qs vs url-parse vs query-string vs url-search-params-polyfill vs url-search-params
URL and Query String Manipulation
Search packages..
qsurl-parsequery-stringurl-search-params-polyfillurl-search-paramsSimilar Packages:
URL and Query String Manipulation

URL and Query String Manipulation libraries in JavaScript provide developers with tools to parse, stringify, and manipulate URLs and their query parameters. These libraries simplify tasks such as extracting query parameters from a URL, encoding and decoding query strings, and constructing URLs with specific parameters. They are particularly useful for web applications that need to handle dynamic URLs, manage state through query parameters, or perform operations on URLs in a consistent and reliable manner. qs is a powerful library for parsing and stringifying query strings, supporting nested objects and arrays. query-string is a lightweight alternative that focuses on simplicity and performance, offering easy-to-use functions for parsing and stringifying query strings. url-parse provides a comprehensive URL parsing solution, allowing developers to manipulate different parts of a URL, including the protocol, hostname, path, and query. url-search-params is a built-in browser API that provides a simple interface for working with URL query parameters, allowing for easy manipulation of query strings. url-search-params-polyfill is a polyfill for the url-search-params API, providing the same functionality in environments where it is not natively supported, ensuring consistent behavior across all browsers.

Npm Package Weekly Downloads Trend
3 Years
Github Stars Ranking
Stat Detail
Package
Downloads
Stars
Size
Issues
Publish
License
qs85,765,0858,884288 kB8411 days agoBSD-3-Clause
url-parse22,336,8051,03663 kB14-MIT
query-string11,839,3776,90357.7 kB24 months agoMIT
url-search-params-polyfill429,20260217.4 kB32 years agoMIT
url-search-params65,145763-07 years agoMIT
Feature Comparison: qs vs url-parse vs query-string vs url-search-params-polyfill vs url-search-params

Query String Parsing

  • qs:

    qs excels at parsing complex query strings, including those with nested objects and arrays. It can handle deep parsing, making it suitable for APIs that require intricate data structures.

  • url-parse:

    url-parse parses the entire URL, including the query string. However, it does not specialize in query string parsing, so you may need to handle the query string manually after parsing the URL.

  • query-string:

    query-string provides efficient parsing for standard query strings. It is fast and straightforward, but it does not support nested objects or arrays out of the box, making it best for simpler use cases.

  • url-search-params-polyfill:

    url-search-params-polyfill offers the same parsing capabilities as the native URLSearchParams API, providing a simple interface for working with query parameters in environments where the native API is unavailable.

  • url-search-params:

    url-search-params provides a simple and intuitive way to access and manipulate query parameters. It allows for easy retrieval, addition, and deletion of parameters, but it does not parse nested structures.

Query String Stringification

  • qs:

    qs can stringify complex objects, including nested structures and arrays, into query strings. It provides customizable options for how data is serialized, making it highly flexible.

  • url-parse:

    url-parse does not provide built-in stringification of query parameters. You would need to manually construct the query string from the parsed URL object, which can be cumbersome.

  • query-string:

    query-string offers simple and efficient stringification of flat objects and arrays. It is fast and lightweight, but it does not handle nested objects natively, which may limit its use in some scenarios.

  • url-search-params-polyfill:

    url-search-params-polyfill provides the same functionality as the native URLSearchParams API, allowing for straightforward manipulation of query parameters, but it does not support complex object stringification.

  • url-search-params:

    url-search-params allows for easy manipulation of query parameters, but it does not handle stringification of complex objects. You can add parameters one by one, but it is not designed for deep serialization.

URL Manipulation

  • qs:

    qs focuses primarily on query string manipulation and does not provide features for full URL manipulation. It is best used in conjunction with other libraries for comprehensive URL handling.

  • url-parse:

    url-parse provides extensive URL manipulation capabilities, allowing you to modify all parts of the URL, including the protocol, hostname, path, and query string. It is a versatile tool for comprehensive URL handling.

  • query-string:

    query-string is similar to qs in that it focuses on query strings. It does not offer URL manipulation features beyond handling the query component.

  • url-search-params-polyfill:

    url-search-params-polyfill offers the same query parameter manipulation capabilities as the native URLSearchParams API, but it does not provide any additional URL manipulation features.

  • url-search-params:

    url-search-params only manipulates the query parameters of a URL. It does not provide any features for manipulating other parts of the URL, making it a more limited tool for overall URL manipulation.

Browser Compatibility

  • qs:

    qs is a JavaScript library that works in all environments, including Node.js and browsers. It has no dependencies and is compatible with all modern and legacy browsers.

  • url-parse:

    url-parse works in both browser and Node.js environments. It is compatible with all modern browsers and provides a consistent API for URL manipulation across different platforms.

  • query-string:

    query-string is also compatible with all browsers and Node.js environments. It is a lightweight library with no dependencies, making it easy to integrate into any project.

