TypeScript Branded Types for Type Safety

Branded types prevent mixing up values with the same underlying type. Here's how to use them effectively.

The Problem#

// Without branding - easy to mix up
type UserId = string;
type OrderId = string;
type ProductId = string;

function getOrder(orderId: OrderId): Order {
  return db.orders.find(orderId);
}

const userId: UserId = 'user_123';
const orderId: OrderId = 'order_456';

// Oops! No error, but wrong ID type
getOrder(userId); // TypeScript allows this!

Basic Branded Types#

// Brand with unique symbol
declare const brand: unique symbol;

type Brand<T, B> = T & { [brand]: B };

// Create branded types
type UserId = Brand<string, 'UserId'>;
type OrderId = Brand<string, 'OrderId'>;
type ProductId = Brand<string, 'ProductId'>;

// Type-safe functions
function getOrder(orderId: OrderId): Order {
  return db.orders.find(orderId);
}

function getUser(userId: UserId): User {
  return db.users.find(userId);
}

// Now TypeScript catches errors
const userId = 'user_123' as UserId;
const orderId = 'order_456' as OrderId;

getOrder(orderId); // ✓ OK
getOrder(userId);  // ✗ Error: UserId not assignable to OrderId

Creating Branded Values#

// Factory functions for branded types
function createUserId(id: string): UserId {
  // Add validation
  if (!id.startsWith('user_')) {
    throw new Error('Invalid user ID format');
  }
  return id as UserId;
}

function createOrderId(id: string): OrderId {
  if (!id.startsWith('order_')) {
    throw new Error('Invalid order ID format');
  }
  return id as OrderId;
}

// Usage
const userId = createUserId('user_123');    // ✓ Valid
const orderId = createOrderId('order_456'); // ✓ Valid
const invalid = createUserId('invalid');    // ✗ Throws error

// Generic brand creator
function brand<T, B extends string>(
  value: T,
  validator?: (value: T) => boolean
): Brand<T, B> {
  if (validator && !validator(value)) {
    throw new Error(`Invalid ${typeof value} for brand`);
  }
  return value as Brand<T, B>;
}

Branded Primitives#

// Branded numbers
type PositiveNumber = Brand<number, 'Positive'>;
type Percentage = Brand<number, 'Percentage'>;
type USD = Brand<number, 'USD'>;
type EUR = Brand<number, 'EUR'>;

function createPositive(n: number): PositiveNumber {
  if (n <= 0) throw new Error('Must be positive');
  return n as PositiveNumber;
}

function createPercentage(n: number): Percentage {
  if (n < 0 || n > 100) throw new Error('Must be 0-100');
  return n as Percentage;
}

function createUSD(amount: number): USD {
  return Math.round(amount * 100) / 100 as USD;
}

// Prevent currency mixing
function addUSD(a: USD, b: USD): USD {
  return (a + b) as USD;
}

const usd = createUSD(100);
const eur = 50 as EUR;

addUSD(usd, usd); // ✓ OK
addUSD(usd, eur); // ✗ Error: EUR not assignable to USD

// Branded strings
type Email = Brand<string, 'Email'>;
type URL = Brand<string, 'URL'>;
type UUID = Brand<string, 'UUID'>;

function createEmail(value: string): Email {
  if (!value.includes('@')) throw new Error('Invalid email');
  return value as Email;
}

function createUUID(value: string): UUID {
  const uuidRegex = /^[0-9a-f]{8}-[0-9a-f]{4}-4[0-9a-f]{3}-[89ab][0-9a-f]{3}-[0-9a-f]{12}$/i;
  if (!uuidRegex.test(value)) throw new Error('Invalid UUID');
  return value as UUID;
}

With Zod Validation#

import { z } from 'zod';

// Define branded schema
const UserIdSchema = z.string()
  .refine((s) => s.startsWith('user_'), 'Must start with user_')
  .brand<'UserId'>();

const EmailSchema = z.string()
  .email()
  .brand<'Email'>();

const PositiveSchema = z.number()
  .positive()
  .brand<'Positive'>();

// Infer branded types
type UserId = z.infer<typeof UserIdSchema>;
type Email = z.infer<typeof EmailSchema>;
type Positive = z.infer<typeof PositiveSchema>;

