@erwininteractive/mvc 0.4.2 → 0.6.1

package/README.md

@@ -279,6 +279,24 @@ app.get("/protected", authenticate, (req, res) => {
 });
 ```
 
+### Auto-Inject User to Views
+
+When a user is authenticated, their information is automatically available in all EJS templates via `res.locals.user`:
+
+```typescript
+// In any EJS template
+<% if (user) { %>
+  <p>Welcome, <%= user.email %></p>
+<% } else { %>
+  <a href="/auth/login">Login</a>
+<% } %>
+```
+
+The middleware automatically:
+- Extracts JWT from `req.cookies.token` or `Authorization` header
+- Verifies the token using `JWT_SECRET`
+- Sets `req.user` and `res.locals.user` for use in views
+
 ---
 
 ### WebAuthn (Passkeys)
@@ -528,6 +546,50 @@ NODE_ENV=development                                       # Environment
 
 ---
 
+## Escape Hatch Documentation
+
+### Island Pattern (EJS + React)
+
+Use EJS for layout while adding React components where needed:
+
+```html
+<!-- layout.ejs -->
+<!DOCTYPE html>
+<html>
+<head><title><%= title %></title></head>
+<body>
+  <header><%- include('partial/header') %></header>
+  
+  <main id="app"><%- body %></main>
+  
+  <!-- React island -->
+  <div id="comment-section" data-post-id="<%= post.id %>"></div>
+  
+  <footer><%- include('partial/footer') %></footer>
+  
+  <script type="module" src="/src/components/CommentSection.tsx"></script>
+</body>
+</html>
+```
+
+### API-Only Mode
+
+Disable EJS engine for pure API responses:
+
+```typescript
+const { app } = await createMvcApp({
+  viewsPath: "src/views",
+  disableViewEngine: true, // Don't setup EJS
+});
+
+app.get("/api/users", async (req, res) => {
+  const users = await prisma.user.findMany();
+  res.json(users);  // Always JSON, no EJS
+});
+```
+
+---
+
 ## Learn More
 
 - [Express.js Documentation](https://expressjs.com/)

package/dist/cli.js

@@ -7,11 +7,19 @@ const generateModel_1 = require("./generators/generateModel");
 const generateController_1 = require("./generators/generateController");
 const generateResource_1 = require("./generators/generateResource");
 const generateWebAuthn_1 = require("./generators/generateWebAuthn");
+const listRoutes_1 = require("./generators/listRoutes");
 const program = new commander_1.Command();
 program
     .name("erwinmvc")
     .description("CLI for @erwininteractive/mvc framework")
-    .version("0.2.0");
+    .version("0.2.0")
+    .addHelpText("after", `
+Examples:
+  $ erwinmvc init myapp                     Create a new app
+  $ erwinmvc generate resource Post         Generate CRUD for Post
+  $ erwinmvc webauthn                       Setup passkey authentication
+  $ erwinmvc list:routes                    Show all routes
+`);
 // Init command - scaffold a new application
 program
     .command("init <dir>")
@@ -94,4 +102,18 @@ program
         process.exit(1);
     }
 });
+// List routes command - shows all defined routes
+program
+    .command("list:routes")
+    .alias("lr")
+    .description("List all routes in the application")
+    .action(async () => {
+    try {
+        (0, listRoutes_1.listRoutes)();
+    }
+    catch (err) {
+        console.error("Error:", err instanceof Error ? err.message : err);
+        process.exit(1);
+    }
+});
 program.parse();

package/dist/framework/App.js

@@ -12,6 +12,7 @@ const redis_1 = require("redis");
 const connect_redis_1 = __importDefault(require("connect-redis"));
 const helmet_1 = __importDefault(require("helmet"));
 const cors_1 = __importDefault(require("cors"));
+const jsonwebtoken_1 = __importDefault(require("jsonwebtoken"));
 const dotenv_1 = __importDefault(require("dotenv"));
 const path_1 = __importDefault(require("path"));
 // Load environment variables
@@ -74,6 +75,21 @@ async function createMvcApp(options = {}) {
     // View engine
     app.set("view engine", "ejs");
     app.set("views", path_1.default.resolve(viewsPath));
+    // Auto-inject authenticated user into views via res.locals
+    app.use((req, res, next) => {
+        try {
+            const token = req.cookies?.token || req.headers.authorization?.split(" ")[1];
+            if (token) {
+                const decoded = jsonwebtoken_1.default.verify(token, process.env.JWT_SECRET);
+                req.user = decoded;
+                res.locals.user = decoded;
+            }
+        }
+        catch {
+            // Token invalid or expired
+        }
+        next();
+    });
