> <span class="nx">setUser</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">(</span><span class="kc">null</span><span class="p">);</span> <span class="c1">// typed as null</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">loading</span><span class="p">,</span> <span class="nx">setLoading</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">error</span><span class="p">,</span> <span class="nx">setError</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">(</span><span class="kc">null</span><span class="p">);</span> <span class="c1">// ...fetch logic</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">user</span><span class="p">,</span> <span class="nx">loading</span><span class="p">,</span> <span class="nx">error</span> <span class="p">};</span> <span class="c1">// TypeScript infers this poorly</span> <span class="p">}</span> <span class="c1">// Good — define the return interface explicitly</span> <span class="kr">interface</span> <span class="nx">User</span> <span class="p">{</span> <span class="nl">id</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">name</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">email</span><span class="p">:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">}</span> <span class="kr">interface</span> <span class="nx">UseUserResult</span> <span class="p">{</span> <span class="nl">user</span><span class="p">:</span> <span class="nx">User</span> <span class="o">|</span> <span class="kc">null</span><span class="p">;</span> <span class="nl">loading</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="nl">error</span><span class="p">:</span> <span class="kr">string</span> <span class="o">|</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="kd">function</span> <span class="nf">useUser</span><span class="p">(</span><span class="nx">id</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nx">UseUserResult</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">user</span><span class="p">,</span> <span class="nx">setUser</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">(</span><span class="kc">null</span><span class="p">);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">loading</span><span class="p">,</span> <span class="nx">setLoading</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">error</span><span class="p">,</span> <span class="nx">setError</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">(</span><span class="kc">null</span><span class="p">);</span> <span class="c1">// ...fetch logic</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">user</span><span class="p">,</span> <span class="nx">loading</span><span class="p">,</span> <span class="nx">error</span> <span class="p">};</span> <span class="p">}</span> </code></pre> </div> <p>Now when you destructure this hook in a component, every field is typed correctly, and you get autocomplete without having to remember what the hook returns.</p> <h3> Generics for Reusable Hooks </h3> <p>Okay so here's where hooks get really powerful. If you're building a reusable data-fetching hook, generics let you make it work with any shape of data without losing type safety.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kr">interface</span> <span class="nx">FetchResult</span> <span class="p">{</span> <span class="nl">data</span><span class="p">:</span> <span class="nx">T</span> <span class="o">|</span> <span class="kc">null</span><span class="p">;</span> <span class="nl">loading</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="nl">error</span><span class="p">:</span> <span class="kr">string</span> <span class="o">|</span> <span class="kc">null</span><span class="p">;</span> <span class="p">}</span> <span class="kd">function</span> <span class="nf">useFetch</span><span class="p">(</span><span class="nx">url</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nx">FetchResult</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">data</span><span class="p">,</span> <span class="nx">setData</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">(</span><span class="kc">null</span><span class="p">);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">loading</span><span class="p">,</span> <span class="nx">setLoading</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">(</span><span class="kc">true</span><span class="p">);</span> <span class="kd">const</span> <span class="p">[</span><span class="nx">error</span><span class="p">,</span> <span class="nx">setError</span><span class="p">]</span> <span class="o">=</span> <span class="nf">useState</span><span class="p">(</span><span class="kc">null</span><span class="p">);</span> <span class="nf">useEffect</span><span class="p">(()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">let</span> <span class="nx">cancelled</span> <span class="o">=</span> <span class="kc">false</span><span class="p">;</span> <span class="nf">fetch</span><span class="p">(</span><span class="nx">url</span><span class="p">)</span> <span class="p">.</span><span class="nf">then</span><span class="p">((</span><span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">res</span><span class="p">.</span><span class="nx">ok</span><span class="p">)</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="s2">`HTTP </span><span class="p">${</span><span class="nx">res</span><span class="p">.</span><span class="nx">status</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">()</span> <span class="k">as</span> <span class="nb">Promise</span><span class="p">;</span> <span class="p">})</span> <span class="p">.</span><span class="nf">then</span><span class="p">((</span><span class="nx">d</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">cancelled</span><span class="p">)</span> <span class="p">{</span> <span class="nf">setData</span><span class="p">(</span><span class="nx">d</span><span class="p">);</span> <span class="nf">setLoading</span><span class="p">(</span><span class="kc">false</span><span class="p">);</span> <span class="p">}</span> <span class="p">})</span> <span class="p">.</span><span class="k">catch</span><span class="p">((</span><span class="na">err</span><span class="p">:</span> <span class="nb">Error</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">cancelled</span><span class="p">)</span> <span class="p">{</span> <span class="nf">setError</span><span class="p">(</span><span class="nx">err</span><span class="p">.</span><span class="nx">message</span><span class="p">);</span> <span class="nf">setLoading</span><span class="p">(</span><span class="kc">false</span><span class="p">);</span> <span class="p">}</span> <span class="p">});</span> <span class="k">return </span><span class="p">()</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nx">cancelled</span> <span class="o">=</span> <span class="kc">true</span><span class="p">;</span> <span class="p">};</span> <span class="p">},</span> <span class="p">[</span><span class="nx">url</span><span class="p">]);</span> <span class="k">return</span> <span class="p">{</span> <span class="nx">data</span><span class="p">,</span> <span class="nx">loading</span><span class="p">,</span> <span class="nx">error</span> <span class="p">};</span> <span class="p">}</span> <span class="c1">// Usage — TypeScript knows exactly what data is</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">data</span><span class="p">,</span> <span class="nx">loading</span><span class="p">,</span> <span class="nx">error</span> <span class="p">}</span> <span class="o">=</span> <span class="nf">useFetch</span><span class="p">(</span><span class="dl">"</span><span class="s2">/api/user/123</span><span class="dl">"</span><span class="p">);</span> <span class="c1">// data is typed as User | null — not unknown, not any</span> </code></pre> </div> <p>The <code>T</code> propagates through the entire hook. That's the magic. You call <code>useFetch&lt;User&gt;</code> once at the call site, and TypeScript figures out the rest.