npm - @bloomneo/appkit - Versions diffs - 1.2.9 - Mend

@bloomneo/appkit 1.2.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (262) hide show

package/LICENSE +21 -0
package/README.md +902 -0
package/bin/appkit.js +71 -0
package/bin/commands/generate.js +1050 -0
package/bin/templates/backend/README.md.template +39 -0
package/bin/templates/backend/api.http.template +0 -0
package/bin/templates/backend/docs/APPKIT_CLI.md +507 -0
package/bin/templates/backend/docs/APPKIT_COMMENTS_GUIDELINES.md +61 -0
package/bin/templates/backend/docs/APPKIT_LLM_GUIDE.md +2539 -0
package/bin/templates/backend/package.json.template +34 -0
package/bin/templates/backend/src/api/features/welcome/welcome.http.template +29 -0
package/bin/templates/backend/src/api/features/welcome/welcome.route.ts.template +36 -0
package/bin/templates/backend/src/api/features/welcome/welcome.service.ts.template +88 -0
package/bin/templates/backend/src/api/features/welcome/welcome.types.ts.template +18 -0
package/bin/templates/backend/src/api/lib/api-router.ts.template +84 -0
package/bin/templates/backend/src/api/server.ts.template +188 -0
package/bin/templates/backend/tsconfig.api.json.template +24 -0
package/bin/templates/backend/tsconfig.json.template +40 -0
package/bin/templates/feature/feature.http.template +63 -0
package/bin/templates/feature/feature.route.ts.template +36 -0
package/bin/templates/feature/feature.service.ts.template +81 -0
package/bin/templates/feature/feature.types.ts.template +23 -0
package/bin/templates/feature-db/feature.http.template +63 -0
package/bin/templates/feature-db/feature.model.ts.template +74 -0
package/bin/templates/feature-db/feature.route.ts.template +58 -0
package/bin/templates/feature-db/feature.service.ts.template +231 -0
package/bin/templates/feature-db/feature.types.ts.template +25 -0
package/bin/templates/feature-db/schema-addition.prisma.template +9 -0
package/bin/templates/feature-db/seeding/README.md.template +57 -0
package/bin/templates/feature-db/seeding/feature.seed.js.template +67 -0
package/bin/templates/feature-user/schema-addition.prisma.template +19 -0
package/bin/templates/feature-user/user.http.template +157 -0
package/bin/templates/feature-user/user.model.ts.template +244 -0
package/bin/templates/feature-user/user.route.ts.template +379 -0
package/bin/templates/feature-user/user.seed.js.template +182 -0
package/bin/templates/feature-user/user.service.ts.template +426 -0
package/bin/templates/feature-user/user.types.ts.template +127 -0
package/dist/auth/auth.d.ts +182 -0
package/dist/auth/auth.d.ts.map +1 -0
package/dist/auth/auth.js +477 -0
package/dist/auth/auth.js.map +1 -0
package/dist/auth/defaults.d.ts +104 -0
package/dist/auth/defaults.d.ts.map +1 -0
package/dist/auth/defaults.js +374 -0
package/dist/auth/defaults.js.map +1 -0
package/dist/auth/index.d.ts +70 -0
package/dist/auth/index.d.ts.map +1 -0
package/dist/auth/index.js +94 -0
package/dist/auth/index.js.map +1 -0
package/dist/cache/cache.d.ts +118 -0
package/dist/cache/cache.d.ts.map +1 -0
package/dist/cache/cache.js +249 -0
package/dist/cache/cache.js.map +1 -0
package/dist/cache/defaults.d.ts +63 -0
package/dist/cache/defaults.d.ts.map +1 -0
package/dist/cache/defaults.js +193 -0
package/dist/cache/defaults.js.map +1 -0
package/dist/cache/index.d.ts +101 -0
package/dist/cache/index.d.ts.map +1 -0
package/dist/cache/index.js +203 -0
