@idevconn/create-icore 0.3.0 → 0.4.0

package/templates/apps/templates/client-mui/vite.config.mts

@@ -2,9 +2,16 @@
 import fs from 'node:fs';
 import { defineConfig } from 'vite';
 import react from '@vitejs/plugin-react';
-import { TanStackRouterVite } from '@tanstack/router-plugin/vite';
+import { tanstackRouter } from '@tanstack/router-plugin/vite';
 import { nxViteTsPaths } from '@nx/vite/plugins/nx-tsconfig-paths.plugin';
 import { nxCopyAssetsPlugin } from '@nx/vite/plugins/nx-copy-assets.plugin';
+import {
+  commonDefines,
+  commonManualChunks,
+  commonTestConfig,
+  injectAppVersionPlugin,
+  noServerModulesPlugin,
+} from '@icore/vite-plugins';
 
 const rootPackageJsonPath = new URL('../../../package.json', import.meta.url);
 const rootPackageJson = JSON.parse(fs.readFileSync(rootPackageJsonPath, 'utf-8')) as {
@@ -14,11 +21,7 @@ const rootPackageJson = JSON.parse(fs.readFileSync(rootPackageJsonPath, 'utf-8')
 };
 
 function depVersion(name: string): string {
-  return (
-    rootPackageJson.dependencies?.[name] ??
-    rootPackageJson.devDependencies?.[name] ??
-    '?'
-  );
+  return rootPackageJson.dependencies?.[name] ?? rootPackageJson.devDependencies?.[name] ?? '?';
 }
 
 export default defineConfig(() => ({
@@ -33,22 +36,11 @@ export default defineConfig(() => ({
     host: 'localhost',
   },
   define: {
-    'import.meta.env.VITE_APP_VERSION': JSON.stringify(rootPackageJson.version),
-    // Dep versions injected at build time so routes don't need JSON imports
-    'import.meta.env.VITE_DEP_REACT': JSON.stringify(depVersion('react')),
+    ...commonDefines(rootPackageJson),
     'import.meta.env.VITE_DEP_MUI': JSON.stringify(depVersion('@mui/material')),
-    'import.meta.env.VITE_DEP_VITE': JSON.stringify(depVersion('vite')),
-    'import.meta.env.VITE_DEP_TANSTACK_ROUTER': JSON.stringify(
-      depVersion('@tanstack/react-router'),
-    ),
-    'import.meta.env.VITE_DEP_TANSTACK_QUERY': JSON.stringify(
-      depVersion('@tanstack/react-query'),
-    ),
-    'import.meta.env.VITE_DEP_ZUSTAND': JSON.stringify(depVersion('zustand')),
-    'import.meta.env.VITE_DEP_CASL': JSON.stringify(depVersion('@casl/ability')),
   },
   plugins: [
-    TanStackRouterVite({
+    tanstackRouter({
       target: 'react',
       autoCodeSplitting: true,
       routeFileIgnorePattern: '(__tests__|\\.test\\.(t|j)sx?$)',
@@ -56,12 +48,8 @@ export default defineConfig(() => ({
     react(),
     nxViteTsPaths(),
     nxCopyAssetsPlugin(['*.md']),
-    {
-      name: 'inject-app-version-meta',
-      transformIndexHtml(html: string) {
-        return html.replace('%APP_VERSION%', rootPackageJson.version);
-      },
-    },
+    noServerModulesPlugin(),
+    injectAppVersionPlugin(rootPackageJson),
   ],
   // Uncomment this if you are using workers.
   // worker: {
@@ -76,32 +64,12 @@ export default defineConfig(() => ({
     },
     rolldownOptions: {
       output: {
-        manualChunks: (id: string) => {
-          if (!id.includes('node_modules')) return;
-          if (id.includes('/react/') || id.includes('/react-dom/') || id.includes('scheduler'))
-            return 'vendor-react';
-          if (id.includes('@tanstack')) return 'vendor-tanstack';
-          if (id.includes('i18next') || id.includes('react-i18next')) return 'vendor-i18n';
-          if (id.includes('@casl')) return 'vendor-casl';
+        manualChunks: commonManualChunks((id) => {
           if (id.includes('@mui')) return 'vendor-mui';
           if (id.includes('@emotion')) return 'vendor-emotion';
-          if (id.includes('zustand')) return 'vendor-state';
-          if (id.includes('@idevconn')) return 'vendor-idevconn';
-          return 'vendor-core';
-        },
+        }),
       },
     },
   },
-  test: {
-    name: 'client-mui',
-    watch: false,
-    globals: true,
-    environment: 'jsdom',
-    include: ['{src,tests}/**/*.{test,spec}.{js,mjs,cjs,ts,mts,cts,jsx,tsx}'],
-    reporters: ['default'],
-    coverage: {
-      reportsDirectory: '../../../coverage/apps/templates/client-mui',
-      provider: 'v8' as const,
-    },
-  },
+  test: commonTestConfig('client-mui', '../../../coverage/apps/templates/client-mui'),
 }));

