Advanced Features

This document covers advanced features useful in production environments. Each section explains why the feature exists before showing how to use it. Read selectively after familiarizing yourself with basic CRUD and relationships.

EntitySubscriber -- Per-Entity Event Subscription

Why

The global em.on() listener receives events for every entity in your application. But in practice, you rarely want the same logic for all entities. When a User is created, you want to send a welcome email. When an Order is created, you want to notify the warehouse. These are different behaviors for different entities.

EntitySubscriber lets you write event handlers that are scoped to a single entity class. The ORM checks each event's entity type and only dispatches to the matching subscriber. This keeps your event logic organized and predictable.

How

// user-audit.subscriber.ts
import {
  EntitySubscriber,
  InsertEvent,
  UpdateEvent,
  DeleteEvent,
} from "@stingerloom/orm";
import { User } from "./user.entity";

class UserAuditSubscriber implements EntitySubscriber<User> {
  listenTo() {
    return User; // Only receive events for this entity
  }

  async afterInsert(event: InsertEvent<User>) {
    console.log("User created:", event.entity);
  }

  async afterUpdate(event: UpdateEvent<User>) {
    console.log("User updated:", event.entity);
  }

  async afterDelete(event: DeleteEvent<User>) {
    console.log("User deleted, criteria:", event.criteria);
  }
}

// Register
em.addSubscriber(new UserAuditSubscriber());

// Unregister
em.removeSubscriber(subscriber);

Here is the list of events supported by EntitySubscriber.

Method	Timing
afterLoad(entity)	After loading entity from DB
beforeInsert(event) / afterInsert(event)	Before/after INSERT
beforeUpdate(event) / afterUpdate(event)	Before/after UPDATE
beforeDelete(event) / afterDelete(event)	Before/after DELETE
beforeTransactionStart() / afterTransactionStart()	Before/after transaction start
beforeTransactionCommit() / afterTransactionCommit()	Before/after COMMIT
beforeTransactionRollback() / afterTransactionRollback()	Before/after ROLLBACK

N+1 Detection and Slow Query Warnings

Why

The N+1 problem is one of the most common performance killers in applications that use ORMs. It happens silently -- your code looks clean, your tests pass, but your database is drowning in queries.

Here is the scenario. You fetch a list of 10 users. For each user, you access their posts. If the ORM loads posts lazily (one query per user), you end up with:

-- The "1" query: fetch all users
SELECT "id", "name" FROM "user"

-- The "N" queries: one per user
SELECT "id", "title", "userId" FROM "post" WHERE "userId" = $1  -- user 1
SELECT "id", "title", "userId" FROM "post" WHERE "userId" = $2  -- user 2
SELECT "id", "title", "userId" FROM "post" WHERE "userId" = $3  -- user 3
-- ...7 more queries...

That is 11 queries for what should be 1. With 100 users, it becomes 101 queries. The fix is to use a JOIN that loads everything in a single query:

-- One query with JOIN: fetch users and their posts together
SELECT "user"."id", "user"."name", "post"."id" AS "posts_id", "post"."title" AS "posts_title"
FROM "user"
LEFT JOIN "post" ON "user"."id" = "post"."userId"

Stingerloom automatically detects the N+1 pattern by tracking queries per entity and warns you when it sees repeated queries for the same table within a short time window.

How

await em.register({
  type: "postgres",
  // ...
  logging: {
    slowQueryMs: 500,  // Warn on queries taking longer than 500ms
    nPlusOne: true,    // Enable N+1 pattern detection
  },
});

After configuration, you can inspect the query log.

const log = em.getQueryLog();
// [
//   { entity: "User", sql: "SELECT ...", durationMs: 12 },
//   { entity: "Cat", sql: "SELECT ...", durationMs: 8 },
//   ...
// ]

Hint When N+1 is detected, switch to JOIN-based loading using eager: true on the relation decorator, or pass the relations option: em.find(User, { relations: ["posts"] }).

