@jant/core 0.2.1 → 0.2.3

package/dist/client.d.ts

@@ -1,6 +1,7 @@
 /**
  * Client-side JavaScript entry point
- * Includes all interactive components from basecoat-css
+ *
+ * Pure JS/TS exports only. CSS is handled via preset.css.
  */
 import "basecoat-css/all";
 //# sourceMappingURL=client.d.ts.map

package/dist/client.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,kBAAkB,CAAC"}
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,kBAAkB,CAAC"}

package/dist/client.js

@@ -1,4 +1,6 @@
 /**
  * Client-side JavaScript entry point
- * Includes all interactive components from basecoat-css
- */ import "basecoat-css/all";
+ *
+ * Pure JS/TS exports only. CSS is handled via preset.css.
+ */ // BaseCoat interactive components (dialogs, dropdowns, etc.)
+import "basecoat-css/all";

package/dist/lib/assets.d.ts

@@ -1,10 +1,11 @@
 /**
  * Asset paths for SSR
  *
- * Development: Uses source paths served by Vite dev server
- * Production: Uses paths that get patched at build time with actual hashes
+ * Development: Paths injected via vite.config.ts `define`
+ * Production: Paths replaced at build time with hashed filenames from manifest
  */
 interface Assets {
+    /** CSS path (prevents FOUC in dev, hashed in prod) */
     styles: string;
     client: string;
     datastar: string;

package/dist/lib/assets.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"assets.d.ts","sourceRoot":"","sources":["../../src/lib/assets.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,UAAU,MAAM;IACd,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,cAAc,EAAE,MAAM,CAAC;CACxB;AAmBD;;GAEG;AACH,wBAAgB,SAAS,IAAI,MAAM,CASlC;AAGD,eAAO,MAAM,MAAM,QAAc,CAAC"}
+{"version":3,"file":"assets.d.ts","sourceRoot":"","sources":["../../src/lib/assets.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,UAAU,MAAM;IACd,sDAAsD;IACtD,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,cAAc,EAAE,MAAM,CAAC;CACxB;AAgBD;;GAEG;AACH,wBAAgB,SAAS,IAAI,MAAM,CAelC;AAGD,eAAO,MAAM,MAAM,QAAc,CAAC"}

package/dist/lib/assets.js

@@ -1,17 +1,9 @@
 /**
  * Asset paths for SSR
  *
- * Development: Uses source paths served by Vite dev server
- * Production: Uses paths that get patched at build time with actual hashes
- */ // Development paths - use source files for HMR
-const DEV_ASSETS = {
-    styles: "/node_modules/@jant/core/src/theme/styles/main.css",
-    client: "/node_modules/@jant/core/src/client.ts",
-    datastar: "/node_modules/@jant/core/static/assets/datastar.min.js",
-    imageProcessor: "/node_modules/@jant/core/static/assets/image-processor.js"
-};
-// Production paths - these unique placeholders get replaced at build time
-// Format: __JANT_ASSET_<NAME>__ to avoid accidental matches
+ * Development: Paths injected via vite.config.ts `define`
+ * Production: Paths replaced at build time with hashed filenames from manifest
+ */ // Production paths - replaced at build time
 const PROD_ASSETS = {
     styles: "__JANT_ASSET_STYLES__",
     client: "__JANT_ASSET_CLIENT__",
@@ -22,8 +14,14 @@ const PROD_ASSETS = {
  * Get assets based on environment
  */ export function getAssets() {
     try {
-        // import.meta.env is injected by Vite
-        if (import.meta.env?.DEV) return DEV_ASSETS;
+        if (import.meta.env?.DEV) {
+            return {
+                styles: __JANT_DEV_STYLES__,
+                client: __JANT_DEV_CLIENT__,
+                datastar: __JANT_DEV_DATASTAR__,
+                imageProcessor: __JANT_DEV_IMAGE_PROCESSOR__
+            };
+        }
     } catch  {
     // import.meta.env may not exist in all environments
     }

package/dist/theme/layouts/BaseLayout.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"BaseLayout.d.ts","sourceRoot":"","sources":["../../../src/theme/layouts/BaseLayout.tsx"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,EAAE,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AACtD,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAIpC,MAAM,WAAW,eAAe;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,CAAC,CAAC,EAAE,OAAO,CAAC;CACb;AAED,eAAO,MAAM,UAAU,EAAE,EAAE,CAAC,iBAAiB,CAAC,eAAe,CAAC,CA6B7D,CAAC"}
+{"version":3,"file":"BaseLayout.d.ts","sourceRoot":"","sources":["../../../src/theme/layouts/BaseLayout.tsx"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,EAAE,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AACtD,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAIpC,MAAM,WAAW,eAAe;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,CAAC,CAAC,EAAE,OAAO,CAAC;CACb;AAED,eAAO,MAAM,UAAU,EAAE,EAAE,CAAC,iBAAiB,CAAC,eAAe,CAAC,CA8B7D,CAAC"}

