sanic/docs/sanic/middleware.md

# Middleware And Listeners

Middleware are functions which are executed before or after requests to the
server. They can be used to modify the *request to* or *response from*
user-defined handler functions.

Additionally, Sanic provides listeners which allow you to run code at various points of your application's lifecycle.

## Middleware

There are two types of middleware: request and response. Both are declared
using the `@app.middleware` decorator, with the decorator's parameter being a
string representing its type: `'request'` or `'response'`.

* Request middleware receives only the `request` as argument.
* Response middleware receives both the `request` and `response`.

The simplest middleware doesn't modify the request or response at all:

```
@app.middleware('request')
async def print_on_request(request):
	print("I print when a request is received by the server")

@app.middleware('response')
async def print_on_response(request, response):
	print("I print when a response is returned by the server")
```

## Modifying the request or response

Middleware can modify the request or response parameter it is given, *as long
as it does not return it*. The following example shows a practical use-case for
this.

```
app = Sanic(__name__)


@app.middleware('request')
async def add_key(request):
    # Add a key to request object like dict object
    request['foo'] = 'bar'


@app.middleware('response')
async def custom_banner(request, response):
	response.headers["Server"] = "Fake-Server"


@app.middleware('response')
async def prevent_xss(request, response):
	response.headers["x-xss-protection"] = "1; mode=block"


app.run(host="0.0.0.0", port=8000)
```

The above code will apply the three middleware in order. The first middleware
**add_key** will add a new key `foo` into `request` object. This worked because
`request` object can be manipulated like `dict` object. Then, the second middleware
**custom_banner** will change the HTTP response header *Server* to
*Fake-Server*, and the last middleware **prevent_xss** will add the HTTP
header for preventing Cross-Site-Scripting (XSS) attacks. These two functions
are invoked *after* a user function returns a response.

## Responding early

If middleware returns a `HTTPResponse` object, the request will stop processing
and the response will be returned. If this occurs to a request before the
relevant user route handler is reached, the handler will never be called.
Returning a response will also prevent any further middleware from running.

```
@app.middleware('request')
async def halt_request(request):
	return text('I halted the request')

@app.middleware('response')
async def halt_response(request, response):
	return text('I halted the response')
```

## Listeners

If you want to execute startup/teardown code as your server starts or closes, you can use the following listeners:

- `before_server_start`
- `after_server_start`
- `before_server_stop`
- `after_server_stop`

These listeners are implemented as decorators on functions which accept the app object as well as the asyncio loop.

For example:

```
@app.listener('before_server_start')
async def setup_db(app, loop):
    app.db = await db_setup()

@app.listener('after_server_start')
async def notify_server_started(app, loop):
    print('Server successfully started!')

@app.listener('before_server_stop')
async def notify_server_stopping(app, loop):
    print('Server shutting down!')

@app.listener('after_server_stop')
async def close_db(app, loop):
    await app.db.close()
```

It's also possible to register a listener using the `register_listener` method.
This may be useful if you define your listeners in another module besides
the one you instantiate your app in.

```
app = Sanic()

async def setup_db(app, loop):
    app.db = await db_setup()

app.register_listener(setup_db, 'before_server_start')

```

If you want to schedule a background task to run after the loop has started,
Sanic provides the `add_task` method to easily do so.

```
async def notify_server_started_after_five_seconds():
    await asyncio.sleep(5)
    print('Server successfully started!')

app.add_task(notify_server_started_after_five_seconds())
```

Sanic will attempt to automatically inject the app, passing it as an argument to the task:

```
async def notify_server_started_after_five_seconds(app):
    await asyncio.sleep(5)
    print(app.name)

app.add_task(notify_server_started_after_five_seconds)
```

