@kevinmarrec/create-app 0.6.7 → 0.8.0

package/template/{backend → server}/src/database/migrations/meta/0000_snapshot.json

@@ -1,146 +1,131 @@
 {
-  "version": "6",
-  "dialect": "sqlite",
-  "id": "c1982d78-242a-497b-b4b3-6a4f8a375c7f",
+  "id": "21bfd4d4-350d-4701-b4b8-b0d991fc163e",
   "prevId": "00000000-0000-0000-0000-000000000000",
+  "version": "7",
+  "dialect": "postgresql",
   "tables": {
-    "users": {
+    "public.users": {
       "name": "users",
+      "schema": "",
       "columns": {
         "id": {
           "name": "id",
           "type": "text",
           "primaryKey": true,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "name": {
           "name": "name",
           "type": "text",
           "primaryKey": false,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "email": {
           "name": "email",
           "type": "text",
           "primaryKey": false,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "email_verified": {
           "name": "email_verified",
-          "type": "integer",
+          "type": "boolean",
           "primaryKey": false,
           "notNull": true,
-          "autoincrement": false,
           "default": false
         },
         "image": {
           "name": "image",
           "type": "text",
           "primaryKey": false,
-          "notNull": false,
-          "autoincrement": false
+          "notNull": false
         },
         "created_at": {
           "name": "created_at",
-          "type": "integer",
+          "type": "timestamp",
           "primaryKey": false,
           "notNull": true,
-          "autoincrement": false
+          "default": "now()"
         },
         "updated_at": {
           "name": "updated_at",
-          "type": "integer",
+          "type": "timestamp",
           "primaryKey": false,
           "notNull": true,
-          "autoincrement": false
+          "default": "now()"
         }
       },
-      "indexes": {
+      "indexes": {},
+      "foreignKeys": {},
+      "compositePrimaryKeys": {},
+      "uniqueConstraints": {
         "users_email_unique": {
           "name": "users_email_unique",
+          "nullsNotDistinct": false,
           "columns": [
             "email"
-          ],
-          "isUnique": true
+          ]
         }
       },
-      "foreignKeys": {},
-      "compositePrimaryKeys": {},
-      "uniqueConstraints": {},
-      "checkConstraints": {}
+      "policies": {},
+      "checkConstraints": {},
+      "isRLSEnabled": false
     },
-    "sessions": {
+    "public.sessions": {
       "name": "sessions",
+      "schema": "",
       "columns": {
         "id": {
           "name": "id",
           "type": "text",
           "primaryKey": true,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "user_id": {
           "name": "user_id",
           "type": "text",
           "primaryKey": false,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "token": {
           "name": "token",
           "type": "text",
           "primaryKey": false,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "expires_at": {
           "name": "expires_at",
-          "type": "integer",
+          "type": "timestamp",
           "primaryKey": false,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "ip_address": {
           "name": "ip_address",
           "type": "text",
           "primaryKey": false,
-          "notNull": false,
-          "autoincrement": false
+          "notNull": false
         },
         "user_agent": {
           "name": "user_agent",
           "type": "text",
           "primaryKey": false,
-          "notNull": false,
-          "autoincrement": false
+          "notNull": false
         },
         "created_at": {
           "name": "created_at",
-          "type": "integer",
+          "type": "timestamp",
           "primaryKey": false,
           "notNull": true,
-          "autoincrement": false
+          "default": "now()"
         },
         "updated_at": {
           "name": "updated_at",
-          "type": "integer",
+          "type": "timestamp",
           "primaryKey": false,
           "notNull": true,
-          "autoincrement": false
-        }
-      },
-      "indexes": {
-        "sessions_token_unique": {
-          "name": "sessions_token_unique",
-          "columns": [
-            "token"
-          ],
-          "isUnique": true
+          "default": "now()"
         }
       },
+      "indexes": {},
       "foreignKeys": {
         "sessions_user_id_users_id_fk": {
           "name": "sessions_user_id_users_id_fk",
@@ -157,102 +142,102 @@
         }
       },
       "compositePrimaryKeys": {},
-      "uniqueConstraints": {},
-      "checkConstraints": {}
+      "uniqueConstraints": {
+        "sessions_token_unique": {
+          "name": "sessions_token_unique",
+          "nullsNotDistinct": false,
+          "columns": [
+            "token"
+          ]
+        }
+      },
+      "policies": {},
+      "checkConstraints": {},
+      "isRLSEnabled": false
