Using Server Actions in NextJS

Introduction

NextJS Server Actions is a powerful feature that allows you to perform data mutations directly on the server without having to create API Routes manually.

Distinguishing between Routes Handle and Server Actions

  • Similarities:
    • Both are code defined on the Server
    • Both can be used in Server components and Client components
  • Differences:
    • Use Routes Handle if you need to call APIs from outside such as from partners or mobile
    • Use Server Actions for internal CRUD processing operations

The outstanding advantages of Server Actions compared to Routes Handle include:

  • Tight integration with Form: Works smoothly with the action attribute of HTML forms.

  • Progressive Enhancement: The application can still function basically even when JavaScript has not finished loading or is disabled.

  • Security: Automatically protects against CSRF attacks and keeps sensitive processing logic on the server side.

  • Code simplification: Reduces boilerplate code when connecting between Client and Server.

    • When using it, you do not need to define APIs manually like Routes Handle and call APIs (such as using fetch)

    • Just import Server Actions directly to use, taking advantage of Type-Safety for both input params and output

  • Good integration with Revalidation feature: When processing in Server Actions, if you use revalidatePath, NextJS will automatically clear the cache of the corresponding page and return new data immediately in a single request. If you use Routes Handle, you would have to take many more steps to achieve the same result.

Detail

First, create the file app/todo/schema.ts to define types and validate data using zod

import {z} from 'zod'

export const TodoSchema = z.object({
  id: z.string().optional().nullable(),
  title: z.string().min(1, 'Title is required').max(100),
})

export type Todo = z.infer<typeof TodoSchema>

export type ActionState = {
  success: boolean
  message: string
  errors?: Record<string, string[]>
}

Create file app/todo/action.ts

'use server'

import {revalidatePath} from 'next/cache'
import {cookies} from 'next/headers'
import {ActionState, Todo, TodoSchema} from './schema'

let todos: Todo[] = []

export async function manageTodoAction(
  prevState: ActionState,
  formData: FormData
): Promise<ActionState> {
  const cookie = await cookies()
  const token = cookie.get('token')?.value
  if (!token) {
    throw new Error('Unauthorized')
  }
  await new Promise(res => setTimeout(res, 800))

  const id = formData.get('id') as string
  const title = formData.get('title') as string
  const validated = TodoSchema.safeParse({id, title})
  if (!validated.success) {
    return {
      success: false,
      message: 'Invalid data',
      errors: validated.error.flatten(issue => issue.message).fieldErrors,
    }
  }

  todos.push({id: Math.random().toString(), title})
  revalidatePath('/todo')
  return {success: true, message: 'Updated successfully'}
}

export async function deleteTodoAction(id: string) {
  todos = todos.filter(t => t.id !== id)
  revalidatePath('/todo')
  return {success: true}
}

export async function getTodos() {
  return todos
}
  • These are server actions, the keyword 'use server' indicates that this code only runs on the server, will not be sent to the client, and is therefore suitable for processing important logic
  • When using Server Actions, NextJS automatically checks the Origin and Hostname of the server before execution, so by default you already have a built-in CSRF protection mechanism
  • Server Actions can be used as API handles and can be called via Postman, so to enhance security you should check permissions such as via cookies before allowing service usage

Create file app/todo/ProductManager.tsx

'use client'

import {deleteTodoAction, manageTodoAction} from '@/app/action/product/action'
import type {Todo} from '@/app/action/product/schema'
import {DeleteOutlined, RocketOutlined} from '@ant-design/icons'
import {
  Button,
  Empty,
  Form,
  Input,
  Space,
  Spin,
  Typography,
  message,
} from 'antd'
import {useActionState, useEffect, useRef, useTransition} from 'react'

const {Text, Title} = Typography

interface Props {
  initialTodos: Todo[]
  showMessage: () => Promise<{message: string}>
}

export default function TodoManager({initialTodos, showMessage}: Props) {
  const [antdForm] = Form.useForm()
  const formRef = useRef<HTMLFormElement>(null)
  const [isPendingTransition, startTransition] = useTransition()
  const [state, formAction, isPending] = useActionState(manageTodoAction, {
    success: false,
    message: '',
  })

  useEffect(() => {
    if (state.success) {
      antdForm.resetFields()
      if (state.message) message.success(state.message)
    }
  }, [state, antdForm])

  const handleExtraAction = () => {
    startTransition(async () => {
      const result = await showMessage()
      message.info(result.message)
    })
  }

  return (
    <div className="max-w-xl mx-auto mt-10 p-6 bg-white rounded-xl shadow-lg relative overflow-hidden">
      {(isPending || isPendingTransition) && (
        <div className="absolute inset-0 bg-white/60 z-10 flex items-center justify-center backdrop-blur-[1px]">
          <Spin
            size="large"
            description={isPendingTransition ? 'Syncing...' : 'Processing...'}
          />
        </div>
      )}

