Nice video! Fully agreed. My takeaways and thoughts: - use DTOs to reduce coupling - if there's no coupling you can reduce (e.g. 1-1 db to model) then get rid of unnecessary DTOs - think about team's/module's (DDD bounded context) responsibilities: a DTO within your boundaries might be useless (pure overhead). The coupling that does make you suffer is cross-module/cross-team/etc. coupling. - think about the higher-level dependencies that you might want to loosen - and not your internal code dependencies.

This is a typical example of why CQRS is a good idea! For the read side, I sometimes even just run database queries straight inside the API endpoint. No fuss needed. Just grab the data you need and map it to a format that you want.

I really enjoy your no-nonsense and undogmatic approach to programming.

Have you ever tried doing some code review? I always find your videos so insightful. I believe it would be great to see your thought process on some real world examples.

Yes, 130 database models modified directly from the frontend. It is the horror project I joined last time. It was not a problem until new requirements appeared to integrate automatic synchronisation from the external 3rd party services. All protections were implemented as validators for the HTTP layer, so not existing domain layer couldn't protect consistency of data coming from external services launched by queues or CRON, because it does't use HTTP validators. It is real nightmare now. Adding domain layer is extremely time-consuming and there is required some strategy to apply it correctly, small piece after another. Work for a few next years. More over implicit syntax sugars minimised HTTP controllers to zero lines of the code giving automatic access to the database-model directly from the HTTP request. So there is no domain and controller layer you can explicitly customise.

Another very important reason is the performance. I've seen many projects and companies who read the whole entity (a Product for example) from the database, and when you go forward you see they only wanted the Description from that entity. So, yes, DTO's are very important. To make it clear for everybody here, there are 2 types of APIs: 1) Microservice API (API-to-API call) 2) BFF API (BackEnd for FrontEnd) You may not need a DTO for the first type, but for the second type it's 100% important.

I think the problems stem from developers being bad at abstraction and separating the contexts. A words might mean different things depending on the context and use. That is why these videos are so useful, because they, you teach, teach developers that it is not just about the code itself, but what the code represents, what it means, and how to express that. Not just for yourself but for others through code. A program is more than its sum of methods/functions.

Worst mapping experience I ever came across was a REST API mapping requests and payloads to service layer DTO's, which then were passed along to the domain, which was then mapped to ORM objects, which were used to store into a RDBMS. And of course upon successful persisting, that "saved ORM" was then mapped back into the domain, which was then mapped back to a DTO broadcasted from the service layer, which was then mapped into a serializable form (JSON) to return to the frontend client. We had driving adapter (the rest api) and one driven adapter (the jpa layer). But you know, "what if" the business wanted to also accept queue or drive an integration event stream? At least all that indirection was nice to test the domain in isolation. And it was a great project for learning. "But at what cost?"

I Like Immutable DTOs to act like diodes in software, making it much harder to create cycles in systems. Like oh I have 10000 records, and oh now I'll iterate over 10,000 of them to change one field, and then oh I'll just do it again to change another field. If the data is immutable and sufficiently hard to change, then as well as an outward (not necesarrily public) contract, they also enforce directionality, and encapsulate behaviour. Past this point you can't just save this record without coming back in from a less privileged state. Great video!

I've only really found DTOs useful once, and it was when the particular nosql storage I was using was annoying to work with so we wanted to keep all of that logic hidden from the rest of the application. For example writing one record actually required writing it in many different ways by different keys, because there were no secondary indexes, but the logic in the app just wants to write it once, not have to worry about partition keys and row keys or denormalization or table scans vs point reads or etags etc. It also allowed us to update the client library we were using without causing breaking changes in the rest of the application, and eventually we got sick of it and switched databases entirely, and this made that a bit easier to do.

I find DTOs really important for 2 reasons: 1) it's a contract. You can change your DB all you want - but you often have to retain a contract. V1 of the API is FName, V2 is FirstName. Both can map to the same entity and to the same DB but you can support different contracts. 2) Especially in DDD, Domain models don't match DTO / JSON needs. In code, value objects often get exposed as simple strings, ints, and other primitives. My EntityId value object ends up in a DTO as a Guid. If I directly To Json EntityId, I'd end up with Id: { Value: "12345" } instead of simply Id: "12345" People who say it's not needed in DDD often have anemic models that are pure DB entity models. Just my two cents. Everyone's experience with it is different

I love these talks, but often find them hard to put into practice. Applying these context-tailored practices requires understanding the 'why pattern', not just 'what pattern'. The difficulty is to stimulate that mentality with concerns like time, money, and personal interest from my position as developer. If only we could do away with the DTOs of a youtube video and my attempts to convey the contents, and absorb the concepts directly 😅

Do you suggest actually combining information from a contact table to an entity inside repository code? If it's a single sql or ORM request, that's probably fine, but when it involves multiple requests, this would require more integration tests on the repository and sometimes greatly complicate repository code (maybe even with logic -- which is probably a no-no...) also just having extra fields in the data class to "fill in" in other layers would make it very hard to track, who's adding what and where... all this would probably usually be a candidate for DTOs...

