Typesafe API's Made Simple 🪄

End-to-End Typesafe API's made easy in a toolkit that helps developers build robust TypeScript API's with a focus on developer experience, reliability.

Quick start View on GitHub

import type { InferRouterInputs, InferRouterOutputs } from '@orpc/server'
import { ORPCError, os } from '@orpc/server'
import { oz, ZodCoercer } from '@orpc/zod'
import { z } from 'zod'
 
export type Context = { user?: { id: string } } | undefined
 
// global pub, authed completely optional
export const pub = os.context<Context>()
export const authed = pub.use((input, context, meta) => {
  /** put auth logic here */
  return meta.next({})
})
 
export const router = pub.router({
  getUser: os
    .input(
      z.object({
        id: z.string(),
      }),
    )
    .handler(async (input, context, meta) => {
      return {
        id: input.id,
        name: 'example',
      }
    }),
 
  posts: pub.prefix('/posts').router({
    getPost: pub
      .route({
        path: '/{id}', // custom your OpenAPI
        method: 'GET',
      })
      .input(
        z.object({
          id: z.string(),
        }),
      )
      .output(
        z.object({
          id: z.string(),
          title: z.string(),
          description: z.string(),
        }),
      )
      .use(async (input, context, meta) => {
        if (!context?.user) {
          throw new ORPCError({
            code: 'UNAUTHORIZED',
          })
        }
 
        const result = await meta.next({
          context: {
            user: context.user, // from now user not undefined-able
          },
        })
 
        const _output = result.output // do something on success
 
        return result
      })
      .handler((input, context, meta) => {
        return {
          id: 'example',
          title: 'example',
          description: 'example',
        }
      }),
 
    createPost: authed
      .input(
        z.object({
          title: z.string(),
          description: z.string(),
          thumb: oz.file().type('image/*'),
        }),
      )
      .handler(async (input, context, meta) => {
        const _thumb = input.thumb // file upload out of the box
 
        return {
          id: 'example',
          title: input.title,
          description: input.description,
        }
      }),
  }),
})
 
export type Inputs = InferRouterInputs<typeof router>
export type Outputs = InferRouterOutputs<typeof router>
 
// Modern runtime that support fetch api like deno, bun, cloudflare workers, even node can used
import { createServer } from 'node:http'
import { OpenAPIServerlessHandler } from '@orpc/openapi/node'
import { CompositeHandler, ORPCHandler } from '@orpc/server/node'
 
const openapiHandler = new OpenAPIServerlessHandler(router, {
  schemaCoercers: [
    new ZodCoercer(),
  ],
})
const orpcHandler = new ORPCHandler(router)
const compositeHandler = new CompositeHandler([openapiHandler, orpcHandler])
 
const server = createServer((req, res) => {
  if (req.url?.startsWith('/api')) {
    return compositeHandler.handle(req, res, {
      prefix: '/api',
      context: {},
    })
  }
 
  res.statusCode = 404
  res.end('Not found')
})
 
server.listen(3000, () => {
  // eslint-disable-next-line no-console
  console.log('Server is available at http://localhost:3000')
})
 
//
//
 
export default router

import { createORPCClient, ORPCError } from '@orpc/client'
import { ORPCLink } from '@orpc/client/fetch'
import type { router } from 'examples/server'
 
const orpcLink = new ORPCLink({
  url: 'http://localhost:3000/api',
  // fetch: optional override for the default fetch function
  // headers: provide additional headers
})
 
const client = createORPCClient<typeof router /* or contract router */>(orpcLink)
 
//  File upload out of the box
const output = await client.posts.createPost({
  title: 'My Amazing Title',
  description: 'This is a detailed description of my content',
  thumb: (document.getElementById('thumb') as HTMLInputElement).files[0]!,
})
 
client.posts.createPost
getPost
 
 
 
 
// typesafe and completion out of box
 
 
try {
  const post = await client.posts.getPost({ id: 'example' })
} catch (error) {
  if (error instanceof ORPCError) {
    // handle error
  }
}

Build Robust, Typesafe Functions

export const updateUser = os
	.use(authMiddleware) // require auth
	.use(cache('5m')) // cache the output
	.route({
		path: '/users/{id}' // dynamic params support
		method: 'PATCH' // custom OpenAPI method
	})
	.input(z.object({
		id: z.bigint(),
		user: z.object({
			name: z.string(),
			avatar: oz.file().type('image/*')
		})
	}))
	.use(canMiddleware, (i) => i.id) // permission check by id
	.output(z.literal("success")) // validate output
	.handler(async (input) => /* handle user update */)

Only the .handler method is required. All other chain methods are optional.