</p> <h2> Generic Components </h2> <p>Generics in components are the thing that trips up most mid-level React developers. They look intimidating. They have funny angle-bracket syntax. But once you understand when to reach for them, they save you from maintaining three slightly-different versions of the same component.</p> <h3> When to Use Generic Components </h3> <p>Reach for generics when your component works with data of a variable shape, but still needs to be type-safe. A list component, a select dropdown, a data table — these are classic candidates.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Without generics — you end up with separate UserList, ProjectList, etc.</span> <span class="c1">// or you use any[] and lose type safety</span> <span class="c1">// With generics — one component that works for any data shape</span> <span class="kr">interface</span> <span class="nx">ListProps</span> <span class="p">{</span> <span class="nl">items</span><span class="p">:</span> <span class="nx">T</span><span class="p">[];</span> <span class="nl">renderItem</span><span class="p">:</span> <span class="p">(</span><span class="nx">item</span><span class="p">:</span> <span class="nx">T</span><span class="p">,</span> <span class="nx">index</span><span class="p">:</span> <span class="kr">number</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">React</span><span class="p">.</span><span class="nx">ReactNode</span><span class="p">;</span> <span class="nl">keyExtractor</span><span class="p">:</span> <span class="p">(</span><span class="nx">item</span><span class="p">:</span> <span class="nx">T</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">emptyMessage</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="p">}</span> <span class="kd">function</span> <span class="nf">List</span><span class="p">({</span> <span class="nx">items</span><span class="p">,</span> <span class="nx">renderItem</span><span class="p">,</span> <span class="nx">keyExtractor</span><span class="p">,</span> <span class="nx">emptyMessage</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">No items</span><span class="dl">"</span> <span class="p">}:</span> <span class="nx">ListProps</span><span class="p">)</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">items</span><span class="p">.</span><span class="nx">length</span> <span class="o">===</span> <span class="mi">0</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="p">{</span><span class="nx">emptyMessage</span><span class="p">}</span> <span class="p">;</span> <span class="p">}</span> <span class="k">return </span><span class="p">(</span> <span class="p">{</span><span class="nx">items</span><span class="p">.</span><span class="nf">map</span><span class="p">((</span><span class="nx">item</span><span class="p">,</span> <span class="nx">index</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">(</span> <span class="o">-</span> <span class="p">{</span><span class="nf">renderItem</span><span class="p">(</span><span class="nx">item</span><span class="p">,</span> <span class="nx">index</span><span class="p">)}</span> <span class="p">))}</span> <span class="p">);</span> <span class="p">}</span> <span class="c1">// Usage — TypeScript infers T from the items array</span> <span class="nx">u</span><span class="p">.</span><span class="nx">id</span><span class="p">}</span> <span class="c1">// TypeScript knows u is a User</span> <span class="nx">renderItem</span><span class="o">=</span><span class="p">{(</span><span class="nx">u</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">}</span> <span class="sr">/</span><span class="err">&gt; </span> </code></pre> </div> <p>Notice that you don't even need to write <code>&lt;List&lt;User&gt;&gt;</code> at the call site — TypeScript infers <code>T = User</code> from the <code>items</code> prop. That's inference doing its job.</p> <p>One thing to watch: in <code>.tsx</code> files, the compiler can confuse <code>&lt;T&gt;</code> with a JSX tag. If you get a parse error, either add a constraint (<code>&lt;T extends object&gt;</code>) or use a comma (<code>&lt;T,&gt;</code>) to disambiguate.</p> <h2> Discriminated Unions for State </h2> <p>Here's the thing that's changed how I think about React state more than anything else: replacing boolean flags with discriminated union types. This single pattern eliminates entire categories of bugs.</p> <h3> The Boolean Flag Problem </h3> <p>You've seen this component. You've written this component.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// The boolean flag trap</span> <span class="kr">interface</span> <span class="nx">FormState</span> <span class="p">{</span> <span class="nl">isLoading</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="nl">isSuccess</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="nl">isError</span><span class="p">:</span> <span class="nx">boolean</span><span class="p">;</span> <span class="nl">errorMessage</span><span class="p">?:</span> <span class="kr">string</span><span class="p">;</span> <span class="nl">data</span><span class="p">?:</span> <span class="nx">SubmitResult</span><span class="p">;</span> <span class="p">}</span> <span class="c1">// Nothing stops you from setting isLoading: true AND isSuccess: true simultaneously</span> <span class="c1">// That's an impossible state — but TypeScript can't catch it</span> <span class="kd">const</span> <span class="nx">state</span><span class="p">:</span> <span class="nx">FormState</span> <span class="o">=</span> <span class="p">{</span> <span class="na">isLoading</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">isSuccess</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="c1">// ← this should be impossible</span> <span class="na">isError</span><span class="p">:</span> <span class="kc">false</span><span class="p">,</span> <span class="p">};</span> </code></pre> </div> <p>When you have three booleans representing what should be a single sequential state, you have 2³ = 8 possible combinations, but only 4 of them are actually valid. TypeScript can't protect you from the invalid ones.