package/templates/apps/templates/client-shadcn/vite.config.mts

@@ -3,9 +3,16 @@ import fs from 'node:fs';
 import { defineConfig } from 'vite';
 import react from '@vitejs/plugin-react';
 import tailwindcss from '@tailwindcss/vite';
-import { TanStackRouterVite } from '@tanstack/router-plugin/vite';
+import { tanstackRouter } from '@tanstack/router-plugin/vite';
 import { nxViteTsPaths } from '@nx/vite/plugins/nx-tsconfig-paths.plugin';
 import { nxCopyAssetsPlugin } from '@nx/vite/plugins/nx-copy-assets.plugin';
+import {
+  commonDefines,
+  commonManualChunks,
+  commonTestConfig,
+  injectAppVersionPlugin,
+  noServerModulesPlugin,
+} from '@icore/vite-plugins';
 
 const rootPackageJsonPath = new URL('../../../package.json', import.meta.url);
 const rootPackageJson = JSON.parse(fs.readFileSync(rootPackageJsonPath, 'utf-8')) as {
@@ -15,11 +22,7 @@ const rootPackageJson = JSON.parse(fs.readFileSync(rootPackageJsonPath, 'utf-8')
 };
 
 function depVersion(name: string): string {
-  return (
-    rootPackageJson.dependencies?.[name] ??
-    rootPackageJson.devDependencies?.[name] ??
-    '?'
-  );
+  return rootPackageJson.dependencies?.[name] ?? rootPackageJson.devDependencies?.[name] ?? '?';
 }
 