  • url-search-params-polyfill:

    url-search-params-polyfill provides compatibility for the URLSearchParams API in older browsers, including Internet Explorer. It ensures that the functionality is available in environments where the native API is not implemented.

  • url-search-params:

    url-search-params is a native API in modern browsers, but it is not supported in Internet Explorer. It is widely supported in other modern browsers, including Chrome, Firefox, Safari, and Edge.

Ease of Use: Code Examples

  • qs:

    Parsing complex query strings with qs

    const qs = require('qs');
const queryString = 'user[name]=John&user[age]=30&tags[]=coding&tags[]=music';
const parsed = qs.parse(queryString);
console.log(parsed);
// Output: { user: { name: 'John', age: '30' }, tags: [ 'coding', 'music' ] }

const stringified = qs.stringify(parsed);
console.log(stringified);
// Output: user[name]=John&user[age]=30&tags[]=coding&tags[]=music
  • url-parse:

    Parsing and manipulating URLs with url-parse

    const Url = require('url-parse');
const url = new Url('https://example.com:8080/path?name=John#hash');
console.log(url.protocol); // Output: https:
console.log(url.hostname); // Output: example.com
console.log(url.port); // Output: 8080
console.log(url.query); // Output: ?name=John

// Manipulating the URL
url.set('query', 'name=Jane');
console.log(url.href); // Output: https://example.com:8080/path?name=Jane#hash
  • query-string:

    Parsing and stringifying query strings with query-string

    const queryString = require('query-string');
const url = 'https://example.com?name=John&age=30&hobbies[]=coding&hobbies[]=music';
const parsed = queryString.parse(url);
console.log(parsed);
// Output: { name: 'John', age: '30', hobbies: [ 'coding', 'music' ] }

const stringified = queryString.stringify(parsed);
console.log(stringified);
// Output: name=John&age=30&hobbies[]=coding&hobbies[]=music
  • url-search-params-polyfill:

    Using the url-search-params-polyfill

    // Ensure the polyfill is loaded in environments that lack native support
require('url-search-params-polyfill');
const params = new URLSearchParams('?name=John&age=30&hobbies=coding&hobbies=music');
console.log(params.get('name')); // Output: John
console.log(params.getAll('hobbies')); // Output: [ 'coding', 'music' ]

params.append('hobbies', 'art');
console.log(params.toString()); // Output: name=John&age=30&hobbies=coding&hobbies=music&hobbies=art
  • url-search-params:

    Using the URLSearchParams API

    const params = new URLSearchParams('?name=John&age=30&hobbies=coding&hobbies=music');
console.log(params.get('name')); // Output: John
console.log(params.getAll('hobbies')); // Output: [ 'coding', 'music' ]

params.append('hobbies', 'art');
console.log(params.toString()); // Output: name=John&age=30&hobbies=coding&hobbies=music&hobbies=art
How to Choose: qs vs url-parse vs query-string vs url-search-params-polyfill vs url-search-params
  • qs:

    Choose qs if you need to handle complex query strings with nested objects and arrays. It is ideal for applications that require deep parsing and stringification of query parameters.

  • url-parse:

    Choose url-parse if you need a comprehensive solution for parsing and manipulating entire URLs, not just query strings. It allows for detailed manipulation of all URL components, making it versatile for various use cases.

  • query-string:

    Choose query-string if you prefer a lightweight and fast solution for parsing and stringifying simple query strings. It is suitable for projects where performance and simplicity are priorities.

  • url-search-params-polyfill:

    Choose url-search-params-polyfill if you need to support older browsers that do not implement the URLSearchParams API. It provides the same functionality as the native API, ensuring compatibility across all environments.

  • url-search-params:

    Choose url-search-params if you want a native, simple, and efficient way to work with query parameters. It is built into modern browsers, providing a straightforward API for manipulating query strings without additional dependencies.

Similar Npm Packages to qs

qs is a popular npm package used for parsing and stringifying query strings in JavaScript applications. It provides a simple and efficient way to handle URL query parameters, making it easier to work with complex query strings. While qs is a robust solution for query string manipulation, there are several alternatives available in the ecosystem. Here are a few noteworthy options:

  • query-string is a lightweight library that focuses on parsing and stringifying URL query strings. It offers a simple API and is designed to be easy to use. query-string supports nested objects and arrays, making it a great choice for applications that require more complex query string structures. If you need a straightforward solution for handling query strings without the overhead of additional features, query-string is an excellent alternative.
  • querystring is a built-in Node.js module that provides utilities for parsing and formatting query strings. While it is less feature-rich compared to qs, it is still a viable option for basic query string manipulation. If you are working in a Node.js environment and require a simple solution without adding external dependencies, querystring can be a good fit.
  • url-parse is a more comprehensive library that not only handles query strings but also provides utilities for parsing and manipulating URLs. It allows you to work with various components of a URL, including the protocol, host, pathname, and query string. If your application requires extensive URL manipulation beyond just query strings, url-parse is a suitable choice.

