🎯

api-client

🎯Skill

from dadbodgeoff/drift

What it does

Builds a centralized, type-safe TypeScript API client with automatic token refresh, request deduplication, and TanStack Query integration.

📦

Part of

dadbodgeoff/drift(69 items)

api-client

Installation

npm installInstall npm package

npm install -g driftdetect

npm installInstall npm package

npm install -g driftdetect@latest

npm installInstall npm package

npm install -g driftdetect-mcp

Claude Desktop ConfigurationAdd this to your claude_desktop_config.json

{
  "mcpServers": {
    "drift": {
      "command": "driftdetect-mcp"
    }
  }
...

📖 Extracted from docs: dadbodgeoff/drift

Need more details? View full documentation on GitHub →

4Installs

AddedFeb 4, 2026

View on GitHub Back to Skills

Skill Details

SKILL.md

Centralized TypeScript API client with typed namespaces, automatic token refresh with request deduplication, TanStack Query integration, and consistent error handling.

Overview

# TypeScript API Client

Centralized API client with typed namespaces, automatic token refresh, and TanStack Query integration.

When to Use This Skill

Building frontend applications that call backend APIs
Need type safety on requests and responses
Want automatic token refresh without duplicated logic
Using TanStack Query for caching and state management

Core Concepts

The pattern provides:

Typed namespaces (auth, users, billing, etc.)
Automatic token refresh with request deduplication
TanStack Query integration for caching
Consistent error handling with custom error class

Architecture:

```

Component → useQuery/useMutation → API Client → Fetch

↓

401? → Refresh → Retry

```

Implementation

TypeScript

```typescript

// lib/api/types.ts

export class APIClientError extends Error {

constructor(

message: string,

public code: string,

public statusCode: number,

public details?: Record

) {

super(message);

this.name = 'APIClientError';

}

export interface TokenPair {

accessToken: string;

refreshToken: string;

expiresAt: string;

}

// lib/api/client.ts

interface RequestOptions {

method: 'GET' | 'POST' | 'PUT' | 'PATCH' | 'DELETE';

body?: Record;

params?: Record;

skipRefresh?: boolean;

}

export class APIClient {

private baseUrl: string;

private accessToken: string | null = null;

private refreshToken: string | null = null;

private onUnauthorized: () => void;

// Refresh deduplication

private isRefreshing = false;

private refreshPromise: Promise | null = null;

constructor(options: { baseUrl: string; onUnauthorized?: () => void }) {

this.baseUrl = options.baseUrl.replace(/\/$/, '');

this.onUnauthorized = options.onUnauthorized || (() => {});

}

setTokens(accessToken: string, refreshToken: string): void {

this.accessToken = accessToken;

this.refreshToken = refreshToken;

}

clearTokens(): void {

this.accessToken = null;

this.refreshToken = null;

}

// Typed namespaces

auth = {

this.request<{ tokens: TokenPair; user: User }>('/auth/login', {

method: 'POST',

body: data,

}),

refresh: () =>

this.request('/auth/refresh', {

method: 'POST',

body: { refreshToken: this.refreshToken },

skipRefresh: true, // Prevent infinite loop

}),

me: () =>

this.request('/auth/me', { method: 'GET' }),

};

users = {

get: (id: string) =>

this.request(/users/${id}, { method: 'GET' }),

update: (id: string, data: Partial) =>

this.request(/users/${id}, { method: 'PATCH', body: data }),

};

private async request(endpoint: string, options: RequestOptions): Promise {

const url = this.buildUrl(endpoint, options.params);

const headers: Record = {

'Content-Type': 'application/json',

};

if (this.accessToken) {

headers['Authorization'] = Bearer ${this.accessToken};

}

const response = await fetch(url, {

method: options.method,

headers,

body: options.body ? JSON.stringify(options.body) : undefined,

});

// Handle 401 - attempt refresh

if (response.status === 401 && !options.skipRefresh) {

const refreshed = await this.attemptTokenRefresh();

if (refreshed) {

return this.request(endpoint, { ...options, skipRefresh: true });

}

this.onUnauthorized();

throw new APIClientError('Unauthorized', 'UNAUTHORIZED', 401);

}

if (!response.ok) {

throw await this.parseError(response);

}

if (response.status === 204) return undefined as T;

return this.transformResponse(await response.json());

}

private async attemptTokenRefresh(): Promise {

if (!this.refreshToken) return false;

// Deduplicate concurrent refresh attempts

if (this.isRefreshing) {

return this.refreshPromise!;

}

this.isRefreshing = true;

this.refreshPromise = this.doRefresh();

try {

return await this.refreshPromise;

} finally {

this.isRefreshing = false;

this.refreshPromise = null;

}

private async doRefresh(): Promise {

try {

const tokens = await this.auth.refresh();

this.setTokens(tokens.accessToken, tokens.refreshToken);

return true;

} catch {

this.clearTokens();

return false;

}

private buildUrl(endpoint: string, params?: Record): string {

const url = new URL(${this.baseUrl}${endpoint});

if (params) {

Object.entries(params).forEach(([key, value]) => {

if (value !== undefined) url.searchParams.set(key, String(value));

});

}

return url.toString();

}

private transformResponse(data: unknown): T {

// Convert snake_case to camelCase

return this.snakeToCamel(data) as T;

}

private snakeToCamel(obj: unknown): unknown {

if (Array.isArray(obj)) return obj.map(item => this.snakeToCamel(item));

if (obj !== null && typeof obj === 'object') {

return Object.fromEntries(

Object.entries(obj).map(([key, value]) => [

key.replace(/_([a-z])/g, (_, letter) => letter.toUpperCase()),

this.snakeToCamel(value),

])

);

}

return obj;

}

private async parseError(response: Response): Promise {

try {

const data = await response.json();

return new APIClientError(

data.message || 'Request failed',

data.code || 'UNKNOWN_ERROR',

response.status,

data.details

);

} catch {

return new APIClientError('Request failed', 'UNKNOWN_ERROR', response.status);

}

// Singleton export

export const apiClient = new APIClient({

baseUrl: process.env.NEXT_PUBLIC_API_URL || '/api',

onUnauthorized: () => {

if (typeof window !== 'undefined') window.location.href = '/login';

});

