Next.js OpenAI Function Calling: Trigger Real Tools Safely in Your App
Learn how to implement Next.js OpenAI function calling (tool calling) to securely trigger real server-side tools in a Next.js app, with schemas, validation, and a complete route handler example.
Next.js OpenAI function calling lets an AI model request that your app run real code—like fetching a customer record, creating a support ticket, or looking up inventory—without giving the model direct access to your systems. In practice, you define a set of “tools” (functions) on the server, send their schemas to the model, and when the model asks to use one, your server executes it and returns the result back to the model for a final answer.
This article shows a practical, secure pattern for implementing Next.js OpenAI function calling using a server-side route handler and a small tool registry. You’ll end up with an AI endpoint that can reliably trigger real tools while keeping secrets and privileged operations on the server.
What “Function Calling” Means (and Why It’s Useful)
Function calling (often called “tool calling”) is a structured way for a model to say: “Call this function with these JSON arguments.” Your app decides whether to comply, runs the function on the server, and then gives the function output back to the model so it can compose a user-facing response.
- You keep API keys and database credentials on the server (never in the browser).
- You get predictable, typed inputs (JSON schema) instead of parsing free-form text.
- You can enforce validation, authorization, rate limits, and audit logging around each tool.
- You can build multi-step flows (model calls tool A, then tool B, then responds).
Architecture: A Safe Next.js Pattern
A reliable Next.js OpenAI function calling setup usually looks like this:
- Client sends user message to a Next.js Route Handler (e.g., /api/chat).
- Server calls the OpenAI API with a list of allowed tools (function schemas).
- If the model requests a tool, the server validates arguments and runs the corresponding server-side function.
- Server sends the tool result back to the model.
- Server returns the final natural-language response to the client.
Important: the browser never executes tools and never sees secrets. Only the server runs tools.
Prerequisites
- A Next.js app using the App Router (Next.js 13+).
- Node.js runtime for your API route (recommended for most tool calling use-cases).
- An OpenAI API key stored in an environment variable (e.g., OPENAI_API_KEY).
1) Install and Configure the OpenAI SDK
Install the official OpenAI SDK:
npm install openaiAdd your API key to .env.local:
OPENAI_API_KEY=your_key_hereDo not expose this key to the client. Only read it in server code (Route Handlers, Server Actions, etc.).
2) Define Real Tools (Server-Only)
Start with a small tool registry. Each tool has a name, a JSON schema for arguments, and an implementation. Keep implementations server-only and apply auth checks inside tools when needed.
// lib/tools.ts
import { z } from "zod";
// Example tool 1: Lookup an order in your system.
// Replace this with real DB/API logic.
const getOrderStatusSchema = z.object({
orderId: z.string().min(1),
});
async function getOrderStatus(args: z.infer<typeof getOrderStatusSchema>) {
// TODO: Replace with real data source.
// This example returns deterministic placeholder data.
return {
orderId: args.orderId,
status: "unknown",
note: "Connect this tool to your database or order API.",
};
}
// Example tool 2: Create a support ticket.
const createSupportTicketSchema = z.object({
subject: z.string().min(1),
description: z.string().min(1),
priority: z.enum(["low", "medium", "high"]).default("medium"),
});
async function createSupportTicket(args: z.infer<typeof createSupportTicketSchema>) {
// TODO: Replace with real ticketing integration.
return {
ticketId: "placeholder-ticket-id",
created: true,
subject: args.subject,
priority: args.priority,
};
}
export const tools = {
getOrderStatus: {
schema: getOrderStatusSchema,
description: "Look up the status of an order by orderId.",
handler: getOrderStatus,
},
createSupportTicket: {
schema: createSupportTicketSchema,
description: "Create a customer support ticket.",
handler: createSupportTicket,
},
} as const;
export type ToolName = keyof typeof tools;Notes:
- Use a runtime validator (like Zod) to ensure tool inputs are safe and well-formed.
- Return structured data from tools; the model can turn it into a user-friendly message.
- In real apps, also check the current user/session before performing actions (e.g., only allow ticket creation for authenticated users).