package/dist/cache/index.js.map +1 -0
package/dist/cache/strategies/memory.d.ts +138 -0
package/dist/cache/strategies/memory.d.ts.map +1 -0
package/dist/cache/strategies/memory.js +348 -0
package/dist/cache/strategies/memory.js.map +1 -0
package/dist/cache/strategies/redis.d.ts +105 -0
package/dist/cache/strategies/redis.d.ts.map +1 -0
package/dist/cache/strategies/redis.js +318 -0
package/dist/cache/strategies/redis.js.map +1 -0
package/dist/config/config.d.ts +62 -0
package/dist/config/config.d.ts.map +1 -0
package/dist/config/config.js +107 -0
package/dist/config/config.js.map +1 -0
package/dist/config/defaults.d.ts +44 -0
package/dist/config/defaults.d.ts.map +1 -0
package/dist/config/defaults.js +217 -0
package/dist/config/defaults.js.map +1 -0
package/dist/config/index.d.ts +105 -0
package/dist/config/index.d.ts.map +1 -0
package/dist/config/index.js +163 -0
package/dist/config/index.js.map +1 -0
package/dist/database/adapters/mongoose.d.ts +106 -0
package/dist/database/adapters/mongoose.d.ts.map +1 -0
package/dist/database/adapters/mongoose.js +480 -0
package/dist/database/adapters/mongoose.js.map +1 -0
package/dist/database/adapters/prisma.d.ts +106 -0
package/dist/database/adapters/prisma.d.ts.map +1 -0
package/dist/database/adapters/prisma.js +494 -0
package/dist/database/adapters/prisma.js.map +1 -0
package/dist/database/defaults.d.ts +87 -0
package/dist/database/defaults.d.ts.map +1 -0
package/dist/database/defaults.js +271 -0
package/dist/database/defaults.js.map +1 -0
package/dist/database/index.d.ts +137 -0
package/dist/database/index.d.ts.map +1 -0
package/dist/database/index.js +490 -0
package/dist/database/index.js.map +1 -0
package/dist/email/defaults.d.ts +100 -0
package/dist/email/defaults.d.ts.map +1 -0
package/dist/email/defaults.js +400 -0
package/dist/email/defaults.js.map +1 -0
package/dist/email/email.d.ts +139 -0
package/dist/email/email.d.ts.map +1 -0
package/dist/email/email.js +316 -0
package/dist/email/email.js.map +1 -0
package/dist/email/index.d.ts +176 -0
package/dist/email/index.d.ts.map +1 -0
package/dist/email/index.js +251 -0
package/dist/email/index.js.map +1 -0
package/dist/email/strategies/console.d.ts +90 -0
package/dist/email/strategies/console.d.ts.map +1 -0
package/dist/email/strategies/console.js +268 -0
package/dist/email/strategies/console.js.map +1 -0
package/dist/email/strategies/resend.d.ts +84 -0
package/dist/email/strategies/resend.d.ts.map +1 -0
package/dist/email/strategies/resend.js +266 -0
package/dist/email/strategies/resend.js.map +1 -0
package/dist/email/strategies/smtp.d.ts +77 -0
package/dist/email/strategies/smtp.d.ts.map +1 -0
package/dist/email/strategies/smtp.js +286 -0
package/dist/email/strategies/smtp.js.map +1 -0
package/dist/error/defaults.d.ts +40 -0
package/dist/error/defaults.d.ts.map +1 -0
package/dist/error/defaults.js +75 -0
package/dist/error/defaults.js.map +1 -0
package/dist/error/error.d.ts +140 -0
package/dist/error/error.d.ts.map +1 -0
package/dist/error/error.js +200 -0
package/dist/error/error.js.map +1 -0
package/dist/error/index.d.ts +145 -0
package/dist/error/index.d.ts.map +1 -0
package/dist/error/index.js +145 -0
package/dist/error/index.js.map +1 -0
package/dist/event/defaults.d.ts +111 -0
package/dist/event/defaults.d.ts.map +1 -0
package/dist/event/defaults.js +378 -0
package/dist/event/defaults.js.map +1 -0
package/dist/event/event.d.ts +171 -0