 export default defineConfig(() => ({
@@ -34,22 +37,11 @@ export default defineConfig(() => ({
     host: 'localhost',
   },
   define: {
-    'import.meta.env.VITE_APP_VERSION': JSON.stringify(rootPackageJson.version),
-    // Dep versions injected at build time so routes don't need JSON imports
-    'import.meta.env.VITE_DEP_REACT': JSON.stringify(depVersion('react')),
-    'import.meta.env.VITE_DEP_VITE': JSON.stringify(depVersion('vite')),
+    ...commonDefines(rootPackageJson),
     'import.meta.env.VITE_DEP_TAILWINDCSS': JSON.stringify(depVersion('tailwindcss')),
-    'import.meta.env.VITE_DEP_TANSTACK_ROUTER': JSON.stringify(
-      depVersion('@tanstack/react-router'),
-    ),
-    'import.meta.env.VITE_DEP_TANSTACK_QUERY': JSON.stringify(
-      depVersion('@tanstack/react-query'),
-    ),
-    'import.meta.env.VITE_DEP_ZUSTAND': JSON.stringify(depVersion('zustand')),
-    'import.meta.env.VITE_DEP_CASL': JSON.stringify(depVersion('@casl/ability')),
   },
   plugins: [
-    TanStackRouterVite({
+    tanstackRouter({
       target: 'react',
       autoCodeSplitting: true,
       routeFileIgnorePattern: '(__tests__|\\.test\\.(t|j)sx?$)',
@@ -58,12 +50,8 @@ export default defineConfig(() => ({
     tailwindcss(),
     nxViteTsPaths(),
     nxCopyAssetsPlugin(['*.md']),
-    {
-      name: 'inject-app-version-meta',
-      transformIndexHtml(html: string) {
-        return html.replace('%APP_VERSION%', rootPackageJson.version);
-      },
-    },
+    noServerModulesPlugin(),
+    injectAppVersionPlugin(rootPackageJson),
   ],
   // Uncomment this if you are using workers.
   // worker: {
@@ -78,31 +66,11 @@ export default defineConfig(() => ({
     },
     rolldownOptions: {
       output: {
-        manualChunks: (id: string) => {
-          if (!id.includes('node_modules')) return;
-          if (id.includes('/react/') || id.includes('/react-dom/') || id.includes('scheduler'))
-            return 'vendor-react';
-          if (id.includes('@tanstack')) return 'vendor-tanstack';
-          if (id.includes('i18next') || id.includes('react-i18next')) return 'vendor-i18n';
-          if (id.includes('@casl')) return 'vendor-casl';
+        manualChunks: commonManualChunks((id) => {
           if (id.includes('lucide-react') || id.includes('@radix-ui')) return 'vendor-ui';
-          if (id.includes('zustand')) return 'vendor-state';
-          if (id.includes('@idevconn')) return 'vendor-idevconn';
-          return 'vendor-core';
-        },
+        }),
       },
     },
   },
-  test: {
-    name: 'client-shadcn',
-    watch: false,
-    globals: true,
-    environment: 'jsdom',
-    include: ['{src,tests}/**/*.{test,spec}.{js,mjs,cjs,ts,mts,cts,jsx,tsx}'],
-    reporters: ['default'],
-    coverage: {
-      reportsDirectory: '../../../coverage/apps/templates/client-shadcn',
-      provider: 'v8' as const,
-    },
-  },
+  test: commonTestConfig('client-shadcn', '../../../coverage/apps/templates/client-shadcn'),
 }));

package/templates/libs/shared/package.json

@@ -5,6 +5,16 @@
   "type": "commonjs",
   "main": "./src/index.js",
   "types": "./src/index.d.ts",
+  "exports": {
+    ".": {
+      "require": "./src/index.js",
+      "types": "./src/index.d.ts"
+    },
+    "./client": {
+      "require": "./src/client.js",
+      "types": "./src/client.d.ts"
+    }
+  },
   "dependencies": {
     "@casl/ability": "^7.0.0",
     "@nestjs/microservices": "^11.0.0",