To see how qs compares with query-string, querystring, and url-parse, check out the comparison: Comparing qs vs query-string vs querystring vs url-parse.

Similar Npm Packages to url-parse

url-parse is a popular JavaScript library for parsing and manipulating URLs. It provides a simple and efficient way to break down URLs into their components, such as protocol, host, pathname, query string, and hash. This makes it easier for developers to work with URLs in their applications, whether they need to extract specific parts of a URL or construct new URLs from existing components. While url-parse is a robust solution for URL handling, there are several alternatives worth considering:

  • url-join is a lightweight library that focuses specifically on joining URL segments together. It ensures that the resulting URL is properly formatted, handling slashes and other characters gracefully. If your primary need is to concatenate URL parts without worrying about the intricacies of parsing, url-join is an excellent choice. Its simplicity and focused functionality make it ideal for scenarios where you need to build URLs dynamically from various segments.

  • url-parse-lax is a variant of the url-parse library that offers a more lenient approach to parsing URLs. It allows for more flexibility in handling malformed URLs and provides a simpler API for common use cases. If you find that you often deal with URLs that may not conform to strict standards, url-parse-lax can be a great alternative. It retains many of the features of url-parse while providing a more forgiving parsing experience.

To see how these libraries compare, check out the comparison: Comparing url-join vs url-parse vs url-parse-lax.

Similar Npm Packages to query-string

query-string is a popular JavaScript library that provides utilities for parsing and stringifying URL query strings. It simplifies the process of working with query parameters in URLs, making it easier to extract and manipulate data from them. With query-string, developers can easily convert query strings into JavaScript objects and vice versa, which is particularly useful for handling URL parameters in web applications.

One notable alternative to query-string is qs. The qs library is also designed for parsing and stringifying query strings, but it offers additional features and capabilities. For instance, qs supports nested objects and arrays in query strings, allowing for more complex data structures to be represented. This makes it a great choice for applications that require more advanced query string handling.

While both libraries serve similar purposes, the choice between query-string and qs often depends on the specific needs of the application. If you need a straightforward solution for basic query string manipulation, query-string is a solid option. However, if your application requires handling more complex data structures within query strings, qs may be the better choice.

To see how query-string compares with qs, check out the comparison: Comparing query-string vs qs.

Similar Npm Packages to url-search-params-polyfill

url-search-params-polyfill is a JavaScript library that provides a polyfill for the URLSearchParams interface, which is used to work with the query string of a URL. This polyfill allows developers to use URLSearchParams in environments where it may not be natively supported, ensuring compatibility across different browsers. It simplifies the process of parsing and manipulating query strings, making it easier to work with URL parameters in web applications. While url-search-params-polyfill is a useful tool, there are several alternatives available that offer similar functionality. Here are a few:

  • qs is a popular library for parsing and stringifying query strings in JavaScript. It supports nested objects and arrays, making it a powerful choice for handling complex query parameters. qs is particularly useful when you need to serialize or deserialize query strings that contain structured data. Its flexibility and robustness make it a go-to option for developers dealing with intricate query string scenarios.
  • query-string is another library designed for parsing and stringifying query strings. It provides a simple API for working with URL parameters and supports features like parsing arrays and objects. query-string is lightweight and easy to use, making it a great choice for projects that require basic query string manipulation without the overhead of more complex libraries.
  • url-parse is a comprehensive library for parsing URLs in JavaScript. It allows developers to easily break down a URL into its components, such as protocol, hostname, pathname, and query string. While url-parse is more focused on overall URL parsing rather than just query strings, it can be a valuable tool for developers who need to work with complete URLs and their components.
  • url-search-params is a lightweight library that provides a simple API for working with URLSearchParams. It offers similar functionality to the native URLSearchParams interface, allowing developers to easily manipulate query strings. This library is particularly useful for those who want a straightforward implementation without the need for additional features.

To see how url-search-params-polyfill compares with qs, query-string, url-parse, and url-search-params, check out the comparison: Comparing qs vs query-string vs url-parse vs url-search-params vs url-search-params-polyfill.

Similar Npm Packages to url-search-params

url-search-params is a JavaScript library that provides a simple and convenient way to work with URL query parameters. It allows developers to easily parse, manipulate, and serialize query strings in a user-friendly manner. While url-search-params is a great tool for handling URL parameters, there are several alternatives available that offer similar functionalities. Here are a few notable ones:

  • qs is a powerful query string parsing and stringifying library that supports nested objects and arrays. It provides a rich set of features for handling complex query strings, making it a popular choice for developers who need to work with more intricate data structures. If your application requires advanced parsing capabilities beyond simple key-value pairs, qs is an excellent option.
  • query-string is a lightweight library for parsing and stringifying URL query strings. It offers a straightforward API and supports features like array and object serialization. query-string is ideal for developers looking for a simple solution to handle query parameters without the overhead of more complex libraries. Its ease of use makes it a popular choice for many projects.
  • querystring is a built-in Node.js module that provides utilities for parsing and formatting query strings. While it is primarily used in server-side applications, it can also be utilized in client-side code. If you are working in a Node.js environment and need basic query string manipulation, querystring is a reliable option.
  • url-parse is a comprehensive library for parsing and manipulating URLs. It provides a wide range of features, including the ability to easily access various components of a URL, such as the protocol, hostname, and query parameters. If your project requires extensive URL manipulation beyond just query strings, url-parse is a robust choice.
  • url-search-params-polyfill is a polyfill for the URLSearchParams interface, which allows developers to work with query strings in environments that do not support this feature natively. If you need to ensure compatibility with older browsers or environments, this polyfill can be a valuable addition to your project.