package/dist/event/event.d.ts.map +1 -0
package/dist/event/event.js +391 -0
package/dist/event/event.js.map +1 -0
package/dist/event/index.d.ts +173 -0
package/dist/event/index.d.ts.map +1 -0
package/dist/event/index.js +302 -0
package/dist/event/index.js.map +1 -0
package/dist/event/strategies/memory.d.ts +122 -0
package/dist/event/strategies/memory.d.ts.map +1 -0
package/dist/event/strategies/memory.js +331 -0
package/dist/event/strategies/memory.js.map +1 -0
package/dist/event/strategies/redis.d.ts +115 -0
package/dist/event/strategies/redis.d.ts.map +1 -0
package/dist/event/strategies/redis.js +434 -0
package/dist/event/strategies/redis.js.map +1 -0
package/dist/index.d.ts +58 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +72 -0
package/dist/index.js.map +1 -0
package/dist/logger/defaults.d.ts +67 -0
package/dist/logger/defaults.d.ts.map +1 -0
package/dist/logger/defaults.js +213 -0
package/dist/logger/defaults.js.map +1 -0
package/dist/logger/index.d.ts +84 -0
package/dist/logger/index.d.ts.map +1 -0
package/dist/logger/index.js +101 -0
package/dist/logger/index.js.map +1 -0
package/dist/logger/logger.d.ts +165 -0
package/dist/logger/logger.d.ts.map +1 -0
package/dist/logger/logger.js +843 -0
package/dist/logger/logger.js.map +1 -0
package/dist/logger/transports/console.d.ts +102 -0
package/dist/logger/transports/console.d.ts.map +1 -0
package/dist/logger/transports/console.js +276 -0
package/dist/logger/transports/console.js.map +1 -0
package/dist/logger/transports/database.d.ts +153 -0
package/dist/logger/transports/database.d.ts.map +1 -0
package/dist/logger/transports/database.js +539 -0
package/dist/logger/transports/database.js.map +1 -0
package/dist/logger/transports/file.d.ts +146 -0
package/dist/logger/transports/file.d.ts.map +1 -0
package/dist/logger/transports/file.js +464 -0
package/dist/logger/transports/file.js.map +1 -0
package/dist/logger/transports/http.d.ts +128 -0
package/dist/logger/transports/http.d.ts.map +1 -0
package/dist/logger/transports/http.js +401 -0
package/dist/logger/transports/http.js.map +1 -0
package/dist/logger/transports/webhook.d.ts +152 -0
package/dist/logger/transports/webhook.d.ts.map +1 -0
package/dist/logger/transports/webhook.js +485 -0
package/dist/logger/transports/webhook.js.map +1 -0
package/dist/queue/defaults.d.ts +66 -0
package/dist/queue/defaults.d.ts.map +1 -0
package/dist/queue/defaults.js +205 -0
package/dist/queue/defaults.js.map +1 -0
package/dist/queue/index.d.ts +124 -0
package/dist/queue/index.d.ts.map +1 -0
package/dist/queue/index.js +116 -0
package/dist/queue/index.js.map +1 -0
package/dist/queue/queue.d.ts +156 -0
package/dist/queue/queue.d.ts.map +1 -0
package/dist/queue/queue.js +387 -0
package/dist/queue/queue.js.map +1 -0
package/dist/queue/transports/database.d.ts +165 -0
package/dist/queue/transports/database.d.ts.map +1 -0
package/dist/queue/transports/database.js +595 -0
package/dist/queue/transports/database.js.map +1 -0
package/dist/queue/transports/memory.d.ts +143 -0
package/dist/queue/transports/memory.d.ts.map +1 -0
package/dist/queue/transports/memory.js +415 -0
package/dist/queue/transports/memory.js.map +1 -0
package/dist/queue/transports/redis.d.ts +203 -0
package/dist/queue/transports/redis.d.ts.map +1 -0
package/dist/queue/transports/redis.js +744 -0
package/dist/queue/transports/redis.js.map +1 -0
package/dist/security/defaults.d.ts +64 -0