      <Title level={3} className="text-center mb-6">
        Task Inventory
      </Title>

      <form ref={formRef} action={formAction}>
        <Form form={antdForm} component={false}>
          <div className="flex gap-2 mb-8 items-start">
            <Form.Item
              name="title"
              className="flex-1 m-0"
              validateStatus={state.errors?.title ? 'error' : ''}
              help={state.errors?.title?.[0]}
              rules={[{required: true, message: 'Please input task!'}]}
            >
              <Input
                name="title"
                placeholder="What's your next task?"
                size="large"
                disabled={isPending || isPendingTransition}
                allowClear
              />
            </Form.Item>

            <Form.Item className="m-0">
              <Space>
                <Button
                  type="primary"
                  size="large"
                  htmlType="submit"
                  loading={isPending}
                  disabled={isPendingTransition}
                >
                  Add Task
                </Button>

                <Button
                  size="large"
                  icon={<RocketOutlined />}
                  onClick={handleExtraAction}
                  loading={isPendingTransition}
                  disabled={isPending}
                >
                  Quick Action
                </Button>
              </Space>
            </Form.Item>
          </div>
        </Form>
      </form>

      <div className="flex flex-col gap-3">
        {initialTodos.length === 0 ? (
          <Empty
            image={Empty.PRESENTED_IMAGE_SIMPLE}
            description="No tasks yet"
          />
        ) : (
          initialTodos.map(todo => (
            <div
              key={todo.id}
              className="flex items-center justify-between p-4 bg-gray-50 rounded-lg hover:bg-gray-100 transition-colors group"
            >
              <Space className="flex-1">
                <Text className="text-base">{todo.title}</Text>
              </Space>
              <Button
                type="text"
                danger
                className="opacity-0 group-hover:opacity-100 focus:opacity-100 transition-opacity"
                icon={<DeleteOutlined />}
                onClick={() => deleteTodoAction(todo.id!)}
              />
            </div>
          ))
        )}
      </div>
    </div>
  )
}

  • I have listed the usage methods of Server Actions above, you just need to import to use it like a regular function

    • Use directly in components like deleteTodoAction
    • Use with useActionState hook like manageTodoAction to take advantage of response state and pending status
    • Use with useTransition hook like showMessage, during the processing of Server Actions in useTransition, the operations from calling until receiving results and showing on the UI are marked as low priority, so they will not block user interactions
  • When using useActionState hook, react handles data submission very flexibly
    • If the browser can handle javascript, it will call the API as usual to server actions
    • If for some reason the browser cannot load or execute javascript, it will use the classic form submission mechanism to send data to the server action
    • Its limitation is not having the flexibility of async/await like when calling regular APIs, so it is not suitable for handling complex UI logic (such as handling Modals)

  • You may notice that in this component after adding and deleting items, I do not have any operations to reload the item list, but everything still works, thanks to using the revalidatePath function in server actions

    • This is NextJS's Single-Flight Mutation mechanism, when using server actions for add and delete, the list data has changed, when I use revalidatePath, the NextJS server will automatically re-render the server components and return them as RSC Payload
    • On the client side, react then only needs Reconciliation of this data to load onto the UI
    • You can check the network to see only 1 request is sent which handles both tasks effectively

Create file app/todo/page.tsx

import {getTodos} from '@/app/action/product/action'
import TodoManager from './ProductManager'

export default async function TodoPage() {
  const todos = await getTodos()

  async function fakeServerActionInside() {
    'use server'
    await new Promise(res => setTimeout(res, 3000))
    return {message: 'Fake server action completed!'}
  }

  return (
    <main className="min-h-screen bg-gray-100 py-12">
      <TodoManager initialTodos={todos} showMessage={fakeServerActionInside} />
    </main>
  )
}
  • Here you can see todos is the result after executing Server Actions on the server side
  • And fakeServerActionInside is a server action defined directly in a server component, you just need to add 'use server' at the beginning of the function and then pass it into the component to use