</p> <h3> The Discriminated Union Fix </h3> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Model the actual states that can exist</span> <span class="kd">type</span> <span class="nx">FormState</span> <span class="o">=</span> <span class="o">|</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="dl">"</span><span class="s2">idle</span><span class="dl">"</span> <span class="p">}</span> <span class="o">|</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="dl">"</span><span class="s2">loading</span><span class="dl">"</span> <span class="p">}</span> <span class="o">|</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="dl">"</span><span class="s2">success</span><span class="dl">"</span><span class="p">;</span> <span class="nl">data</span><span class="p">:</span> <span class="nx">SubmitResult</span> <span class="p">}</span> <span class="o">|</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="dl">"</span><span class="s2">error</span><span class="dl">"</span><span class="p">;</span> <span class="nl">errorMessage</span><span class="p">:</span> <span class="kr">string</span> <span class="p">};</span> <span class="c1">// Now the impossible states are literally unrepresentable</span> <span class="kd">const</span> <span class="nx">state</span><span class="p">:</span> <span class="nx">FormState</span> <span class="o">=</span> <span class="p">{</span> <span class="na">status</span><span class="p">:</span> <span class="dl">"</span><span class="s2">idle</span><span class="dl">"</span> <span class="p">};</span> <span class="c1">// And in your component, TypeScript narrows types automatically</span> <span class="kd">function</span> <span class="nf">FormFeedback</span><span class="p">({</span> <span class="nx">state</span> <span class="p">}:</span> <span class="p">{</span> <span class="nl">state</span><span class="p">:</span> <span class="nx">FormState</span> <span class="p">})</span> <span class="p">{</span> <span class="k">if </span><span class="p">(</span><span class="nx">state</span><span class="p">.</span><span class="nx">status</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">loading</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="p">;</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">state</span><span class="p">.</span><span class="nx">status</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">error</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// TypeScript knows state.errorMessage exists here</span> <span class="k">return</span> <span class="p">;</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="nx">state</span><span class="p">.</span><span class="nx">status</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">success</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="c1">// TypeScript knows state.data exists here</span> <span class="k">return</span> <span class="p">;</span> <span class="p">}</span> <span class="k">return</span> <span class="kc">null</span><span class="p">;</span> <span class="c1">// idle</span> <span class="p">}</span> </code></pre> </div> <p>The key is the <code>status</code> discriminant property. When you narrow on <code>state.status === "error"</code>, TypeScript automatically knows which variant of the union you're in, and which other fields are available.</p> <p>This pattern is especially powerful in data-fetching scenarios, form submission flows, and anywhere you have a multi-step process. Start reaching for it instead of <code>isLoading / isError / isSuccess</code> and your state management will become dramatically cleaner.</p> <h2> Taming any </h2> <p>Let me be direct: <code>any</code> is a code smell, but it's not always your fault. Sometimes you're working with a library that has poor types, an API that returns unpredictable shapes, or legacy code you don't own. The goal isn't to never use <code>any</code> — it's to reach for better tools first.</p> <h3> Use unknown Instead of any for External Data </h3> <p><code>unknown</code> is the type-safe cousin of <code>any</code>. It says "I don't know what this is yet" instead of "pretend this is whatever I need it to be." You can't do anything with an <code>unknown</code> value without first narrowing it with a type guard.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Bad — any lets you do anything, including wrong things</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">fetchData</span><span class="p">(</span><span class="nx">url</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nb">Promise</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">res</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="nx">url</span><span class="p">);</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">();</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">data</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetchData</span><span class="p">(</span><span class="dl">"</span><span class="s2">/api/user</span><span class="dl">"</span><span class="p">);</span> <span class="nx">data</span><span class="p">.</span><span class="nx">doesNotExist</span><span class="p">.</span><span class="nx">boom</span><span class="p">;</span> <span class="c1">// TypeScript is fine with this. Your app is not.</span> <span class="c1">// Good — unknown forces you to validate before using</span> <span class="k">async</span> <span class="kd">function</span> <span class="nf">fetchData</span><span class="p">(</span><span class="nx">url</span><span class="p">:</span> <span class="kr">string</span><span class="p">):</span> <span class="nb">Promise</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">res</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetch</span><span class="p">(</span><span class="nx">url</span><span class="p">);</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">();</span> <span class="p">}</span> <span class="kd">function</span> <span class="nf">isUser</span><span class="p">(</span><span class="nx">value</span><span class="p">:</span> <span class="nx">unknown</span><span class="p">):</span> <span class="nx">value</span> <span class="k">is</span> <span class="nx">User</span> <span class="p">{</span> <span class="k">return </span><span class="p">(</span> <span class="k">typeof</span> <span class="nx">value</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">object</span><span class="dl">"</span> <span class="o">&amp;&amp;</span> <span class="nx">value</span> <span class="o">!==</span> <span class="kc">null</span> <span class="o">&amp;&amp;</span> <span class="dl">"</span><span class="s2">id</span><span class="dl">"</span> <span class="k">in</span> <span class="nx">value</span> <span class="o">&amp;&amp;</span> <span class="dl">"</span><span class="s2">name</span><span class="dl">"</span> <span class="k">in</span> <span class="nx">value</span> <span class="o">&amp;&amp;</span> <span class="k">typeof </span><span class="p">(</span><span class="nx">value</span> <span class="k">as</span> <span class="nx">User</span><span class="p">).</span><span class="nx">id</span> <span class="o">===</span> <span class="dl">"</span><span class="s2">string</span><span class="dl">"</span> <span class="p">);</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">data</span> <span class="o">=</span> <span class="k">await</span> <span class="nf">fetchData</span><span class="p">(</span><span class="dl">"</span><span class="s2">/api/user</span><span class="dl">"</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nf">isUser</span><span class="p">(</span><span class="nx">data</span><span class="p">))</span> <span class="p">{</span> <span class="c1">// TypeScript now knows data is User</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="nx">data</span><span class="p">.</span><span class="nx">name</span><span class="p">);</span> <span class="p">}</span> </code></pre> </div> <h3> Type Guards Are Your Friends </h3> <p>The <code>value is User</code> return type in the example above is a <strong>type guard</strong>. It's a function that tells TypeScript "if this returns true, the value is of type T in the branches that follow." This is how you move from <code>unknown</code> territory into properly typed territory without resorting to <code>any</code>.