How to use body-parser in Express

Thursday, November 20, 2025

#nodejs #express #body-parser #json #middleware

Parsing request bodies is essential for handling POST, PUT, and PATCH requests in Express applications that receive form data or JSON. As the creator of CoreUI with over 25 years of backend development experience, I’ve handled countless API implementations that require proper body parsing. The most modern approach is using Express’s built-in body parsing middleware instead of the separate body-parser package. This provides reliable parsing for JSON, URL-encoded data, and raw content with built-in security features.

Use Express’s built-in body parsing middleware with express.json() and express.urlencoded() to handle request bodies.

const express = require('express')
const app = express()

// Parse JSON bodies (application/json)
app.use(express.json({ limit: '10mb' }))

// Parse URL-encoded bodies (application/x-www-form-urlencoded)
app.use(express.urlencoded({ extended: true, limit: '10mb' }))

// Example POST route that uses parsed body
app.post('/api/users', (req, res) => {
  const { name, email } = req.body

  if (!name || !email) {
    return res.status(400).json({ error: 'Name and email required' })
  }

  // Process user creation
  res.json({ message: 'User created', user: { name, email } })
})

app.listen(3000, () => {
  console.log('Server running on port 3000')
})

This setup uses Express’s built-in parsing middleware which is now preferred over the separate body-parser package. The express.json() middleware parses JSON request bodies, while express.urlencoded() handles form data. The extended: true option allows for rich objects and arrays to be encoded in URL-encoded format, and the limit option prevents oversized payloads.

Best Practice Note:

This is the standard approach used in CoreUI’s Node.js templates for secure, efficient request body parsing. Always set appropriate size limits to prevent DoS attacks and validate parsed data before processing.

Speed up your responsive apps and websites with fully-featured, ready-to-use open-source admin panel templates—free to use and built for efficiency.

About the Author

Łukasz Holeczek, Founder of CoreUI, is a seasoned Fullstack Developer and entrepreneur with over 25 years of experience. As the lead developer for all JavaScript, React.js, and Vue.js products at CoreUI, they specialize in creating open-source solutions that empower developers to build better and more accessible user interfaces.

With expertise in TypeScript, JavaScript, Node.js, and modern frameworks like React.js, Vue.js, and Next.js, Łukasz combines technical mastery with a passion for UI/UX design and accessibility. CoreUI’s mission is to provide developers with tools that enhance productivity while adhering to accessibility standards.

Łukasz shares its extensive knowledge through a blog with technical software development articles. It also advises enterprise companies on building solutions from A to Z. Through CoreUI, it offers professional services, technical support, and open-core products that help developers and businesses achieve their goals.

Learn more about CoreUI’s solutions and see how your business can benefit from working with us.