     // Add respond helper to response
     app.use((req, res, next) => {
         res.respond = function (viewName, data) {

package/dist/generators/listRoutes.d.ts

@@ -0,0 +1,22 @@
+interface RouteInfo {
+    method: string;
+    path: string;
+    handler: string;
+}
+/**
+ * Parse routes from server.ts file
+ */
+export declare function parseRoutes(serverPath: string): RouteInfo[];
+/**
+ * Format routes as a table
+ */
+export declare function formatRoutes(routes: RouteInfo[]): string;
+/**
+ * Get server.ts path from current directory
+ */
+export declare function getServerPath(cwd?: string): string;
+/**
+ * List all routes in the current project
+ */
+export declare function listRoutes(cwd?: string): void;
+export {};

package/dist/generators/listRoutes.js

@@ -0,0 +1,103 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.parseRoutes = parseRoutes;
+exports.formatRoutes = formatRoutes;
+exports.getServerPath = getServerPath;
+exports.listRoutes = listRoutes;
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
+/**
+ * Parse routes from server.ts file
+ */
+function parseRoutes(serverPath) {
+    const routes = [];
+    if (!fs_1.default.existsSync(serverPath)) {
+        return routes;
+    }
+    const content = fs_1.default.readFileSync(serverPath, "utf-8");
+    const lines = content.split("\n");
+    for (const line of lines) {
+        // Match app.METHOD("/path", handler)
+        const routeMatch = line.match(/app\.(\w+)\s*\(\s*["']([^"']+)["']/);
+        if (routeMatch) {
+            const currentMethod = routeMatch[1].toLowerCase();
+            const currentPath = routeMatch[2];
+            let currentHandler = "";
+            // Extract handler name - look for arrow function or identifier
+            const arrowFuncMatch = line.match(/=>\s*\{/);
+            if (arrowFuncMatch) {
+                currentHandler = "<anonymous>";
+            }
+            else {
+                const handlerMatch = line.match(/,\s*([^\s,)]+)/);
+                if (handlerMatch) {
+                    currentHandler = handlerMatch[1].trim();
+                }
+                else {
+                    currentHandler = "<anonymous>";
+                }
+            }
+            routes.push({
+                method: currentMethod.toUpperCase(),
+                path: currentPath,
+                handler: currentHandler,
+            });
+        }
+    }
+    return routes;
+}
+/**
+ * Format routes as a table
+ */
+function formatRoutes(routes) {
+    if (routes.length === 0) {
+        return "No routes found.";
+    }
+    const headers = ["Method", "Path", "Handler"];
+    const colWidths = [6, 20, 30];
+    const formatRow = (cells) => {
+        return cells.map((cell, i) => cell.padEnd(colWidths[i])).join(" | ");
+    };
+    const separator = colWidths.map(w => "-".repeat(w)).join("-+-");
+    let output = "";
+    output += formatRow(headers) + "\n";
+    output += separator + "\n";
+    for (const route of routes) {
+        output += formatRow([
+            route.method,
+            route.path,
+            route.handler,
+        ]) + "\n";
+    }
+    return output;
+}
+/**
+ * Get server.ts path from current directory
+ */
+function getServerPath(cwd = process.cwd()) {
+    const possiblePaths = [
+        path_1.default.join(cwd, "src", "server.ts"),
+        path_1.default.join(cwd, "server.ts"),
+    ];
+    for (const p of possiblePaths) {
+        if (fs_1.default.existsSync(p)) {
+            return p;
+        }
+    }
+    return possiblePaths[0];
+}
+/**
+ * List all routes in the current project
+ */
+function listRoutes(cwd = process.cwd()) {
+    const serverPath = getServerPath(cwd);
+    const routes = parseRoutes(serverPath);
+    console.log("\nDefined Routes:\n");
+    console.log(formatRoutes(routes));
+    if (routes.length === 0) {
+        console.log("\nNo routes found. Add routes to src/server.ts");
+    }
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@erwininteractive/mvc",
-  "version": "0.4.2",
+  "version": "0.6.1",
   "description": "A lightweight, full-featured MVC framework for Node.js with Express, Prisma, and EJS",
   "main": "dist/framework/index.js",
   "types": "dist/framework/index.d.ts",

package/templates/appScaffold/README.md

@@ -76,6 +76,8 @@ Create `.ejs` files in `src/views/`. EJS lets you use JavaScript in your HTML:
 <%- include('partials/header') %>
 ```
 