Results are as follows


You can disable Javascript to see that this feature still works, at which point it will perform a form submit command that reloads the page

You can also see that when using server actions, the request header includes origin, host, next-action and cookies so that NextJS automatically checks CSRF and allows you to validate before use


Check NextJS Single-Flight Mutation, only 1 request is needed to add/delete and reload content, because the returned result is a React Server Component Payload containing component information already rendered on the NextJS server

Happy coding!

See more articles here.

Comments

Post a Comment

Popular posts from this blog

All Practice Series

Image
Introduction This is a comprehensive page about the technologies I have shared in series format. You can view brief introductions and links to directly access each series you are interested in. In the field of software development, to deploy a product from the initial idea to its release, the standard process typically involves several stages as follows: Database : Designing and implementing the database according to business requirements, storing data during the system's operation. Backend : Handling the main logic of the system, communicating with the database and services. Frontend : Building the interface for users to interact with the system, which could be a desktop, mobile, or web application. This usually includes implementing UI/UX and integrating APIs from the backend. DevOps : Deploying the system for use, which can be done on a server or in the cloud. Testing : Applying testing methods to ensure the product meets the standards for release. Of course, these are just stan...
Read more

Kubernetes Deployment for Zero Downtime

Image
Introduction In Kubernetes (K8s) , a Pod is the smallest resource unit used to run one or more containers during deployment. There are several ways to create a Pod : you can create it directly, use a ReplicationController , or a ReplicaSet . However, the most commonly used resource for managing Pods is the Deployment . When you use a Deployment , it actually creates a ReplicaSet to manage the Pods but comes with many additional benefits that support the deployment process. Some Advantages of Deployment : Ensures Pod Availability : It guarantees that the specified number of Pods are always running according to the configuration, automatically deploying additional Pods if any failures occur. Supports Restart and Undo Deployment : Allows you to easily restart or roll back to previous versions of your Deployment . Zero Downtime Deployment : When updating configurations or scaling Deployments , zero downtime is crucial. This means that new Pods are created while the old Pods are stil...
Read more

Deploying a NodeJS Server on Google Kubernetes Engine

Image
Introduction to GKE Google Kubernetes Engine (GKE) is a managed Kubernetes service provided by Google Cloud Platform , facilitating simple and efficient deployment of Docker images. We only need to provide some configuration for the number of nodes, machine types, and replicas to use. Some Concepts Cluster A Cluster is a collection of Nodes where Kubernetes can deploy applications. A cluster includes at least one Master Node and multiple Worker Nodes . The Master Node is used to manage the Worker Nodes . Node A Node is a server in the Kubernetes Cluster. Nodes can be physical servers or virtual machines. Each Node runs  Kubernetes , which is responsible for communication between the Master Node and Worker Node , as well as managing Pods and containers running on it. Pod A Pod is the smallest deployable unit in Kubernetes . Each Pod contains one or more containers, typically Docker containers. Containers in the same Pod share a network namespace, meaning they have the ...
Read more

Sitemap

Image
A page aggregator designed for easy reference and search, compiling all blog posts for convenient access. Loading all posts...
Read more

Setting up Kubernetes Dashboard with Kind

Image
Introduction In a previous article, I guided you through using Helm to deploy on Google Kubernetes Engine . However, if you want to cut down costs by using Kubernetes in your local environment instead of relying on a cloud provider during development, then Kind is your go-to. There are several tools to help set up Kubernetes locally, such as MiniKube , Kind , K3S , KubeAdm , and more. Each tool has its own pros and cons. In this article, I'll walk you through using Kind to quickly set up a Kubernetes cluster on Docker . Kind stands out for its compactness, making Kubernetes start up quickly, being user-friendly, and supporting the latest Kubernetes versions. Working with Kind Firstly, follow the instructions here to install Kind according to your operating system. If you're using Ubuntu , execute the command: [ $( uname -m ) = x86_64 ] && curl -Lo ./kind https://kind.sigs.k8s.io/dl/v0.23.0/kind-linux-amd64 chmod +x ./kind sudo mv ./kind /usr/local/bin/ki...
Read more

