@idevconn/create-icore 0.4.0 → 0.5.0

package/templates/.yarnrc.yml

@@ -1,7 +1,12 @@
+approvedGitRepositories:
+  - "**"
+
 enableGlobalCache: true
 
 enableScripts: true
 
 nodeLinker: node-modules
 
-yarnPath: .yarn/releases/yarn-4.5.0.cjs
+npmMinimalAgeGate: 0
+
+yarnPath: .yarn/releases/yarn-4.15.0.cjs

package/templates/apps/api/src/app/app.module.ts

@@ -1,3 +1,4 @@
+import { join } from 'node:path';
 import { Module } from '@nestjs/common';
 import { ConfigModule } from '@nestjs/config';
 import { ThrottlerModule, seconds } from '@nestjs/throttler';
@@ -11,7 +12,10 @@ import { AdminModule } from './admin/admin.module';
 
 @Module({
   imports: [
-    ConfigModule.forRoot({ isGlobal: true }),
+    ConfigModule.forRoot({
+      isGlobal: true,
+      envFilePath: [join(process.cwd(), 'apps/api/.env'), join(process.cwd(), '.env')],
+    }),
     ThrottlerModule.forRoot([{ name: 'auth-burst', ttl: seconds(60), limit: 10 }]),
     AuthModule,
     AbilitiesModule,

package/templates/apps/api/src/main.ts

@@ -3,9 +3,17 @@ import { NestFactory } from '@nestjs/core';
 import { NestExpressApplication } from '@nestjs/platform-express';
 import { DocumentBuilder, SwaggerModule } from '@nestjs/swagger';
 import cookieParser from 'cookie-parser';
+import { formatGatewayBanner } from '@icore/shared';
 import { AppModule } from './app/app.module';
 import pkg from '@icore/package.json';
 
+const GATEWAY_SERVICES = [
+  { name: 'auth', prefix: 'AUTH' },
+  { name: 'upload', prefix: 'UPLOAD' },
+  { name: 'notes', prefix: 'NOTES' },
+  { name: 'payment', prefix: 'PAYMENT' },
+];
+
 const DEFAULT_PORT = 3001;
 
 async function bootstrap() {
@@ -28,12 +36,10 @@ async function bootstrap() {
 
 bootstrap()
   .then(() => {
-    const logger = new Logger('API-Bootstrap');
-    logger.log(
-      `API Bootstrap completed successfully: ${process.env.API_ORIGIN ?? 'http://localhost'}:${process.env.API_PORT ?? DEFAULT_PORT}/api`,
-    );
-    logger.log(
-      `Swagger UI: ${process.env.API_ORIGIN ?? 'http://localhost'}:${process.env.API_PORT ?? DEFAULT_PORT}/api/docs`,
+    const origin = process.env.API_ORIGIN ?? 'http://localhost';
+    const port = Number(process.env.API_PORT ?? DEFAULT_PORT);
+    new Logger('API-Bootstrap').log(
+      formatGatewayBanner({ port, origin, services: GATEWAY_SERVICES }),
     );
   })
   .catch((err) => {

package/templates/apps/microservices/auth/project.json

@@ -50,7 +50,8 @@
       "dependsOn": ["build"],
       "options": {
         "buildTarget": "auth:build",
-        "runBuildTargetDependencies": false
+        "runBuildTargetDependencies": false,
+        "port": 9230
       },
       "configurations": {
         "development": {

package/templates/apps/microservices/auth/src/app/app.module.ts

@@ -5,15 +5,26 @@ import { createClient } from '@supabase/supabase-js';
 import * as admin from 'firebase-admin';
 import { SupabaseAuthStrategy } from '@icore/auth-supabase';
 import { FirebaseAuthStrategy, HttpIdentityToolkitClient } from '@icore/auth-firebase';
-import { FakeAuthStrategy } from '@icore/shared';
+import { FakeAuthStrategy, missingEnv, formatEnvBanner } from '@icore/shared';
 import type { AuthStrategy } from '@icore/shared';
 import { Logger } from '@nestjs/common';
 import { AuthController } from './auth.controller';
 
