@chimerai/cli 0.2.73

package/dist/templates/auth.d.ts

@@ -0,0 +1,48 @@
+/**
+ * Authentication component templates for NextAuth.js integration
+ * Generates auth routes, pages, providers, and type definitions
+ */
+/**
+ * Generates the NextAuth API route with credentials provider
+ * Includes user authentication, JWT callbacks, and role/permissions handling
+ * @returns TypeScript content for app/api/auth/[...nextauth]/route.ts
+ */
+export declare function generateNextAuthRoute(): string;
+/**
+ * Generates the login page component with email/password form
+ * Includes error handling, loading states, and redirect to dashboard on success
+ * @returns TypeScript/JSX content for app/(auth)/login/page.tsx
+ */
+export declare function generateLoginPage(): string;
+/**
+ * Generates the SessionProvider wrapper component for client-side session access
+ * Wraps the app with NextAuth SessionProvider to enable useSession() hook usage
+ * @returns TypeScript/JSX content for components/SessionProvider.tsx
+ */
+export declare function generateSessionProvider(): string;
+/**
+ * Generates the LogoutButton component for sign-out functionality
+ * Redirects to login page after sign-out
+ * @returns TypeScript/JSX content for components/LogoutButton.tsx
+ */
+export declare function generateLogoutButton(): string;
+/**
+ * Generates NextAuth TypeScript type definitions
+ * Extends Session, User, and JWT interfaces for role-based access control
+ * @returns TypeScript content for types/next-auth.d.ts
+ */
+export declare function generateNextAuthTypes(): string;
+/**
+ * Generates the NextAuth configuration library
+ * Centralizes auth options, provider configuration, and session strategy
+ * Used for importing authOptions in route handlers and API middleware
+ * @returns TypeScript content for lib/auth.ts
+ */
+export declare function generateAuthLib(): string;
+/**
+ * Generates the dual-auth resolve helper.
+ * Checks NextAuth session first (browser), then API key (widget/external).
+ * @returns TypeScript content for lib/auth/resolve-auth.ts
+ */
+export declare function generateResolveAuth(): string;
+//# sourceMappingURL=auth.d.ts.map

package/dist/templates/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/templates/auth.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH;;;;GAIG;AACH,wBAAgB,qBAAqB,IAAI,MAAM,CAS9C;AAED;;;;GAIG;AACH,wBAAgB,iBAAiB,IAAI,MAAM,CA4G1C;AAED;;;;GAIG;AACH,wBAAgB,uBAAuB,IAAI,MAAM,CAUhD;AAED;;;;GAIG;AACH,wBAAgB,oBAAoB,IAAI,MAAM,CAiB7C;AAED;;;;GAIG;AACH,wBAAgB,qBAAqB,IAAI,MAAM,CAuC9C;AAED;;;;;GAKG;AACH,wBAAgB,eAAe,IAAI,MAAM,CAgGxC;AAED;;;;GAIG;AACH,wBAAgB,mBAAmB,IAAI,MAAM,CA8C5C"}