3) Expose Tools to the Model (Schemas)
The OpenAI API expects tool definitions that include a name, a description, and a JSON schema for parameters. The exact SDK shape can vary by version, so use the SDK’s current tool format and map from your Zod schemas to JSON Schema.
Because Zod-to-JSON-Schema conversion depends on an extra library, you have two common options:
- Manually write JSON Schemas for each tool (most explicit, least magic).
- Use a converter library (convenient, but add a dependency and verify output).
Below is a manual JSON Schema approach (simple and explicit).
// lib/toolSchemas.ts
export const toolSchemas = [
{
type: "function",
function: {
name: "getOrderStatus",
description: "Look up the status of an order by orderId.",
parameters: {
type: "object",
properties: {
orderId: { type: "string", description: "The order ID to look up." },
},
required: ["orderId"],
additionalProperties: false,
},
},
},
{
type: "function",
function: {
name: "createSupportTicket",
description: "Create a customer support ticket.",
parameters: {
type: "object",
properties: {
subject: { type: "string", description: "Short ticket subject." },
description: { type: "string", description: "Detailed issue description." },
priority: {
type: "string",
enum: ["low", "medium", "high"],
description: "Ticket priority.",
},
},
required: ["subject", "description"],
additionalProperties: false,
},
},
},
] as const;4) Build a Route Handler That Executes Tool Calls
Create an API route at app/api/chat/route.ts. This route will:
- Accept user messages
- Call the model with tool definitions
- If the model requests a tool, validate args and execute it
- Send tool results back to the model
- Return the final response
// app/api/chat/route.ts
import { NextResponse } from "next/server";
import OpenAI from "openai";
import { tools } from "@/lib/tools";
import { toolSchemas } from "@/lib/toolSchemas";
export const runtime = "nodejs";
const client = new OpenAI({ apiKey: process.env.OPENAI_API_KEY });
type ChatMessage = { role: "user" | "assistant" | "system"; content: string };
export async function POST(req: Request) {
const { messages } = (await req.json()) as { messages: ChatMessage[] };
// Basic input hardening
if (!Array.isArray(messages) || messages.length === 0) {
return NextResponse.json({ error: "Missing messages" }, { status: 400 });
}
// 1) Ask the model. Provide tools so it can request them.
const first = await client.chat.completions.create({
model: "gpt-4.1-mini",
messages,
tools: toolSchemas as any,
});
const assistantMessage = first.choices[0]?.message;
if (!assistantMessage) {
return NextResponse.json({ error: "No model response" }, { status: 502 });
}
// 2) If the model requested tool calls, execute them.
const toolCalls = (assistantMessage as any).tool_calls as
| Array<{ id: string; type: "function"; function: { name: string; arguments: string } }>
| undefined;
if (!toolCalls || toolCalls.length === 0) {
// No tool requested; return the assistant content.
return NextResponse.json({ message: assistantMessage });
}
const toolResults: Array<{ role: "tool"; tool_call_id: string; content: string }> = [];
for (const call of toolCalls) {
const toolName = call.function.name as keyof typeof tools;
const tool = tools[toolName];
if (!tool) {
toolResults.push({
role: "tool",
tool_call_id: call.id,
content: JSON.stringify({ error: `Unknown tool: ${call.function.name}` }),
});
continue;
}
let parsedArgs: unknown;
try {
parsedArgs = JSON.parse(call.function.arguments || "{}");
} catch {
toolResults.push({
role: "tool",
tool_call_id: call.id,
content: JSON.stringify({ error: "Invalid JSON arguments" }),
});
continue;
}
// Validate with Zod
const validated = tool.schema.safeParse(parsedArgs);
if (!validated.success) {
toolResults.push({
role: "tool",
tool_call_id: call.id,
content: JSON.stringify({
error: "Argument validation failed",
details: validated.error.flatten(),
}),
});
continue;
}
// Execute tool
try {
const result = await tool.handler(validated.data as any);
toolResults.push({
role: "tool",
tool_call_id: call.id,
content: JSON.stringify(result),
});
} catch (err) {
toolResults.push({
role: "tool",
tool_call_id: call.id,
content: JSON.stringify({ error: "Tool execution failed" }),
});
}
}
// 3) Send tool results back so the model can produce a final answer.
const final = await client.chat.completions.create({
model: "gpt-4.1-mini",
messages: [
...messages,
// include the assistant tool-call message
{
role: "assistant",
content: assistantMessage.content ?? "",
// tool_calls must be included when present
tool_calls: toolCalls,
} as any,
...toolResults,
],
tools: toolSchemas as any,
});
return NextResponse.json({ message: final.choices[0]?.message });
}Why two model calls? The first call lets the model decide whether to use a tool. If it does, you execute the tool and then make a second call so the model can incorporate the tool output into a helpful final response.