+const ENV_PATH = 'apps/microservices/auth/.env';
+
+// Env vars each provider needs (besides AUTH_PROVIDER itself).
+const REQUIRED_ENV: Record<string, string[]> = {
+  supabase: ['SUPABASE_URL', 'SUPABASE_SERVICE_ROLE_KEY'],
+  firebase: [
+    'FB_ADMIN_PROJECT_ID',
+    'FB_ADMIN_CLIENT_EMAIL',
+    'FB_ADMIN_PRIVATE_KEY',
+    'FIREBASE_WEB_API_KEY',
+  ],
+};
+
 function requireEnv(cfg: ConfigService, key: string): string {
-  const val = cfg.getOrThrow<string>(key);
-  if (!val) throw new Error(`${key} is not set — check apps/microservices/auth/.env`);
-  return val;
+  return cfg.getOrThrow<string>(key);
 }
 
 function makeFirebaseStrategy(cfg: ConfigService): AuthStrategy {
@@ -49,28 +60,41 @@ function makeFirebaseStrategy(cfg: ConfigService): AuthStrategy {
     {
       provide: 'AuthStrategy',
       useFactory: (cfg: ConfigService): AuthStrategy => {
+        const logger = new Logger('AuthStrategy');
+        const provider = cfg.get<string>('AUTH_PROVIDER')?.trim();
+        const keys = provider ? REQUIRED_ENV[provider] : undefined;
+        const missing = keys ? missingEnv((k) => cfg.get<string>(k), keys) : [];
+
+        // Prod: fail fast — never silently run a fake auth strategy.
+        // Dev: warn with a boxed banner + fall back to the in-memory fake.
+        const fallback = (reason?: string): AuthStrategy => {
+          const banner = formatEnvBanner({
+            service: 'auth MS',
+            provider,
+            missing,
+            envPath: ENV_PATH,
+            reason,
+          });
+          if (process.env.NODE_ENV === 'production') throw new Error(banner);
+          logger.warn(banner);
+          return new FakeAuthStrategy();
+        };
+
+        if (!keys || missing.length > 0) return fallback();
+
         try {
-          const provider = requireEnv(cfg, 'AUTH_PROVIDER');
-          switch (provider) {
-            case 'supabase': {
-              const client = createClient(
-                requireEnv(cfg, 'SUPABASE_URL'),
-                requireEnv(cfg, 'SUPABASE_SERVICE_ROLE_KEY'),
-                { auth: { autoRefreshToken: false, persistSession: false } },
-              );
-              return new SupabaseAuthStrategy({ client });
-            }
-            case 'firebase':
-              return makeFirebaseStrategy(cfg);
-            default:
-              throw new Error(`Unsupported AUTH_PROVIDER: ${provider}`);
+          if (provider === 'supabase') {
+            const client = createClient(
+              requireEnv(cfg, 'SUPABASE_URL'),
+              requireEnv(cfg, 'SUPABASE_SERVICE_ROLE_KEY'),
+              { auth: { autoRefreshToken: false, persistSession: false } },
+            );
+            return new SupabaseAuthStrategy({ client });
           }
+          return makeFirebaseStrategy(cfg);
         } catch (err) {
-          new Logger('AuthStrategy').warn(
-            `Not configured: ${err instanceof Error ? err.message : String(err)}. ` +
-              `Requests will fail until apps/microservices/auth/.env is set.`,
-          );
-          return new FakeAuthStrategy();
+          // Vars present but invalid (e.g. placeholder URL the SDK rejects).
+          return fallback(err instanceof Error ? err.message : String(err));
         }
       },
       inject: [ConfigService],

package/templates/apps/microservices/jobs/project.json

@@ -50,7 +50,8 @@
       "dependsOn": ["build"],
       "options": {
         "buildTarget": "jobs:build",
-        "runBuildTargetDependencies": false
+        "runBuildTargetDependencies": false,
+        "port": 9234
       },
       "configurations": {
         "development": {

package/templates/apps/microservices/notes/project.json

@@ -50,7 +50,8 @@
       "dependsOn": ["build"],
       "options": {
         "buildTarget": "notes:build",
-        "runBuildTargetDependencies": false
+        "runBuildTargetDependencies": false,
+        "port": 9232
       },
       "configurations": {
         "development": {

