How to Handle Cross-Cutting Concerns in Go (Logging, Metrics, Auth)

Handle cross-cutting concerns in Go by wrapping http.Handler with middleware functions that execute before and after the target handler.

func LoggingMiddleware(next http.Handler) http.Handler {
    return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
        start := time.Now()
        next.ServeHTTP(w, r)
        log.Printf("%s %s %v", r.Method, r.URL.Path, time.Since(start))
    })
}

func AuthMiddleware(next http.Handler) http.Handler {
    return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
        if r.Header.Get("Authorization") == "" {
            http.Error(w, "Unauthorized", http.StatusUnauthorized)
            return
        }
        next.ServeHTTP(w, r)
    })
}

func main() {
    mux := http.NewServeMux()
    mux.HandleFunc("/api", handleAPI)

    handler := LoggingMiddleware(AuthMiddleware(mux))
    http.ListenAndServe(":8080", handler)
}

Think of middleware as a series of security checkpoints or toll booths on a highway. Every request must pass through them in order before reaching your main application code. This allows you to add features like logging, authentication, or metrics to your entire application without changing the code for every single endpoint.