package/dist/theme/layouts/BaseLayout.js

@@ -33,7 +33,7 @@ export const BaseLayout = ({ title, description, lang = "en", c, children })=>{
                         name: "description",
                         content: description
                     }),
-                    /*#__PURE__*/ _jsx("link", {
+                    assets.styles && /*#__PURE__*/ _jsx("link", {
                         rel: "stylesheet",
                         href: assets.styles
                     }),

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@jant/core",
-  "version": "0.2.1",
+  "version": "0.2.3",
   "description": "A modern, open-source microblogging platform built on Cloudflare Workers",
   "type": "module",
   "bin": {
@@ -15,20 +15,22 @@
       "types": "./dist/theme/index.d.ts",
       "default": "./dist/theme/index.js"
     },
+    "./preset.css": "./src/preset.css",
+    "./client": "./src/client.ts",
     "./*": "./*"
   },
   "files": [
     "bin",
     "dist",
     "static",
-    "migrations"
+    "migrations",
+    "src"
   ],
   "publishConfig": {
     "access": "public"
   },
   "dependencies": {
     "@lingui/core": "^5.9.0",
-    "basecoat-css": "^0.3.10",
     "better-auth": "^1.4.18",
     "drizzle-orm": "^0.45.1",
     "hono": "^4.11.7",
@@ -37,7 +39,12 @@
     "uuidv7": "^1.1.0",
     "zod": "^4.3.6"
   },
+  "peerDependencies": {
+    "basecoat-css": "^0.3.0",
+    "tailwindcss": "^4.0.0"
+  },
   "devDependencies": {
+    "basecoat-css": "^0.3.10",
     "@cloudflare/vite-plugin": "^1.22.1",
     "@cloudflare/workers-types": "^4.20260131.0",
     "@eslint/js": "^9.39.2",
@@ -46,7 +53,6 @@
     "@lingui/swc-plugin": "^5.10.1",
     "@swc/cli": "^0.6.0",
     "@swc/core": "^1.15.11",
-    "@tailwindcss/cli": "^4.1.18",
     "@tailwindcss/postcss": "^4.1.18",
     "@types/node": "^25.1.0",
     "@typescript-eslint/eslint-plugin": "^8.54.0",
@@ -94,9 +100,8 @@
     "dev": "pnpm db:migrate:local && vite dev",
     "dev:debug": "pnpm db:migrate:local && vite dev --port 19019",
     "build": "vite build",
-    "build:lib": "swc src -d dist --strip-leading-paths && pnpm build:types && pnpm build:css",
+    "build:lib": "swc src -d dist --strip-leading-paths && pnpm build:types",
     "build:types": "tsc -p tsconfig.build.json",
-    "build:css": "tailwindcss -i src/theme/styles/main.css -o dist/theme/styles/main.css --minify",
     "deploy": "pnpm build && wrangler deploy",
     "preview": "vite preview",
     "typecheck": "tsc --noEmit",