package/templates/apps/microservices/notes/src/app/app.module.ts

@@ -5,15 +5,22 @@ import { createClient } from '@supabase/supabase-js';
 import * as admin from 'firebase-admin';
 import { SupabaseDBStrategy } from '@icore/db-supabase';
 import { FirestoreDBStrategy } from '@icore/db-firestore';
-import { FakeDBStrategy } from '@icore/shared';
+import { FakeDBStrategy, missingEnv, formatEnvBanner } from '@icore/shared';
 import type { DBStrategy } from '@icore/shared';
 import { Logger } from '@nestjs/common';
 import { NotesController } from './notes.controller';
 
+const ENV_PATH = 'apps/microservices/notes/.env';
+
+// DB_PROVIDER accepts supabase | firestore | firebase (latter two are Firestore).
+const REQUIRED_ENV: Record<string, string[]> = {
+  supabase: ['SUPABASE_URL', 'SUPABASE_SERVICE_ROLE_KEY'],
+  firestore: ['FB_ADMIN_PROJECT_ID', 'FB_ADMIN_CLIENT_EMAIL', 'FB_ADMIN_PRIVATE_KEY'],
+  firebase: ['FB_ADMIN_PROJECT_ID', 'FB_ADMIN_CLIENT_EMAIL', 'FB_ADMIN_PRIVATE_KEY'],
+};
+
 function requireEnv(cfg: ConfigService, key: string): string {
-  const val = cfg.getOrThrow<string>(key);
-  if (!val) throw new Error(`${key} is not set — check apps/microservices/notes/.env`);
-  return val;
+  return cfg.getOrThrow<string>(key);
 }
 
 @Module({
@@ -31,8 +38,27 @@ function requireEnv(cfg: ConfigService, key: string): string {
     {
       provide: 'DBStrategy',
       useFactory: (cfg: ConfigService): DBStrategy => {
+        const logger = new Logger('DBStrategy');
+        const provider = cfg.get<string>('DB_PROVIDER')?.trim();
+        const keys = provider ? REQUIRED_ENV[provider] : undefined;
+        const missing = keys ? missingEnv((k) => cfg.get<string>(k), keys) : [];
+
+        const fallback = (reason?: string): DBStrategy => {
+          const banner = formatEnvBanner({
+            service: 'notes MS',
+            provider,
+            missing,
+            envPath: ENV_PATH,
+            reason,
+          });
+          if (process.env.NODE_ENV === 'production') throw new Error(banner);
+          logger.warn(banner);
+          return new FakeDBStrategy();
+        };
+
+        if (!keys || missing.length > 0) return fallback();
+
         try {
-          const provider = requireEnv(cfg, 'DB_PROVIDER');
           if (provider === 'supabase') {
             const client = createClient(
               requireEnv(cfg, 'SUPABASE_URL'),
@@ -41,29 +67,22 @@ function requireEnv(cfg: ConfigService, key: string): string {
             );
             return new SupabaseDBStrategy({ client });
           }
-          if (provider === 'firestore' || provider === 'firebase') {
-            if (admin.apps.length === 0) {
-              admin.initializeApp({
-                credential: admin.credential.cert({
-                  projectId: requireEnv(cfg, 'FB_ADMIN_PROJECT_ID'),
-                  clientEmail: requireEnv(cfg, 'FB_ADMIN_CLIENT_EMAIL'),
-                  privateKey: requireEnv(cfg, 'FB_ADMIN_PRIVATE_KEY').replace(/\\n/g, '\n'),
-                }),
-              });
-            }
-            return new FirestoreDBStrategy({
-              db: admin.firestore() as unknown as ConstructorParameters<
-                typeof FirestoreDBStrategy
-              >[0]['db'],
+          if (admin.apps.length === 0) {
+            admin.initializeApp({
+              credential: admin.credential.cert({
+                projectId: requireEnv(cfg, 'FB_ADMIN_PROJECT_ID'),
+                clientEmail: requireEnv(cfg, 'FB_ADMIN_CLIENT_EMAIL'),
+                privateKey: requireEnv(cfg, 'FB_ADMIN_PRIVATE_KEY').replace(/\\n/g, '\n'),
+              }),
             });
           }
-          throw new Error(`Unsupported DB_PROVIDER: ${provider}`);
+          return new FirestoreDBStrategy({
+            db: admin.firestore() as unknown as ConstructorParameters<
+              typeof FirestoreDBStrategy
+            >[0]['db'],
+          });
         } catch (err) {
-          new Logger('DBStrategy').warn(
-            `Not configured: ${err instanceof Error ? err.message : String(err)}. ` +
-              `Requests will fail until apps/microservices/notes/.env is set.`,
-          );
-          return new FakeDBStrategy();
+          return fallback(err instanceof Error ? err.message : String(err));
         }
       },
       inject: [ConfigService],

