Install
Terminal · npx
$npx skills add https://github.com/affaan-m/everything-claude-code --skill backend-patterns
Works with Paperclip
How Backend Patterns fits into a Paperclip company.

Backend Patterns drops into any Paperclip agent that handles this kind of work. Assign it to a specialist inside a pre-configured PaperclipOrg company and the skill becomes available on every heartbeat — no prompt engineering, no tool wiring.
SaaS FactoryPaired
Pre-configured AI company — 18 agents, 18 skills, one-time purchase.
$27$59
Explore pack
Source file
SKILL.md598 linesmarkdown
Expand
1---2name: backend-patterns3description: Backend architecture patterns, API design, database optimization, and server-side best practices for Node.js, Express, and Next.js API routes.4origin: ECC5---6 7# Backend Development Patterns8 9Backend architecture patterns and best practices for scalable server-side applications.10 11## When to Activate12 13- Designing REST or GraphQL API endpoints14- Implementing repository, service, or controller layers15- Optimizing database queries (N+1, indexing, connection pooling)16- Adding caching (Redis, in-memory, HTTP cache headers)17- Setting up background jobs or async processing18- Structuring error handling and validation for APIs19- Building middleware (auth, logging, rate limiting)20 21## API Design Patterns22 23### RESTful API Structure24 25```typescript26// PASS: Resource-based URLs27GET    /api/markets                 # List resources28GET    /api/markets/:id             # Get single resource29POST   /api/markets                 # Create resource30PUT    /api/markets/:id             # Replace resource31PATCH  /api/markets/:id             # Update resource32DELETE /api/markets/:id             # Delete resource33 34// PASS: Query parameters for filtering, sorting, pagination35GET /api/markets?status=active&sort=volume&limit=20&offset=036```37 38### Repository Pattern39 40```typescript41// Abstract data access logic42interface MarketRepository {43  findAll(filters?: MarketFilters): Promise<Market[]>44  findById(id: string): Promise<Market | null>45  create(data: CreateMarketDto): Promise<Market>46  update(id: string, data: UpdateMarketDto): Promise<Market>47  delete(id: string): Promise<void>48}49 50class SupabaseMarketRepository implements MarketRepository {51  async findAll(filters?: MarketFilters): Promise<Market[]> {52    let query = supabase.from('markets').select('*')53 54    if (filters?.status) {55      query = query.eq('status', filters.status)56    }57 58    if (filters?.limit) {59      query = query.limit(filters.limit)60    }61 62    const { data, error } = await query63 64    if (error) throw new Error(error.message)65    return data66  }67 68  // Other methods...69}70```71 72### Service Layer Pattern73 74```typescript75// Business logic separated from data access76class MarketService {77  constructor(private marketRepo: MarketRepository) {}78 79  async searchMarkets(query: string, limit: number = 10): Promise<Market[]> {80    // Business logic81    const embedding = await generateEmbedding(query)82    const results = await this.vectorSearch(embedding, limit)83 84    // Fetch full data85    const markets = await this.marketRepo.findByIds(results.map(r => r.id))86 87    // Sort by similarity88    return markets.sort((a, b) => {89      const scoreA = results.find(r => r.id === a.id)?.score || 090      const scoreB = results.find(r => r.id === b.id)?.score || 091      return scoreA - scoreB92    })93  }94 95  private async vectorSearch(embedding: number[], limit: number) {96    // Vector search implementation97  }98}99```100 101### Middleware Pattern102 103```typescript104// Request/response processing pipeline105export function withAuth(handler: NextApiHandler): NextApiHandler {106  return async (req, res) => {107    const token = req.headers.authorization?.replace('Bearer ', '')108 109    if (!token) {110      return res.status(401).json({ error: 'Unauthorized' })111    }112 113    try {114      const user = await verifyToken(token)115      req.user = user116      return handler(req, res)117    } catch (error) {118      return res.status(401).json({ error: 'Invalid token' })119    }120  }121}122 123// Usage124export default withAuth(async (req, res) => {125  // Handler has access to req.user126})127```128 129## Database Patterns130 131### Query Optimization132 133```typescript134// PASS: GOOD: Select only needed columns135const { data } = await supabase136  .from('markets')137  .select('id, name, status, volume')138  .eq('status', 'active')139  .order('volume', { ascending: false })140  .limit(10)141 142// FAIL: BAD: Select everything143const { data } = await supabase144  .from('markets')145  .select('*')146```147 148### N+1 Query Prevention149 150```typescript151// FAIL: BAD: N+1 query problem152const markets = await getMarkets()153for (const market of markets) {154  market.creator = await getUser(market.creator_id)  // N queries155}156 157// PASS: GOOD: Batch fetch158const markets = await getMarkets()159const creatorIds = markets.map(m => m.creator_id)160const creators = await getUsers(creatorIds)  // 1 query161const creatorMap = new Map(creators.map(c => [c.id, c]))162 163markets.forEach(market => {164  market.creator = creatorMap.get(market.creator_id)165})166```167 168### Transaction Pattern169 