     },
-    "accounts": {
+    "public.accounts": {
       "name": "accounts",
+      "schema": "",
       "columns": {
         "id": {
           "name": "id",
           "type": "text",
           "primaryKey": true,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "user_id": {
           "name": "user_id",
           "type": "text",
           "primaryKey": false,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "account_id": {
           "name": "account_id",
           "type": "text",
           "primaryKey": false,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "provider_id": {
           "name": "provider_id",
           "type": "text",
           "primaryKey": false,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "access_token": {
           "name": "access_token",
           "type": "text",
           "primaryKey": false,
-          "notNull": false,
-          "autoincrement": false
+          "notNull": false
         },
         "refresh_token": {
           "name": "refresh_token",
           "type": "text",
           "primaryKey": false,
-          "notNull": false,
-          "autoincrement": false
+          "notNull": false
         },
         "access_token_expires_at": {
           "name": "access_token_expires_at",
-          "type": "integer",
+          "type": "timestamp",
           "primaryKey": false,
-          "notNull": false,
-          "autoincrement": false
+          "notNull": false
         },
         "refresh_token_expires_at": {
           "name": "refresh_token_expires_at",
-          "type": "integer",
+          "type": "timestamp",
           "primaryKey": false,
-          "notNull": false,
-          "autoincrement": false
+          "notNull": false
         },
         "scope": {
           "name": "scope",
           "type": "text",
           "primaryKey": false,
-          "notNull": false,
-          "autoincrement": false
+          "notNull": false
         },
         "id_token": {
           "name": "id_token",
           "type": "text",
           "primaryKey": false,
-          "notNull": false,
-          "autoincrement": false
+          "notNull": false
         },
         "password": {
           "name": "password",
           "type": "text",
           "primaryKey": false,
-          "notNull": false,
-          "autoincrement": false
+          "notNull": false
         },
         "created_at": {
           "name": "created_at",
-          "type": "integer",
+          "type": "timestamp",
           "primaryKey": false,
           "notNull": true,
-          "autoincrement": false
+          "default": "now()"
         },
         "updated_at": {
           "name": "updated_at",
-          "type": "integer",
+          "type": "timestamp",
           "primaryKey": false,
           "notNull": true,
-          "autoincrement": false
+          "default": "now()"
         }
       },
       "indexes": {},
@@ -273,69 +258,71 @@
       },
       "compositePrimaryKeys": {},
       "uniqueConstraints": {},
-      "checkConstraints": {}
+      "policies": {},
+      "checkConstraints": {},
+      "isRLSEnabled": false
     },
-    "verifications": {
+    "public.verifications": {
       "name": "verifications",
+      "schema": "",
       "columns": {
         "id": {
           "name": "id",
           "type": "text",
           "primaryKey": true,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "identifier": {
           "name": "identifier",
           "type": "text",
           "primaryKey": false,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "value": {
           "name": "value",
           "type": "text",
           "primaryKey": false,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "expires_at": {
           "name": "expires_at",
-          "type": "integer",
+          "type": "timestamp",
           "primaryKey": false,
-          "notNull": true,
-          "autoincrement": false
+          "notNull": true
         },
         "created_at": {
           "name": "created_at",
-          "type": "integer",
+          "type": "timestamp",
           "primaryKey": false,
           "notNull": true,
-          "autoincrement": false
+          "default": "now()"
         },
         "updated_at": {
           "name": "updated_at",
-          "type": "integer",
+          "type": "timestamp",
           "primaryKey": false,
           "notNull": true,
-          "autoincrement": false
+          "default": "now()"
         }
       },
       "indexes": {},
       "foreignKeys": {},
       "compositePrimaryKeys": {},
       "uniqueConstraints": {},
-      "checkConstraints": {}
+      "policies": {},
+      "checkConstraints": {},
+      "isRLSEnabled": false
     }
   },
-  "views": {},
   "enums": {},
+  "schemas": {},
+  "sequences": {},
+  "roles": {},
+  "policies": {},
+  "views": {},
   "_meta": {
+    "columns": {},
     "schemas": {},
-    "tables": {},
-    "columns": {}
-  },
-  "internal": {
-    "indexes": {}
+    "tables": {}
   }
 }