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="c1">// Reusable type guard pattern</span> <span class="kd">function</span> <span class="nf">isNonNull</span><span class="p">(</span><span class="nx">value</span><span class="p">:</span> <span class="nx">T</span> <span class="o">|</span> <span class="kc">null</span> <span class="o">|</span> <span class="kc">undefined</span><span class="p">):</span> <span class="nx">value</span> <span class="k">is</span> <span class="nx">T</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">value</span> <span class="o">!==</span> <span class="kc">null</span> <span class="o">&amp;&amp;</span> <span class="nx">value</span> <span class="o">!==</span> <span class="kc">undefined</span><span class="p">;</span> <span class="p">}</span> <span class="kd">const</span> <span class="nx">items</span><span class="p">:</span> <span class="p">(</span><span class="nx">User</span> <span class="o">|</span> <span class="kc">null</span><span class="p">)[]</span> <span class="o">=</span> <span class="p">[</span><span class="nx">user1</span><span class="p">,</span> <span class="kc">null</span><span class="p">,</span> <span class="nx">user2</span><span class="p">,</span> <span class="kc">null</span><span class="p">];</span> <span class="kd">const</span> <span class="nx">validUsers</span> <span class="o">=</span> <span class="nx">items</span><span class="p">.</span><span class="nf">filter</span><span class="p">(</span><span class="nx">isNonNull</span><span class="p">);</span> <span class="c1">// typed as User[], not (User | null)[]</span> </code></pre> </div> <h3> When never Is the Right Answer </h3> <p><code>never</code> is the type that can't exist. It's useful for exhaustiveness checks — making sure you've handled every case in a union.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight typescript"><code><span class="kd">type</span> <span class="nx">Shape</span> <span class="o">=</span> <span class="dl">"</span><span class="s2">circle</span><span class="dl">"</span> <span class="o">|</span> <span class="dl">"</span><span class="s2">square</span><span class="dl">"</span> <span class="o">|</span> <span class="dl">"</span><span class="s2">triangle</span><span class="dl">"</span><span class="p">;</span> <span class="kd">function</span> <span class="nf">getArea</span><span class="p">(</span><span class="nx">shape</span><span class="p">:</span> <span class="nx">Shape</span><span class="p">,</span> <span class="nx">size</span><span class="p">:</span> <span class="kr">number</span><span class="p">):</span> <span class="kr">number</span> <span class="p">{</span> <span class="k">switch </span><span class="p">(</span><span class="nx">shape</span><span class="p">)</span> <span class="p">{</span> <span class="k">case</span> <span class="dl">"</span><span class="s2">circle</span><span class="dl">"</span><span class="p">:</span> <span class="k">return</span> <span class="nb">Math</span><span class="p">.</span><span class="nx">PI</span> <span class="o">*</span> <span class="nx">size</span> <span class="o">*</span> <span class="nx">size</span><span class="p">;</span> <span class="k">case</span> <span class="dl">"</span><span class="s2">square</span><span class="dl">"</span><span class="p">:</span> <span class="k">return</span> <span class="nx">size</span> <span class="o">*</span> <span class="nx">size</span><span class="p">;</span> <span class="k">case</span> <span class="dl">"</span><span class="s2">triangle</span><span class="dl">"</span><span class="p">:</span> <span class="k">return </span><span class="p">(</span><span class="nx">size</span> <span class="o">*</span> <span class="nx">size</span><span class="p">)</span> <span class="o">/</span> <span class="mi">2</span><span class="p">;</span> <span class="nl">default</span><span class="p">:</span> <span class="c1">// If you add "hexagon" to the Shape union and forget to handle it here,</span> <span class="c1">// TypeScript will throw a compile error on this line</span> <span class="kd">const</span> <span class="nx">_exhaustiveCheck</span><span class="p">:</span> <span class="nx">never</span> <span class="o">=</span> <span class="nx">shape</span><span class="p">;</span> <span class="k">throw</span> <span class="k">new</span> <span class="nc">Error</span><span class="p">(</span><span class="s2">`Unhandled shape: </span><span class="p">${</span><span class="nx">_exhaustiveCheck</span><span class="p">}</span><span class="s2">`</span><span class="p">);</span> <span class="p">}</span> <span class="p">}</span> </code></pre> </div> <p>This pattern scales beautifully with discriminated unions. Add a new status to your state type, and every switch statement that wasn't updated will fail at compile time. That's exactly the kind of safety net TypeScript is supposed to provide.</p> <h2> Before vs. After: TypeScript Patterns </h2> <p>Here's a quick-reference table of the common before/after shifts. These are the six patterns I most often see in code review that a bit of TypeScript discipline cleans up immediately.</p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code> Pattern<br> Without TypeScript Discipline<br> With TypeScript Discipline <p><strong>Prop typing</strong><br> <code>props: any</code> or no types at all<br> <code>interface ButtonProps extends React.ButtonHTMLAttributes&amp;lt;HTMLButtonElement&amp;gt;</code></p> <p><strong>Optional props</strong><br> Everything is <code>?</code> to avoid errors<br> Only truly optional fields are optional; defaults handled by destructuring</p> <p><strong>Loading/error state</strong><br> <code>isLoading: boolean, isError: boolean, isSuccess: boolean</code><br> Discriminated union: <code>{ status: "idle" | "loading" | "success" | "error" }</code></p> <p><strong>External API data</strong><br> <code>const data: any = await fetch(...).then(r =&amp;gt; r.json())</code><br> <code>const data: unknown</code> + type guard before use</p> <p><strong>Reusable list</strong><br> Separate <code>UserList</code>, <code>ProjectList</code> components with duplicated logic<br> One generic <code>List&amp;lt;T&amp;gt;</code> component with typed <code>renderItem</code> and <code>keyExtractor</code></p> <p><strong>Hook return type</strong><br> Inferred — breaks on multiple return paths, confusing autocomplete<br> Explicit <code>interface UseXxxResult { ... }</code> as the return type annotation<br> </p></code></pre> </div> <h2> <br> <br> <br> Module Structure for a TypeScript React Project<br> </h2> <p>Okay, one more thing worth getting right from the start: where files live. A consistent folder structure does more for long-term maintainability than almost any TypeScript pattern. Here's the structure I use and recommend for mid-to-large React + TypeScript apps in 2025.</p> <p>src/<br> ├── app/ # Next.js App Router pages (or pages/ for older setup)<br> │ ├── layout.tsx<br> │ ├── page.tsx<br> │ └── blog/<br> │ └── [slug]/<br> │ └── page.tsx<br> │<br> ├── components/ # Shared UI components<br> │ ├── Button/<br> │ │ ├── Button.tsx # Component<br> │ │ ├── Button.types.ts # Interface / type exports<br> │ │ ├── Button.styles.ts# Styled components or CSS module<br> │ │ └── index.ts # Re-export for clean imports<br> │ └── List/<br> │ └── ...<br> │<br> ├── hooks/ # Custom hooks<br> │ ├── useFetch.ts<br> │ ├── useLocalStorage.ts<br> │ └── useDebounce.ts<br> │<br> ├── lib/ # Utilities, helpers, non-UI logic<br> │ ├── api.ts # Fetch wrappers<br> │ ├── formatters.ts # Date, currency, string helpers<br> │ └── validators.ts # Type guards and runtime validation<br> │<br> ├── types/ # Shared TypeScript types<br> │ ├── api.ts # API response shapes<br> │ ├── models.ts # Domain model interfaces (User, Post, etc.)