package/dist/templates/auth.js

@@ -0,0 +1,381 @@
+"use strict";
+/**
+ * Authentication component templates for NextAuth.js integration
+ * Generates auth routes, pages, providers, and type definitions
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.generateNextAuthRoute = generateNextAuthRoute;
+exports.generateLoginPage = generateLoginPage;
+exports.generateSessionProvider = generateSessionProvider;
+exports.generateLogoutButton = generateLogoutButton;
+exports.generateNextAuthTypes = generateNextAuthTypes;
+exports.generateAuthLib = generateAuthLib;
+exports.generateResolveAuth = generateResolveAuth;
+/**
+ * Generates the NextAuth API route with credentials provider
+ * Includes user authentication, JWT callbacks, and role/permissions handling
+ * @returns TypeScript content for app/api/auth/[...nextauth]/route.ts
+ */
+function generateNextAuthRoute() {
+    return `// @chimerai component=NextAuthRoute version=1.0
+import NextAuth from 'next-auth';
+import { authOptions } from '@/lib/auth';
+
+const handler = NextAuth(authOptions);
+
+export { handler as GET, handler as POST };
+`;
+}
+/**
+ * Generates the login page component with email/password form
+ * Includes error handling, loading states, and redirect to dashboard on success
+ * @returns TypeScript/JSX content for app/(auth)/login/page.tsx
+ */
+function generateLoginPage() {
+    return `// @chimerai component=LoginPage version=1.0
+'use client';
+
+import { useState } from 'react';
+import { signIn } from 'next-auth/react';
+import { useRouter } from 'next/navigation';
+
+export default function LoginPage() {
+  const router = useRouter();
+  const [email, setEmail] = useState('');
+  const [password, setPassword] = useState('');
+  const [error, setError] = useState('');
+  const [loading, setLoading] = useState(false);
+
+  async function handleSubmit(e: React.FormEvent) {
+    e.preventDefault();
+    setError('');
+    setLoading(true);
+
+    try {
+      const result = await signIn('credentials', {
+        email,
+        password,
+        redirect: false,
+      });
+
+      if (result?.error) {
+        setError('Invalid email or password');
+      } else {
+        router.push('/');
+        router.refresh();
+      }
+    } catch (err) {
+      setError('An error occurred. Please try again.');
+    } finally {
+      setLoading(false);
+    }
+  }
+
+  return (
+    <div className="min-h-screen flex items-center justify-center bg-gray-50 dark:bg-gray-950 py-12 px-4 sm:px-6 lg:px-8">
+      <div className="max-w-md w-full space-y-8">
+        <div>
+          <h2 className="mt-6 text-center text-3xl font-extrabold text-gray-900 dark:text-white">
+            Sign in to your account
+          </h2>
+        </div>
+        <form className="mt-8 space-y-6" onSubmit={handleSubmit}>
+          {error && (
+            <div className="rounded-md bg-red-50 dark:bg-red-900/30 p-4">
+              <div className="text-sm text-red-800 dark:text-red-400">{error}</div>
+            </div>
+          )}
+          <div className="rounded-md shadow-sm -space-y-px">
+            <div>
+              <label htmlFor="email" className="sr-only">
+                Email address
+              </label>
+              <input
+                id="email"
+                name="email"
+                type="email"
+                autoComplete="email"
+                required
+                className="appearance-none rounded-none relative block w-full px-3 py-2 border border-gray-300 dark:border-gray-600 placeholder-gray-500 dark:placeholder-gray-400 text-gray-900 dark:text-gray-100 bg-white dark:bg-gray-800 rounded-t-md focus:outline-none focus:ring-indigo-500 focus:border-indigo-500 focus:z-10 sm:text-sm"
+                placeholder="Email address"
+                value={email}
+                onChange={(e) => setEmail(e.target.value)}
+              />
+            </div>
+            <div>
+              <label htmlFor="password" className="sr-only">
+                Password
+              </label>
+              <input
+                id="password"
+                name="password"
+                type="password"
+                autoComplete="current-password"
+                required
+                className="appearance-none rounded-none relative block w-full px-3 py-2 border border-gray-300 dark:border-gray-600 placeholder-gray-500 dark:placeholder-gray-400 text-gray-900 dark:text-gray-100 bg-white dark:bg-gray-800 rounded-b-md focus:outline-none focus:ring-indigo-500 focus:border-indigo-500 focus:z-10 sm:text-sm"
+                placeholder="Password"
+                value={password}
+                onChange={(e) => setPassword(e.target.value)}
+              />
+            </div>
+          </div>
+
+          <div>
+            <button
+              type="submit"
+              disabled={loading}
+              className="group relative w-full flex justify-center py-2 px-4 border border-transparent text-sm font-medium rounded-md text-white bg-indigo-600 hover:bg-indigo-700 focus:outline-none focus:ring-2 focus:ring-offset-2 dark:focus:ring-offset-gray-950 focus:ring-indigo-500 disabled:opacity-50"
+            >
+              {loading ? 'Signing in...' : 'Sign in'}
+            </button>
+          </div>
+        </form>
+        <div className="text-center text-sm text-gray-600 dark:text-gray-400">
+          <p>Default admin credentials:</p>
+          <p className="font-mono text-xs mt-1 dark:text-gray-500">admin@example.com / admin123</p>
+        </div>
+      </div>
+    </div>
+  );
+}
+`;
+}
+/**
+ * Generates the SessionProvider wrapper component for client-side session access
+ * Wraps the app with NextAuth SessionProvider to enable useSession() hook usage
+ * @returns TypeScript/JSX content for components/SessionProvider.tsx
+ */
+function generateSessionProvider() {
+    return `// @chimerai component=SessionProvider version=1.0
+'use client';
+
+import { SessionProvider as NextAuthSessionProvider } from 'next-auth/react';
+
+export function SessionProvider({ children }: { children: React.ReactNode }) {
+  return <NextAuthSessionProvider>{children}</NextAuthSessionProvider>;