package/dist/security/defaults.d.ts.map +1 -0
package/dist/security/defaults.js +159 -0
package/dist/security/defaults.js.map +1 -0
package/dist/security/index.d.ts +110 -0
package/dist/security/index.d.ts.map +1 -0
package/dist/security/index.js +160 -0
package/dist/security/index.js.map +1 -0
package/dist/security/security.d.ts +138 -0
package/dist/security/security.d.ts.map +1 -0
package/dist/security/security.js +419 -0
package/dist/security/security.js.map +1 -0
package/dist/storage/defaults.d.ts +79 -0
package/dist/storage/defaults.d.ts.map +1 -0
package/dist/storage/defaults.js +358 -0
package/dist/storage/defaults.js.map +1 -0
package/dist/storage/index.d.ts +153 -0
package/dist/storage/index.d.ts.map +1 -0
package/dist/storage/index.js +242 -0
package/dist/storage/index.js.map +1 -0
package/dist/storage/storage.d.ts +151 -0
package/dist/storage/storage.d.ts.map +1 -0
package/dist/storage/storage.js +439 -0
package/dist/storage/storage.js.map +1 -0
package/dist/storage/strategies/local.d.ts +117 -0
package/dist/storage/strategies/local.d.ts.map +1 -0
package/dist/storage/strategies/local.js +368 -0
package/dist/storage/strategies/local.js.map +1 -0
package/dist/storage/strategies/r2.d.ts +130 -0
package/dist/storage/strategies/r2.d.ts.map +1 -0
package/dist/storage/strategies/r2.js +470 -0
package/dist/storage/strategies/r2.js.map +1 -0
package/dist/storage/strategies/s3.d.ts +121 -0
package/dist/storage/strategies/s3.d.ts.map +1 -0
package/dist/storage/strategies/s3.js +461 -0
package/dist/storage/strategies/s3.js.map +1 -0
package/dist/util/defaults.d.ts +77 -0
package/dist/util/defaults.d.ts.map +1 -0
package/dist/util/defaults.js +193 -0
package/dist/util/defaults.js.map +1 -0
package/dist/util/index.d.ts +97 -0
package/dist/util/index.d.ts.map +1 -0
package/dist/util/index.js +165 -0
package/dist/util/index.js.map +1 -0
package/dist/util/util.d.ts +145 -0
package/dist/util/util.d.ts.map +1 -0
package/dist/util/util.js +481 -0
package/dist/util/util.js.map +1 -0
package/package.json +234 -0

package/bin/templates/backend/README.md.template ADDED Viewed

@@ -0,0 +1,39 @@
+# {{projectName}}
+TypeScript backend application built with AppKit.
+## Quick Start
+```bash
+npm install
+npm run dev:api
+```
+Your API will be available at: http://localhost:3000/api
+## Scripts
+- `npm run dev:api` - Development server with hot-reload
+- `npm run build` - Build for production
+- `npm run start:prod` - Start production server
+## Adding Features
+```bash
+# Custom feature
+npx appkit generate feature product
+# User authentication
+npx appkit generate feature user
+# With database
+npx appkit generate feature order --db
+```
+## Documentation
+- [CLI Reference](docs/APPKIT_CLI.md)
+- [LLM Guide](docs/APPKIT_LLM_GUIDE.md)
+- [Code Standards](docs/APPKIT_COMMENTS_GUIDELINES.md)
+Built with **AppKit** ⚡

package/bin/templates/backend/api.http.template ADDED Viewed

File without changes

package/bin/templates/backend/docs/APPKIT_CLI.md ADDED Viewed

@@ -0,0 +1,507 @@
+# AppKit CLI Documentation
+## Overview
+The AppKit CLI is a powerful command-line interface for creating production-ready TypeScript backend applications with Feature-Based Component Architecture (FBCA). It provides auto-discovery routing, complete authentication systems, secure environment configuration, database integration, and follows modern development best practices.