React Practice Series

Image
Introduction React is a JavaScript library created by Facebook , often referred to as the most popular frontend framework today. This page aims to gather articles related to ReactJS , covering topics such as theory, features, and commonly used packages in the process of building ReactJS applications. I will update this series with more articles in the future as new ideas for content come up. The articles are arranged in increasing order of difficulty, so if you have time, it's recommended to start from the beginning of the series. This will ensure you grasp the essential knowledge and information needed for the subsequent articles. Here are some key topics in the series that you need to explore to effectively use ReactJS : Fundamental : React Hook, React Reconciliation. State management : redux, mobx, recoil, zustand, xstate, etc. Middleware libraries : redux-thunk, redux-saga, redux-observable, etc. Popular packages : tasnstack query, immer, styled-components, etc. Rendering te...
Read more

Monitoring with cAdvisor, Prometheus and Grafana on Docker

Image
Introduction Monitoring a system is crucial after deploying a product to a production environment. Keeping an eye on system metrics like logs , CPU , RAM , disks , etc, helps identify the system's status, performance issues, and provides timely solutions to ensure stable operations. While cloud providers like Google , Amazon , or Azure offer built-in monitoring systems, if your company needs to manage multiple applications/systems/containers and desires a centralized monitoring system for easier management, using cAdvisor , Prometheus , and Grafana is a sensible choice. These three popular open-source tools are widely used by DevOps teams, especially for monitoring container applications. cAdvisor Developed by Google , cAdvisor is an open-source project used to analyze resource usage, performance, and other metrics from container applications, providing an overview of all running containers. Find more details here Prometheus Prometheus is a toolkit for system monitoring and a...
Read more

DevOps Practice Series

Image
Introduction DevOps is a combination of development (Dev) and operations (Ops), aimed at uniting people, processes, and technology to enhance the software development lifecycle. Here are some key aspects of DevOps: Collaboration and Communication: DevOps fosters a culture where development, IT operations, quality engineering, and security teams work together seamlessly. Continuous Integration and Continuous Delivery (CI/CD): These practices automate the integration and delivery of code changes, ensuring faster and more reliable software releases. Infrastructure as Code (IaC): This approach involves managing and provisioning computing infrastructure through machine-readable scripts, rather than physical hardware configuration. Monitoring and Logging: Continuous monitoring and logging help teams to detect issues early and maintain system reliability. Automation: Automating repetitive tasks reduces errors and increases efficiency, allowing teams to focus on more strategic work. By impleme...
Read more

Helm for beginer - Deploy nginx to Google Kubernetes Engine

Image
Introduction Helm is a package manager for Kubernetes , which simplifies the process of deploying and managing applications on Kubernetes clusters. Helm uses a packaging format called charts , which are collections of files that describe a related set of Kubernetes resources. Key Components of Helm Charts : Helm packages are called charts. A chart is a collection of files that describe a related set of Kubernetes resources. A single chart might be used to deploy something simple, like a memcached pod, or something complex, like a full web app stack with HTTP servers , databases, caches, and so on. Values : Charts can be customized with values, which are configuration settings that specify how the chart should be installed on the cluster. These values can be set in a ` values.yaml ` file or passed on the command line. Releases : When you install a chart, a new release is created. This means that one chart can be installed multiple times into the same cluster, and each can be indep...
Read more

Using Kafka with Docker and NodeJS

Image
Introduction to Kafka Kafka is an open-source , distributed messaging system that functions on a publish/subscribe model. It is widely used by numerous large companies for high-performance , real-time data streaming. Developed by LinkedIn since 2011, Kafka has grown into the most popular distributed streaming platform. It can handle vast amounts of records with high efficiency. Advantages of Kafka Open-source : Freely available and continuously improved by a large community. High-throughput, high-frequency : Capable of processing large volumes of data across topics continuously. Automatic message storage : Allows for easy message retrieval and verification. Large user community : Offers extensive support and shared resources. Basic Concepts If you're new to Kafka and Message Queues, here are some key concepts to understand: Producer : Creates and sends data to the Kafka server, where data is sent as messages in byte array format. Consumer : One or more consumers subscribe to...
Read more