+}
+`;
+}
+/**
+ * Generates the LogoutButton component for sign-out functionality
+ * Redirects to login page after sign-out
+ * @returns TypeScript/JSX content for components/LogoutButton.tsx
+ */
+function generateLogoutButton() {
+    return `// @chimerai component=LogoutButton version=1.0
+'use client';
+
+import { signOut } from 'next-auth/react';
+
+export function LogoutButton() {
+  return (
+    <button
+      onClick={() => signOut({ callbackUrl: '/auth/signin' })}
+      className="px-4 py-2 text-sm font-medium text-white bg-red-600 rounded-md hover:bg-red-700 focus:outline-none focus:ring-2 focus:ring-offset-2 focus:ring-red-500"
+    >
+      Sign Out
+    </button>
+  );
+}
+`;
+}
+/**
+ * Generates NextAuth TypeScript type definitions
+ * Extends Session, User, and JWT interfaces for role-based access control
+ * @returns TypeScript content for types/next-auth.d.ts
+ */
+function generateNextAuthTypes() {
+    return `// @chimerai component=NextAuthTypes version=1.0
+import { DefaultSession } from 'next-auth';
+
+declare module 'next-auth' {
+  interface Session {
+    user: {
+      id: string;
+      roles?: Array<{
+        id: string;
+        name: string;
+        permissions: string[];
+      }>;
+    } & DefaultSession['user'];
+  }
+
+  interface User {
+    id: string;
+    email: string;
+    name?: string | null;
+    roles?: Array<{
+      id: string;
+      name: string;
+      permissions: string[];
+    }>;
+  }
+}
+
+declare module 'next-auth/jwt' {
+  interface JWT {
+    id: string;
+    roles?: Array<{
+      id: string;
+      name: string;
+      permissions: string[];
+    }>;
+  }
+}
+`;
+}
+/**
+ * Generates the NextAuth configuration library
+ * Centralizes auth options, provider configuration, and session strategy
+ * Used for importing authOptions in route handlers and API middleware
+ * @returns TypeScript content for lib/auth.ts
+ */
+function generateAuthLib() {
+    return `// @chimerai component=AuthLib version=1.0
+import { NextAuthOptions } from 'next-auth';
+import { PrismaAdapter } from '@auth/prisma-adapter';
+import { prisma } from './prisma';
+import CredentialsProvider from 'next-auth/providers/credentials';
+import bcrypt from 'bcryptjs';
+import { logAuditAction } from './audit';
+
+export const authOptions: NextAuthOptions = {
+  adapter: PrismaAdapter(prisma) as any,
+  providers: [
+    CredentialsProvider({
+      name: 'Credentials',
+      credentials: {
+        email: { label: 'Email', type: 'email' },
+        password: { label: 'Password', type: 'password' },
+      },
+      async authorize(credentials) {
+        if (!credentials?.email || !credentials?.password) {
+          return null;
+        }
+
+        // Query user — try with RBAC roles first, fall back to plain user if roles relation doesn't exist
+        let user: any = null;
+        try {
+          user = await (prisma.user as any).findUnique({
+            where: { email: credentials.email },
+            include: {
+              roles: { select: { role: { select: { id: true, name: true, permissions: true } } } },
+            },
+          });
+        } catch {
+          // roles relation not available (admin-ui not installed) — plain query
+          user = await prisma.user.findUnique({
+            where: { email: credentials.email },
+          });
+        }
+
+        if (!user || !user.password || !user.email) {
+          return null;
+        }
+
+        const isValid = await bcrypt.compare(credentials.password, user.password);
+
+        if (!isValid) {
+          return null;
+        }
+
+        return {
+          id: user.id,
+          email: user.email,
+          name: user.name,
+          roles: Array.isArray(user.roles)
+            ? user.roles.map((ur: any) => ur.role)
+            : [],
+        };
+      },
+    }),
+  ],
+  callbacks: {
+    async jwt({ token, user }) {
+      if (user) {
+        token.id = user.id;
+        token.roles = (user as any).roles;
+      }
+      return token;
+    },
+    async session({ session, token }) {
+      if (session.user) {
+        session.user.id = token.id as string;
+        session.user.roles = token.roles as any;
+      }
+      return session;
+    },
+  },
+  events: {
+    async signIn({ user }) {
+      if (user?.id) {
+        await logAuditAction({
+          action: 'user.login',
+          userId: user.id,
+          metadata: { email: user.email },
+        });
+      }
+    },
+  },
+  session: {
+    strategy: 'jwt',
+  },
+  pages: {
+    signIn: '/auth/signin',
+  },
+  secret: process.env.NEXTAUTH_SECRET,
+};
+`;
+}
+/**
+ * Generates the dual-auth resolve helper.
+ * Checks NextAuth session first (browser), then API key (widget/external).
+ * @returns TypeScript content for lib/auth/resolve-auth.ts
+ */
+function generateResolveAuth() {
+    return `// @chimerai component=ResolveAuth version=1.0
+import { getServerSession } from 'next-auth';
+import { NextRequest } from 'next/server';
+import { authOptions } from '@/lib/auth';
+import { verifyApiKey } from '@/lib/api-key-auth';
+
+export interface AuthContext {
+  userId: string;
+  email: string;
+  authMethod: 'session' | 'api-key';
+  scopes?: string[];
+}
+
+/**
+ * Dual-Auth: Checks NextAuth session first (browser), then API key (widget/external).
+ * Returns AuthContext or throws an error with status.
+ */
+export async function resolveAuth(request: NextRequest): Promise<AuthContext> {
+  // 1. Session-Auth (Browser-User)
+  const session = await getServerSession(authOptions);
+  if (session?.user?.id) {
+    return {
+      userId: session.user.id,
+      email: session.user.email || '',
+      authMethod: 'session',
+    };
+  }
+
+  // 2. API-Key-Auth (Widget/External)
+  const result = await verifyApiKey(request);
+  if (result.valid && result.userId) {
+    return {
+      userId: result.userId,
+      email: result.email || '',
+      authMethod: 'api-key',
+      scopes: result.scopes || [],
+    };
+  }
+
+  // 3. No Auth — Error
+  const error: any = new Error('Unauthorized');
+  error.status = 401;
+  throw error;
+}
+`;
+}