170```typescript171async function createMarketWithPosition(172  marketData: CreateMarketDto,173  positionData: CreatePositionDto174) {175  // Use Supabase transaction176  const { data, error } = await supabase.rpc('create_market_with_position', {177    market_data: marketData,178    position_data: positionData179  })180 181  if (error) throw new Error('Transaction failed')182  return data183}184 185// SQL function in Supabase186CREATE OR REPLACE FUNCTION create_market_with_position(187  market_data jsonb,188  position_data jsonb189)190RETURNS jsonb191LANGUAGE plpgsql192AS $$193BEGIN194  -- Start transaction automatically195  INSERT INTO markets VALUES (market_data);196  INSERT INTO positions VALUES (position_data);197  RETURN jsonb_build_object('success', true);198EXCEPTION199  WHEN OTHERS THEN200    -- Rollback happens automatically201    RETURN jsonb_build_object('success', false, 'error', SQLERRM);202END;203$$;204```205 206## Caching Strategies207 208### Redis Caching Layer209 210```typescript211class CachedMarketRepository implements MarketRepository {212  constructor(213    private baseRepo: MarketRepository,214    private redis: RedisClient215  ) {}216 217  async findById(id: string): Promise<Market | null> {218    // Check cache first219    const cached = await this.redis.get(`market:${id}`)220 221    if (cached) {222      return JSON.parse(cached)223    }224 225    // Cache miss - fetch from database226    const market = await this.baseRepo.findById(id)227 228    if (market) {229      // Cache for 5 minutes230      await this.redis.setex(`market:${id}`, 300, JSON.stringify(market))231    }232 233    return market234  }235 236  async invalidateCache(id: string): Promise<void> {237    await this.redis.del(`market:${id}`)238  }239}240```241 242### Cache-Aside Pattern243 244```typescript245async function getMarketWithCache(id: string): Promise<Market> {246  const cacheKey = `market:${id}`247 248  // Try cache249  const cached = await redis.get(cacheKey)250  if (cached) return JSON.parse(cached)251 252  // Cache miss - fetch from DB253  const market = await db.markets.findUnique({ where: { id } })254 255  if (!market) throw new Error('Market not found')256 257  // Update cache258  await redis.setex(cacheKey, 300, JSON.stringify(market))259 260  return market261}262```263 264## Error Handling Patterns265 266### Centralized Error Handler267 268```typescript269class ApiError extends Error {270  constructor(271    public statusCode: number,272    public message: string,273    public isOperational = true274  ) {275    super(message)276    Object.setPrototypeOf(this, ApiError.prototype)277  }278}279 280export function errorHandler(error: unknown, req: Request): Response {281  if (error instanceof ApiError) {282    return NextResponse.json({283      success: false,284      error: error.message285    }, { status: error.statusCode })286  }287 288  if (error instanceof z.ZodError) {289    return NextResponse.json({290      success: false,291      error: 'Validation failed',292      details: error.errors293    }, { status: 400 })294  }295 296  // Log unexpected errors297  console.error('Unexpected error:', error)298 299  return NextResponse.json({300    success: false,301    error: 'Internal server error'302  }, { status: 500 })303}304 305// Usage306export async function GET(request: Request) {307  try {308    const data = await fetchData()309    return NextResponse.json({ success: true, data })310  } catch (error) {311    return errorHandler(error, request)312  }313}314```315 316### Retry with Exponential Backoff317 318```typescript319async function fetchWithRetry<T>(320  fn: () => Promise<T>,321  maxRetries = 3322): Promise<T> {323  let lastError: Error324 325  for (let i = 0; i < maxRetries; i++) {326    try {327      return await fn()328    } catch (error) {329      lastError = error as Error330 331      if (i < maxRetries - 1) {332        // Exponential backoff: 1s, 2s, 4s333        const delay = Math.pow(2, i) * 1000334        await new Promise(resolve => setTimeout(resolve, delay))335      }336    }337  }338 339  throw lastError!340}341 342// Usage343const data = await fetchWithRetry(() => fetchFromAPI())344```345 346## Authentication & Authorization347 348### JWT Token Validation349 350```typescript351import jwt from 'jsonwebtoken'352 353interface JWTPayload {354  userId: string355  email: string356  role: 'admin' | 'user'357}358 359export function verifyToken(token: string): JWTPayload {360  try {361    const payload = jwt.verify(token, process.env.JWT_SECRET!) as JWTPayload362    return payload363  } catch (error) {364    throw new ApiError(401, 'Invalid token')365  }366}367 368export async function requireAuth(request: Request) {369  const token = request.headers.get('authorization')?.replace('Bearer ', '')370 371  if (!token) {372    throw new ApiError(401, 'Missing authorization token')373  }374 375  return verifyToken(token)376}377 378// Usage in API route379export async function GET(request: Request) {380  const user = await requireAuth(request)381 382  const data = await getDataForUser(user.userId)383 384  return NextResponse.json({ success: true, data })385}386```387 388### Role-Based Access Control389 390```typescript391type Permission = 'read' | 'write' | 'delete' | 'admin'392 393interface User {394  id: string395  