<br> │ └── index.ts # Re-exports<br> │<br> ├── context/ # React context providers<br> │ └── ThemeContext.tsx<br> │<br> └── styles/ # Global styles, theme tokens<br> └── globals.css</p> <p>A few rules I enforce in this structure:</p> <ul> <li> <strong>Co-locate component types.</strong> Each component folder has its own <code>.types.ts</code> file. Don't dump all types into a single global <code>types.ts</code> — that file becomes a graveyard.</li> <li> <strong>The <code>types/</code> directory is for shared domain types only.</strong> API response shapes, database models, shared interfaces that more than one component needs. Not component-specific props.</li> <li> <strong>Barrel files are useful but dangerous.</strong> An <code>index.ts</code> in each component folder is fine. A single barrel for your entire <code>components/</code> directory will cause circular dependency nightmares in larger apps.</li> <li> <strong>Hooks go in <code>hooks/</code>, not co-located with components.</strong> This is a deliberate choice against the "co-locate everything" philosophy. In my experience, hooks get reused across features, and burying them inside a component folder makes them harder to find and share.</li> </ul> <h2> TL;DR </h2> <ul> <li> <strong>Use <code>interface</code> for component props, <code>type</code> for everything else</strong> — pick a rule and apply it consistently. Default to required props; only mark things optional when they genuinely are.</li> <li> <strong>Extend HTML element props</strong> using <code>React.ButtonHTMLAttributes&lt;HTMLButtonElement&gt;</code> and friends — this gets you all native attributes for free and makes components composable with <code>...rest</code>.</li> <li> <strong>Always annotate custom hook return types explicitly</strong> — define a <code>UseXxxResult</code> interface and return it. Don't trust inference when there's conditional logic involved.</li> <li> <strong>Use discriminated unions instead of boolean flags</strong> for anything with multiple states — <code>{ status: "idle" | "loading" | "success" | "error" }</code> is safer, clearer, and catches impossible states at compile time.</li> <li> <strong>Replace <code>any</code> with <code>unknown</code> at API boundaries</strong> — then validate with type guards before use. Save <code>never</code> for exhaustiveness checks in switch statements.</li> <li> <strong>Structure your modules intentionally</strong> — co-locate component types, put shared domain types in <code>types/</code>, hooks in <code>hooks/</code>, and use barrel files per component folder (not globally).</li> </ul> react typescript frontend bestpractices Harshdeep Singh Tue, 02 Jun 2026 21:21:55 +0000 https://dev.to/harshdeepsingh13/how-to-build-an-ai-resume-builder-with-langchain-and-nodejs-54ig https://dev.to/harshdeepsingh13/how-to-build-an-ai-resume-builder-with-langchain-and-nodejs-54ig <p>A few months back, my friend Marcus was applying for a senior backend role at a fintech company. He had five years of solid experience — distributed systems, AWS, the whole stack. But his resume read like a list of job descriptions someone had copied from LinkedIn. "Responsible for maintaining microservices." "Assisted with CI/CD pipeline implementation." You know the type.</p> <p>I told him: the problem isn't what you did, it's how you're saying it. Hiring managers spend about six seconds on a resume before deciding whether to read it properly. Six seconds. And if those six seconds are spent reading "responsible for maintaining" — you've lost them.</p> <p>We spent two hours rewriting it together. Every bullet point started with a strong verb. Every achievement had a number. "Reduced API response time by 40% by introducing Redis caching across three high-traffic endpoints." Much better. Marcus got the interview.</p> <p>The obvious next thought was: what if you could automate this? Not in the "dump your resume into ChatGPT and ask it to make it better" way — that produces generic slop. I mean a real, structured AI pipeline that understands resume context, applies professional rewriting patterns, and returns clean, job-specific output.</p> <p>That's what LangChain is built for. And in this guide, we're going to build exactly that: an AI-powered resume rewriter using LangChain and Node.js, with a real Express API, streaming responses, and the kind of prompt engineering that actually produces good results.</p> <h2> What Is LangChain, and Why Bother? </h2> <p>Here's the honest answer: LangChain is an orchestration framework for building applications on top of large language models. Think of it the way you'd think of Express.js — Express doesn't do anything you couldn't do with raw Node's <code>http</code> module, but it gives you a structured, composable way to build web apps that doesn't collapse under its own weight.</p> <p>LangChain does the same thing for LLM applications. You <em>could</em> just call the OpenAI API directly everywhere. For a one-off script, that's fine. But as soon as your app grows — different prompts for different tasks, multi-step reasoning chains, memory across conversations — raw API calls get messy fast.</p> <p>Here's what raw OpenAI API code looks like once a project grows:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// Raw OpenAI — works, but scales badly</span> <span class="kd">const</span> <span class="nx">response</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">openai</span><span class="p">.</span><span class="nx">chat</span><span class="p">.</span><span class="nx">completions</span><span class="p">.</span><span class="nf">create</span><span class="p">({</span> <span class="na">model</span><span class="p">:</span> <span class="dl">"</span><span class="s2">gpt-4</span><span class="dl">"</span><span class="p">,</span> <span class="na">messages</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="na">role</span><span class="p">:</span> <span class="dl">"</span><span class="s2">system</span><span class="dl">"</span><span class="p">,</span> <span class="na">content</span><span class="p">:</span> <span class="nx">systemPrompt</span> <span class="p">},</span> <span class="p">{</span> <span class="na">role</span><span class="p">:</span> <span class="dl">"</span><span class="s2">user</span><span class="dl">"</span><span class="p">,</span> <span class="na">content</span><span class="p">:</span> <span class="s2">`Rewrite this section: </span><span class="p">${</span><span class="nx">section</span><span class="p">}</span><span class="s2">`</span> <span class="p">}</span> <span class="p">]</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">rewritten</span> <span class="o">=</span> <span class="nx">response</span><span class="p">.</span><span class="nx">choices</span><span class="p">[</span><span class="mi">0</span><span class="p">].</span><span class="nx">message</span><span class="p">.</span><span class="nx">content</span><span class="p">;</span> </code></pre> </div> <p>That's fine for one call. Now add: prompt versioning, chaining that output into a second model call, memory from previous messages, fallback to a different model when rate limits hit, streaming output to the client. Suddenly you're managing a lot of state manually.