package/templates/apps/microservices/payment/project.json

@@ -50,7 +50,8 @@
       "dependsOn": ["build"],
       "options": {
         "buildTarget": "payment:build",
-        "runBuildTargetDependencies": false
+        "runBuildTargetDependencies": false,
+        "port": 9233
       },
       "configurations": {
         "development": {

package/templates/apps/microservices/payment/src/app/app.module.ts

@@ -1,9 +1,16 @@
 import { join } from 'node:path';
-import { Module } from '@nestjs/common';
+import { Module, Logger } from '@nestjs/common';
 import { ConfigModule, ConfigService } from '@nestjs/config';
 import { PaymentRegistry, PaypalStrategy, createPayment } from '@idevconn/payment';
+import { missingEnv, formatEnvBanner } from '@icore/shared';
 import { PaymentController } from './payment.controller';
 
+const ENV_PATH = 'apps/microservices/payment/.env';
+
+const REQUIRED_ENV: Record<string, string[]> = {
+  paypal: ['PAYPAL_CLIENT_ID', 'PAYPAL_CLIENT_SECRET'],
+};
+
 @Module({
   imports: [
     ConfigModule.forRoot({
@@ -19,19 +26,35 @@ import { PaymentController } from './payment.controller';
     {
       provide: PaymentRegistry,
       useFactory: (cfg: ConfigService) => {
-        const provider = cfg.get<string>('PAYMENT_PROVIDER') ?? 'paypal';
-        if (provider === 'paypal') {
-          return createPayment({
-            strategies: {
-              paypal: new PaypalStrategy({
-                clientId: cfg.getOrThrow<string>('PAYPAL_CLIENT_ID'),
-                secret: cfg.getOrThrow<string>('PAYPAL_CLIENT_SECRET'),
-                environment: cfg.get<'sandbox' | 'live'>('PAYPAL_ENVIRONMENT') ?? 'sandbox',
-              }),
-            },
+        const logger = new Logger('PaymentRegistry');
+        const provider = (cfg.get<string>('PAYMENT_PROVIDER') ?? 'paypal').trim();
+        const keys = REQUIRED_ENV[provider];
+        if (!keys) throw new Error(`Unsupported PAYMENT_PROVIDER: ${provider}`);
+
+        const missing = missingEnv((k) => cfg.get<string>(k), keys);
+        if (missing.length > 0) {
+          const banner = formatEnvBanner({
+            service: 'payment MS',
+            provider,
+            missing,
+            envPath: ENV_PATH,
+            headline: `⚠  payment MS — ${provider} credentials missing (payments will fail)`,
           });
+          // Prod: fail fast. Dev: warn — PayPal is lazy, so the MS still boots
+          // and only payment calls fail until creds are set.
+          if (process.env.NODE_ENV === 'production') throw new Error(banner);
+          logger.warn(banner);
         }
-        throw new Error(`Unsupported PAYMENT_PROVIDER: ${provider}`);
+
+        return createPayment({
+          strategies: {
+            paypal: new PaypalStrategy({
+              clientId: cfg.get<string>('PAYPAL_CLIENT_ID') ?? '',
+              secret: cfg.get<string>('PAYPAL_CLIENT_SECRET') ?? '',
+              environment: cfg.get<'sandbox' | 'live'>('PAYPAL_ENVIRONMENT') ?? 'sandbox',
+            }),
+          },
+        });
       },
       inject: [ConfigService],
     },