package/src/app.tsx

@@ -0,0 +1,377 @@
+/**
+ * Jant App Factory
+ */
+
+import { Hono } from "hono";
+import type { FC } from "hono/jsx";
+import { createDatabase } from "./db/index.js";
+import { createServices, type Services } from "./services/index.js";
+import { createAuth, type Auth } from "./auth.js";
+import { i18nMiddleware, useLingui } from "./i18n/index.js";
+import type { Bindings, JantConfig } from "./types.js";
+
+// Routes - Pages
+import { homeRoutes } from "./routes/pages/home.js";
+import { postRoutes } from "./routes/pages/post.js";
+import { pageRoutes } from "./routes/pages/page.js";
+import { collectionRoutes } from "./routes/pages/collection.js";
+import { archiveRoutes } from "./routes/pages/archive.js";
+import { searchRoutes } from "./routes/pages/search.js";
+
+// Routes - Dashboard
+import { dashIndexRoutes } from "./routes/dash/index.js";
+import { postsRoutes as dashPostsRoutes } from "./routes/dash/posts.js";
+import { pagesRoutes as dashPagesRoutes } from "./routes/dash/pages.js";
+import { mediaRoutes as dashMediaRoutes } from "./routes/dash/media.js";
+import { settingsRoutes as dashSettingsRoutes } from "./routes/dash/settings.js";
+import { redirectsRoutes as dashRedirectsRoutes } from "./routes/dash/redirects.js";
+import { collectionsRoutes as dashCollectionsRoutes } from "./routes/dash/collections.js";
+
+// Routes - API
+import { postsApiRoutes } from "./routes/api/posts.js";
+import { uploadApiRoutes } from "./routes/api/upload.js";
+import { searchApiRoutes } from "./routes/api/search.js";
+
+// Routes - Feed
+import { rssRoutes } from "./routes/feed/rss.js";
+import { sitemapRoutes } from "./routes/feed/sitemap.js";
+
+// Middleware
+import { requireAuth } from "./middleware/auth.js";
+
+// Layouts for auth pages
+import { BaseLayout } from "./theme/layouts/index.js";
+
+// Extend Hono's context variables
+export interface AppVariables {
+  services: Services;
+  auth: Auth;
+  config: JantConfig;
+}
+
+export type App = Hono<{ Bindings: Bindings; Variables: AppVariables }>;
+
+/**
+ * Create a Jant application
+ *
+ * @param config - Optional configuration
+ * @returns Hono app instance
+ *
+ * @example
+ * ```typescript
+ * import { createApp } from "@jant/core";
+ *
+ * export default createApp({
+ *   site: { name: "My Blog" },
+ *   theme: { components: { PostCard: MyPostCard } },
+ * });
+ * ```
+ */
+export function createApp(config: JantConfig = {}): App {
+  const app = new Hono<{ Bindings: Bindings; Variables: AppVariables }>();
+
+  // Initialize services, auth, and config middleware
+  app.use("*", async (c, next) => {
+    const db = createDatabase(c.env.DB);
+    const services = createServices(db, c.env.DB);
+    c.set("services", services);
+    c.set("config", config);
+
+    if (c.env.AUTH_SECRET) {
+      const auth = createAuth(c.env.DB, {
+        secret: c.env.AUTH_SECRET,
+        baseURL: c.env.SITE_URL,
+      });
+      c.set("auth", auth);
+    }
+
+    await next();
+  });
+
+  // i18n middleware
+  app.use("*", i18nMiddleware());
+
+  // Trailing slash redirect (redirect /foo/ to /foo)
+  app.use("*", async (c, next) => {
+    const url = new URL(c.req.url);
+    if (url.pathname !== "/" && url.pathname.endsWith("/")) {
+      const newUrl = url.pathname.slice(0, -1) + url.search;
+      return c.redirect(newUrl, 301);
+    }
+    await next();
+  });
+
+  // Redirect middleware
+  app.use("*", async (c, next) => {
+    const path = new URL(c.req.url).pathname;
+    // Skip redirect check for API routes and static assets
+    if (path.startsWith("/api/") || path.startsWith("/assets/")) {
+      return next();
+    }
+
+    const redirect = await c.var.services.redirects.getByPath(path);
+    if (redirect) {
+      return c.redirect(redirect.toPath, redirect.type);
+    }
+
+    await next();
+  });
+
+  // Health check
+  app.get("/health", (c) =>
+    c.json({
+      status: "ok",
+      auth: c.env.AUTH_SECRET ? "configured" : "missing",
+      authSecretLength: c.env.AUTH_SECRET?.length ?? 0,
+    })
+  );
+
+  // better-auth handler
+  app.all("/api/auth/*", async (c) => {
+    if (!c.var.auth) {
+      return c.json({ error: "Auth not configured. Set AUTH_SECRET." }, 500);
+    }
+    return c.var.auth.handler(c.req.raw);
+  });
+
+  // API Routes
+  app.route("/api/posts", postsApiRoutes);
+
+  // Setup page component
+  const SetupContent: FC<{ error?: string }> = ({ error }) => {
+    const { t } = useLingui();
+
+    return (
+      <div class="min-h-screen flex items-center justify-center">
+        <div class="card max-w-md w-full">
+          <header>
+            <h2>{t({ message: "Welcome to Jant", comment: "@context: Setup page welcome heading" })}</h2>
+            <p>{t({ message: "Let's set up your site.", comment: "@context: Setup page description" })}</p>
+          </header>
+          <section>
+            {error && <p class="text-destructive text-sm mb-4">{error}</p>}
+            <form method="post" action="/setup" class="flex flex-col gap-4">
+              <div class="field">
+                <label class="label">{t({ message: "Site Name", comment: "@context: Setup form field - site name" })}</label>
+                <input type="text" name="siteName" class="input" required placeholder={t({ message: "My Blog", comment: "@context: Setup site name placeholder" })} />
+              </div>
+              <div class="field">
+                <label class="label">{t({ message: "Your Name", comment: "@context: Setup form field - user name" })}</label>
+                <input type="text" name="name" class="input" required placeholder="John Doe" />
+              </div>
+              <div class="field">
+                <label class="label">{t({ message: "Email", comment: "@context: Setup/signin form field - email" })}</label>
+                <input type="email" name="email" class="input" required placeholder="you@example.com" />
+              </div>
+              <div class="field">
+                <label class="label">{t({ message: "Password", comment: "@context: Setup/signin form field - password" })}</label>
+                <input type="password" name="password" class="input" required minLength={8} />
+              </div>
+              <button type="submit" class="btn">{t({ message: "Complete Setup", comment: "@context: Setup form submit button" })}</button>
+            </form>
+          </section>
+        </div>
+      </div>