package/templates/libs/shared/src/__tests__/cross-boundary.unit.test.ts

@@ -0,0 +1,121 @@
+/**
+ * Cross-boundary dependency guard.
+ *
+ * Rule 1 — CLIENT boundary: no file reachable from @icore/shared/client
+ *          may import @nestjs/* (server-only).
+ *
+ * Rule 2 — SERVER boundary: no file under apps/microservices/** or
+ *          libs/*-client/** (NestJS modules) may import react or other
+ *          browser-only packages.
+ *
+ * These are static source-level checks — they run fast in Vitest without
+ * needing a full build.
+ */
+import { readdir, readFile, stat } from 'node:fs/promises';
+import { join, resolve } from 'node:path';
+import { describe, expect, it } from 'vitest';
+
+const ROOT = resolve(__dirname, '../../../../..');
+
+// ── helpers ────────────────────────────────────────────────────────────────
+
+async function walkTs(dir: string): Promise<string[]> {
+  const files: string[] = [];
+  let entries: Awaited<ReturnType<typeof readdir>>;
+  try {
+    entries = await readdir(dir, { withFileTypes: true });
+  } catch {
+    return files;
+  }
+  for (const e of entries) {
+    const full = join(dir, e.name);
+    if (e.isDirectory() && e.name !== 'node_modules' && e.name !== '__tests__') {
+      files.push(...(await walkTs(full)));
+    } else if (e.isFile() && /\.(ts|tsx)$/.test(e.name) && !e.name.endsWith('.d.ts')) {
+      files.push(full);
+    }
+  }
+  return files;
+}
+
+async function importsIn(file: string): Promise<string[]> {
+  const src = await readFile(file, 'utf8');
+  const matches = [...src.matchAll(/from\s+['"]([^'"]+)['"]/g)];
+  return matches.map((m) => m[1] ?? '');
+}
+
+// ── Rule 1: client boundary ────────────────────────────────────────────────
+
+describe('client boundary — no @nestjs/* in browser-safe exports', () => {
+  const CLIENT_ROOTS = [
+    join(ROOT, 'libs/shared/src/client.ts'),
+    join(ROOT, 'libs/shared/src/abilities'),
+    join(ROOT, 'libs/shared/src/types'),
+    join(ROOT, 'libs/template-shared/src'),
+  ];
+
+  it('no @nestjs/* import found in client-side source files', async () => {
+    const violations: string[] = [];
+
+    for (const root of CLIENT_ROOTS) {
+      const s = await stat(root).catch(() => null);
+      if (!s) continue;
+      const files = s.isFile() ? [root] : await walkTs(root);
+
+      for (const file of files) {
+        const imports = await importsIn(file);
+        for (const imp of imports) {
+          if (/^(@nestjs\/|firebase-admin|bullmq|ioredis)/.test(imp)) {
+            violations.push(`${file.replace(ROOT + '/', '')}  →  ${imp}`);
+          }
+        }
+      }
+    }
+
+    expect(
+      violations,
+      `Server-only imports found in client code:\n${violations.join('\n')}`,
+    ).toEqual([]);
+  });
+});
+
+// ── Rule 2: server boundary ────────────────────────────────────────────────
+
+describe('server boundary — no browser-only packages in NestJS modules', () => {
+  const SERVER_ROOTS = [
+    join(ROOT, 'apps/microservices'),
+    join(ROOT, 'libs/auth-client/src'),
+    join(ROOT, 'libs/upload-client/src'),
+    join(ROOT, 'libs/notes-client/src'),
+    join(ROOT, 'libs/payment-client/src'),
+    join(ROOT, 'libs/jobs-client/src'),
+  ];
+
+  // Regex matches the start of a bare import specifier
+  const BROWSER_ONLY =
+    /^(react(-dom|-router)?|@tanstack\/react-|antd|@mui\/|@radix-ui\/|lucide-react|sonner|@ant-design\/)/;
+
+  it('no browser-only import found in server-side source files', async () => {
+    const violations: string[] = [];
+
+    for (const root of SERVER_ROOTS) {
+      const s = await stat(root).catch(() => null);
+      if (!s) continue;
+      const files = s.isFile() ? [root] : await walkTs(root);
+
+      for (const file of files) {
+        const imports = await importsIn(file);
+        for (const imp of imports) {
+          if (BROWSER_ONLY.test(imp)) {
+            violations.push(`${file.replace(ROOT + '/', '')}  →  ${imp}`);
+          }
+        }
+      }
+    }
+
+    expect(
+      violations,
+      `Browser-only imports found in server code:\n${violations.join('\n')}`,
+    ).toEqual([]);
+  });
+});

package/templates/libs/shared/src/client.ts

@@ -0,0 +1,5 @@
+// Browser-safe subset of @icore/shared.
+// Import from '@icore/shared/client' in client-side code to avoid pulling
+// in NestJS / Node.js-only modules (transport, strategies, contracts).
+export * from './abilities';
+export * from './types';

package/templates/libs/shared/src/strategies/fakes/fake-auth.ts

@@ -1,4 +1,3 @@
-import { randomUUID } from 'node:crypto';
 import type {
   AuthSession,
   AuthStrategy,
@@ -33,7 +32,7 @@ export class FakeAuthStrategy implements AuthStrategy {
 