package/templates/apps/microservices/upload/project.json

@@ -50,7 +50,8 @@
       "dependsOn": ["build"],
       "options": {
         "buildTarget": "upload:build",
-        "runBuildTargetDependencies": false
+        "runBuildTargetDependencies": false,
+        "port": 9231
       },
       "configurations": {
         "development": {

package/templates/apps/microservices/upload/src/app/app.module.ts

@@ -7,15 +7,26 @@ import { v2 as cloudinary } from 'cloudinary';
 import { SupabaseStorageStrategy } from '@icore/storage-supabase';
 import { FirebaseStorageStrategy } from '@icore/storage-firebase';
 import { CloudinaryStorageStrategy, type CloudinaryApiLike } from '@icore/storage-cloudinary';
-import { FakeStorageStrategy } from '@icore/shared';
+import { FakeStorageStrategy, missingEnv, formatEnvBanner } from '@icore/shared';
 import type { StorageStrategy } from '@icore/shared';
 import { Logger } from '@nestjs/common';
 import { StorageController } from './storage.controller';
 
+const ENV_PATH = 'apps/microservices/upload/.env';
+
+const REQUIRED_ENV: Record<string, string[]> = {
+  supabase: ['SUPABASE_URL', 'SUPABASE_SERVICE_ROLE_KEY', 'SUPABASE_STORAGE_BUCKET'],
+  firebase: [
+    'FIREBASE_STORAGE_BUCKET',
+    'FB_ADMIN_PROJECT_ID',
+    'FB_ADMIN_CLIENT_EMAIL',
+    'FB_ADMIN_PRIVATE_KEY',
+  ],
+  cloudinary: ['CLOUDINARY_CLOUD_NAME', 'CLOUDINARY_API_KEY', 'CLOUDINARY_API_SECRET'],
+};
+
 function requireEnv(cfg: ConfigService, key: string): string {
-  const val = cfg.getOrThrow<string>(key);
-  if (!val) throw new Error(`${key} is not set — check apps/microservices/upload/.env`);
-  return val;
+  return cfg.getOrThrow<string>(key);
 }
 
 function makeFirebaseStorage(cfg: ConfigService): StorageStrategy {
@@ -97,33 +108,42 @@ function makeCloudinaryStorage(cfg: ConfigService): StorageStrategy {
     {
       provide: 'StorageStrategy',
       useFactory: (cfg: ConfigService): StorageStrategy => {
+        const logger = new Logger('StorageStrategy');
+        const provider = cfg.get<string>('STORAGE_PROVIDER')?.trim();
+        const keys = provider ? REQUIRED_ENV[provider] : undefined;
+        const missing = keys ? missingEnv((k) => cfg.get<string>(k), keys) : [];
+
+        const fallback = (reason?: string): StorageStrategy => {
+          const banner = formatEnvBanner({
+            service: 'upload MS',
+            provider,
+            missing,
+            envPath: ENV_PATH,
+            reason,
+          });
+          if (process.env.NODE_ENV === 'production') throw new Error(banner);
+          logger.warn(banner);
+          return new FakeStorageStrategy();
+        };
+
+        if (!keys || missing.length > 0) return fallback();
+
         try {
-          const provider = requireEnv(cfg, 'STORAGE_PROVIDER');
-          switch (provider) {
-            case 'supabase': {
-              const client = createClient(
-                requireEnv(cfg, 'SUPABASE_URL'),
-                requireEnv(cfg, 'SUPABASE_SERVICE_ROLE_KEY'),
-                { auth: { autoRefreshToken: false, persistSession: false } },
-              );
-              return new SupabaseStorageStrategy({
-                client,
-                bucket: requireEnv(cfg, 'SUPABASE_STORAGE_BUCKET'),
-              });
-            }
-            case 'firebase':
-              return makeFirebaseStorage(cfg);
-            case 'cloudinary':
-              return makeCloudinaryStorage(cfg);
-            default:
-              throw new Error(`Unsupported STORAGE_PROVIDER: ${provider}`);
+          if (provider === 'supabase') {
+            const client = createClient(
+              requireEnv(cfg, 'SUPABASE_URL'),
+              requireEnv(cfg, 'SUPABASE_SERVICE_ROLE_KEY'),
+              { auth: { autoRefreshToken: false, persistSession: false } },
+            );
+            return new SupabaseStorageStrategy({
+              client,
+              bucket: requireEnv(cfg, 'SUPABASE_STORAGE_BUCKET'),
+            });
           }
+          if (provider === 'firebase') return makeFirebaseStorage(cfg);
+          return makeCloudinaryStorage(cfg);
         } catch (err) {
-          new Logger('StorageStrategy').warn(
-            `Not configured: ${err instanceof Error ? err.message : String(err)}. ` +
-              `Requests will fail until apps/microservices/upload/.env is set.`,
-          );
-          return new FakeStorageStrategy();
+          return fallback(err instanceof Error ? err.message : String(err));
         }
       },
       inject: [ConfigService],