To see how these packages compare, check out the comparison: Comparing qs vs query-string vs querystring vs url-parse vs url-search-params vs url-search-params-polyfill.

README for qs

qs

qs Version Badge

github actions coverage License Downloads CII Best Practices

npm badge

A querystring parsing and stringifying library with some added security.

Lead Maintainer: Jordan Harband

The qs module was originally created and maintained by TJ Holowaychuk.

Usage

var qs = require('qs');
var assert = require('assert');

var obj = qs.parse('a=c');
assert.deepEqual(obj, { a: 'c' });

var str = qs.stringify(obj);
assert.equal(str, 'a=c');

Parsing Objects

qs.parse(string, [options]);

qs allows you to create nested objects within your query strings, by surrounding the name of sub-keys with square brackets []. For example, the string 'foo[bar]=baz' converts to:

assert.deepEqual(qs.parse('foo[bar]=baz'), {
    foo: {
        bar: 'baz'
    }
});

When using the plainObjects option the parsed value is returned as a null object, created via { __proto__: null } and as such you should be aware that prototype methods will not exist on it and a user may set those names to whatever value they like:

var nullObject = qs.parse('a[hasOwnProperty]=b', { plainObjects: true });
assert.deepEqual(nullObject, { a: { hasOwnProperty: 'b' } });

By default parameters that would overwrite properties on the object prototype are ignored, if you wish to keep the data from those fields either use plainObjects as mentioned above, or set allowPrototypes to true which will allow user input to overwrite those properties. WARNING It is generally a bad idea to enable this option as it can cause problems when attempting to use the properties that have been overwritten. Always be careful with this option.

var protoObject = qs.parse('a[hasOwnProperty]=b', { allowPrototypes: true });
assert.deepEqual(protoObject, { a: { hasOwnProperty: 'b' } });

URI encoded strings work too:

assert.deepEqual(qs.parse('a%5Bb%5D=c'), {
    a: { b: 'c' }
});

You can also nest your objects, like 'foo[bar][baz]=foobarbaz':

assert.deepEqual(qs.parse('foo[bar][baz]=foobarbaz'), {
    foo: {
        bar: {
            baz: 'foobarbaz'
        }
    }
});

By default, when nesting objects qs will only parse up to 5 children deep. This means if you attempt to parse a string like 'a[b][c][d][e][f][g][h][i]=j' your resulting object will be:

var expected = {
    a: {
        b: {
            c: {
                d: {
                    e: {
                        f: {
                            '[g][h][i]': 'j'
                        }
                    }
                }
            }
        }
    }
};
var string = 'a[b][c][d][e][f][g][h][i]=j';
assert.deepEqual(qs.parse(string), expected);

This depth can be overridden by passing a depth option to qs.parse(string, [options]):

var deep = qs.parse('a[b][c][d][e][f][g][h][i]=j', { depth: 1 });
assert.deepEqual(deep, { a: { b: { '[c][d][e][f][g][h][i]': 'j' } } });

You can configure qs to throw an error when parsing nested input beyond this depth using the strictDepth option (defaulted to false):

try {
    qs.parse('a[b][c][d][e][f][g][h][i]=j', { depth: 1, strictDepth: true });
} catch (err) {
    assert(err instanceof RangeError);
    assert.strictEqual(err.message, 'Input depth exceeded depth option of 1 and strictDepth is true');
}

The depth limit helps mitigate abuse when qs is used to parse user input, and it is recommended to keep it a reasonably small number. The strictDepth option adds a layer of protection by throwing an error when the limit is exceeded, allowing you to catch and handle such cases.

For similar reasons, by default qs will only parse up to 1000 parameters. This can be overridden by passing a parameterLimit option:

var limited = qs.parse('a=b&c=d', { parameterLimit: 1 });
assert.deepEqual(limited, { a: 'b' });

If you want an error to be thrown whenever the a limit is exceeded (eg, parameterLimit, arrayLimit), set the throwOnLimitExceeded option to true. This option will generate a descriptive error if the query string exceeds a configured limit.

try {
    qs.parse('a=1&b=2&c=3&d=4', { parameterLimit: 3, throwOnLimitExceeded: true });
} catch (err) {
    assert(err instanceof Error);
    assert.strictEqual(err.message, 'Parameter limit exceeded. Only 3 parameters allowed.');
}

When throwOnLimitExceeded is set to false (default), qs will parse up to the specified parameterLimit and ignore the rest without throwing an error.

