If your web application is starting to feel sluggish under load, chances are your database is doing too much work. A solid Redis caching strategy can drop response times from hundreds of milliseconds to single digits, while taking pressure off your primary datastore. In this hands-on tutorial, we walk through the three caching patterns you should know (cache-aside, write-through, and write-behind), with real Node.js code, TTL configuration, invalidation tips, and the pitfalls we keep seeing in production at coding4.net.
Why Redis for Caching?
Redis is an in-memory data store that delivers sub-millisecond reads and writes. It is the default answer when engineers discuss external caching because it is fast, mature, supports rich data structures, and scales horizontally with Cluster or managed services. But Redis alone does not make your app faster, your caching strategy does.
What you will learn in this tutorial
- How to implement cache-aside, write-through, and write-behind in Node.js
- How to choose TTLs that actually make sense
- How to invalidate caches without creating stale-data nightmares
- The most common pitfalls when scaling Redis in production
Setting Up Redis with Node.js
We will use the official redis client (v4+). Install it along with your favorite framework:
npm install redis expressInitialize a singleton client you can reuse across your app:
// redisClient.js
import { createClient } from 'redis';
const client = createClient({
url: process.env.REDIS_URL || 'redis://localhost:6379',
socket: { reconnectStrategy: (retries) => Math.min(retries * 50, 2000) }
});
client.on('error', (err) => console.error('Redis error', err));
await client.connect();
export default client;Pattern 1: Cache-Aside (Lazy Loading)
Cache-aside is the most common Redis caching pattern, especially for read-heavy applications. The application is responsible for talking to both the cache and the database.
How it works
- App requests data and asks Redis first.
- If found (cache hit), return it.
- If not found (cache miss), fetch from the database, store it in Redis with a TTL, and return.
Node.js implementation
import redis from './redisClient.js';
import { db } from './db.js';
const CACHE_TTL = 300; // 5 minutes
export async function getProduct(id) {
const key = `product:${id}`;
const cached = await redis.get(key);
if (cached) return JSON.parse(cached);
const product = await db.product.findById(id);
if (product) {
await redis.set(key, JSON.stringify(product), { EX: CACHE_TTL });
}
return product;
}Pros and cons
- Pros: Simple, resilient (cache failure does not break writes), cache only contains data actually requested.
- Cons: First request after a miss is slow, possible cache stampede when many clients miss at once, data can become stale until TTL expires.
Pattern 2: Write-Through
Write-through is proactive: every write goes through the cache, which then writes to the database synchronously. The cache is always in sync with the database for the data that lives in it.
Node.js implementation
export async function updateProduct(id, data) {
const updated = await db.product.update(id, data);
await redis.set(
`product:${id}`,
JSON.stringify(updated),
{ EX: 3600 }
);
return updated;
}When to use it
- Read-after-write workloads where users expect to see their changes immediately.
- Data that is read often after being written (user profiles, settings, dashboards).
Trade-off: Writes are slightly slower because you pay for two storage operations. You also cache data that may never be read again.
Pattern 3: Write-Behind (Write-Back)
Write-behind writes to Redis first and asynchronously persists to the database later. It is the fastest option for write-heavy workloads, but the riskiest.
Node.js implementation with a queue
import redis from './redisClient.js';
import { Queue } from 'bullmq';
const writeQueue = new Queue('db-writes', {
connection: { url: process.env.REDIS_URL }
});
export async function recordMetric(userId, metric) {
const key = `metrics:${userId}`;
await redis.hSet(key, metric.name, metric.value);
await redis.expire(key, 86400);
await writeQueue.add('persist', { userId, metric });
}A worker consumes the queue and batches writes into the database every few seconds. Perfect for analytics, counters, telemetry, or anything where eventual consistency is acceptable.
Comparison table
| Pattern | Best for | Consistency | Complexity |
|---|---|---|---|
| Cache-aside | Read-heavy apps | Eventual (TTL based) | Low |
| Write-through | Read-after-write | Strong | Medium |
| Write-behind | Write-heavy, analytics | Eventual | High |
TTL Configuration: Pick Numbers, Not Vibes
TTL (Time To Live) is the lifespan of a cached entry. The wrong TTL is the number one reason caching strategies fail.
Practical TTL guidelines
- Hot, rarely changing data (catalog, country lists): 1 to 24 hours.
- User-specific data (profile, cart): 5 to 30 minutes.
- Volatile data (stock levels, pricing): 10 to 60 seconds, or use explicit invalidation.
- Session tokens: match the session lifetime exactly.