package/templates/apps/templates/client-antd/.env.example

@@ -0,0 +1,7 @@
+# ─── Client environment variables ────────────────────────────────────────
+# API gateway base URL.
+#   /api   — default; dev-server proxies it to http://localhost:3001 (see vite.config.mts)
+#   http://localhost:3001/api — set explicitly if you want to bypass the proxy
+#   https://your-domain.com/api — production override when building a standalone SPA
+VITE_API_URL=/api
+

package/templates/apps/templates/client-antd/vite.config.mts

@@ -6,8 +6,10 @@ import { tanstackRouter } from '@tanstack/router-plugin/vite';
 import { nxViteTsPaths } from '@nx/vite/plugins/nx-tsconfig-paths.plugin';
 import { nxCopyAssetsPlugin } from '@nx/vite/plugins/nx-copy-assets.plugin';
 import {
+  apiInfoPlugin,
   commonDefines,
   commonManualChunks,
+  commonServer,
   commonTestConfig,
   injectAppVersionPlugin,
   noServerModulesPlugin,
@@ -27,10 +29,7 @@ function depVersion(name: string): string {
 export default defineConfig(() => ({
   root: import.meta.dirname,
   cacheDir: '../../../node_modules/.vite/apps/templates/client-antd',
-  server: {
-    port: 4201,
-    host: 'localhost',
-  },
+  server: commonServer(4201),
   preview: {
     port: 4201,
     host: 'localhost',
@@ -49,6 +48,7 @@ export default defineConfig(() => ({
     nxViteTsPaths(),
     nxCopyAssetsPlugin(['*.md']),
     noServerModulesPlugin(),
+    apiInfoPlugin(),
     injectAppVersionPlugin(rootPackageJson),
   ],
   // Uncomment this if you are using workers.

package/templates/apps/templates/client-mui/.env.example

@@ -0,0 +1,7 @@
+# ─── Client environment variables ────────────────────────────────────────
+# API gateway base URL.
+#   /api   — default; dev-server proxies it to http://localhost:3001 (see vite.config.mts)
+#   http://localhost:3001/api — set explicitly if you want to bypass the proxy
+#   https://your-domain.com/api — production override when building a standalone SPA
+VITE_API_URL=/api
+

package/templates/apps/templates/client-mui/vite.config.mts

@@ -6,8 +6,10 @@ import { tanstackRouter } from '@tanstack/router-plugin/vite';
 import { nxViteTsPaths } from '@nx/vite/plugins/nx-tsconfig-paths.plugin';
 import { nxCopyAssetsPlugin } from '@nx/vite/plugins/nx-copy-assets.plugin';
 import {
+  apiInfoPlugin,
   commonDefines,
   commonManualChunks,
+  commonServer,
   commonTestConfig,
   injectAppVersionPlugin,
   noServerModulesPlugin,
@@ -27,10 +29,7 @@ function depVersion(name: string): string {
 export default defineConfig(() => ({
   root: import.meta.dirname,
   cacheDir: '../../../node_modules/.vite/client-mui',
-  server: {
-    port: 4202,
-    host: 'localhost',
-  },
+  server: commonServer(4202),
   preview: {
     port: 4202,
     host: 'localhost',
@@ -49,6 +48,7 @@ export default defineConfig(() => ({
     nxViteTsPaths(),
     nxCopyAssetsPlugin(['*.md']),
     noServerModulesPlugin(),
+    apiInfoPlugin(),
     injectAppVersionPlugin(rootPackageJson),
   ],
   // Uncomment this if you are using workers.