5) Minimal Client Example (Calling Your API Route)
Your client only talks to your Next.js endpoint. It never calls OpenAI directly and never runs tools.
// app/page.tsx (example)
"use client";
import { useState } from "react";
type Msg = { role: "user" | "assistant" | "system"; content: string };
export default function Page() {
const [input, setInput] = useState("");
const [messages, setMessages] = useState<Msg[]>([
{ role: "system", content: "You are a helpful assistant." },
]);
const [reply, setReply] = useState<string>("");
async function send() {
const next = [...messages, { role: "user", content: input }];
setMessages(next);
setInput("");
const res = await fetch("/api/chat", {
method: "POST",
headers: { "Content-Type": "application/json" },
body: JSON.stringify({ messages: next }),
});
const data = await res.json();
setReply(data?.message?.content ?? "");
}
return (
<main style={{ padding: 24 }}>
<h1>Next.js OpenAI Function Calling Demo</h1>
<textarea
value={input}
onChange={(e) => setInput(e.target.value)}
rows={4}
style={{ width: "100%" }}
/>
<button onClick={send}>Send</button>
<h2>Assistant</h2>
<pre>{reply}</pre>
</main>
);
}Tool Calling Best Practices (Security and Reliability)
When you add Next.js OpenAI function calling to trigger real tools, the main risks are unauthorized actions, unsafe inputs, and unintended data exposure. These practices keep your implementation robust:
- Allowlist tools: only expose tools you’re willing to run. Never execute arbitrary function names from user input.
- Validate everything: parse JSON safely and validate with a schema (Zod or similar). Reject extra fields (additionalProperties: false).
- Authorize per tool: check the authenticated user/session inside each tool before accessing or mutating data.
- Limit side effects: for destructive actions (refunds, deletions), require explicit user confirmation in your UI or implement a two-step “plan then execute” flow.
- Log tool calls: store tool name, arguments, user ID, and outcomes for auditing and debugging.
- Time-box and rate-limit: apply timeouts to external API calls and rate limit your /api/chat endpoint.
- Return minimal data: tool results should include only what the model needs to answer the user. Avoid returning secrets or raw internal records.
Common Pitfalls (and How to Avoid Them)
- Putting tools in the client: keep tool execution on the server to protect secrets and enforce auth.
- Skipping schema validation: models can produce incorrect arguments; validation prevents crashes and unsafe behavior.
- Assuming the model will always call a tool: design prompts and UX so the assistant can respond even without tools.
- Overloading one tool: prefer multiple small tools with clear scopes over one “doEverything” function.
- Returning unbounded text from tools: return structured JSON and keep it small; let the model write the prose.
Prompting Tips for Better Tool Usage
You can improve tool selection and argument quality by adding a system message that explains when tools are appropriate and what to do if required info is missing.
// Example system message
You can use tools to look up order status or create support tickets.
If the user asks about an order and no orderId is provided, ask a follow-up question.
Only create a ticket if the user clearly requests it or if they confirm after you propose it.Where to Go Next
Once your Next.js OpenAI function calling flow works end-to-end, you can extend it with production features:
- Streaming responses (so the UI updates as the assistant writes).
- More tools (CRM lookups, scheduling, content moderation, internal search).
- Background jobs for long-running tools (queues) and returning a “pending” status to the user.
- Granular permissions per tool and per resource (e.g., only allow access to the user’s own orders).
If you share what tools you want to trigger (database reads, emails, Stripe actions, etc.), I can help you design the tool schemas and the safest confirmation/authorization flow for your specific Next.js app.