Or you can pass the app explicitly for the same effect:

```
async def notify_server_started_after_five_seconds(app):
    await asyncio.sleep(5)
    print(app.name)

app.add_task(notify_server_started_after_five_seconds(app))
`
add-listeners-docs 2017-03-23 15:49:23 -04:00			`# Middleware And Listeners`
Basic documentation 2016-10-14 04:51:08 -07:00
Clarify, reformat, and add to documentation guides (#318) * Reorder and clarify the 'Request Data' guide, adding a section on RequestParameters * Clarify routing guide, adding introduction and HTTP types sections * Clarify the use-cases of middleware * Clean up formatting in the exceptions guide and add some common exceptions. * Fix formatting of blueprints and add use-case example. * Clarify the class-based views guide * Clarify and fix formatting of cookies guide * Clarify static files guide * Clarify the custom protocols guide. * Add more information to the deploying guide * Fix broken list in the community extensions list. * Add introduction and improve warning to contributing guide * Expand getting started guide * Reorder guides and add links between them * Standardise heading capitalisation 2017-01-20 14:18:52 +11:00			`Middleware are functions which are executed before or after requests to the`
			`server. They can be used to modify the request to or response from`
			`user-defined handler functions.`
Basic documentation 2016-10-14 04:51:08 -07:00
fix typo 2017-08-19 01:03:54 +08:00			`Additionally, Sanic provides listeners which allow you to run code at various points of your application's lifecycle.`
add-listeners-docs 2017-03-23 15:49:23 -04:00
			`## Middleware`

Clarify, reformat, and add to documentation guides (#318) * Reorder and clarify the 'Request Data' guide, adding a section on RequestParameters * Clarify routing guide, adding introduction and HTTP types sections * Clarify the use-cases of middleware * Clean up formatting in the exceptions guide and add some common exceptions. * Fix formatting of blueprints and add use-case example. * Clarify the class-based views guide * Clarify and fix formatting of cookies guide * Clarify static files guide * Clarify the custom protocols guide. * Add more information to the deploying guide * Fix broken list in the community extensions list. * Add introduction and improve warning to contributing guide * Expand getting started guide * Reorder guides and add links between them * Standardise heading capitalisation 2017-01-20 14:18:52 +11:00			`There are two types of middleware: request and response. Both are declared`
			using the `@app.middleware` decorator, with the decorator's parameter being a
Clarify arguments to request/response middleware 2018-03-21 12:07:26 +01:00			string representing its type: `'request'` or `'response'`.
Basic documentation 2016-10-14 04:51:08 -07:00
Clarify arguments to request/response middleware 2018-03-21 12:07:26 +01:00			* Request middleware receives only the `request` as argument.
			* Response middleware receives both the `request` and `response`.
Basic documentation 2016-10-14 04:51:08 -07:00
Clarify, reformat, and add to documentation guides (#318) * Reorder and clarify the 'Request Data' guide, adding a section on RequestParameters * Clarify routing guide, adding introduction and HTTP types sections * Clarify the use-cases of middleware * Clean up formatting in the exceptions guide and add some common exceptions. * Fix formatting of blueprints and add use-case example. * Clarify the class-based views guide * Clarify and fix formatting of cookies guide * Clarify static files guide * Clarify the custom protocols guide. * Add more information to the deploying guide * Fix broken list in the community extensions list. * Add introduction and improve warning to contributing guide * Expand getting started guide * Reorder guides and add links between them * Standardise heading capitalisation 2017-01-20 14:18:52 +11:00			`The simplest middleware doesn't modify the request or response at all:`
. 2016-10-14 04:58:09 -07:00
Fix documentation build errors 2018-10-26 11:29:53 +03:00			```
. 2016-10-14 04:58:09 -07:00			`@app.middleware('request')`
Clarify, reformat, and add to documentation guides (#318) * Reorder and clarify the 'Request Data' guide, adding a section on RequestParameters * Clarify routing guide, adding introduction and HTTP types sections * Clarify the use-cases of middleware * Clean up formatting in the exceptions guide and add some common exceptions. * Fix formatting of blueprints and add use-case example. * Clarify the class-based views guide * Clarify and fix formatting of cookies guide * Clarify static files guide * Clarify the custom protocols guide. * Add more information to the deploying guide * Fix broken list in the community extensions list. * Add introduction and improve warning to contributing guide * Expand getting started guide * Reorder guides and add links between them * Standardise heading capitalisation 2017-01-20 14:18:52 +11:00			`async def print_on_request(request):`