```

TanStack Query Integration

```typescript

// lib/api/query-keys.ts

export const queryKeys = {

auth: {

all: ['auth'] as const,

me: () => [...queryKeys.auth.all, 'me'] as const,

users: {

all: ['users'] as const,

detail: (id: string) => [...queryKeys.users.all, id] as const,

} as const;

// lib/api/hooks/use-auth.ts

import { useQuery, useMutation, useQueryClient } from '@tanstack/react-query';

export function useCurrentUser() {

return useQuery({

queryKey: queryKeys.auth.me(),

queryFn: () => apiClient.auth.me(),

staleTime: 5 60 1000,

retry: false,

});

}

export function useLogin() {

const queryClient = useQueryClient();

return useMutation({

mutationFn: (data: { email: string; password: string }) =>

apiClient.auth.login(data),

onSuccess: (response) => {

apiClient.setTokens(response.tokens.accessToken, response.tokens.refreshToken);

queryClient.setQueryData(queryKeys.auth.me(), response.user);

});

}

```

Usage Examples

Component Usage

```tsx

function UserProfile() {

const { data: user, isLoading } = useCurrentUser();

const logout = useLogout();

if (isLoading) return

;

return (

{user?.displayName}

);

}

```

Best Practices

Typed namespaces - Group related endpoints for discoverability
Token refresh deduplication - Prevent multiple concurrent refresh requests
Query key factory - Consistent cache key management
Response transformation - Convert snake_case to camelCase automatically
Singleton export - Single instance for consistent token state

Common Mistakes

Not deduplicating token refresh (causes race conditions)
Forgetting skipRefresh on refresh endpoint (infinite loop)
Scattered fetch calls without centralized error handling
No response transformation (inconsistent casing)
Creating multiple client instances (token state mismatch)

Related Patterns

jwt-auth - JWT authentication implementation
rate-limiting - Client-side rate limiting
error-handling - Error handling patterns

More from this repository10

🎯

feature-flags🎯Skill

Enables controlled feature rollouts, A/B testing, and selective feature access through configurable flags for gradual deployment and user targeting.

🎯

design-tokens🎯Skill

Generates a comprehensive, type-safe design token system with WCAG AA color compliance and multi-framework support for consistent visual design.

🎯

file-uploads🎯Skill

Securely validates, scans, and processes file uploads with multi-stage checks, malware detection, and race condition prevention.

🎯

ai-coaching🎯Skill

Guides users through articulating creative intent by extracting structured parameters and detecting conversation readiness.

🎯

environment-config🎯Skill

Validates and centralizes environment variables with type safety, fail-fast startup checks, and multi-environment support.

🎯

community-feed🎯Skill

Generates efficient social feed with cursor pagination, trending algorithms, and engagement tracking for infinite scroll experiences.

🎯

cloud-storage🎯Skill

Enables secure, multi-tenant cloud file storage with signed URLs, direct uploads, and visibility control for user-uploaded assets.

🎯

email-service🎯Skill

Simplifies email sending, templating, and tracking with robust SMTP integration and support for multiple email providers and transactional workflows.

🎯

error-sanitization🎯Skill

Sanitizes error messages by logging full details server-side while exposing only generic, safe messages to prevent sensitive information leakage.

🎯

batch-processing🎯Skill

Optimizes database operations by collecting and batching independent records, improving throughput by 30-40% with built-in fallback processing.