Cursor-Based Pagination

Why

Offset pagination (LIMIT 10 OFFSET 10000) has a fundamental problem: to skip 10,000 rows, the database must read and discard all 10,000 of them first. The deeper you paginate, the slower it gets.

Here is the SQL comparison. Offset-based pagination at page 500:

-- Offset: the DB reads 10,000 rows, throws away 9,990, returns 10
SELECT * FROM "post" ORDER BY "id" ASC LIMIT 10 OFFSET 9990

Cursor-based pagination at the same position:

-- Cursor: the DB jumps directly to id > 9990, reads only 10 rows
SELECT * FROM "post" WHERE "id" > $1 ORDER BY "id" ASC LIMIT 11
-- Parameters: [9990]

The cursor approach uses a WHERE clause to jump directly to the right position in the index. Whether you are on page 1 or page 5,000, the performance is the same. The extra row (LIMIT 11 when take is 10) is used to determine whether there is a next page without needing a separate COUNT query.

How

// First page
const page1 = await em.findWithCursor(Post, {
  take: 20,
  orderBy: "id",
  direction: "ASC",
  where: { isPublished: true },
});

// Second page -- pass nextCursor
const page2 = await em.findWithCursor(Post, {
  take: 20,
  cursor: page1.nextCursor!,
  orderBy: "id",
  direction: "ASC",
  where: { isPublished: true },
});

console.log(page2.data);        // Post[]
console.log(page2.hasNextPage); // true/false
console.log(page2.nextCursor);  // Cursor for the next page

Here is an example of using it in a REST API.

// GET /posts?take=20&cursor=eyJ2IjoyMH0=
async function getPosts(req: Request, res: Response) {
  const result = await em.findWithCursor(Post, {
    take: parseInt(req.query.take as string) || 20,
    cursor: req.query.cursor as string | undefined,
    orderBy: "id",
    direction: "ASC",
  });

  res.json({
    items: result.data,
    nextCursor: result.nextCursor,
    hasNextPage: result.hasNextPage,
  });
}

See Pagination & Streaming for a detailed comparison of offset vs cursor vs streaming strategies.

Validation

Why

Validation belongs at the entity level, not scattered across service methods. If price must be positive, that rule should live with the Product entity so it is enforced regardless of which code path saves the product.

When save() is called, constraints defined via decorators are automatically validated. If validation fails, a ValidationError is thrown before any SQL is executed -- no invalid data ever reaches the database.

How

import {
  Entity, Column, PrimaryGeneratedColumn,
  NotNull, MinLength, MaxLength, Min, Max,
} from "@stingerloom/orm";

@Entity()
export class Product {
  @PrimaryGeneratedColumn()
  id!: number;

  @NotNull()
  @MinLength(2)
  @MaxLength(100)
  @Column()
  name!: string;

  @Min(0)
  @Max(9999999)
  @Column({ type: "float" })
  price!: number;
}

try {
  await em.save(Product, { name: "A", price: -1 });
} catch (e) {
  console.error(e.message); // "name must be at least 2 characters long"
}

Decorator	Target	Description
@NotNull()	All types	Disallow null/undefined
@MinLength(n)	string	Minimum length
@MaxLength(n)	string	Maximum length
@Min(n)	number	Minimum value
@Max(n)	number	Maximum value

BaseRepository -- Repository Pattern

Why

When you repeatedly write em.find(User, ...), em.save(User, ...), em.delete(User, ...), the User argument is always the same. A repository binds the EntityManager to a specific entity once, so you don't need to repeat the entity class on every call. It also provides a clear boundary -- each service works with its own repository rather than a god-object EntityManager.

How

const userRepo = em.getRepository(User);

// Use the same API as EntityManager without specifying the entity
const users = await userRepo.find();
const user = await userRepo.findOne({ where: { id: 1 } as any });
await userRepo.save({ name: "John Doe" });
await userRepo.delete({ id: 1 });

In NestJS, you can inject it into services using @InjectRepository().