+**Note:** When using authentication, the `user` object is automatically available in all views when a user is logged in. No need to pass it manually!
+
 ### Adding Routes
 
 Edit `src/server.ts` to add routes:
@@ -201,6 +203,32 @@ Then run migrations again:
 npx prisma migrate dev --name add-post-fields
 ```
 
+## Full-Stack Flexibility
+
+### Island Pattern (EJS + React)
+
+Use EJS for layout while adding React components where needed:
+
+```html
+<div id="comment-section" data-post-id="<%= post.id %>"></div>
+<script type="module" src="/src/components/CommentSection.tsx"></script>
+```
+
+### API-Only Mode
+
+For pure API development, disable EJS:
+
+```typescript
+const { app } = await createMvcApp({
+  viewsPath: "src/views",
+  disableViewEngine: true,
+});
+
+app.get("/api/users", async (req, res) => {
+  res.json(users);  // Always JSON
+});
+```
+
 ### Step 5: Use in Your Code
 
 ```typescript
@@ -284,10 +312,22 @@ Link to them in your templates:
 
 | Command | Description |
 |---------|-------------|
-| `npx erwinmvc generate controller <Name>` | Create a CRUD controller |
-| `npx erwinmvc generate model <Name>` | Create a database model |
-
----
+| `npx @erwininteractive/mvc init <dir>` | Create a new app |
+| `npx erwinmvc generate resource <name>` | Generate model + controller + views |
+| `npx erwinmvc generate controller <name>` | Generate a CRUD controller |
+| `npx erwinmvc generate model <name>` | Generate a database model |
+| `npx erwinmvc webauthn` | Generate WebAuthn authentication (security keys) |
+| `npx erwinmvc list:routes` | Show all defined routes |
+
+### Init Options
+
+| Option | Description |
+|--------|-------------|
+| `--skip-install` | Skip running npm install |
+| `--with-database` | Include Prisma database setup |
+| `--with-ci` | Include GitHub Actions CI workflow |
+
+### Resource Options
 
 ## Learn More
 

package/templates/appScaffold/package.json

@@ -12,9 +12,11 @@
     "db:push": "prisma db push"
   },
   "dependencies": {
-    "@erwininteractive/mvc": "^1.0.0"
+    "@erwininteractive/mvc": "^0.4.0",
+    "cookie-parser": "^1.4.6"
   },
   "devDependencies": {
+    "@types/cookie-parser": "^1.4.7",
     "@types/express": "^5.0.0",
     "@types/node": "^22.7.5",
     "tsx": "^4.19.1",

package/templates/appScaffold/src/server.ts

@@ -1,4 +1,5 @@
 import { createMvcApp, startServer } from "@erwininteractive/mvc";
+import cookieParser from "cookie-parser";
 
 async function main() {
   const { app } = await createMvcApp({
@@ -6,8 +7,11 @@ async function main() {
     publicPath: "public",
   });
 
+  // Parse cookies (needed for JWT authentication)
+  app.use(cookieParser());
+
   // Root route - displays welcome page
-  app.get("/", (req, res) => {
+  app.get("/", (req: any, res: any) => {
     res.render("index", { title: "Welcome" });
   });