Add jitter to avoid thundering herds
If 10,000 keys expire at the same second, they will all hit your database at the same second. Add randomness:
const baseTTL = 300;
const jitter = Math.floor(Math.random() * 60);
await redis.set(key, value, { EX: baseTTL + jitter });Cache Invalidation: The Hard Part
Phil Karlton said it best: there are only two hard things in computer science, and one of them is cache invalidation. Here is how to keep it sane.
Strategies that work
- Delete on write: When data changes, delete the key. The next read repopulates it. Simple and reliable.
- Versioned keys: Use keys like
product:42:v3. Bump the version to invalidate, no DEL needed. - Tag-based invalidation: Maintain a Redis Set of related keys, then delete them all when a parent entity changes.
- Pub/Sub invalidation: In multi-region setups, publish invalidation events so each region clears its local copy.
Pattern delete is dangerous
Avoid KEYS pattern* in production, it blocks the server. Use SCAN with cursors instead:
for await (const key of redis.scanIterator({ MATCH: 'user:42:*', COUNT: 100 })) {
await redis.del(key);
}Common Pitfalls When Scaling Redis in Production
1. Cache stampede
When a popular key expires, hundreds of requests miss the cache and hammer the database simultaneously. Mitigations:
- Lock and refresh: use
SET NXas a mutex so only one process refreshes the key. - Stale-while-revalidate: serve the old value while a background job refreshes it.
- Probabilistic early expiration based on remaining TTL.
2. Big keys and hot keys
A single 50 MB key or a key receiving 100k ops/sec will bottleneck a node. Split big payloads (use Hashes, paginate), and shard hot keys with suffixes like counter:{shard}.
3. Storing the wrong things
Redis is not a database. Do not use it as the source of truth for critical data unless you have configured persistence (AOF + RDB) and replication, and even then, treat the cache as disposable.
4. Ignoring eviction policy
If maxmemory is reached without an eviction policy, writes start failing. For a cache, set:
maxmemory-policy allkeys-lruUse volatile-lru if you mix cache and persistent data in the same instance (not recommended).
5. Serialization overhead
JSON.stringify is fine for small objects, but it dominates CPU on large payloads. Consider MessagePack or Protocol Buffers when keys grow past a few KB.
6. Treating Redis Cluster like a single node
In Cluster mode, multi-key operations require all keys to live on the same slot. Use hash tags: {user:42}:profile and {user:42}:cart will land on the same node.
Putting It All Together: A Production-Ready Example
import redis from './redisClient.js';
import { db } from './db.js';
const TTL = 600;
export async function getUser(id) {
const key = `user:${id}`;
const cached = await redis.get(key);
if (cached) return JSON.parse(cached);
const lockKey = `lock:${key}`;
const lock = await redis.set(lockKey, '1', { NX: true, EX: 5 });
if (!lock) {
await new Promise(r => setTimeout(r, 50));
return getUser(id);
}
try {
const user = await db.user.findById(id);
if (user) {
const ttl = TTL + Math.floor(Math.random() * 60);
await redis.set(key, JSON.stringify(user), { EX: ttl });
}
return user;
} finally {
await redis.del(lockKey);
}
}
export async function updateUser(id, data) {
const user = await db.user.update(id, data);
await redis.del(`user:${id}`);
return user;
}This combines cache-aside reads, mutex-based stampede protection, TTL jitter, and delete-on-write invalidation. It is the pattern we deploy by default at coding4.net for most services.
FAQ
Which Redis caching strategy should I start with?
Start with cache-aside. It covers 80% of use cases, is the easiest to reason about, and degrades gracefully if Redis goes down. Move to write-through or write-behind only when you have a specific reason.
What is a good default TTL?
There is no universal answer, but 5 to 15 minutes is a reasonable default for most application data. Always combine TTL with explicit invalidation on writes whenever possible.
Should I cache empty results?
Yes, with a short TTL (30 to 60 seconds). This prevents cache penetration attacks where an attacker requests non-existent IDs to bypass the cache and overload your database.
Is Redis Cluster required for production?
Not always. A single Redis instance with a replica handles tens of thousands of ops per second. Move to Cluster only when you outgrow vertical scaling or need geographic distribution.
How do I monitor my caching strategy?
Track hit ratio (target above 80% for read-heavy workloads), latency P99, memory usage, and evicted keys. Tools like RedisInsight, Datadog, or Prometheus with the redis_exporter make this trivial.
Final Thoughts
A great Redis caching strategy is not about picking the fanciest pattern, it is about matching the pattern to your read/write profile, choosing TTLs deliberately, and planning invalidation from day one. Start simple with cache-aside, measure your hit ratio, and evolve only when the data tells you to. If you need help designing a caching layer for your stack, the team at coding4.net is one message away.