To bypass the leading question mark, use ignoreQueryPrefix:

var prefixed = qs.parse('?a=b&c=d', { ignoreQueryPrefix: true });
assert.deepEqual(prefixed, { a: 'b', c: 'd' });

An optional delimiter can also be passed:

var delimited = qs.parse('a=b;c=d', { delimiter: ';' });
assert.deepEqual(delimited, { a: 'b', c: 'd' });

Delimiters can be a regular expression too:

var regexed = qs.parse('a=b;c=d,e=f', { delimiter: /[;,]/ });
assert.deepEqual(regexed, { a: 'b', c: 'd', e: 'f' });

Option allowDots can be used to enable dot notation:

var withDots = qs.parse('a.b=c', { allowDots: true });
assert.deepEqual(withDots, { a: { b: 'c' } });

Option decodeDotInKeys can be used to decode dots in keys Note: it implies allowDots, so parse will error if you set decodeDotInKeys to true, and allowDots to false.

var withDots = qs.parse('name%252Eobj.first=John&name%252Eobj.last=Doe', { decodeDotInKeys: true });
assert.deepEqual(withDots, { 'name.obj': { first: 'John', last: 'Doe' }});

Option allowEmptyArrays can be used to allowing empty array values in object

var withEmptyArrays = qs.parse('foo[]&bar=baz', { allowEmptyArrays: true });
assert.deepEqual(withEmptyArrays, { foo: [], bar: 'baz' });

Option duplicates can be used to change the behavior when duplicate keys are encountered

assert.deepEqual(qs.parse('foo=bar&foo=baz'), { foo: ['bar', 'baz'] });
assert.deepEqual(qs.parse('foo=bar&foo=baz', { duplicates: 'combine' }), { foo: ['bar', 'baz'] });
assert.deepEqual(qs.parse('foo=bar&foo=baz', { duplicates: 'first' }), { foo: 'bar' });
assert.deepEqual(qs.parse('foo=bar&foo=baz', { duplicates: 'last' }), { foo: 'baz' });

If you have to deal with legacy browsers or services, there's also support for decoding percent-encoded octets as iso-8859-1:

var oldCharset = qs.parse('a=%A7', { charset: 'iso-8859-1' });
assert.deepEqual(oldCharset, { a: '§' });

Some services add an initial utf8=✓ value to forms so that old Internet Explorer versions are more likely to submit the form as utf-8. Additionally, the server can check the value against wrong encodings of the checkmark character and detect that a query string or application/x-www-form-urlencoded body was not sent as utf-8, eg. if the form had an accept-charset parameter or the containing page had a different character set.

qs supports this mechanism via the charsetSentinel option. If specified, the utf8 parameter will be omitted from the returned object. It will be used to switch to iso-8859-1/utf-8 mode depending on how the checkmark is encoded.

Important: When you specify both the charset option and the charsetSentinel option, the charset will be overridden when the request contains a utf8 parameter from which the actual charset can be deduced. In that sense the charset will behave as the default charset rather than the authoritative charset.

var detectedAsUtf8 = qs.parse('utf8=%E2%9C%93&a=%C3%B8', {
    charset: 'iso-8859-1',
    charsetSentinel: true
});
assert.deepEqual(detectedAsUtf8, { a: 'ø' });

// Browsers encode the checkmark as ✓ when submitting as iso-8859-1:
var detectedAsIso8859_1 = qs.parse('utf8=%26%2310003%3B&a=%F8', {
    charset: 'utf-8',
    charsetSentinel: true
});
assert.deepEqual(detectedAsIso8859_1, { a: 'ø' });

If you want to decode the &#...; syntax to the actual character, you can specify the interpretNumericEntities option as well:

var detectedAsIso8859_1 = qs.parse('a=%26%239786%3B', {
    charset: 'iso-8859-1',
    interpretNumericEntities: true
});
assert.deepEqual(detectedAsIso8859_1, { a: '☺' });

It also works when the charset has been detected in charsetSentinel mode.

