Mockaton is a mock server for developing and testing frontends.
It scans a given directory for files following a specific
file name convention, which is similar to the URL paths. For
example, the following file will be served for /api/user/1234
my-mocks-dir/api/user/[user-id].GET.200.json
This browser extension can be used for downloading a TAR of your XHR requests following that convention.
Checkout this repo and run npm run demo, which will open the following
dashboard. Then, explore the sample-mocks/ directory.
Then, pick a mock variant from the Mock dropdown (we’ll discuss them later). At its right, note the Delay toggler, and the button for sending 500 - Internal Server Error on that endpoint.
Then edit a mock file. You don’t need to restart Mockaton for that, the Reset button is for registering newly added, removed, or renamed mocks.
- Test empty responses
- Test spinners by delaying responses
- Test errors such as Bad Request and Internal Server Error
- Trigger notifications and alerts
- Prototyping before the backend API is developed
- Setting up tests
- As API documentation
- If you commit the mocks in the repo, when bisecting a bug, you don’t
have to sync the frontend with many backend repos
- Similarly, I can check out long-lived branches that have old API contracts
- Avoids having to spin up and maintain hefty or complex backends when developing UIs.
- For a deterministic and comprehensive backend state. For example, having all the possible state variants of a collection helps for spotting inadvertent bugs.
- Chrome DevTools allows for overriding responses
- Reverse Proxies such as Burp are also handy for overriding responses.
- Storybook’s MSW
- Syncing the mocks, but the browser extension mentioned above helps.
npm install mockaton
Create a my-mockaton.js file
import { resolve } from 'node:path'
import { Mockaton } from 'mockaton'
Mockaton({
mocksDir: resolve('my-mocks-dir'),
port: 2345
})node my-mockaton.jsThere’s a Config section below with more details.
interface Config {
mocksDir: string
ignore?: RegExp // Defaults to /(\.DS_Store|~)$/
staticDir?: string // These files don’t use the mock-filename convention
host?: string, // Defaults to 'localhost'
port?: number // Defaults to 0, which means auto-assigned
proxyFallback?: string // e.g. http://localhost:9999 Target for relaying routes without mocks
delay?: number // Defaults to 1200 (ms)
cookies?: { [label: string]: string }
extraMimes?: { [fileExt: string]: string }
extraHeaders?: []
corsAllowed?: boolean, // Defaults to false
// cors* customization options are explained below
onReady?: (dashboardUrl: string) => void // Defaults to trying to open macOS and Win default browser.
}Each route can have many mocks, which could either be:
- Different response status code. For example, for testing error responses.
- Comment on the filename, which is anything within parentheses.
- e.g.
api/user(my-comment).POST.201.json
- e.g.
Those alternatives can be manually selected in the dashboard UI, or programmatically, for instance, for setting up tests.
You can add the comment: (default) to a filename.
Otherwise, the first file in alphabetical order wins.
api/user(default).GET.200.json
An Object, Array, or String is sent as JSON.
api/foo.GET.200.js
export default [
{ id: 0 }
]Or, export default a function. In it, you can override the
response status and the default JSON content type. But don’t call
response.end(), just return a string, Buffer, or Uint8Array.
Think of this as an HTTP handler. You can read or write to a
database, or pull data from a backend. The request is of type
IncomingMessage, and the
response a ServerResponse.
export default function optionalName(request, response) {
globalThis.myDatabase ??= { count: 0 }
globalThis.myDatabase.count++
return JSON.stringify({ a: 1 })
}.Method.ResponseStatusCode.FileExt
Anything within square brackets. For example:
api/user/[id]/[age].GET.200.json
Comments are anything within parentheses, including them.
They are ignored for URL purposes, so they have no effect
on the URL mask. For example, these two are for /api/foo
api/foo(my comment).GET.200.json api/foo.GET.200.json
api/video?limit=[limit].GET.200.json
The query string is ignored when routing to it. In other words, it’s only used for documenting the URL contract.