			`print("I print when a request is received by the server")`
Basic documentation 2016-10-14 04:51:08 -07:00
			`@app.middleware('response')`
Clarify, reformat, and add to documentation guides (#318) * Reorder and clarify the 'Request Data' guide, adding a section on RequestParameters * Clarify routing guide, adding introduction and HTTP types sections * Clarify the use-cases of middleware * Clean up formatting in the exceptions guide and add some common exceptions. * Fix formatting of blueprints and add use-case example. * Clarify the class-based views guide * Clarify and fix formatting of cookies guide * Clarify static files guide * Clarify the custom protocols guide. * Add more information to the deploying guide * Fix broken list in the community extensions list. * Add introduction and improve warning to contributing guide * Expand getting started guide * Reorder guides and add links between them * Standardise heading capitalisation 2017-01-20 14:18:52 +11:00			`async def print_on_response(request, response):`
			`print("I print when a response is returned by the server")`
Fix Sanic arg I assume the value of `__name__` (module name) was intended. 2016-10-15 13:05:44 -05:00			```
Explain how to chain two (or more) middlewares A funny and useful examples about how to chain middlewares. 2016-12-23 16:07:59 +01:00
Clarify, reformat, and add to documentation guides (#318) * Reorder and clarify the 'Request Data' guide, adding a section on RequestParameters * Clarify routing guide, adding introduction and HTTP types sections * Clarify the use-cases of middleware * Clean up formatting in the exceptions guide and add some common exceptions. * Fix formatting of blueprints and add use-case example. * Clarify the class-based views guide * Clarify and fix formatting of cookies guide * Clarify static files guide * Clarify the custom protocols guide. * Add more information to the deploying guide * Fix broken list in the community extensions list. * Add introduction and improve warning to contributing guide * Expand getting started guide * Reorder guides and add links between them * Standardise heading capitalisation 2017-01-20 14:18:52 +11:00			`## Modifying the request or response`
Explain how to chain two (or more) middlewares A funny and useful examples about how to chain middlewares. 2016-12-23 16:07:59 +01:00
Clarify, reformat, and add to documentation guides (#318) * Reorder and clarify the 'Request Data' guide, adding a section on RequestParameters * Clarify routing guide, adding introduction and HTTP types sections * Clarify the use-cases of middleware * Clean up formatting in the exceptions guide and add some common exceptions. * Fix formatting of blueprints and add use-case example. * Clarify the class-based views guide * Clarify and fix formatting of cookies guide * Clarify static files guide * Clarify the custom protocols guide. * Add more information to the deploying guide * Fix broken list in the community extensions list. * Add introduction and improve warning to contributing guide * Expand getting started guide * Reorder guides and add links between them * Standardise heading capitalisation 2017-01-20 14:18:52 +11:00			`Middleware can modify the request or response parameter it is given, *as long`
			`as it does not return it*. The following example shows a practical use-case for`
			`this.`
Explain how to chain two (or more) middlewares A funny and useful examples about how to chain middlewares. 2016-12-23 16:07:59 +01:00
Fix documentation build errors 2018-10-26 11:29:53 +03:00			```
Explain how to chain two (or more) middlewares A funny and useful examples about how to chain middlewares. 2016-12-23 16:07:59 +01:00			`app = Sanic(__name__)`

Extend example of modifying the request in middleware document 2019-01-02 17:29:01 +08:00
			`@app.middleware('request')`
			`async def add_key(request):`
			`# Add a key to request object like dict object`
			`request['foo'] = 'bar'`


Explain how to chain two (or more) middlewares A funny and useful examples about how to chain middlewares. 2016-12-23 16:07:59 +01:00			`@app.middleware('response')`
			`async def custom_banner(request, response):`
			`response.headers["Server"] = "Fake-Server"`

Extend example of modifying the request in middleware document 2019-01-02 17:29:01 +08:00
Explain how to chain two (or more) middlewares A funny and useful examples about how to chain middlewares. 2016-12-23 16:07:59 +01:00			`@app.middleware('response')`
			`async def prevent_xss(request, response):`
			`response.headers["x-xss-protection"] = "1; mode=block"`

Extend example of modifying the request in middleware document 2019-01-02 17:29:01 +08:00
Explain how to chain two (or more) middlewares A funny and useful examples about how to chain middlewares. 2016-12-23 16:07:59 +01:00			`app.run(host="0.0.0.0", port=8000)`
			```