Parsing Arrays

qs can also parse arrays using a similar [] notation:

var withArray = qs.parse('a[]=b&a[]=c');
assert.deepEqual(withArray, { a: ['b', 'c'] });

You may specify an index as well:

var withIndexes = qs.parse('a[1]=c&a[0]=b');
assert.deepEqual(withIndexes, { a: ['b', 'c'] });

Note that the only difference between an index in an array and a key in an object is that the value between the brackets must be a number to create an array. When creating arrays with specific indices, qs will compact a sparse array to only the existing values preserving their order:

var noSparse = qs.parse('a[1]=b&a[15]=c');
assert.deepEqual(noSparse, { a: ['b', 'c'] });

You may also use allowSparse option to parse sparse arrays:

var sparseArray = qs.parse('a[1]=2&a[3]=5', { allowSparse: true });
assert.deepEqual(sparseArray, { a: [, '2', , '5'] });

Note that an empty string is also a value, and will be preserved:

var withEmptyString = qs.parse('a[]=&a[]=b');
assert.deepEqual(withEmptyString, { a: ['', 'b'] });

var withIndexedEmptyString = qs.parse('a[0]=b&a[1]=&a[2]=c');
assert.deepEqual(withIndexedEmptyString, { a: ['b', '', 'c'] });

qs will also limit specifying indices in an array to a maximum index of 20. Any array members with an index of greater than 20 will instead be converted to an object with the index as the key. This is needed to handle cases when someone sent, for example, a[999999999] and it will take significant time to iterate over this huge array.

var withMaxIndex = qs.parse('a[100]=b');
assert.deepEqual(withMaxIndex, { a: { '100': 'b' } });

This limit can be overridden by passing an arrayLimit option:

var withArrayLimit = qs.parse('a[1]=b', { arrayLimit: 0 });
assert.deepEqual(withArrayLimit, { a: { '1': 'b' } });

If you want to throw an error whenever the array limit is exceeded, set the throwOnLimitExceeded option to true. This option will generate a descriptive error if the query string exceeds a configured limit.

try {
    qs.parse('a[1]=b', { arrayLimit: 0, throwOnLimitExceeded: true });
} catch (err) {
    assert(err instanceof Error);
    assert.strictEqual(err.message, 'Array limit exceeded. Only 0 elements allowed in an array.');
}

When throwOnLimitExceeded is set to false (default), qs will parse up to the specified arrayLimit and if the limit is exceeded, the array will instead be converted to an object with the index as the key

To disable array parsing entirely, set parseArrays to false.

var noParsingArrays = qs.parse('a[]=b', { parseArrays: false });
assert.deepEqual(noParsingArrays, { a: { '0': 'b' } });

If you mix notations, qs will merge the two items into an object:

var mixedNotation = qs.parse('a[0]=b&a[b]=c');
assert.deepEqual(mixedNotation, { a: { '0': 'b', b: 'c' } });

You can also create arrays of objects:

var arraysOfObjects = qs.parse('a[][b]=c');
assert.deepEqual(arraysOfObjects, { a: [{ b: 'c' }] });

Some people use comma to join array, qs can parse it:

var arraysOfObjects = qs.parse('a=b,c', { comma: true })
assert.deepEqual(arraysOfObjects, { a: ['b', 'c'] })

(this cannot convert nested objects, such as a={b:1},{c:d})

Parsing primitive/scalar values (numbers, booleans, null, etc)

By default, all values are parsed as strings. This behavior will not change and is explained in issue #91.

var primitiveValues = qs.parse('a=15&b=true&c=null');
assert.deepEqual(primitiveValues, { a: '15', b: 'true', c: 'null' });

If you wish to auto-convert values which look like numbers, booleans, and other values into their primitive counterparts, you can use the query-types Express JS middleware which will auto-convert all request query parameters.

Stringifying

qs.stringify(object, [options]);

When stringifying, qs by default URI encodes output. Objects are stringified as you would expect:

assert.equal(qs.stringify({ a: 'b' }), 'a=b');
assert.equal(qs.stringify({ a: { b: 'c' } }), 'a%5Bb%5D=c');

This encoding can be disabled by setting the encode option to false:

var unencoded = qs.stringify({ a: { b: 'c' } }, { encode: false });
assert.equal(unencoded, 'a[b]=c');

Encoding can be disabled for keys by setting the encodeValuesOnly option to true:

var encodedValues = qs.stringify(
    { a: 'b', c: ['d', 'e=f'], f: [['g'], ['h']] },
    { encodeValuesOnly: true }
);
assert.equal(encodedValues,'a=b&c[0]=d&c[1]=e%3Df&f[0][0]=g&f[1][0]=h');

This encoding can also be replaced by a custom encoding method set as encoder option:

var encoded = qs.stringify({ a: { b: 'c' } }, { encoder: function (str) {
    // Passed in values `a`, `b`, `c`
    return // Return encoded string
}})

(Note: the encoder option does not apply if encode is false)

Analogue to the encoder there is a decoder option for parse to override decoding of properties and values:

var decoded = qs.parse('x=z', { decoder: function (str) {
    // Passed in values `x`, `z`
    return // Return decoded string
}})

You can encode keys and values using different logic by using the type argument provided to the encoder:

var encoded = qs.stringify({ a: { b: 'c' } }, { encoder: function (str, defaultEncoder, charset, type) {
    if (type === 'key') {
        return // Encoded key
    } else if (type === 'value') {
        return // Encoded value
    }
}})

The type argument is also provided to the decoder:

var decoded = qs.parse('x=z', { decoder: function (str, defaultDecoder, charset, type) {
    if (type === 'key') {
        return // Decoded key
    } else if (type === 'value') {
        return // Decoded value
    }
}})

Examples beyond this point will be shown as though the output is not URI encoded for clarity. Please note that the return values in these cases will be URI encoded during real usage.