@Injectable()
class UsersService {
  constructor(
    @InjectRepository(User) private readonly userRepo: BaseRepository<User>
  ) {}

  async findAll() {
    return this.userRepo.find();
  }
}

BaseRepository supports nearly all EntityManager methods: find, findOne, findWithCursor, findAndCount, save, delete, softDelete, restore, insertMany, saveMany, deleteMany, count, sum, avg, min, max, explain, upsert, stream, and createQueryBuilder.

// Streaming via repository
for await (const user of userRepo.stream({ where: { isActive: true } })) {
  await process(user);
}

// Type-safe query builder via repository
const [users, total] = await userRepo
  .createQueryBuilder("u")
  .where("isActive", true)
  .orderBy({ createdAt: "DESC" })
  .skip(20)
  .take(10)
  .getManyAndCount();

Streaming Large Datasets

Why

Imagine you need to send a welcome email to all 2 million users in your database. If you run em.find(User), the ORM loads all 2 million rows into memory at once. Your Node.js process runs out of memory and crashes.

stream() solves this by fetching rows in small batches (e.g., 500 at a time) and yielding them one at a time. Your memory usage stays constant regardless of the total number of rows.

How It Works Internally

The ORM uses LIMIT/OFFSET batching under the hood. For a batch size of 500, the SQL looks like this:

-- Batch 1
SELECT "id", "name", "email" FROM "user" WHERE "isActive" = $1 LIMIT 500 OFFSET 0

-- Batch 2
SELECT "id", "name", "email" FROM "user" WHERE "isActive" = $1 LIMIT 500 OFFSET 500

-- Batch 3
SELECT "id", "name", "email" FROM "user" WHERE "isActive" = $1 LIMIT 500 OFFSET 1000

-- ...continues until a batch returns fewer than 500 rows

Each batch is fetched, yielded one entity at a time, and then discarded before the next batch is fetched. Memory usage stays proportional to the batch size, not the total row count.

How

// Process users one at a time (fetched in batches of 500 internally)
for await (const user of em.stream(User, { where: { isActive: true } }, 500)) {
  await sendWelcomeEmail(user.email);
}

Use stream() for ETL pipelines, data exports, batch notifications, or any task that touches a large fraction of your data. For API endpoints, prefer find() with pagination.

stream() supports all FindOption properties -- where, orderBy, relations, select, etc.

// Stream posts with their authors, ordered by date
for await (const post of em.stream(Post, {
  relations: ["author"],
  orderBy: { createdAt: "DESC" },
}, 1000)) {
  await index(post);
}

Hint stream() uses LIMIT/OFFSET batching internally. For consistent results on large mutable tables, wrap the stream in a transaction with REPEATABLE READ isolation.

See Pagination & Streaming for more details and a comparison of all three data access strategies.

Type-Safe Query Builder

Why

find() covers 90% of queries, but sometimes you need complex JOINs, GROUP BY with aggregates, pessimistic locking, or DISTINCT. Writing raw SQL loses type safety. The SelectQueryBuilder gives you the full power of SQL with compile-time checking.

How

const [activeUsers, total] = await em
  .createQueryBuilder(User, "u")
  .select(["id", "name", "email"])
  .where("isActive", true)
  .andWhere("age", ">=", 18)
  .orderBy({ createdAt: "DESC" })
  .skip(20)
  .take(10)
  .getManyAndCount();

All column references ("id", "name", "isActive") are validated against keyof T -- your IDE auto-completes them, and typos become compile errors.

For more advanced SQL -- UNION, CTE, window functions -- use RawQueryBuilder. See the full Query Builder guide for both builders, and Raw SQL & CTE for UNION, CTE, and window function examples.

Deadlock Retry

Why

A deadlock happens when two transactions are each waiting for a lock the other one holds. Neither can proceed, so the database picks one and kills it.

Here is a concrete scenario: Transaction A transfers money from Account 1 to Account 2 (locks Account 1 first, then tries to lock Account 2). Meanwhile, Transaction B transfers money from Account 2 to Account 1 (locks Account 2 first, then tries to lock Account 1). Both are stuck waiting for each other. The database detects this circular dependency and terminates one transaction with a deadlock error.