package/templates/apps/templates/client-shadcn/.env.example

@@ -1,2 +1,7 @@
-# API base URL — dev server reverse-proxies /api to the gateway
+# ─── Client environment variables ────────────────────────────────────────
+# API gateway base URL.
+#   /api   — default; dev-server proxies it to http://localhost:3001 (see vite.config.mts)
+#   http://localhost:3001/api — set explicitly if you want to bypass the proxy
+#   https://your-domain.com/api — production override when building a standalone SPA
 VITE_API_URL=/api
+

package/templates/apps/templates/client-shadcn/vite.config.mts

@@ -7,8 +7,10 @@ import { tanstackRouter } from '@tanstack/router-plugin/vite';
 import { nxViteTsPaths } from '@nx/vite/plugins/nx-tsconfig-paths.plugin';
 import { nxCopyAssetsPlugin } from '@nx/vite/plugins/nx-copy-assets.plugin';
 import {
+  apiInfoPlugin,
   commonDefines,
   commonManualChunks,
+  commonServer,
   commonTestConfig,
   injectAppVersionPlugin,
   noServerModulesPlugin,
@@ -28,10 +30,7 @@ function depVersion(name: string): string {
 export default defineConfig(() => ({
   root: import.meta.dirname,
   cacheDir: '../../../node_modules/.vite/apps/templates/client-shadcn',
-  server: {
-    port: 4200,
-    host: 'localhost',
-  },
+  server: commonServer(4200),
   preview: {
     port: 4200,
     host: 'localhost',
@@ -51,6 +50,7 @@ export default defineConfig(() => ({
     nxViteTsPaths(),
     nxCopyAssetsPlugin(['*.md']),
     noServerModulesPlugin(),
+    apiInfoPlugin(),
     injectAppVersionPlugin(rootPackageJson),
   ],
   // Uncomment this if you are using workers.

package/templates/libs/auth-client/src/index.ts

@@ -1,2 +1,3 @@
+export * from './lib/auth-client.tokens';
 export * from './lib/auth-client.module';
 export * from './lib/auth-client.service';

package/templates/libs/auth-client/src/lib/auth-client.module.ts

@@ -3,7 +3,7 @@ import { ClientsModule } from '@nestjs/microservices';
 import { buildTransport } from '@icore/shared';
 import { AuthClientService } from './auth-client.service';
 
-export const AUTH_CLIENT = 'AUTH_CLIENT';
+import { AUTH_CLIENT } from './auth-client.tokens';
 
 @Module({})
 export class AuthClientModule {

package/templates/libs/auth-client/src/lib/auth-client.service.ts

@@ -2,7 +2,7 @@ import { Inject, Injectable } from '@nestjs/common';
 import { ClientProxy } from '@nestjs/microservices';
 import { firstValueFrom } from 'rxjs';
 import type { AuthSession, OAuthProvider, OAuthStartResult, VerifiedToken } from '@icore/shared';
-import { AUTH_CLIENT } from './auth-client.module';
+import { AUTH_CLIENT } from './auth-client.tokens';
 
 @Injectable()
 export class AuthClientService {

package/templates/libs/auth-client/src/lib/auth-client.tokens.ts

@@ -0,0 +1,4 @@
+// Injection token — kept in its own file so module and service can both
+// import it without creating a circular dependency (which breaks DI in
+// webpack-bundled NestJS apps).
+export const AUTH_CLIENT = 'AUTH_CLIENT';

package/templates/libs/jobs-client/src/index.ts

@@ -1,2 +1,3 @@
+export * from './lib/jobs-client.tokens';
 export * from './lib/jobs-client.module';
 export * from './lib/jobs-client.service';

package/templates/libs/jobs-client/src/lib/jobs-client.module.ts

@@ -2,7 +2,7 @@ import { DynamicModule, Module } from '@nestjs/common';
 import { ConfigService } from '@nestjs/config';
 import { JobsClientService } from './jobs-client.service';
 
-export const JOBS_REDIS_URL = 'JOBS_REDIS_URL';
+import { JOBS_REDIS_URL } from './jobs-client.tokens';
 
 @Module({})
 export class JobsClientModule {