When arrays are stringified, they follow the arrayFormat option, which defaults to indices:

qs.stringify({ a: ['b', 'c', 'd'] });
// 'a[0]=b&a[1]=c&a[2]=d'

You may override this by setting the indices option to false, or to be more explicit, the arrayFormat option to repeat:

qs.stringify({ a: ['b', 'c', 'd'] }, { indices: false });
// 'a=b&a=c&a=d'

You may use the arrayFormat option to specify the format of the output array:

qs.stringify({ a: ['b', 'c'] }, { arrayFormat: 'indices' })
// 'a[0]=b&a[1]=c'
qs.stringify({ a: ['b', 'c'] }, { arrayFormat: 'brackets' })
// 'a[]=b&a[]=c'
qs.stringify({ a: ['b', 'c'] }, { arrayFormat: 'repeat' })
// 'a=b&a=c'
qs.stringify({ a: ['b', 'c'] }, { arrayFormat: 'comma' })
// 'a=b,c'

Note: when using arrayFormat set to 'comma', you can also pass the commaRoundTrip option set to true or false, to append [] on single-item arrays, so that they can round trip through a parse.

When objects are stringified, by default they use bracket notation:

qs.stringify({ a: { b: { c: 'd', e: 'f' } } });
// 'a[b][c]=d&a[b][e]=f'

You may override this to use dot notation by setting the allowDots option to true:

qs.stringify({ a: { b: { c: 'd', e: 'f' } } }, { allowDots: true });
// 'a.b.c=d&a.b.e=f'

You may encode the dot notation in the keys of object with option encodeDotInKeys by setting it to true: Note: it implies allowDots, so stringify will error if you set decodeDotInKeys to true, and allowDots to false. Caveat: when encodeValuesOnly is true as well as encodeDotInKeys, only dots in keys and nothing else will be encoded.

qs.stringify({ "name.obj": { "first": "John", "last": "Doe" } }, { allowDots: true, encodeDotInKeys: true })
// 'name%252Eobj.first=John&name%252Eobj.last=Doe'

You may allow empty array values by setting the allowEmptyArrays option to true:

qs.stringify({ foo: [], bar: 'baz' }, { allowEmptyArrays: true });
// 'foo[]&bar=baz'

Empty strings and null values will omit the value, but the equals sign (=) remains in place:

assert.equal(qs.stringify({ a: '' }), 'a=');

Key with no values (such as an empty object or array) will return nothing:

assert.equal(qs.stringify({ a: [] }), '');
assert.equal(qs.stringify({ a: {} }), '');
assert.equal(qs.stringify({ a: [{}] }), '');
assert.equal(qs.stringify({ a: { b: []} }), '');
assert.equal(qs.stringify({ a: { b: {}} }), '');

Properties that are set to undefined will be omitted entirely:

assert.equal(qs.stringify({ a: null, b: undefined }), 'a=');

The query string may optionally be prepended with a question mark:

assert.equal(qs.stringify({ a: 'b', c: 'd' }, { addQueryPrefix: true }), '?a=b&c=d');

The delimiter may be overridden with stringify as well:

assert.equal(qs.stringify({ a: 'b', c: 'd' }, { delimiter: ';' }), 'a=b;c=d');

If you only want to override the serialization of Date objects, you can provide a serializeDate option:

var date = new Date(7);
assert.equal(qs.stringify({ a: date }), 'a=1970-01-01T00:00:00.007Z'.replace(/:/g, '%3A'));
assert.equal(
    qs.stringify({ a: date }, { serializeDate: function (d) { return d.getTime(); } }),
    'a=7'
);

You may use the sort option to affect the order of parameter keys:

function alphabeticalSort(a, b) {
    return a.localeCompare(b);
}
assert.equal(qs.stringify({ a: 'c', z: 'y', b : 'f' }, { sort: alphabeticalSort }), 'a=c&b=f&z=y');

Finally, you can use the filter option to restrict which keys will be included in the stringified output. If you pass a function, it will be called for each key to obtain the replacement value. Otherwise, if you pass an array, it will be used to select properties and array indices for stringification:

function filterFunc(prefix, value) {
    if (prefix == 'b') {
        // Return an `undefined` value to omit a property.
        return;
    }
    if (prefix == 'e[f]') {
        return value.getTime();
    }
    if (prefix == 'e[g][0]') {
        return value * 2;
    }
    return value;
}
qs.stringify({ a: 'b', c: 'd', e: { f: new Date(123), g: [2] } }, { filter: filterFunc });
// 'a=b&c=d&e[f]=123&e[g][0]=4'
qs.stringify({ a: 'b', c: 'd', e: 'f' }, { filter: ['a', 'e'] });
// 'a=b&e=f'
qs.stringify({ a: ['b', 'c', 'd'], e: 'f' }, { filter: ['a', 0, 2] });
// 'a[0]=b&a[2]=d'