   async signUp(email: string, password: string): Promise<AuthSession> {
     if (this.users.has(email)) throw new Error('user_exists');
-    const user: StoredUser = { id: randomUUID(), email, password };
+    const user: StoredUser = { id: globalThis.crypto.randomUUID(), email, password };
     this.users.set(email, user);
     return this.issueSession(user);
   }
@@ -72,10 +71,10 @@ export class FakeAuthStrategy implements AuthStrategy {
   async sendMagicLink(req: MagicLinkRequest): Promise<void> {
     let user = this.users.get(req.email);
     if (!user) {
-      user = { id: randomUUID(), email: req.email, password: '' };
+      user = { id: globalThis.crypto.randomUUID(), email: req.email, password: '' };
       this.users.set(req.email, user);
     }
-    const token = randomUUID();
+    const token = globalThis.crypto.randomUUID();
     this.magicLinkTokens.set(token, user.id);
     this.magicLinkByEmail.set(req.email, token);
   }
@@ -95,7 +94,7 @@ export class FakeAuthStrategy implements AuthStrategy {
   }
 
   async startOAuth(provider: OAuthProvider, callbackUrl: string): Promise<OAuthStartResult> {
-    const state = randomUUID();
+    const state = globalThis.crypto.randomUUID();
     this.lastOAuthState = state;
     const url = new URL(`https://fake-${provider}.example.com/authorize`);
     url.searchParams.set('redirect_uri', callbackUrl);
@@ -111,7 +110,7 @@ export class FakeAuthStrategy implements AuthStrategy {
     this.oauthCodes.delete(code);
     let user = this.users.get(pending.email);
     if (!user) {
-      user = { id: randomUUID(), email: pending.email, password: '' };
+      user = { id: globalThis.crypto.randomUUID(), email: pending.email, password: '' };
       this.users.set(pending.email, user);
     }
     return this.issueSession(user);
@@ -123,7 +122,7 @@ export class FakeAuthStrategy implements AuthStrategy {
   getLastOAuthChallenge(provider: OAuthProvider, email: string): { code: string; state: string } {
     if (!this.lastOAuthState) throw new Error('no startOAuth called yet');
     const state = this.lastOAuthState;
-    const code = randomUUID();
+    const code = globalThis.crypto.randomUUID();
     this.oauthStates.set(state, { provider, email });
     this.oauthCodes.set(code, state);
     return { code, state };
@@ -137,8 +136,8 @@ export class FakeAuthStrategy implements AuthStrategy {
   }
 
   private issueSession(user: StoredUser): AuthSession {
-    const accessToken = randomUUID();
-    const refreshToken = randomUUID();
+    const accessToken = globalThis.crypto.randomUUID();
+    const refreshToken = globalThis.crypto.randomUUID();
     this.tokensToUid.set(accessToken, user.id);
     this.refreshToUid.set(refreshToken, user.id);
     return {

package/templates/libs/shared/src/strategies/fakes/fake-storage.ts

@@ -1,4 +1,3 @@
-import { randomUUID } from 'node:crypto';
 import type { FileInput, StorageRef, StorageStrategy } from '../storage';
 
 interface StoredFile {
@@ -13,7 +12,7 @@ export class FakeStorageStrategy implements StorageStrategy {
   private readonly files = new Map<string, StoredFile>();
 
   async upload(userId: string, file: FileInput): Promise<StorageRef> {
-    const path = `${userId}/${randomUUID()}-${file.filename}`;
+    const path = `${userId}/${globalThis.crypto.randomUUID()}-${file.filename}`;
     const ref: StorageRef = { bucket: this.bucket, path };
     this.files.set(this.key(ref), {
       ownerId: userId,

package/templates/libs/template-shared/src/lib/abilities/ability-provider.tsx

@@ -1,7 +1,7 @@
 import { AbilityProvider as CaslAbilityProvider, Can } from '@casl/react';
 import type { ReactNode } from 'react';
 import { useMemo } from 'react';
-import { defineAbilitiesFor, type AppAbility } from '@icore/shared';
+import { defineAbilitiesFor, type AppAbility } from '@icore/shared/client';
 import { useAuthStore } from '../stores/auth.store.js';
 
 export { Can };

package/templates/libs/vite-plugins/README.md

@@ -0,0 +1,7 @@
+# vite-plugins
+
+This library was generated with [Nx](https://nx.dev).
+
+## Building
+
+Run `nx build vite-plugins` to build the library.