In high-concurrency systems, deadlocks are not bugs -- they are an expected fact of life. The standard solution is to retry the failed transaction.

How

await em.transaction(async (txEm) => {
  const account = await txEm.findOne(Account, { where: { id: fromId } });
  account.balance -= amount;
  await txEm.save(Account, account);
}, {
  retryOnDeadlock: true,
  maxRetries: 3,
  retryDelayMs: 100,
});

When a deadlock is caught, the transaction is rolled back and the callback re-executed from scratch. The callback must be idempotent -- it should produce the same result if run multiple times. See Transactions for the full guide.

Operational Features

Read Replica, Connection Pooling, Connection Retry, Query Timeout, and Shutdown Handling are covered in the Configuration Guide. For production-level tuning, see the Production Guide.

Extensibility

DriverRegistry -- Custom Database Drivers

The DriverRegistry allows registering custom database drivers beyond the built-in MySQL, PostgreSQL, and SQLite. This is useful for adding support for CockroachDB, Oracle, or any other SQL database.

import { DriverRegistry } from "@stingerloom/orm";

DriverRegistry.register("oracle", {
  createDriver: (connector, dbType, schema?) => new OracleDriver(connector),
  createDataSource: (connector) => new OracleDataSource(connector),
});

// Now you can use type: "oracle" in register()
await em.register({
  type: "oracle" as any,
  // ...
});

Method	Description
DriverRegistry.register(type, factory)	Register a driver factory for a database type
DriverRegistry.unregister(type)	Remove a registered driver
DriverRegistry.has(type)	Check if a driver is registered
DriverRegistry.getRegisteredTypes()	List all registered database types

Built-in drivers (mysql, mariadb, postgres, sqlite) are registered automatically.

ColumnTypeRegistry -- Custom Column Types

The ColumnTypeRegistry lets you define custom column types with per-dialect SQL mappings and optional transformers.

import { ColumnTypeRegistry } from "@stingerloom/orm";

const registry = ColumnTypeRegistry.getInstance();

registry.register("money", {
  mysql: "DECIMAL(19,4)",
  postgres: "MONEY",
  sqlite: "REAL",
  transformer: {
    to: (value: number) => value,
    from: (raw: string) => parseFloat(raw.replace(/[$,]/g, "")),
  },
});

Use the custom type in @Column:

@Column({ type: "money" as any })
price!: number;

The registry resolves the type to the appropriate SQL for each dialect. The transformer handles conversion between JavaScript and database values.

Method	Description
registry.register(name, definition)	Register a custom column type
registry.resolve(name, dialect)	Get the SQL type for a specific dialect
registry.getTransformer(name)	Get the transformer for a custom type
registry.getRegisteredNames()	List all registered custom types

DialectExpression -- Dialect-Aware SQL

DialectExpression provides a strategy pattern for generating SQL expressions that differ across databases.

import { createDialectExpression } from "@stingerloom/orm";

const expr = createDialectExpression("postgres");

// Case-insensitive LIKE
const ilike = expr.ilike('"name"', "alice");
// PostgreSQL: "name" ILIKE $1  (native ILIKE)
// MySQL:      "name" LIKE ?    (case-insensitive by default)

// Full-text search
const fts = expr.fullTextSearch('"content"', "typescript orm");
// PostgreSQL: to_tsvector('english', "content") @@ plainto_tsquery('english', $1)
// MySQL:      MATCH("content") AGAINST(? IN BOOLEAN MODE)

This is primarily useful when building plugins or custom query builders that need to work across multiple databases.