// Parse and brand in one step
const userId = UserIdSchema.parse('user_123');
const email = EmailSchema.parse('test@example.com');
const positive = PositiveSchema.parse(42);

// Type-safe function
function sendEmail(to: Email, subject: string) {
  // to is guaranteed to be valid email
}

sendEmail(email, 'Hello');              // ✓ OK
sendEmail('not-branded@test.com', 'Hi'); // ✗ Error

Opaque Types Pattern#

// Alternative: Opaque types with intersection
type Opaque<T, K extends string> = T & { __opaque__: K };

type UserId = Opaque<string, 'UserId'>;
type SessionId = Opaque<string, 'SessionId'>;

// Module pattern for encapsulation
// userId.ts
declare const userIdSymbol: unique symbol;
export type UserId = string & { [userIdSymbol]: never };

export function isUserId(value: string): value is UserId {
  return value.startsWith('user_');
}

export function toUserId(value: string): UserId {
  if (!isUserId(value)) {
    throw new Error('Invalid UserId');
  }
  return value;
}

export function unsafeToUserId(value: string): UserId {
  return value as UserId;
}

Branded Types with Classes#

// Class-based approach
class UserId {
  private readonly __brand = 'UserId';

  private constructor(public readonly value: string) {}

  static create(value: string): UserId {
    if (!value.startsWith('user_')) {
      throw new Error('Invalid UserId');
    }
    return new UserId(value);
  }

  static unsafe(value: string): UserId {
    return new UserId(value);
  }

  toString(): string {
    return this.value;
  }

  equals(other: UserId): boolean {
    return this.value === other.value;
  }
}

// Usage
const id1 = UserId.create('user_123');
const id2 = UserId.create('user_456');

id1.equals(id2); // false

function getUser(id: UserId): User {
  return db.users.find(id.value);
}

getUser(id1);        // ✓ OK
getUser('user_123'); // ✗ Error: string not assignable to UserId

Practical Patterns#

// API response types
type ApiResponse<T> = {
  data: T;
  requestId: Brand<string, 'RequestId'>;
  timestamp: Brand<number, 'UnixTimestamp'>;
};

// Database entities
interface User {
  id: UserId;
  email: Email;
  createdAt: Brand<Date, 'UTCDate'>;
}

interface Order {
  id: OrderId;
  userId: UserId;
  productIds: ProductId[];
  total: USD;
}

// Form validation
type ValidatedForm<T> = Brand<T, 'Validated'>;

function validateLoginForm(data: unknown): ValidatedForm<LoginData> {
  const result = LoginSchema.parse(data);
  return result as ValidatedForm<LoginData>;
}

function submitLogin(form: ValidatedForm<LoginData>) {
  // Guaranteed to be validated
}

// Sanitized strings
type SanitizedHTML = Brand<string, 'SanitizedHTML'>;

function sanitize(html: string): SanitizedHTML {
  const clean = DOMPurify.sanitize(html);
  return clean as SanitizedHTML;
}

function renderHTML(html: SanitizedHTML) {
  element.innerHTML = html; // Safe to use
}

Type Guards#

// Type guard for branded types
function isUserId(value: unknown): value is UserId {
  return typeof value === 'string' && value.startsWith('user_');
}

function isEmail(value: unknown): value is Email {
  return typeof value === 'string' && /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(value);
}

// Usage
function processId(id: string) {
  if (isUserId(id)) {
    getUser(id); // id is UserId here
  }
}

// Assertion function
function assertUserId(value: string): asserts value is UserId {
  if (!value.startsWith('user_')) {
    throw new Error('Not a valid UserId');
  }
}

function handleUserId(value: string) {
  assertUserId(value);
  // value is now UserId
  getUser(value);
}

Best Practices#

Design:
✓ Brand semantically different values
✓ Use factory functions with validation
✓ Export type and factory together
✓ Consider runtime validation

Naming:
✓ Use descriptive brand names
✓ Match domain terminology
✓ Be consistent across codebase
✓ Document branded types

Integration:
✓ Combine with Zod/validation
✓ Use with API boundaries
✓ Brand database IDs
✓ Brand user input after validation

Branded types prevent mixing up structurally identical but semantically different values. Use them for IDs, currencies, validated data, and domain concepts. Combine with validation libraries like Zod for runtime safety. The small overhead pays off in bug prevention and self-documenting code.