Extend example of modifying the request in middleware document 2019-01-02 17:29:01 +08:00			`The above code will apply the three middleware in order. The first middleware`
Fix a grammar error 2019-01-02 20:37:26 +08:00			add_key will add a new key `foo` into `request` object. This worked because
Extend example of modifying the request in middleware document 2019-01-02 17:29:01 +08:00			`request` object can be manipulated like `dict` object. Then, the second middleware
Clarify, reformat, and add to documentation guides (#318) * Reorder and clarify the 'Request Data' guide, adding a section on RequestParameters * Clarify routing guide, adding introduction and HTTP types sections * Clarify the use-cases of middleware * Clean up formatting in the exceptions guide and add some common exceptions. * Fix formatting of blueprints and add use-case example. * Clarify the class-based views guide * Clarify and fix formatting of cookies guide * Clarify static files guide * Clarify the custom protocols guide. * Add more information to the deploying guide * Fix broken list in the community extensions list. * Add introduction and improve warning to contributing guide * Expand getting started guide * Reorder guides and add links between them * Standardise heading capitalisation 2017-01-20 14:18:52 +11:00			`custom_banner will change the HTTP response header Server to`
Extend example of modifying the request in middleware document 2019-01-02 17:29:01 +08:00			`Fake-Server, and the last middleware prevent_xss will add the HTTP`
Clarify, reformat, and add to documentation guides (#318) * Reorder and clarify the 'Request Data' guide, adding a section on RequestParameters * Clarify routing guide, adding introduction and HTTP types sections * Clarify the use-cases of middleware * Clean up formatting in the exceptions guide and add some common exceptions. * Fix formatting of blueprints and add use-case example. * Clarify the class-based views guide * Clarify and fix formatting of cookies guide * Clarify static files guide * Clarify the custom protocols guide. * Add more information to the deploying guide * Fix broken list in the community extensions list. * Add introduction and improve warning to contributing guide * Expand getting started guide * Reorder guides and add links between them * Standardise heading capitalisation 2017-01-20 14:18:52 +11:00			`header for preventing Cross-Site-Scripting (XSS) attacks. These two functions`
			`are invoked after a user function returns a response.`