+    );
+  };
+
+  // Setup page
+  app.get("/setup", async (c) => {
+    const isComplete = await c.var.services.settings.isOnboardingComplete();
+    if (isComplete) return c.redirect("/");
+
+    const error = c.req.query("error");
+
+    return c.html(
+      <BaseLayout title="Setup - Jant" c={c}>
+        <SetupContent error={error} />
+      </BaseLayout>
+    );
+  });
+
+  app.post("/setup", async (c) => {
+    const isComplete = await c.var.services.settings.isOnboardingComplete();
+    if (isComplete) return c.redirect("/");
+
+    const formData = await c.req.formData();
+    const siteName = formData.get("siteName") as string;
+    const name = formData.get("name") as string;
+    const email = formData.get("email") as string;
+    const password = formData.get("password") as string;
+
+    if (!siteName || !name || !email || !password) {
+      return c.redirect("/setup?error=All fields are required");
+    }
+
+    if (password.length < 8) {
+      return c.redirect("/setup?error=Password must be at least 8 characters");
+    }
+
+    if (!c.var.auth) {
+      return c.redirect("/setup?error=AUTH_SECRET not configured");
+    }
+
+    try {
+      const signUpResponse = await c.var.auth.api.signUpEmail({
+        body: { name, email, password },
+      });
+
+      if (!signUpResponse || "error" in signUpResponse) {
+        return c.redirect("/setup?error=Failed to create account");
+      }
+
+      await c.var.services.settings.setMany({
+        SITE_NAME: siteName,
+        SITE_LANGUAGE: "en",
+      });
+      await c.var.services.settings.completeOnboarding();
+
+      return c.redirect("/signin");
+    } catch (err) {
+      // eslint-disable-next-line no-console -- Error logging is intentional
+      console.error("Setup error:", err);
+      return c.redirect("/setup?error=Failed to create account");
+    }
+  });
+
+  // Signin page component
+  const SigninContent: FC<{ error?: string }> = ({ error }) => {
+    const { t } = useLingui();
+
+    return (
+      <div class="min-h-screen flex items-center justify-center">
+        <div class="card max-w-md w-full">
+          <header>
+            <h2>{t({ message: "Sign In", comment: "@context: Sign in page heading" })}</h2>
+          </header>
+          <section>
+            {error && <p class="text-destructive text-sm mb-4">{error}</p>}
+            <form method="post" action="/signin" class="flex flex-col gap-4">
+              <div class="field">
+                <label class="label">{t({ message: "Email", comment: "@context: Setup/signin form field - email" })}</label>
+                <input type="email" name="email" class="input" required />
+              </div>
+              <div class="field">
+                <label class="label">{t({ message: "Password", comment: "@context: Setup/signin form field - password" })}</label>
+                <input type="password" name="password" class="input" required />
+              </div>
+              <button type="submit" class="btn">{t({ message: "Sign In", comment: "@context: Sign in form submit button" })}</button>
+            </form>
+          </section>
+        </div>
+      </div>
+    );
+  };
+
+  // Signin page
+  app.get("/signin", async (c) => {
+    const error = c.req.query("error");
+
+    return c.html(
+      <BaseLayout title="Sign In - Jant" c={c}>
+        <SigninContent error={error} />
+      </BaseLayout>
+    );
+  });
+
+  app.post("/signin", async (c) => {
+    if (!c.var.auth) {
+      return c.redirect("/signin?error=Auth not configured");
+    }
+
+    const formData = await c.req.formData();
+    const email = formData.get("email") as string;
+    const password = formData.get("password") as string;
+
+    try {
+      const signInRequest = new Request(`${c.env.SITE_URL}/api/auth/sign-in/email`, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify({ email, password }),
+      });
+
+      const response = await c.var.auth.handler(signInRequest);
+
+      if (!response.ok) {
+        return c.redirect("/signin?error=Invalid email or password");
+      }
+
+      const headers = new Headers(response.headers);
+      headers.set("Location", "/dash");
+
+      return new Response(null, { status: 302, headers });
+    } catch (err) {
+      // eslint-disable-next-line no-console -- Error logging is intentional
+      console.error("Signin error:", err);
+      return c.redirect("/signin?error=Invalid email or password");
+    }
+  });
+
+  app.get("/signout", async (c) => {
+    if (c.var.auth) {
+      try {
+        await c.var.auth.api.signOut({ headers: c.req.raw.headers });
+      } catch {
+        // Ignore signout errors
+      }
+    }
+    return c.redirect("/");
+  });
+
+  // Dashboard routes (protected)
+  app.use("/dash/*", requireAuth());
+  app.route("/dash", dashIndexRoutes);
+  app.route("/dash/posts", dashPostsRoutes);
+  app.route("/dash/pages", dashPagesRoutes);
+  app.route("/dash/media", dashMediaRoutes);
+  app.route("/dash/settings", dashSettingsRoutes);
+  app.route("/dash/redirects", dashRedirectsRoutes);
+  app.route("/dash/collections", dashCollectionsRoutes);
+
+  // API routes
+  app.route("/api/upload", uploadApiRoutes);
+  app.route("/api/search", searchApiRoutes);
+
+  // Media files from R2 (UUIDv7-based URLs with extension)
+  app.get("/media/:idWithExt", async (c) => {
+    if (!c.env.R2) {
+      return c.notFound();
+    }
+
+    // Extract ID from "uuid.ext" format
+    const idWithExt = c.req.param("idWithExt");
+    const mediaId = idWithExt.replace(/\.[^.]+$/, "");
+
+    const media = await c.var.services.media.getById(mediaId);
+    if (!media) {
+      return c.notFound();
+    }
+
+    const object = await c.env.R2.get(media.r2Key);
+    if (!object) {
+      return c.notFound();
+    }
+
+    const headers = new Headers();
+    headers.set("Content-Type", object.httpMetadata?.contentType || media.mimeType);
+    headers.set("Cache-Control", "public, max-age=31536000, immutable");
+
+    return new Response(object.body, { headers });
+  });
+
+  // Feed routes
+  app.route("/feed", rssRoutes);
+  app.route("/", sitemapRoutes);
+
+  // Frontend routes
+  app.route("/search", searchRoutes);
+  app.route("/archive", archiveRoutes);
+  app.route("/c", collectionRoutes);
+  app.route("/p", postRoutes);
+  app.route("/", homeRoutes);
+
+  // Custom page catch-all (must be last)
+  app.route("/", pageRoutes);
+
+  return app;
+}