package/dist/templates/billing.d.ts

@@ -0,0 +1,44 @@
+/**
+ * Billing & Stripe template generators
+ * Generates billing page, Stripe lib, checkout/portal/webhook routes
+ * SPEC: FRONTEND_UI_SPEC.md Section A4
+ */
+/**
+ * Generates the Stripe utility library
+ * Raw fetch against Stripe API — no Stripe SDK dependency needed
+ * @returns TypeScript content for lib/stripe.ts
+ */
+export declare function generateStripeLib(): string;
+/**
+ * Generates the billing / pricing page
+ * Shows pricing plans with upgrade flow + subscription overview
+ * SPEC: A4 — Pricing Plans, Upgrade Flow, Subscription Overview
+ * @returns TypeScript/JSX content for app/billing/page.tsx
+ */
+export declare function generateBillingPage(): string;
+/**
+ * Generates the checkout API route
+ * POST: Creates Stripe Checkout Session for subscription upgrade
+ * @returns TypeScript content for app/api/billing/checkout/route.ts
+ */
+export declare function generateCheckoutRoute(): string;
+/**
+ * Generates the billing portal API route
+ * POST: Creates Stripe Customer Portal Session
+ * @returns TypeScript content for app/api/billing/portal/route.ts
+ */
+export declare function generatePortalRoute(): string;
+/**
+ * Generates the subscription status API route
+ * GET: Returns current subscription, credits, usage for the logged-in user
+ * @returns TypeScript content for app/api/billing/subscription/route.ts
+ */
+export declare function generateSubscriptionRoute(): string;
+/**
+ * Generates the Stripe webhook handler
+ * POST: Processes Stripe events (checkout complete, subscription updates, invoice events)
+ * SPEC: A4 — Webhook Events
+ * @returns TypeScript content for app/api/webhooks/stripe/route.ts
+ */
+export declare function generateStripeWebhookRoute(): string;
+//# sourceMappingURL=billing.d.ts.map

package/dist/templates/billing.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"billing.d.ts","sourceRoot":"","sources":["../../src/templates/billing.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH;;;;GAIG;AACH,wBAAgB,iBAAiB,IAAI,MAAM,CA0F1C;AAED;;;;;GAKG;AACH,wBAAgB,mBAAmB,IAAI,MAAM,CAwM5C;AAED;;;;GAIG;AACH,wBAAgB,qBAAqB,IAAI,MAAM,CAwC9C;AAED;;;;GAIG;AACH,wBAAgB,mBAAmB,IAAI,MAAM,CA8B5C;AAED;;;;GAIG;AACH,wBAAgB,yBAAyB,IAAI,MAAM,CAwClD;AAED;;;;;GAKG;AACH,wBAAgB,0BAA0B,IAAI,MAAM,CAoGnD"}