You could also use filter to inject custom serialization for user defined types. Consider you're working with some api that expects query strings of the format for ranges:

https://domain.com/endpoint?range=30...70

For which you model as:

class Range {
    constructor(from, to) {
        this.from = from;
        this.to = to;
    }
}

You could inject a custom serializer to handle values of this type:

qs.stringify(
    {
        range: new Range(30, 70),
    },
    {
        filter: (prefix, value) => {
            if (value instanceof Range) {
                return `${value.from}...${value.to}`;
            }
            // serialize the usual way
            return value;
        },
    }
);
// range=30...70

Handling of null values

By default, null values are treated like empty strings:

var withNull = qs.stringify({ a: null, b: '' });
assert.equal(withNull, 'a=&b=');

Parsing does not distinguish between parameters with and without equal signs. Both are converted to empty strings.

var equalsInsensitive = qs.parse('a&b=');
assert.deepEqual(equalsInsensitive, { a: '', b: '' });

To distinguish between null values and empty strings use the strictNullHandling flag. In the result string the null values have no = sign:

var strictNull = qs.stringify({ a: null, b: '' }, { strictNullHandling: true });
assert.equal(strictNull, 'a&b=');

To parse values without = back to null use the strictNullHandling flag:

var parsedStrictNull = qs.parse('a&b=', { strictNullHandling: true });
assert.deepEqual(parsedStrictNull, { a: null, b: '' });

To completely skip rendering keys with null values, use the skipNulls flag:

var nullsSkipped = qs.stringify({ a: 'b', c: null}, { skipNulls: true });
assert.equal(nullsSkipped, 'a=b');

If you're communicating with legacy systems, you can switch to iso-8859-1 using the charset option:

var iso = qs.stringify({ æ: 'æ' }, { charset: 'iso-8859-1' });
assert.equal(iso, '%E6=%E6');

Characters that don't exist in iso-8859-1 will be converted to numeric entities, similar to what browsers do:

var numeric = qs.stringify({ a: '☺' }, { charset: 'iso-8859-1' });
assert.equal(numeric, 'a=%26%239786%3B');

You can use the charsetSentinel option to announce the character by including an utf8=✓ parameter with the proper encoding if the checkmark, similar to what Ruby on Rails and others do when submitting forms.

var sentinel = qs.stringify({ a: '☺' }, { charsetSentinel: true });
assert.equal(sentinel, 'utf8=%E2%9C%93&a=%E2%98%BA');

var isoSentinel = qs.stringify({ a: 'æ' }, { charsetSentinel: true, charset: 'iso-8859-1' });
assert.equal(isoSentinel, 'utf8=%26%2310003%3B&a=%E6');

Dealing with special character sets

By default the encoding and decoding of characters is done in utf-8, and iso-8859-1 support is also built in via the charset parameter.

If you wish to encode querystrings to a different character set (i.e. Shift JIS) you can use the qs-iconv library:

var encoder = require('qs-iconv/encoder')('shift_jis');
var shiftJISEncoded = qs.stringify({ a: 'こんにちは!' }, { encoder: encoder });
assert.equal(shiftJISEncoded, 'a=%82%B1%82%F1%82%C9%82%BF%82%CD%81I');

This also works for decoding of query strings:

var decoder = require('qs-iconv/decoder')('shift_jis');
var obj = qs.parse('a=%82%B1%82%F1%82%C9%82%BF%82%CD%81I', { decoder: decoder });
assert.deepEqual(obj, { a: 'こんにちは!' });

RFC 3986 and RFC 1738 space encoding

RFC3986 used as default option and encodes ' ' to %20 which is backward compatible. In the same time, output can be stringified as per RFC1738 with ' ' equal to '+'.

assert.equal(qs.stringify({ a: 'b c' }), 'a=b%20c');
assert.equal(qs.stringify({ a: 'b c' }, { format : 'RFC3986' }), 'a=b%20c');
assert.equal(qs.stringify({ a: 'b c' }, { format : 'RFC1738' }), 'a=b+c');

Security

Please email @ljharb or see https://tidelift.com/security if you have a potential security vulnerability to report.

qs for enterprise

Available as part of the Tidelift Subscription

The maintainers of qs and thousands of other packages are working with Tidelift to deliver commercial support and maintenance for the open source dependencies you use to build your applications. Save time, reduce risk, and improve code health, while paying the maintainers of the exact dependencies you use. Learn more.

Acknowledgements

qs logo by NUMI:

NUMI Logo

npm-compare.com is an independent website designed to help developers choose the most suitable npm packages. We are not affiliated with npm, Inc, the official website for the npm registry. Note that npm is a registered trademark of npm, Inc. Please share your feedback via our GitHub repository. For more details, please refer to our Terms & Privacy.