+## Installation
+```bash
+npm install -g @bloomneo/appkit
+```
+## Quick Start
+```bash
+# Create a new app
+appkit generate app myproject
+cd myproject
+# Add authentication system
+appkit generate feature user
+# Add custom features
+appkit generate feature product
+appkit generate feature order
+# Start development
+npm run dev:api
+```
+## Commands Overview
+| Command | Description | When to Use | Security Features |
+|---------|-------------|-------------|-------------------|
+| `generate app [name]` | Create complete backend app | Starting new project | Random secure keys, GitHub-safe |
+| `generate feature <name>` | Add custom CRUD feature | Need basic API endpoints | Follows security patterns |
+| `generate feature user` | Add authentication system | Need user management/auth | JWT, role-based access, 9-role hierarchy |
+## Commands Reference
+### 🚀 `appkit generate app [name]`
+Creates a complete TypeScript backend application with modern architecture.
+**Usage:**
+```bash
+# Create in current directory
+appkit generate app
+# Create in new directory
+appkit generate app myproject
+```
+**What it creates:**
+```
+myproject/
+├── package.json           # Dependencies & scripts
+├── tsconfig.json          # TypeScript configuration
+├── .env                   # Secure environment variables
+├── prisma/
+│   └── schema.prisma      # Database schema
+└── src/api/
+    ├── server.ts          # Main server
+    ├── lib/
+    │   └── api-router.ts  # Auto-discovery router
+    └── features/
+        ├── welcome/       # Default welcome feature
+        ├── sample/        # Example CRUD feature
+        └── new/           # Example feature
+```
+**✨ Features:**
+- ✅ **Secure by default** - Random 44-char auth secrets, 26-char API keys
+- ✅ **GitHub-safe** - No hardcoded credentials
+- ✅ **TypeScript ready** - Full type safety with proper configuration
+- ✅ **Auto-discovery** - Routes automatically discovered and mounted
+- ✅ **Production-ready** - Environment separation, logging, error handling
+- ✅ **Database ready** - Prisma integration with SQLite default
+**Generated .env file:**
+```bash
+DATABASE_URL="file:./dev.db"
+VOILA_FRONTEND_KEY="voila_abc123..."      # 26 characters
+VOILA_AUTH_SECRET="auth_xyz789..."        # 44 characters
+DEFAULT_USER_PASSWORD="pwd9x7k4m2"       # 10 alphanumeric
+```
+### 🔧 `appkit generate feature <name>`
+Creates a custom feature with complete CRUD operations.
+**Usage:**
+```bash
+appkit generate feature product
+appkit generate feature order
+appkit generate feature blog
+```
+**What it creates:**
+```
+src/api/features/product/
+├── product.route.ts     # Express routes with CRUD endpoints
+├── product.service.ts   # Business logic with validation
+├── product.types.ts     # TypeScript interfaces
+├── product.model.ts     # Database model
+└── product.http         # HTTP test file
+```
+**Generated endpoints:**
+- `GET /api/product` - Get all records
+- `POST /api/product` - Create new record
+- `GET /api/product/:id` - Get record by ID
+- `PUT /api/product/:id` - Update record
+- `DELETE /api/product/:id` - Delete record
+**When to use:**
+- ✅ Need custom business logic
+- ✅ Want specific data models
+- ✅ Building domain-specific APIs
+- ✅ Rapid prototyping
+### 🔐 `appkit generate feature user`
+Creates a complete authentication and user management system.