			`## Responding early`

			If middleware returns a `HTTPResponse` object, the request will stop processing
			`and the response will be returned. If this occurs to a request before the`
			`relevant user route handler is reached, the handler will never be called.`
			`Returning a response will also prevent any further middleware from running.`

Fix documentation build errors 2018-10-26 11:29:53 +03:00			```
Clarify, reformat, and add to documentation guides (#318) * Reorder and clarify the 'Request Data' guide, adding a section on RequestParameters * Clarify routing guide, adding introduction and HTTP types sections * Clarify the use-cases of middleware * Clean up formatting in the exceptions guide and add some common exceptions. * Fix formatting of blueprints and add use-case example. * Clarify the class-based views guide * Clarify and fix formatting of cookies guide * Clarify static files guide * Clarify the custom protocols guide. * Add more information to the deploying guide * Fix broken list in the community extensions list. * Add introduction and improve warning to contributing guide * Expand getting started guide * Reorder guides and add links between them * Standardise heading capitalisation 2017-01-20 14:18:52 +11:00			`@app.middleware('request')`
			`async def halt_request(request):`
			`return text('I halted the request')`

			`@app.middleware('response')`
			`async def halt_response(request, response):`
			`return text('I halted the response')`
			```
add-listeners-docs 2017-03-23 15:49:23 -04:00
			`## Listeners`

			`If you want to execute startup/teardown code as your server starts or closes, you can use the following listeners:`

			- `before_server_start`
			- `after_server_start`
			- `before_server_stop`
			- `after_server_stop`

Fix documentation build errors 2018-10-26 11:29:53 +03:00			`These listeners are implemented as decorators on functions which accept the app object as well as the asyncio loop.`
add-listeners-docs 2017-03-23 15:49:23 -04:00
			`For example:`

Fix documentation build errors 2018-10-26 11:29:53 +03:00			```
add-listeners-docs 2017-03-23 15:49:23 -04:00			`@app.listener('before_server_start')`
			`async def setup_db(app, loop):`
			`app.db = await db_setup()`

			`@app.listener('after_server_start')`
			`async def notify_server_started(app, loop):`
			`print('Server successfully started!')`

			`@app.listener('before_server_stop')`
			`async def notify_server_stopping(app, loop):`
			`print('Server shutting down!')`

			`@app.listener('after_server_stop')`
			`async def close_db(app, loop):`
			`await app.db.close()`
			```

Fix documentation build errors 2018-10-26 11:29:53 +03:00			It's also possible to register a listener using the `register_listener` method.
updated doc 2018-02-13 23:58:03 -08:00			`This may be useful if you define your listeners in another module besides`
			`the one you instantiate your app in.`

Fix documentation build errors 2018-10-26 11:29:53 +03:00			```
updated doc 2018-02-13 23:58:03 -08:00			`app = Sanic()`
Fix documentation build errors 2018-10-26 11:29:53 +03:00
updated doc 2018-02-13 23:58:03 -08:00			`async def setup_db(app, loop):`
			`app.db = await db_setup()`
Fix documentation build errors 2018-10-26 11:29:53 +03:00
updated doc 2018-02-13 23:58:03 -08:00			`app.register_listener(setup_db, 'before_server_start')`

			```

add-listeners-docs 2017-03-23 15:49:23 -04:00			`If you want to schedule a background task to run after the loop has started,`
			Sanic provides the `add_task` method to easily do so.

Fix documentation build errors 2018-10-26 11:29:53 +03:00			```
add-listeners-docs 2017-03-23 15:49:23 -04:00			`async def notify_server_started_after_five_seconds():`
			`await asyncio.sleep(5)`
			`print('Server successfully started!')`

			`app.add_task(notify_server_started_after_five_seconds())`
			```
udpate docs with add_task app injection 2017-12-28 01:59:16 -08:00
			`Sanic will attempt to automatically inject the app, passing it as an argument to the task:`

Fix documentation build errors 2018-10-26 11:29:53 +03:00			```
udpate docs with add_task app injection 2017-12-28 01:59:16 -08:00			`async def notify_server_started_after_five_seconds(app):`
			`await asyncio.sleep(5)`
			`print(app.name)`

			`app.add_task(notify_server_started_after_five_seconds)`
			```

			`Or you can pass the app explicitly for the same effect:`

Fix documentation build errors 2018-10-26 11:29:53 +03:00			```
udpate docs with add_task app injection 2017-12-28 01:59:16 -08:00			`async def notify_server_started_after_five_seconds(app):`
			`await asyncio.sleep(5)`
			`print(app.name)`

			`app.add_task(notify_server_started_after_five_seconds(app))`
			`