With Middleware and the Procedure Builder, you can create reusable logic that ensures type safety and adds power and flexibility to your functions.

Use as a Regular Function

const updatedUser = await updateUser({ 
	id: 1992n,
	user: {
		name: 'unnoq',
		avatar: await readFile('/image.jpg'),
	}
})

The Procedure Client feature lets your procedures behave like regular TypeScript functions.

Expose It In Your Frontend with a Fully Typed Client

const updatedUser = await orpc.updateUser({ 
	id: 1992n,
	user: {
		name: 'unnoq',
		avatar: document.getElementById('avatar').files[0],
	}
})

Our Vanilla Client is fully typed and doesn't rely on generated code—thanks to TypeScript!

Seamless Integration with TanStack Query

// Fetch data with oRPC
const { data, status } = useQuery(
  orpc.posts.getPost.queryOptions({ input: { id: 'example' } })
);
 
// Perform a mutation and invalidate related queries on success
const { mutate, isPending } = useMutation(
  orpc.updateUser.mutationOptions({
    onSuccess() {
      queryClient.invalidateQueries({
        queryKey: orpc.post.getPost.key({ input: { id: 'example' } }),
      });
    },
  })
);
 
// Execute mutation with structured input
mutate({
  id: 1992n,
  user: {
    name: 'unnoq',
    avatar: document.getElementById('avatar').files[0], // Handle file uploads
  },
});

We now support React Query Integration, Vue Query Integration, and Pinia Colada Integration.

Access via OpenAPI Standard

curl -X PATCH https://example.com/api/users/1992 \
  -H "Content-Type: multipart/form-data" \
  -F "user[name]=unnoq" \
  -F "user[avatar]=@/path/to/your/image.jpg"

Features like Smart Conversion and Bracket Notation automatically convert 1992 into a bigint and seamlessly parse objects like user.

Use as a Server Action

// call directly from client
const onSubmit = () => { updateUser({ /***/ }) }
// use with a hook
const { execute, isPending, isError, error, output, input, status } = useAction(updateUser)
// createSafeAction and useSafeAction if you want catch error on client
// use as a form action
const updateUserFA = createFormAction({ 
	procedure: updateUser,
	schemaCoercers: [new ZodCoercer()],
	onSuccess: () => redirect('/some-where')
})
 
<form action={updateUserFA}>
  <input type="number" name="id" value="1992" />
  <input type="string" name="user[name]" value="unnoq" />
  <input type="file" name="user[avatar]" accept="image/*" />
</form>

With Smart Conversion and Bracket Notation, inputs are automatically parsed into the correct types, ensuring smooth data handling. Learn more about Server Action.

Dependency Injection with Context

type ORPCContext = { db: DB, user?: { id: string } }
 
const pub = os.context<ORPCContext>()
 
const createPost = pub
	.use((input, context, meta) => {
		if(!context.user){
			throw new ORPCError({ code: 'UNAUTHORIZED' })
		}
		
		return meta.next({
			context: {
				user: context.user // modify user context
			}
		})
	})
	.handler((input, context, meta) => {
  // ^ context.user is now guaranteed to be defined
	})

When you use Initial Context, every call to your procedure will require a valid ORPCContext.

Contract-First Development

const userContract = oc
	.route({/*something*/})
	.input({/*something*/})
	.output({/*something*/})
 
// All nested procedures will be embedded in the parent contract
const contract = os
	.contract(userContract)

With oRPC's Contract First Development, you can easily separate the procedure's definition from its implementation.

Modern Adapters

oRPC works seamlessly in any environment that supports the Fetch API, including Node.js, Bun, Deno, Next.js, Nuxt.js, Cloudflare Workers, Supabase Functions, and more. We offer first-class serverless support with a dedicated router optimized for cold start performance. Learn more about oRPC's Modern Adapters.

Performance

We focus on both runtime performance and TypeScript checking performance to ensure a developer-first experience. Benchmarks are coming soon!

Reliability

We are committed to delivering robust software. Our aim is 100% test coverage to ensure oRPC's reliability at every level.