+**Usage:**
+```bash
+appkit generate feature user
+```
+**What it creates:**
+```
+src/api/features/user/
+├── user.route.ts        # Authentication routes
+├── user.service.ts      # Auth business logic
+├── user.types.ts        # User interfaces
+├── user.model.ts        # User database model
+└── user.http            # Complete test suite
+prisma/seeding/
+└── user.seed.js         # Seed data for all roles
+```
+**🔐 Authentication Features:**
+- ✅ **JWT Authentication** - Secure token-based auth
+- ✅ **9-Role Hierarchy** - user.basic → admin.system
+- ✅ **Password Security** - bcrypt hashing, random generation
+- ✅ **Role-based Access** - Route protection by role/level
+- ✅ **Complete User Management** - CRUD for admin users
+- ✅ **Password Reset** - Forgot/reset password flow
+- ✅ **Account Management** - Profile updates, password changes
+**Generated endpoints:**
+```
+# Authentication
+POST /api/user/register      # Create new user
+POST /api/user/login         # User login
+POST /api/user/forgot-password  # Request password reset
+POST /api/user/reset-password   # Reset with token
+# Profile Management
+GET  /api/user/profile       # Get user profile
+PUT  /api/user/profile       # Update profile
+POST /api/user/change-password  # Change password
+# Admin Only
+GET    /api/user/all         # Get all users
+GET    /api/user/list        # Get users (moderator+)
+PUT    /api/user/list/:id    # Update user
+DELETE /api/user/list/:id    # Delete user
+```
+**🛡️ Role Hierarchy:**
+```
+User Roles (Level 1-3):
+├── user.basic       # Basic user permissions
+├── user.pro         # Pro user features
+└── user.max         # Maximum user features
+Moderator Roles (Level 4-6):
+├── moderator.review   # Can review content
+├── moderator.approve  # Can approve/reject
+└── moderator.manage   # Can manage users
+Admin Roles (Level 7-9):
+├── admin.tenant     # Tenant administration
+├── admin.org        # Organization administration
+└── admin.system     # System administration
+```
+**When to use:**
+- ✅ Need user accounts and authentication
+- ✅ Building multi-user applications
+- ✅ Need role-based access control
+- ✅ Want production-ready auth system
+- ✅ Building SaaS or enterprise apps
+## Decision Guide
+### When to use `generate app`
+- 🎯 **Starting a new project**
+- 🎯 **Need complete backend foundation**
+- 🎯 **Want security best practices built-in**
+- 🎯 **Building production applications**
+### When to use `generate feature <name>`
+- 🎯 **Adding business-specific functionality**
+- 🎯 **Need custom data models**
+- 🎯 **Building domain APIs (products, orders, etc.)**
+- 🎯 **Rapid prototyping**
+### When to use `generate feature user`
+- 🎯 **Need user authentication**
+- 🎯 **Building multi-user applications**
+- 🎯 **Need role-based permissions**
+- 🎯 **Want enterprise-grade user management**
+## Architecture
+### Feature-Based Component Architecture (FBCA)
+Each feature is self-contained and follows consistent patterns:
+```
+src/api/features/<feature>/
+├── <feature>.route.ts    # HTTP endpoints & middleware
+├── <feature>.service.ts  # Business logic & validation
+├── <feature>.types.ts    # TypeScript interfaces
+├── <feature>.model.ts    # Database schema
+└── <feature>.http        # API testing
+```
+### Auto-Discovery System
+- 🔍 **Automatic route detection** - Scans `/features` directory
+- 🚀 **Zero configuration** - Routes auto-mount at `/api/{feature}`
+- 🔄 **Hot-reload friendly** - Changes reflected immediately
+- 📋 **Discovery endpoint** - `GET /api` lists all features
+### Security Architecture
+**Environment Security:**
+- 🔐 **Random key generation** - Unique per project
+- 🚫 **No hardcoded secrets** - GitHub-safe repositories
+- 🛡️ **Environment separation** - Dev/prod configurations
+- 🔑 **Secure defaults** - Strong random passwords
+**Authentication Security:**
+- 🎫 **JWT tokens** - Stateless authentication