package/src/auth.ts

@@ -0,0 +1,38 @@
+/**
+ * Authentication with better-auth
+ */
+
+import { betterAuth } from "better-auth";
+import { drizzleAdapter } from "better-auth/adapters/drizzle";
+import { drizzle } from "drizzle-orm/d1";
+import * as schema from "./db/schema.js";
+
+export function createAuth(d1: D1Database, options: { secret: string; baseURL: string }) {
+  const db = drizzle(d1, { schema });
+
+  return betterAuth({
+    database: drizzleAdapter(db, {
+      provider: "sqlite",
+      schema: {
+        user: schema.user,
+        session: schema.session,
+        account: schema.account,
+        verification: schema.verification,
+      },
+    }),
+    secret: options.secret,
+    baseURL: options.baseURL,
+    emailAndPassword: {
+      enabled: true,
+      autoSignIn: true,
+    },
+    session: {
+      cookieCache: {
+        enabled: true,
+        maxAge: 60 * 5, // 5 minutes
+      },
+    },
+  });
+}
+
+export type Auth = ReturnType<typeof createAuth>;

package/src/client.ts

@@ -0,0 +1,8 @@
+/**
+ * Client-side JavaScript entry point
+ *
+ * Pure JS/TS exports only. CSS is handled via preset.css.
+ */
+
+// BaseCoat interactive components (dialogs, dropdowns, etc.)
+import "basecoat-css/all";

package/src/db/index.ts

@@ -0,0 +1,14 @@
+/**
+ * Database utilities
+ */
+
+import { drizzle } from "drizzle-orm/d1";
+import * as schema from "./schema.js";
+
+export type Database = ReturnType<typeof createDatabase>;
+
+export function createDatabase(d1: D1Database) {
+  return drizzle(d1, { schema });
+}
+
+export { schema };