design-first
Spec out your app in a design.json file, first, and design-first takes care of the rest.
design-first's philosophy of seperation of concerns means authentication, authorization and business logic are kept separate.
As a templating engine, design-first is kept small and allows the developer to make simple or complex api's.