Test Utilities

Stingerloom provides testing helpers to make unit testing easier without requiring a real database connection.

createTestEntityManager

Creates a fully configured EntityManager for testing. Defaults to in-memory SQLite so no external database is needed.

import { createTestEntityManager } from "@stingerloom/orm/testing";

const em = await createTestEntityManager({
  entities: [User, Post],
  // type: "sqlite" (default), "mysql", or "postgres"
  // synchronize: true (default)
});

// Use em normally in tests
const user = await em.save(User, { name: "Test" });

createMockRepository

Creates a mock BaseRepository with overridable methods. Methods that are not mocked throw when called, making it easy to catch unintended calls.

import { createMockRepository } from "@stingerloom/orm/testing";

const mockRepo = createMockRepository(User, {
  find: async () => [{ id: 1, name: "Alice" } as User],
  findOne: async () => ({ id: 1, name: "Alice" } as User),
});

const users = await mockRepo.find(); // Returns mocked data
await mockRepo.delete({ id: 1 });    // Throws -- not mocked

InMemoryDriver

A minimal in-memory driver implementation for pure unit tests that need no database at all.

import { InMemoryDriver } from "@stingerloom/orm/testing";

const driver = new InMemoryDriver();
driver.seedTable("users", [
  { id: 1, name: "Alice" },
  { id: 2, name: "Bob" },
]);

const data = driver.getTableData("users"); // [{ id: 1, name: "Alice" }, ...]
console.log(driver.getExecutedQueries());  // SQL history

Custom Deserializer Strategy

After the driver returns raw rows, the ORM converts them into class instances through a Deserializer strategy. By default Stingerloom uses ClassTransformerDeserializer when class-transformer is installed and falls back to the zero-dependency PlainObjectDeserializer otherwise. Swap the strategy when you want to use a different validation library (e.g. typia, superstruct) or bypass decorators entirely in hot paths.

import {
  DeserializerRegistry,
  type Deserializer,
} from "@stingerloom/orm";

// 1. Implement the interface
const fastAssignDeserializer: Deserializer = {
  deserialize(cls, plain) {
    if (Array.isArray(plain)) {
      return plain.map((p) => Object.assign(new cls(), p)) as any;
    }
    return Object.assign(new cls(), plain);
  },
};

// 2a. Swap the global singleton (affects every EntityManager in the process)
DeserializerRegistry.getInstance().setDeserializer(fastAssignDeserializer);

// 2b. Or construct a scoped registry when you only want to change one call site
const scoped = new DeserializerRegistry(fastAssignDeserializer);
const user = scoped.deserialize(User, rawRow);

The Deserializer interface has a single method:

interface Deserializer {
  deserialize<T, V extends object>(
    cls: MyClassConstructor<T>,
    plain: V | V[],
    options?: DeserializeOptions,
  ): T;
}

DeserializeOptions mirrors the common class-transformer flags so your implementation can ignore or honor them:

Option	Purpose
excludeExtraneousValues	Drop properties that do not exist on the class.
groups	Expose only properties in these groups (class-transformer @Expose({ groups })).
version	Version gating for class-transformer @Expose({ since, until }).
enableCircularCheck	Detect circular references during conversion.
exposeDefaultValues	Emit properties whose only value is the class's default.
exposeUnsetProperties	Emit undecorated properties (for full transparency).

When to swap:

• Performance critical paths — PlainObjectDeserializer is ~3-5x faster than class-transformer for simple read-only rows. If your entity has no @Type(() => …) nested conversions, the default fallback is already enough.
• Alternative validators (typia, zod, valibot) — wrap the validator's parse function inside deserialize() to get validation + instance construction in one pass.
• Custom field masking — implement group-based masking without class-transformer decorators (honor options.groups yourself).

The ORM calls the registered deserializer from ResultTransformer, so the swap takes effect on every find(), findOne(), query builder getMany(), and relation load.

Next Steps

• Query Builder -- Type-safe SelectQueryBuilder
• Raw SQL & CTE -- UNION, CTE, window functions
• Events & Subscribers -- Detailed event system guide
• Logging & Diagnostics -- N+1 detection, slow queries, EXPLAIN
• Plugins -- Plugin system and custom plugin authoring
• Multi-Tenancy -- Per-tenant data isolation
• API Reference -- Quick method signature lookup