Speaking of which, in Windows, filenames containing "?" are not permitted, but since that’s part of the query string, it’s ignored anyway.
For instance, let's say you have api/foo/bar, and
api/foo. For the latter you have two options:
Option A. Place it outside the directory:
api/foo/
api/foo.GET.200.json
Option B. Omit the filename:
api/foo/.GET.200.json
Lets you specify a target server for serving routes you don’t have mocks for.
The clock icon next to the mock selector is a checkbox for delaying a particular response. They are handy for testing spinners.
The delay is globally configurable via Config.delay = 1200 (milliseconds).
These files don’t use the mock filename convention. They take precedence over mocks. Also, they get served on the same address, so no CORS issues.
Use Case 1: If you have a bunch of static assets you don’t want to add .GET.200.ext
Use Case 2: For a standalone demo server. For example, build your frontend bundle, and serve it from Mockaton.
The selected cookie is sent in every response in the Set-Cookie header.
The key is just a label used for selecting a particular cookie in the
dashboard. In the dashboard, only one cookie can be selected. If you need
more cookies you can inject additional cookies globally in Config.extraHeaders.
jwtCookie has a hardcoded header and signature. In other
words, it’s useful if you only care about its payload.
import { jwtCookie } from 'mockaton'
Config.cookies = {
'My Admin User': 'my-cookie=1;Path=/;SameSite=strict',
'My Normal User': 'my-cookie=0;Path=/;SameSite=strict',
'My JWT': jwtCookie('my-cookie', {
email: 'john.doe@example.com',
picture: 'https://cdn.auth0.com/avatars/jd.png'
})
}They are applied last, right before ending the response.
In other words, they can overwrite the Content-Type. Note
that it's an array and the header name goes in even indices.
Config.extraHeaders = [
'Server', 'Mockaton',
'Set-Cookie', 'foo=FOO;Path=/;SameSite=strict',
'Set-Cookie', 'bar=BAR;Path=/;SameSite=strict'
]Config.extraMimes = {
jpg: 'application/jpeg'
}Config.corsAllowed = true
// Defaults when `corsAllowed === true`
Config.corsOrigins = ['*']
Config.corsMethods = ['GET', 'PUT', 'DELETE', 'POST', 'PATCH', 'HEAD', 'OPTIONS', 'TRACE', 'CONNECT']
Config.corsHeaders = ['content-type']
Config.corsCredentials = true
Config.corsMaxAge = 0 // seconds to cache the preflight req
Config.corsExposedHeaders = [] // headers you need to access in client-side JSThis is a callback (dashboardAddress: string) => void, which defaults to
trying to open the dashboard in your default browser in macOS and Windows.
If you don’t want to open a browser, pass a noop, such as
Config.onReady = () => {}On Linux, you could pass:
import { exec } from 'node:child_process'
Config.onReady = function openInBrowser(address) {
exec(`xdg-open ${address}`)
}Or, for more cross-platform utility, you could npm install open and pass it.
import open from 'open'
Config.onReady = openCommander is a wrapper for the Mockaton HTTP API.
All of its methods return their fetch response promise.
import { Commander } from 'mockaton'
const myMockatonAddr = 'http://localhost:2345'
const mockaton = new Commander(myMockatonAddr)await mockaton.select('api/foo.200.GET.json')await mockaton.bulkSelectByComment('(demo-a)')await mockaton.setRouteIsDelayed('GET', '/api/foo', true)In Config.cookies, each key is the label used for selecting it.
await mockaton.selectCookie('My Normal User')await mockaton.setProxyFallback('http://example.com')Pass an empty string to disable it.
Re-initialize the collection. So if you added or removed mocks they will
be considered. The selected mocks, cookies, and delays go back to default,
but Config.proxyFallback and Config.corsAllowed are not affected.
await mockaton.reset()- Refactor Tests
- Dashboard. List
staticDirand indicate if it’s overriding some mock.