package/template/server/src/database/migrations/meta/_journal.json

@@ -0,0 +1,13 @@
+{
+  "version": "7",
+  "dialect": "postgresql",
+  "entries": [
+    {
+      "idx": 0,
+      "version": "7",
+      "when": 1761156145639,
+      "tag": "0000_init",
+      "breakpoints": true
+    }
+  ]
+}

package/template/server/src/database/schema/accounts.ts

@@ -0,0 +1,20 @@
+import { pgTable } from 'drizzle-orm/pg-core'
+
+import { users } from './users'
+
+// https://www.better-auth.com/docs/concepts/database#account
+export const accounts = pgTable('accounts', t => ({
+  id: t.text().primaryKey(),
+  userId: t.text().notNull().references(() => users.id, { onDelete: 'cascade' }),
+  accountId: t.text().notNull(),
+  providerId: t.text().notNull(),
+  accessToken: t.text(),
+  refreshToken: t.text(),
+  accessTokenExpiresAt: t.timestamp(),
+  refreshTokenExpiresAt: t.timestamp(),
+  scope: t.text(),
+  idToken: t.text(),
+  password: t.text(),
+  createdAt: t.timestamp().notNull().defaultNow(),
+  updatedAt: t.timestamp().notNull().defaultNow().$onUpdate(() => new Date()),
+}))

package/template/server/src/database/schema/sessions.ts

@@ -0,0 +1,15 @@
+import { pgTable } from 'drizzle-orm/pg-core'
+
+import { users } from './users'
+
+// https://www.better-auth.com/docs/concepts/database#session
+export const sessions = pgTable('sessions', t => ({
+  id: t.text().primaryKey(),
+  userId: t.text().notNull().references(() => users.id, { onDelete: 'cascade' }),
+  token: t.text().notNull().unique(),
+  expiresAt: t.timestamp().notNull(),
+  ipAddress: t.text(),
+  userAgent: t.text(),
+  createdAt: t.timestamp().notNull().defaultNow(),
+  updatedAt: t.timestamp().notNull().defaultNow().$onUpdate(() => new Date()),
+}))

package/template/server/src/database/schema/users.ts

@@ -0,0 +1,12 @@
+import { pgTable } from 'drizzle-orm/pg-core'
+
+// https://www.better-auth.com/docs/concepts/database#user
+export const users = pgTable('users', t => ({
+  id: t.text().primaryKey(),
+  name: t.text().notNull(),
+  email: t.text().notNull().unique(),
+  emailVerified: t.boolean().notNull().default(false),
+  image: t.text(),
+  createdAt: t.timestamp().notNull().defaultNow(),
+  updatedAt: t.timestamp().notNull().defaultNow().$onUpdate(() => new Date()),
+}))

package/template/server/src/database/schema/verifications.ts

@@ -0,0 +1,11 @@
+import { pgTable } from 'drizzle-orm/pg-core'
+
+// https://www.better-auth.com/docs/concepts/database#verification
+export const verifications = pgTable('verifications', t => ({
+  id: t.text().primaryKey(),
+  identifier: t.text().notNull(),
+  value: t.text().notNull(),
+  expiresAt: t.timestamp().notNull(),
+  createdAt: t.timestamp().notNull().defaultNow(),
+  updatedAt: t.timestamp().notNull().defaultNow().$onUpdate(() => new Date()),
+}))

package/template/{backend → server}/src/env.d.ts

@@ -1,6 +1,6 @@
 interface ImportMetaEnv {
-  readonly BETTER_AUTH_SECRET: string
-  readonly BETTER_AUTH_URL: string
+  readonly ALLOWED_ORIGINS: string
+  readonly AUTH_SECRET: string
   readonly DATABASE_URL: string
   readonly LOG_LEVEL: string
   readonly NODE_ENV: string

package/template/{backend → server}/src/main.ts

@@ -1,32 +1,36 @@
 import process from 'node:process'
 
-import { createBetterAuth } from '@backend/auth'
-import { db } from '@backend/database'
-import { createRpcHandler } from '@backend/orpc'
-import { router } from '@backend/orpc/router'
-import { logger } from '@backend/utils/logger'
+import { createBetterAuth } from '@server/auth'
+import { db } from '@server/database'
+import { createRpcHandler } from '@server/orpc'
+import { router } from '@server/orpc/router'
+import { cors } from '@server/utils/cors'
+import { logger } from '@server/utils/logger'
 
 const auth = createBetterAuth({ db, logger })
 const rpcHandler = createRpcHandler(router)
 