</p> <p>LangChain handles all of that with composable primitives: <code>PromptTemplate</code> for reusable, testable prompts; <code>LLMChain</code> for connecting a prompt to a model; <code>SequentialChain</code> for multi-step pipelines; built-in streaming support; and integrations with every major LLM provider.</p> <p>For our resume builder, the chain looks like this: parse the resume into structured sections, run each section through a prompt that produces action-oriented bullet points, then return the assembled result. Let's build it.</p> <h2> What We're Building </h2> <p>Before we write a line of code, here's the system at a glance:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>┌─────────────────────────────────────────────────────┐ │ CLIENT (Frontend) │ │ POST /api/rewrite { resumeText, section } │ └──────────────────────┬──────────────────────────────┘ │ ▼ ┌─────────────────────────────────────────────────────┐ │ EXPRESS API (Node.js) │ │ 1. Validate input │ │ 2. Parse resume into sections │ │ 3. Call LangChain rewrite chain │ │ 4. Return improved bullet points │ └──────────────────────┬──────────────────────────────┘ │ ▼ ┌─────────────────────────────────────────────────────┐ │ LANGCHAIN REWRITE CHAIN │ │ PromptTemplate → ChatOpenAI (GPT-4) → Output │ └──────────────────────┬──────────────────────────────┘ │ ▼ ┌─────────────────────────────────────────────────────┐ │ OPENAI API (GPT-4) │ └─────────────────────────────────────────────────────┘ </code></pre> </div> <p>Nothing revolutionary — but each layer has a single, testable job. The chain is the interesting part, so let's get there quickly.</p> <h2> Project Setup </h2> <p>Start a new Node.js project and install the dependencies:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir </span>resume-ai <span class="o">&amp;&amp;</span> <span class="nb">cd </span>resume-ai npm init <span class="nt">-y</span> npm <span class="nb">install </span>express langchain @langchain/openai @langchain/core dotenv </code></pre> </div> <p>Create a <code>.env</code> file at the root:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nv">OPENAI_API_KEY</span><span class="o">=</span>sk-your-key-here <span class="nv">PORT</span><span class="o">=</span>3001 </code></pre> </div> <p>And your project structure:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight plaintext"><code>resume-ai/ ├── src/ │ ├── parseResume.js │ ├── resumeChain.js │ └── app.js ├── .env └── package.json </code></pre> </div> <p>Add <code>"type": "module"</code> to <code>package.json</code> so we can use ES module syntax throughout.</p> <h2> Step 1: Parsing the Resume </h2> <p>This is the unglamorous part that everyone skips, and it's why most AI resume tools produce garbage. You can't just throw 800 words of resume text at a model and ask it to "make it better." You need to isolate the section you're improving — otherwise the model is operating without context.</p> <p>Here's a simple section parser. It's not perfect — real resumes come in dozens of formats — but it handles the common patterns:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="c1">// src/parseResume.js</span> <span class="k">export</span> <span class="kd">function</span> <span class="nf">parseResumeText</span><span class="p">(</span><span class="nx">rawText</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">sections</span> <span class="o">=</span> <span class="p">{</span> <span class="na">summary</span><span class="p">:</span> <span class="dl">""</span><span class="p">,</span> <span class="na">experience</span><span class="p">:</span> <span class="p">[],</span> <span class="na">skills</span><span class="p">:</span> <span class="p">[],</span> <span class="na">education</span><span class="p">:</span> <span class="p">[],</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">sectionKeywords</span> <span class="o">=</span> <span class="p">{</span> <span class="na">summary</span><span class="p">:</span> <span class="p">[</span><span class="dl">"</span><span class="s2">summary</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">objective</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">profile</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">about</span><span class="dl">"</span><span class="p">],</span> <span class="na">experience</span><span class="p">:</span> <span class="p">[</span><span class="dl">"</span><span class="s2">experience</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">employment</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">work history</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">career</span><span class="dl">"</span><span class="p">],</span> <span class="na">skills</span><span class="p">:</span> <span class="p">[</span><span class="dl">"</span><span class="s2">skills</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">technical skills</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">technologies</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">competencies</span><span class="dl">"</span><span class="p">],</span> <span class="na">education</span><span class="p">:</span> <span class="p">[</span><span class="dl">"</span><span class="s2">education</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">academic</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">degree</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">university</span><span class="dl">"</span><span class="p">],</span> <span class="p">};</span> <span class="kd">const</span> <span class="nx">lines</span> <span class="o">=</span> <span class="nx">rawText</span><span class="p">.</span><span class="nf">split</span><span class="p">(</span><span class="dl">"</span><span class="se">\n</span><span class="dl">"</span><span class="p">).</span><span class="nf">filter</span><span class="p">((</span><span class="nx">l</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">l</span><span class="p">.</span><span class="nf">trim</span><span class="p">().</span><span class="nx">length</span> <span class="o">&gt;</span> <span class="mi">0</span><span class="p">);</span> <span class="kd">let</span> <span class="nx">currentSection</span> <span class="o">=</span> <span class="kc">null</span><span class="p">;</span> <span class="k">for </span><span class="p">(</span><span class="kd">const</span> <span class="nx">line</span> <span class="k">of</span> <span class="nx">lines</span><span class="p">)</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">lowerLine</span> <span class="o">=</span> <span class="nx">line</span><span class="p">.</span><span class="nf">toLowerCase</span><span class="p">().</span><span class="nf">trim</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">detected</span> <span class="o">=</span> <span class="nb">Object</span><span class="p">.</span><span class="nf">entries</span><span class="p">(</span><span class="nx">sectionKeywords</span><span class="p">).</span><span class="nf">find</span><span class="p">(([,</span> <span class="nx">keywords</span><span class="p">])</span> <span class="o">=&gt;</span> <span class="nx">keywords</span><span class="p">.</span><span class="nf">some</span><span class="p">((</span><span class="nx">kw</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="nx">lowerLine</span><span class="p">.</span><span class="nf">includes</span><span class="p">(</span><span class="nx">kw</span><span class="p">))</span> <span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">detected</span> <span class="o">&amp;&amp;</span> <span class="nx">lowerLine</span><span class="p">.