I just return the model, that runs through a filter and removes sensitive data :D I know its bad, but man, I am not willing to create hundreds of dtos.

This DTO response looks like HATEOAS

Hey Derek, great video, love it! I have one question. I’ve been having an argument with some developer folks: does CQRS really need to be physically two different services, or can I have one service with two handlers separating the command and query handling? There’s a lot of cohesiveness, and the data models are mostly identical for command and query. Also, within the same service, rather than having communication through events, can we avoid event consistency? In my opinion, we should avoid it most of the time rather than embrace it. What do you think? Could this be a topic for your next video? Haha.

I get the part of using DTO to composing data and managing coupling. But in your sample code the Shipment logical boundary seems to have data for the Client, which means I can expose the data together with the Shipment. Otherwise, if I just have the reference ID inside Shipment boundary I can't do this composition, am I right? Therefore we end up with almost the same model as the beggining (the CRUD one you showed in the video). But additionally we could put the actions and so on (HATEOAS) and we can only do the composition in the API gateway or even in the Client side

I haven’t had much problems with a 1:1 mapping for DTOs It’s a very thin mapping function anyway. Updating the mapping doesn’t take much work. Accidentally leaking data sounds more scary.

I am doing this data model wrapping mainly because my data model is auto generated and is entirely tied down to the SQL library I'm using (JOOQ in my case). And fields that are typed as UUID for example, or JSONB gets properly exposed using a typed Id and so on. I am also in some cases combining multiple database records to a single "entity". I'm also not serializing or deserializing, I'm just wrapping the database record with a class that implements my interfaces. It has benefits when it comes to enforcing audit fields or multi tenancy and more. This might be unnecessary with some frameworks but I would hate to have all my code depend on the structure of the auto generated code directly.

Most de-coupling architectures are built on the principles of just-in-case and scalability

I've explained these concepts over and over thoughout different projects, working for different companies. Also, DTOs should never expose internal data relativon IDs, only object level identifiers (which may be different things, like a product serial number or part number)

6:13 "when you dont have that problem yet", right.. but DTOs are part of a layered architecture that you use because you're trying to think ahead, the bigger picture. They're also about creating a visible layer and pattern that your colleagues easily can follow. You never need to debate if "something should be a DTO or not" because the layered architecture dictates that everything should be a DTO.

Have DTOs for your HTTP requests - contracts for input and output. Only when mutating state, validate the DTOs and create Domain Entities and Value Objects from them - they should have business logic and control that no invalid data is persisted. Persist these Domain Entites and Value Objects directly. If you use ORM, view the POCO classes there like helper classes for your tables, it's just a mean to save an actual domain entity. When returning data, map to DTOs directly. So easy. And if you do CQRS, the Commands and Queries are the DTOs. If you fear that you end up with a Command, which is "infused" with HTTP semantics, do not break that down into HTTP semantics infused DTO and "HTTP ignorant" Command, if you don't have to. You might have to do it, only in case of integration - when apart from the standard API endpoint, there is something else which needs the same use case (background worker etc).

Thank you, very interesting.

What about the fact that entities are generally mutable vs. dtos are not? So with that thinking, you would almost always want to pass a dto to your view instead of the actual entity.

First reason i use a dto is when i need to return a complex object and i want to get rid of all the child parent relations you usually have on a dataentity model. they have backreferences so they get circular. that does not work well with serialization as an object you can return in an api. An other horror story is automapper. i needs complex code (that is hard to follow using f12, you need to search) for basically saying target.a=source.a. in my project i have 2 simple ways of mapping to a dto. when they have the same properties i just serialize and deserialize using a helper methodof type T. for all specials i just code them out like target.a= source.b.

very interesting thanks

Sorry mate but I think this is bad advice. For example the object you POST doesn’t want to contain the properties - Id, CreatedBy, CreatedDate as these want to be populated by the service. But you do want these on the GET response object.

I’ll be honest every time I write a DTO these days it’s to not refactor some other code. Either some api or entity is structured in someone that was perfectly fine for one use case but now maybe needs to be reused but in a situation it wasn’t designed for. Probably an anti pattern but I’ve used dtos a lot because of it and honestly I’d even say it’s the wrong way

9:23 Yes you kinda expose your DB model through GraphQL... At least the project I'm currently working on does that.

The query and command objects are just DTOs. You can't change my mind. 1 to 1 mapping DTOs still serve a function. When you add that credentials field to the entity you don't accidentally return it to the outside world without realizing

Uh no. So I add a new column to my db it should just show up in my api? No man. And mapping is not an issue anymore with AI or other tools.

When i want to pass data from HTTP request to the handler ( controller, usecase) , i am using a DTO to encapsulate those parameters with a class. Is that a good use of DTO ?