-const server = Bun.serve({
-  hostname: import.meta.env.HOST ?? '0.0.0.0',
-  port: import.meta.env.PORT ?? 4000,
-  async fetch(request) {
-    const { matched, response } = await rpcHandler.handle(request, {
+const routes = {
+  '/auth/*': cors(async (req) => {
+    return await auth.handler(req)
+  }),
+  '/rpc/*': cors(async (req) => {
+    const { matched, response } = await rpcHandler.handle(req, {
       prefix: '/rpc',
-      context: {
-        auth,
-        db,
-        logger,
-      },
+      context: { auth, db, logger },
     })
 
     if (matched)
       return response
 
     return new Response('Not found', { status: 404 })
-  },
+  }),
+}
+
+const server = Bun.serve({
+  hostname: import.meta.env.HOST ?? '0.0.0.0',
+  port: import.meta.env.PORT ?? 4000,
+  routes,
   error(error) {
     logger.error(error)
     return new Response('Internal Server Error', { status: 500 })

package/template/server/src/orpc/context.ts

@@ -0,0 +1,10 @@
+import type { RequestHeadersPluginContext, ResponseHeadersPluginContext } from '@orpc/server/plugins'
+import type { Auth } from '@server/auth'
+import type { Database } from '@server/database'
+import type { Logger } from '@server/utils/logger'
+
+export interface Context extends RequestHeadersPluginContext, ResponseHeadersPluginContext {
+  auth: Auth
+  db: Database
+  logger: Logger
+}

package/template/server/src/orpc/handler.ts

@@ -0,0 +1,34 @@
+import { onError, ORPCError, type Router } from '@orpc/server'
+import { RPCHandler } from '@orpc/server/fetch'
+import {
+  RequestHeadersPlugin,
+  ResponseHeadersPlugin,
+} from '@orpc/server/plugins'
+import { APIError } from 'better-auth/api'
+
+import type { Context } from './context'
+
+export function createRpcHandler<T extends Context>(router: Router<any, T>) {
+  return new RPCHandler<T>(router, {
+    plugins: [
+      new RequestHeadersPlugin(),
+      new ResponseHeadersPlugin(),
+    ],
+    clientInterceptors: [
+      onError((error, { context }) => {
+        if (error instanceof APIError) {
+          throw new ORPCError(error.body?.code ?? 'INTERNAL_SERVER_ERROR', {
+            status: error.statusCode,
+            message: error.body?.message,
+          })
+        }
+
+        if (error instanceof ORPCError) {
+          throw error
+        }
+
+        context.logger.error(error)
+      }),
+    ],
+  })
+}

package/template/server/src/orpc/index.ts

@@ -0,0 +1,18 @@
+import { os } from '@orpc/server'
+import { authMiddleware } from '@server/orpc/middlewares'
+
+import type { Context } from './context'
+
+export { createRpcHandler } from './handler'
+
+export type { Context }
+
+export const pub = os
+  .$context<Context>()
+  .errors({
+    UNAUTHORIZED: { status: 401 },
+  })
+
+/** @beta */
+export const authed = pub
+  .use(authMiddleware)

package/template/server/src/orpc/middlewares/auth.ts

@@ -0,0 +1,23 @@
+import { ORPCError, os } from '@orpc/server'
+import type { Context } from '@server/orpc'
+
+export const authMiddleware = os
+  .$context<Context>()
+  .middleware(async ({ context, next }) => {
+    const { response: session, headers } = await context.auth.api.getSession({
+      headers: context.reqHeaders,
+      returnHeaders: true,
+    })
+
+    headers.forEach((v, k) => context.resHeaders?.append(k, v))
+
+    if (!session) {
+      throw new ORPCError('UNAUTHORIZED')
+    }
+
+    return next({
+      context: {
+        user: session.user,
+      },
+    })
+  })

package/template/server/src/orpc/router/index.ts

@@ -0,0 +1,19 @@
+import { authed, pub } from '@server/orpc'
+import * as v from 'valibot'
+
+export type { RouterClient } from '@orpc/server'
+
+export const router = {
+  public: pub
+    .input(v.any())
+    .handler(async () => {
+      return 'public'
+    }),
+  private: authed
+    .input(v.any())
+    .handler(async () => {
+      return 'private'
+    }),
+}
+
+export type Router = typeof router