package/templates/libs/vite-plugins/eslint.config.mjs

@@ -0,0 +1,19 @@
+import baseConfig from '../../eslint.config.mjs';
+
+export default [
+  ...baseConfig,
+  {
+    files: ['**/*.json'],
+    rules: {
+      '@nx/dependency-checks': [
+        'error',
+        {
+          ignoredFiles: ['{projectRoot}/eslint.config.{js,cjs,mjs,ts,cts,mts}'],
+        },
+      ],
+    },
+    languageOptions: {
+      parser: await import('jsonc-eslint-parser'),
+    },
+  },
+];

package/templates/libs/vite-plugins/package.json

@@ -0,0 +1,18 @@
+{
+  "name": "@icore/vite-plugins",
+  "version": "0.0.1",
+  "private": true,
+  "type": "module",
+  "main": "./src/index.mjs",
+  "types": "./src/index.d.mts",
+  "peerDependencies": {
+    "tslib": "^2.3.0",
+    "vite": "^8.0.0",
+    "vitest": "~4.1.0"
+  },
+  "peerDependenciesMeta": {
+    "vite": {
+      "optional": false
+    }
+  }
+}

package/templates/libs/vite-plugins/project.json

@@ -0,0 +1,19 @@
+{
+  "name": "vite-plugins",
+  "$schema": "../../node_modules/nx/schemas/project-schema.json",
+  "sourceRoot": "libs/vite-plugins/src",
+  "projectType": "library",
+  "tags": [],
+  "targets": {
+    "build": {
+      "executor": "@nx/js:tsc",
+      "outputs": ["{options.outputPath}"],
+      "options": {
+        "outputPath": "dist/libs/vite-plugins",
+        "main": "libs/vite-plugins/src/index.ts",
+        "tsConfig": "libs/vite-plugins/tsconfig.lib.json",
+        "assets": ["libs/vite-plugins/*.md"]
+      }
+    }
+  }
+}

package/templates/libs/vite-plugins/src/index.d.mts

@@ -0,0 +1,21 @@
+import type { Plugin } from 'vite';
+import type { UserConfig } from 'vitest/config';
+
+export declare function noServerModulesPlugin(): Plugin;
+
+export declare function injectAppVersionPlugin(pkg: { version: string }): Plugin;
+
+export declare function commonDefines(pkg: {
+  version: string;
+  dependencies?: Record<string, string>;
+  devDependencies?: Record<string, string>;
+}): Record<string, string>;
+
+export declare function commonManualChunks(
+  uiChunkFn?: (id: string) => string | undefined,
+): (id: string) => string | undefined;
+
+export declare function commonTestConfig(
+  name: string,
+  coverageDir: string,
+): NonNullable<UserConfig['test']>;