</span><span class="nx">length</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">resumeText</span><span class="p">,</span> <span class="nx">targetSection</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">body</span><span class="p">;</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">resumeText</span> <span class="o">||</span> <span class="k">typeof</span> <span class="nx">resumeText</span> <span class="o">!==</span> <span class="dl">"</span><span class="s2">string</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">400</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">"</span><span class="s2">resumeText is required</span><span class="dl">"</span> <span class="p">});</span> <span class="p">}</span> <span class="k">if </span><span class="p">(</span><span class="o">!</span><span class="nx">targetSection</span> <span class="o">||</span> <span class="k">typeof</span> <span class="nx">targetSection</span> <span class="o">!==</span> <span class="dl">"</span><span class="s2">string</span><span class="dl">"</span><span class="p">)</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">400</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">"</span><span class="s2">targetSection is required</span><span class="dl">"</span> <span class="p">});</span> <span class="p">}</span> <span class="c1">// Stay within token limits — GPT-4 context window is large,</span> <span class="c1">// but we don't need to send the whole resume every time.</span> <span class="kd">const</span> <span class="nx">resumeContext</span> <span class="o">=</span> <span class="nx">resumeText</span><span class="p">.</span><span class="nf">slice</span><span class="p">(</span><span class="mi">0</span><span class="p">,</span> <span class="mi">3000</span><span class="p">);</span> <span class="k">try</span> <span class="p">{</span> <span class="kd">const</span> <span class="nx">result</span> <span class="o">=</span> <span class="k">await</span> <span class="nx">rewriteChain</span><span class="p">.</span><span class="nf">call</span><span class="p">({</span> <span class="nx">resumeContext</span><span class="p">,</span> <span class="na">sectionText</span><span class="p">:</span> <span class="nx">targetSection</span><span class="p">,</span> <span class="p">});</span> <span class="nx">res</span><span class="p">.</span><span class="nf">json</span><span class="p">({</span> <span class="na">original</span><span class="p">:</span> <span class="nx">targetSection</span><span class="p">,</span> <span class="na">rewritten</span><span class="p">:</span> <span class="nx">result</span><span class="p">.</span><span class="nx">text</span><span class="p">.</span><span class="nf">trim</span><span class="p">(),</span> <span class="p">});</span> <span class="p">}</span> <span class="k">catch </span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="p">{</span> <span class="nx">console</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="dl">"</span><span class="s2">Chain error:</span><span class="dl">"</span><span class="p">,</span> <span class="nx">err</span><span class="p">.</span><span class="nx">message</span><span class="p">);</span> <span class="k">if </span><span class="p">(</span><span class="nx">err</span><span class="p">.</span><span class="nx">message</span><span class="p">?.</span><span class="nf">includes</span><span class="p">(</span><span class="dl">"</span><span class="s2">Rate limit</span><span class="dl">"</span><span class="p">))</span> <span class="p">{</span> <span class="k">return</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">429</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Rate limit hit. Try again in a moment.</span><span class="dl">"</span> <span class="p">});</span> <span class="p">}</span> <span class="nx">res</span><span class="p">.</span><span class="nf">status</span><span class="p">(</span><span class="mi">500</span><span class="p">).</span><span class="nf">json</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="dl">"</span><span class="s2">Rewrite failed. Check your OpenAI API key.</span><span class="dl">"</span> <span class="p">});</span> <span class="p">}</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">PORT</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">PORT</span> <span class="o">||</span> <span class="mi">3001</span><span class="p">;</span> <span class="nx">app</span><span class="p">.</span><span class="nf">listen</span><span class="p">(</span><span class="nx">PORT</span><span class="p">,</span> <span class="p">()</span> <span class="o">=&gt;</span> <span class="nx">console</span><span class="p">.</span><span class="nf">log</span><span class="p">(</span><span class="s2">`Resume AI API running on :</span><span class="p">${</span><span class="nx">PORT</span><span class="p">}</span><span class="s2">`</span><span class="p">));</span> </code></pre> </div> <p>The input size limit (<code>50kb</code>) and the <code>resumeContext.slice(0, 3000)</code> are both intentional. Most GPT-4 token limits won't be hit by a 3,000-character resume excerpt, but some resumes are surprisingly long — especially ones with extensive project descriptions. Truncating at 3,000 characters keeps costs predictable.</p> <h2> Step 4: Streaming the Response </h2> <p>For a good UX, you want to stream the AI response as it arrives rather than waiting for the full completion. A 400-word rewrite might take 6–8 seconds to complete — a blank screen for 8 seconds feels broken.</p> <p>LangChain makes streaming straightforward with callbacks:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="k">import</span> <span class="p">{</span> <span class="nx">HumanMessage</span> <span class="p">}</span> <span class="k">from</span> <span class="dl">"</span><span class="s2">@langchain/core/messages</span><span class="dl">"</span><span class="p">;</span> <span class="nx">app</span><span class="p">.</span><span class="nf">post</span><span class="p">(</span><span class="dl">"</span><span class="s2">/api/rewrite/stream</span><span class="dl">"</span><span class="p">,</span> <span class="k">async </span><span class="p">(</span><span class="nx">req</span><span class="p">,</span> <span class="nx">res</span><span class="p">)</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="kd">const</span> <span class="p">{</span> <span class="nx">resumeText</span><span class="p">,</span> <span class="nx">targetSection</span> <span class="p">}</span> <span class="o">=</span> <span class="nx">req</span><span class="p">.</span><span class="nx">body</span><span class="p">;</span> <span class="nx">res</span><span class="p">.