+- 🔒 **Password hashing** - bcrypt with salt rounds
+- 🛡️ **Role-based access** - Granular permissions
+- 🔐 **Token validation** - Middleware protection
+## Development Workflow
+### 1. Project Setup
+```bash
+# Create project
+appkit generate app myapp
+cd myapp
+# Install dependencies (auto-done)
+npm install
+# Start development
+npm run dev:api
+```
+### 2. Add Authentication
+```bash
+# Add complete auth system
+appkit generate feature user
+# Seed test users
+node prisma/seeding/user.seed.js
+# Test login
+curl -X POST http://localhost:3000/api/user/login \
+  -H "Content-Type: application/json" \
+  -d '{"email":"admin.system@myapp.com","password":"YOUR_DEFAULT_PASSWORD"}'
+```
+### 3. Add Custom Features
+```bash
+# Add business features
+appkit generate feature product
+appkit generate feature order
+appkit generate feature customer
+```
+### 4. Test & Deploy
+```bash
+# Run tests
+npm test
+# Build for production
+npm run build
+# Start production
+npm run start:prod
+```
+## Environment Configuration
+### Auto-Generated .env
+```bash
+# Server Configuration
+PORT=3000
+NODE_ENV=development
+# Database Configuration
+DATABASE_URL="file:./dev.db"
+# Application Configuration
+APP_NAME=myapp
+API_VERSION=1.0.0
+# Security (Auto-generated, GitHub-safe)
+VOILA_FRONTEND_KEY=voila_abc123def456...     # 26 chars
+VOILA_AUTH_SECRET=auth_xyz789abc123...       # 44 chars
+DEFAULT_USER_PASSWORD=pwd9x7k4m2             # 10 chars
+# Logging
+LOG_LEVEL=info
+```
+### Production Environment
+```bash
+# Override for production
+NODE_ENV=production
+PORT=8080
+DATABASE_URL="postgresql://user:pass@host:5432/db"
+LOG_LEVEL=warn
+```
+## Available Scripts
+| Script | Description | When to Use |
+|--------|-------------|-------------|
+| `npm run dev:api` | Development server with hot-reload | During development |
+| `npm run build` | Build TypeScript to JavaScript | Before deployment |
+| `npm run start:prod` | Start production server | Production deployment |
+| `npm run start` | Start without build | Quick production start |
+## Testing
+### HTTP Test Files
+Each feature includes a `.http` file for easy testing:
+```http
+### Test login
+POST http://localhost:3000/api/user/login
+Content-Type: application/json
+{
+  "email": "admin.system@myapp.com",
+  "password": "YOUR_DEFAULT_PASSWORD"
+}
+### Test protected endpoint
+GET http://localhost:3000/api/user/profile
+Authorization: Bearer YOUR_JWT_TOKEN
+```
+### Integration Testing
+```bash
+# Test endpoints with curl
+curl http://localhost:3000/health
+curl http://localhost:3000/api
+curl http://localhost:3000/api/user/test
+```
+## AppKit Integration
+### Database
+```typescript
+import { databaseClass } from '@bloomneo/appkit/database';
+const db = await databaseClass.get();
+const users = await db.user.findMany();
+```
+### Authentication
+```typescript
+import { authClass } from '@bloomneo/appkit/auth';
+const auth = authClass.get();
+const token = auth.generateLoginToken({ userId, role, level });
+```
+### Error Handling
+```typescript
+import { errorClass } from '@bloomneo/appkit/error';
+const error = errorClass.get();
+throw error.badRequest('Invalid input');
+throw error.notFound('User not found');
+```
+### Logging
+```typescript
+import { loggerClass } from '@bloomneo/appkit/logger';
+const logger = loggerClass.get('feature-name');
+logger.info('Request processed', { userId });
+```
+## Best Practices
+### Security
+- ✅ **Use environment variables** for all secrets
+- ✅ **Never commit .env files** to version control
+- ✅ **Use role-based access control** for sensitive endpoints
+- ✅ **Validate all inputs** in service layers
+- ✅ **Use JWT tokens** for stateless authentication
+### Code Organization
+- ✅ **Follow FBCA patterns** - keep features self-contained
+- ✅ **Use TypeScript interfaces** for type safety