role: 'admin' | 'moderator' | 'user'396}397 398const rolePermissions: Record<User['role'], Permission[]> = {399  admin: ['read', 'write', 'delete', 'admin'],400  moderator: ['read', 'write', 'delete'],401  user: ['read', 'write']402}403 404export function hasPermission(user: User, permission: Permission): boolean {405  return rolePermissions[user.role].includes(permission)406}407 408export function requirePermission(permission: Permission) {409  return (handler: (request: Request, user: User) => Promise<Response>) => {410    return async (request: Request) => {411      const user = await requireAuth(request)412 413      if (!hasPermission(user, permission)) {414        throw new ApiError(403, 'Insufficient permissions')415      }416 417      return handler(request, user)418    }419  }420}421 422// Usage - HOF wraps the handler423export const DELETE = requirePermission('delete')(424  async (request: Request, user: User) => {425    // Handler receives authenticated user with verified permission426    return new Response('Deleted', { status: 200 })427  }428)429```430 431## Rate Limiting432 433### Simple In-Memory Rate Limiter434 435```typescript436class RateLimiter {437  private requests = new Map<string, number[]>()438 439  async checkLimit(440    identifier: string,441    maxRequests: number,442    windowMs: number443  ): Promise<boolean> {444    const now = Date.now()445    const requests = this.requests.get(identifier) || []446 447    // Remove old requests outside window448    const recentRequests = requests.filter(time => now - time < windowMs)449 450    if (recentRequests.length >= maxRequests) {451      return false  // Rate limit exceeded452    }453 454    // Add current request455    recentRequests.push(now)456    this.requests.set(identifier, recentRequests)457 458    return true459  }460}461 462const limiter = new RateLimiter()463 464export async function GET(request: Request) {465  const ip = request.headers.get('x-forwarded-for') || 'unknown'466 467  const allowed = await limiter.checkLimit(ip, 100, 60000)  // 100 req/min468 469  if (!allowed) {470    return NextResponse.json({471      error: 'Rate limit exceeded'472    }, { status: 429 })473  }474 475  // Continue with request476}477```478 479## Background Jobs & Queues480 481### Simple Queue Pattern482 483```typescript484class JobQueue<T> {485  private queue: T[] = []486  private processing = false487 488  async add(job: T): Promise<void> {489    this.queue.push(job)490 491    if (!this.processing) {492      this.process()493    }494  }495 496  private async process(): Promise<void> {497    this.processing = true498 499    while (this.queue.length > 0) {500      const job = this.queue.shift()!501 502      try {503        await this.execute(job)504      } catch (error) {505        console.error('Job failed:', error)506      }507    }508 509    this.processing = false510  }511 512  private async execute(job: T): Promise<void> {513    // Job execution logic514  }515}516 517// Usage for indexing markets518interface IndexJob {519  marketId: string520}521 522const indexQueue = new JobQueue<IndexJob>()523 524export async function POST(request: Request) {525  const { marketId } = await request.json()526 527  // Add to queue instead of blocking528  await indexQueue.add({ marketId })529 530  return NextResponse.json({ success: true, message: 'Job queued' })531}532```533 534## Logging & Monitoring535 536### Structured Logging537 538```typescript539interface LogContext {540  userId?: string541  requestId?: string542  method?: string543  path?: string544  [key: string]: unknown545}546 547class Logger {548  log(level: 'info' | 'warn' | 'error', message: string, context?: LogContext) {549    const entry = {550      timestamp: new Date().toISOString(),551      level,552      message,553      ...context554    }555 556    console.log(JSON.stringify(entry))557  }558 559  info(message: string, context?: LogContext) {560    this.log('info', message, context)561  }562 563  warn(message: string, context?: LogContext) {564    this.log('warn', message, context)565  }566 567  error(message: string, error: Error, context?: LogContext) {568    this.log('error', message, {569      ...context,570      error: error.message,571      stack: error.stack572    })573  }574}575 576const logger = new Logger()577 578// Usage579export async function GET(request: Request) {580  const requestId = crypto.randomUUID()581 582  logger.info('Fetching markets', {583    requestId,584    method: 'GET',585    path: '/api/markets'586  })587 588  try {589    const markets = await fetchMarkets()590    return NextResponse.json({ success: true, data: markets })591  } catch (error) {592    logger.error('Failed to fetch markets', error as Error, { requestId })593    return NextResponse.json({ error: 'Internal error' }, { status: 500 })594  }595}596```597 598**Remember**: Backend patterns enable scalable, maintainable server-side applications. Choose patterns that fit your complexity level.
Related skills
Agent Eval

Install Agent Eval skill for Claude Code from affaan-m/everything-claude-code.
Agent Harness Construction

Install Agent Harness Construction skill for Claude Code from affaan-m/everything-claude-code.
Agent Payment X402

Install Agent Payment X402 skill for Claude Code from affaan-m/everything-claude-code.