Nexios

Appearance

Core Concepts

Nexios is a modern, async-first Python web framework built on ASGI. It combines high performance with developer-friendly features while maintaining a clean and maintainable architecture.

ASGI

ASGI (Asynchronous Server Gateway Interface) is the foundation that enables Nexios to handle concurrent connections efficiently.

Framework Architecture

1. ASGI Foundation

Nexios is built on ASGI (Asynchronous Server Gateway Interface), providing:

  • Native async/await support
  • High performance request handling
  • WebSocket support
  • Lifespan protocol implementation
  • Server agnostic (works with Uvicorn, Hypercorn, etc.)

Server Selection

While Nexios works with any ASGI server, we recommend:

  • Uvicorn for development (auto-reload support)
  • Hypercorn for production (more configuration options)
  • Granian for high-performance scenarios

2. Request Lifecycle

mermaid
graph LR
    A[Request] --> B[Middleware]
    B --> C[Route Matching]
    C --> D[Dependencies]
    D --> E[Handler]
    E --> F[Response]

Each request goes through:

  1. ASGI server receives the request
  2. Middleware chain processes request
  3. Router matches URL to handler
  4. Dependencies are resolved
  5. Handler processes request
  6. Response is sent back through middleware

Performance

The middleware chain is optimized to minimize overhead. Middleware can short-circuit the chain for better performance.

3. Core Components

Routing System

python
from nexios import NexiosApp

app = NexiosApp()

@app.get("/items/{item_id:int}")
async def get_item(request, response):
    return response.json({"id": request.path_params.item_id})
Available Path Parameter Types
  • str (default)
  • int
  • float
  • uuid
  • path
  • date
  • datetime
  • Custom types via register_path_converter()

Features:

  • Path parameters with type conversion
  • Query string parsing
  • HTTP method handlers
  • Nested routers
  • WebSocket routes

Middleware System

python
from nexios.middleware import BaseMiddleware

class CustomMiddleware(BaseMiddleware):
    async def __call__(self, request, response, call_next):
        # Pre-processing
        response = await call_next()
        # Post-processing
        return response

Middleware Order

The order of middleware matters! Consider:

  1. Authentication first
  2. Session handling
  3. CORS/CSRF protection
  4. Custom business logic

Built-in middleware:

  • CORS
  • CSRF Protection
  • Session handling
  • Authentication
  • Static files

Event System

python
@app.on_startup()
async def startup():
    await initialize_database()

@app.on_shutdown()
async def shutdown():
    await cleanup_resources()

Event Types

Nexios supports multiple event types:

  • startup: Application initialization
  • shutdown: Graceful shutdown
  • request: Per-request lifecycle
  • websocket: WebSocket events
  • Custom events via app.event_emitter

Events for:

  • Application startup/shutdown
  • Request lifecycle
  • WebSocket connections
  • Error handling

Dependency Injection

python
from nexios import Depend

async def get_db():
    async with Database() as db:
        yield db

@app.get("/users")
async def list_users(request, response, db=Depend(get_db)):
    users = await db.query("SELECT * FROM users")
    return response.json(users)

Resource Management

Always use yield in dependencies that need cleanup:

python
async def get_redis():
    redis = await create_redis_pool()
    try:
        yield redis
    finally:
        redis.close()
        await redis.wait_closed()

Features:

  • Async dependency resolution
  • Scoped dependencies
  • Dependency overriding
  • Dependency caching

4. WebSocket Support

python
from nexios.websockets import WebSocket, Channel

@app.websocket("/ws/{room_id}")
async def chat_room(websocket: WebSocket, room_id: str):
    channel = Channel(f"room:{room_id}")
    await channel.connect(websocket)
    
    try:
        while True:
            message = await websocket.receive_json()
            await channel.broadcast(message)
    except WebSocketDisconnect:
        await channel.disconnect(websocket)

WebSocket Best Practices

  1. Always handle disconnections gracefully
  2. Implement heartbeat mechanism
  3. Use channels for pub/sub patterns
  4. Validate messages using Pydantic

Features:

  • WebSocket channels
  • Connection management
  • JSON message handling
  • Error handling
  • Room/group support

5. Security Features

Authentication

python
from nexios.auth import AuthBackend

class JWTAuth(AuthBackend):
    async def authenticate(self, request):
        token = request.headers.get("Authorization")
        return await validate_token(token)

app.auth_backend = JWTAuth()

Security

Never store sensitive data in JWTs. Use them only for:

  • User identification
  • Basic permissions
  • Short-lived sessions

Session Management

python
from nexios.session import SessionMiddleware

app.add_middleware(SessionMiddleware,
    secret_key="your-secret-key",
    session_cookie="session-id"
)

Cookie Security

Always set these cookie options in production:

  • secure=True: HTTPS only
  • httponly=True: No JS access
  • samesite="lax": CSRF protection

CSRF Protection

python
from nexios.middleware import CSRFMiddleware

app.add_middleware(CSRFMiddleware)

CSRF Configuration

The middleware automatically:

  1. Generates CSRF tokens
  2. Validates tokens on unsafe methods
  3. Sets secure cookie attributes
  4. Provides template helpers

6. Testing Support

python
from nexios.testing import TestClient

async def test_endpoint():
    async with TestClient(app) as client:
        response = await client.get("/api/endpoint")
        assert response.status_code == 200
Testing Features
  • Async test client
  • WebSocket testing
  • Dependency overrides
  • Response assertions
  • Coverage support
  • Parallel test execution

Design Philosophy

  1. Explicit is Better Than Implicit

    • Clear request/response flow
    • No hidden magic
    • Explicit dependency injection

  2. Async First

    • Native async/await support
    • Non-blocking I/O
    • Scalable by design

  3. Developer Experience

    • Clear error messages
    • Comprehensive logging
    • Type hints and validation
    • OpenAPI documentation

  4. Extensible Architecture

    • Custom middleware
    • Plugin system
    • Event hooks
    • Custom authentication

  5. Performance Focused

    • Minimal overhead
    • Efficient routing
    • Optional features
    • Resource pooling

Use Cases

Common Use Cases

  1. REST APIs
  2. Real-time applications
  3. Microservices
  4. WebSocket servers
  5. Server-side rendering
  6. API gateways

For detailed examples and API reference, check the API Documentation section.

Let me know if you'd like a diagram, project use-case examples, or want this split into sections (e.g., philosophy.md, why.md).