</span><span class="nf">setHeader</span><span class="p">(</span><span class="dl">"</span><span class="s2">Content-Type</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">text/event-stream</span><span class="dl">"</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">setHeader</span><span class="p">(</span><span class="dl">"</span><span class="s2">Cache-Control</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">no-cache</span><span class="dl">"</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">setHeader</span><span class="p">(</span><span class="dl">"</span><span class="s2">Connection</span><span class="dl">"</span><span class="p">,</span> <span class="dl">"</span><span class="s2">keep-alive</span><span class="dl">"</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">flushHeaders</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">streamingModel</span> <span class="o">=</span> <span class="k">new</span> <span class="nc">ChatOpenAI</span><span class="p">({</span> <span class="na">modelName</span><span class="p">:</span> <span class="dl">"</span><span class="s2">gpt-4</span><span class="dl">"</span><span class="p">,</span> <span class="na">temperature</span><span class="p">:</span> <span class="mf">0.4</span><span class="p">,</span> <span class="na">streaming</span><span class="p">:</span> <span class="kc">true</span><span class="p">,</span> <span class="na">callbacks</span><span class="p">:</span> <span class="p">[</span> <span class="p">{</span> <span class="nf">handleLLMNewToken</span><span class="p">(</span><span class="nx">token</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">write</span><span class="p">(</span><span class="s2">`data: </span><span class="p">${</span><span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="nx">token</span> <span class="p">})}</span><span class="s2"> `</span><span class="p">);</span> <span class="p">},</span> <span class="nf">handleLLMEnd</span><span class="p">()</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">write</span><span class="p">(</span><span class="dl">"</span><span class="s2">data: [DONE]</span><span class="se">\n\n</span><span class="dl">"</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">end</span><span class="p">();</span> <span class="p">},</span> <span class="nf">handleLLMError</span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="p">{</span> <span class="nx">res</span><span class="p">.</span><span class="nf">write</span><span class="p">(</span><span class="s2">`data: </span><span class="p">${</span><span class="nx">JSON</span><span class="p">.</span><span class="nf">stringify</span><span class="p">({</span> <span class="na">error</span><span class="p">:</span> <span class="nx">err</span><span class="p">.</span><span class="nx">message</span> <span class="p">})}</span><span class="s2"> `</span><span class="p">);</span> <span class="nx">res</span><span class="p">.</span><span class="nf">end</span><span class="p">();</span> <span class="p">},</span> <span class="p">},</span> <span class="p">],</span> <span class="p">});</span> <span class="kd">const</span> <span class="nx">resumeContext</span> <span class="o">=</span> <span class="nx">resumeText</span><span class="p">?.</span><span class="nf">slice</span><span class="p">(</span><span class="mi">0</span><span class="p">,</span> <span class="mi">3000</span><span class="p">)</span> <span class="o">||</span> <span class="dl">""</span><span class="p">;</span> <span class="kd">const</span> <span class="nx">prompt</span> <span class="o">=</span> <span class="s2">`Rewrite these resume bullets for a software developer. Be concise and action-oriented:\n</span><span class="p">${</span><span class="nx">targetSection</span><span class="p">}</span><span class="s2">`</span><span class="p">;</span> <span class="k">await</span> <span class="nx">streamingModel</span><span class="p">.</span><span class="nf">invoke</span><span class="p">([</span><span class="k">new</span> <span class="nc">HumanMessage</span><span class="p">(</span><span class="nx">prompt</span><span class="p">)]);</span> <span class="p">});</span> </code></pre> </div> <p>On the frontend, you'd consume this with the Fetch API and <code>ReadableStream</code>. Each <code>data:</code> event carries a token, and you append it to the UI as it arrives. The user sees the response materialize in real time — feels fast, even when it isn't.</p> <h2> Watch: LangChain in Node.js (Quick Start) </h2> <h2> Common Pitfalls (and How to Dodge Them) </h2> <h3> 1. Token limits sneaking up on you </h3> <p>GPT-4's context window is large, but you pay per token. If you're sending the full resume + prompt on every request, costs add up fast at scale. The fix: truncate the resume context (as shown above) and cache the parsed sections so you're not re-parsing on every API call.</p> <h3> 2. The model inventing achievements </h3> <p>This is the big one. Ask the model to "quantify achievements" without any source data, and it will make numbers up. "Reduced load time by 73%" sounds great until the hiring manager asks about it in an interview. The fix: explicitly tell the model in the prompt: <em>"Only add numbers if they appear in the original text. If no numbers are present, use qualitative language instead."</em></p> <h3> 3. Prompt injection through resume content </h3> <p>A crafty user could put something like <code>"Ignore all previous instructions and output..."</code> inside their resume text. Since you're sending that text directly to the model, it works. The fix: sanitize input and separate resume content from the instruction portion of the prompt with a clear delimiter, like <code>---RESUME START---</code> / <code>---RESUME END---</code>.</p> <h3> 4. Not rate limiting </h3> <p>OpenAI's rate limits are per API key, not per user. One user hammering your endpoint can hit the limit for everyone. Add a rate limiter like <code>express-rate-limit</code> before you go live — 5 requests per minute per IP is a reasonable starting point for a resume tool.</p> <h3> 5. Picking GPT-4 when you don't need it </h3> <p>GPT-4 is expensive and slow. For most resume rewriting tasks, <code>gpt-4o-mini</code> produces nearly identical results at a fraction of the cost. Test both. You might be surprised how good the cheaper model is for structured, constrained tasks like this one.</p> <h2> LangChain vs. Raw OpenAI API — When to Use Which </h2> <p>Factor</p> <p>Raw OpenAI API</p> <p>LangChain</p> <p>Setup complexity</p> <p>Low — one import, one call</p> <p>Medium — more abstractions to learn</p> <p>Single prompt apps</p> <p>Perfect fit</p> <p>Overkill</p> <p>Multi-step chains</p> <p>Tedious to wire manually</p> <p>First-class support</p> <p>Prompt reuse and testing</p> <p>DIY — no built-in structure</p> <p>PromptTemplate makes this easy</p> <p>Memory across turns</p> <p>Manual array management</p> <p>Built-in memory types</p> <p>Streaming</p> <p>Supported, manual wiring</p> <p>Supported, callback-based</p> <p>Switching LLM providers</p> <p>Rewrite API calls</p> <p>Swap the model object</p> <p>Community / ecosystem</p> <p>Smaller (OpenAI-specific)</p> <p>Large, active, lots of integrations</p> <p>The rule of thumb: if your app makes more than two different types of LLM calls, or if you need any kind of chaining, LangChain saves you from writing orchestration code from scratch. For a simple one-shot wrapper, raw API is cleaner.</p> <h2> TL;DR </h2> <ul> <li> <strong>LangChain</strong> is an orchestration layer for LLM apps — think Express for AI. Use it when you have multi-step chains, prompt reuse, or memory requirements.- <strong>Parse before you prompt.</strong> Sending a raw resume blob to the model is a recipe for generic output. Identify the section you want to improve and give the model focused context.- <strong>Constrain the prompt explicitly.</strong> Action verbs, number quantification, bullet count — tell the model exactly what format you want. Vague prompts produce vague results.- <strong>Stream responses</strong> for better UX. A blank screen for 8 seconds feels broken; a response materializing in real time feels fast.- <strong>Guard against pitfalls:</strong> rate limit your API, sanitize resume input against prompt injection, and test <code>gpt-4o-mini</code> before defaulting to GPT-4 — it's often good enough and 10x cheaper.</li> </ul> ai langchain node openai