+- ✅ **Implement proper error handling** with AppKit error classes
+- ✅ **Add comprehensive logging** for debugging
+- ✅ **Write HTTP tests** for all endpoints
+### Database
+- ✅ **Use AppKit database class** for consistency
+- ✅ **Include tenant_id fields** for multi-tenancy
+- ✅ **Transform dates to ISO strings** in responses
+- ✅ **Implement input validation** before database operations
+## Troubleshooting
+### Common Issues
+**Feature not discovered:**
+- ✅ Check file naming: `{feature}.route.ts`
+- ✅ Ensure default export: `export default router`
+- ✅ Verify directory structure: `features/{feature}/`
+**Authentication errors:**
+- ✅ Check `VOILA_AUTH_SECRET` in .env
+- ✅ Verify password in seeding
+- ✅ Test with correct user credentials
+**Database connection issues:**
+- ✅ Verify `DATABASE_URL` in .env
+- ✅ Run `npx prisma generate`
+- ✅ Run `npx prisma db push`
+**TypeScript compilation errors:**
+- ✅ Check import paths use `.js` extensions
+- ✅ Verify `moduleResolution: "bundler"` in tsconfig
+- ✅ Ensure proper AppKit module imports
+## Examples
+### Complete User Management Flow
+```bash
+# 1. Create app with auth
+appkit generate app userapp
+cd userapp
+appkit generate feature user
+# 2. Seed test users
+node prisma/seeding/user.seed.js
+# 3. Test authentication
+curl -X POST http://localhost:3000/api/user/login \
+  -H "Content-Type: application/json" \
+  -d '{"email":"admin.system@userapp.com","password":"YOUR_DEFAULT_PASSWORD"}'
+# 4. Use JWT token for protected endpoints
+curl -H "Authorization: Bearer YOUR_JWT_TOKEN" \
+  http://localhost:3000/api/user/profile
+```
+### E-commerce API Example
+```bash
+# Create e-commerce backend
+appkit generate app shopapi
+cd shopapi
+# Add authentication
+appkit generate feature user
+# Add business features
+appkit generate feature product
+appkit generate feature order
+appkit generate feature customer
+appkit generate feature category
+# Result: Complete e-commerce API with auth
+# GET  /api/user/*      - User management
+# GET  /api/product/*   - Product catalog
+# GET  /api/order/*     - Order management
+# GET  /api/customer/*  - Customer data
+# GET  /api/category/*  - Product categories
+```
+---
+**AppKit CLI - Production-ready backend applications in minutes, not hours.** 🚀
+**Generated with AppKit CLI v3.0 - Enhanced with Authentication, Security, and GitHub-safe Repositories**

package/bin/templates/backend/docs/APPKIT_COMMENTS_GUIDELINES.md ADDED Viewed

@@ -0,0 +1,61 @@
+# AppKit Comment Standards
+Documentation guidelines for AppKit backend applications optimized for developers and AI systems.
+## Template
+**File Header:**
+```typescript
+/**
+ * Brief description
+ * @module @bloomneo/package/module
+ * @file src/path/file.ts
+ *
+ * @llm-rule WHEN: Use case trigger
+ * @llm-rule AVOID: Major pitfalls
+ * @llm-rule NOTE: Critical context (optional)
+ */
+```
+**Function:**
+```typescript
+/**
+ * Function description
+ * @llm-rule WHEN: Specific use case
+ * @llm-rule AVOID: Common mistakes
+ * @llm-rule NOTE: Non-obvious behavior (optional)
+ */
+```
+## Rules
+**Categories:**
+- **WHEN** - Trigger conditions
+- **AVOID** - Breaking mistakes
+- **NOTE** - Critical context (optional)
+**Guidelines:**
+- Maximum 3 rules per item
+- One line per rule
+- Action-oriented language
+- Specific use cases vs common pitfalls
+## Examples
+**Good:**
+```typescript
+@llm-rule WHEN: Building apps with user roles and permissions
+@llm-rule AVOID: Simple login apps - adds unnecessary complexity
+@llm-rule WHEN: Storing user passwords
+@llm-rule AVOID: Plain text passwords - security vulnerability
+```
+**Avoid:**
+```typescript
+@llm-rule WHEN: Need to call this function
+@llm-rule PURPOSE: Returns user data
+@llm-rule USAGE: This function should be used when...
+```
+**Standard for all AppKit backend applications - ensures developer-friendly and AI-ready code.**