package/templates/libs/vite-plugins/src/index.mjs

@@ -0,0 +1,106 @@
+// @icore/vite-plugins — shared Vite plugin helpers for iCore client templates.
+// Plain ESM (no TypeScript syntax) so vite.config.mts can import it directly.
+
+const SERVER_ONLY_RE = /^(@nestjs\/|firebase-admin$|bullmq$|ioredis$)/;
+
+/**
+ * Fails the Vite build if server-only modules are imported in client code.
+ * @returns {import('vite').Plugin}
+ */
+export function noServerModulesPlugin() {
+  return {
+    name: 'no-server-modules',
+    enforce: 'pre',
+    resolveId(id, importer) {
+      if (SERVER_ONLY_RE.test(id)) {
+        throw new Error(
+          `Server-only module "${id}" imported in client code` +
+            (importer ? ` (from ${importer})` : '') +
+            `. Use @icore/shared/client instead of @icore/shared for browser-safe imports.`,
+        );
+      }
+    },
+  };
+}
+
+/**
+ * Replaces %APP_VERSION% in index.html with the root package.json version.
+ * @param {{ version: string }} pkg
+ * @returns {import('vite').Plugin}
+ */
+export function injectAppVersionPlugin(pkg) {
+  return {
+    name: 'inject-app-version-meta',
+    transformIndexHtml(html) {
+      return html.replace('%APP_VERSION%', pkg.version);
+    },
+  };
+}
+
+/**
+ * Returns Vite `define` entries shared by all iCore client templates.
+ * Each template spreads this and adds its own UI-lib-specific entry.
+ *
+ * @param {{ version: string, dependencies?: Record<string,string>, devDependencies?: Record<string,string> }} pkg
+ * @returns {Record<string, string>}
+ */
+export function commonDefines(pkg) {
+  const dep = (name) =>
+    JSON.stringify(pkg.dependencies?.[name] ?? pkg.devDependencies?.[name] ?? '?');
+  return {
+    'import.meta.env.VITE_APP_VERSION': JSON.stringify(pkg.version),
+    'import.meta.env.VITE_DEP_REACT': dep('react'),
+    'import.meta.env.VITE_DEP_VITE': dep('vite'),
+    'import.meta.env.VITE_DEP_TANSTACK_ROUTER': dep('@tanstack/react-router'),
+    'import.meta.env.VITE_DEP_TANSTACK_QUERY': dep('@tanstack/react-query'),
+    'import.meta.env.VITE_DEP_ZUSTAND': dep('zustand'),
+    'import.meta.env.VITE_DEP_CASL': dep('@casl/ability'),
+  };
+}
+
+/**
+ * Returns a manualChunks function with the common vendor splits pre-applied.
+ * Pass a `uiChunkFn` to add UI-library-specific splits before the fallback.
+ *
+ * @param {(id: string) => string | undefined} [uiChunkFn]
+ * @returns {(id: string) => string | undefined}
+ */
+export function commonManualChunks(uiChunkFn) {
+  return (id) => {
+    if (!id.includes('node_modules')) return undefined;
+    if (id.includes('/react/') || id.includes('/react-dom/') || id.includes('scheduler'))
+      return 'vendor-react';
+    if (id.includes('@tanstack')) return 'vendor-tanstack';
+    if (id.includes('i18next') || id.includes('react-i18next')) return 'vendor-i18n';
+    if (id.includes('@casl')) return 'vendor-casl';
+    if (uiChunkFn) {
+      const chunk = uiChunkFn(id);
+      if (chunk) return chunk;
+    }
+    if (id.includes('zustand')) return 'vendor-state';
+    if (id.includes('@idevconn')) return 'vendor-idevconn';
+    return 'vendor-core';
+  };
+}
+
+/**
+ * Returns a vitest `test` configuration block shared by all iCore client templates.
+ *
+ * @param {string} name  - project name (e.g. 'client-shadcn')
+ * @param {string} coverageDir - relative path to coverage output dir
+ * @returns {import('vitest/config').UserConfig['test']}
+ */
+export function commonTestConfig(name, coverageDir) {
+  return {
+    name,
+    watch: false,
+    globals: true,
+    environment: 'jsdom',
+    include: ['{src,tests}/**/*.{test,spec}.{js,mjs,cjs,ts,mts,cts,jsx,tsx}'],
+    reporters: ['default'],
+    coverage: {
+      reportsDirectory: coverageDir,
+      provider: 'v8',
+    },
+  };
+}

package/templates/libs/vite-plugins/tsconfig.json

@@ -0,0 +1,20 @@
+{
+  "extends": "../../tsconfig.base.json",
+  "compilerOptions": {
+    "module": "commonjs",
+    "forceConsistentCasingInFileNames": true,
+    "strict": true,
+    "importHelpers": true,
+    "noImplicitOverride": true,
+    "noImplicitReturns": true,
+    "noFallthroughCasesInSwitch": true,
+    "noPropertyAccessFromIndexSignature": true
+  },
+  "files": [],
+  "include": [],
+  "references": [
+    {
+      "path": "./tsconfig.lib.json"
+    }
+  ]
+}

package/templates/libs/vite-plugins/tsconfig.lib.json

@@ -0,0 +1,9 @@
+{
+  "extends": "./tsconfig.json",
+  "compilerOptions": {
+    "outDir": "../../dist/out-tsc",
+    "declaration": true,
+    "types": ["node"]
+  },
+  "include": ["src/**/*.ts"]
+}