@nextsparkjs/theme-default 0.1.0-beta.49 → 0.1.0-beta.51

package/api/ai/chat/stream/route.ts

@@ -26,6 +26,7 @@
 import { NextRequest } from 'next/server'
 import { z } from 'zod'
 import { authenticateRequest } from '@nextsparkjs/core/lib/api/auth/dual-auth'
+import { withRateLimitTier } from '@nextsparkjs/core/lib/api/rate-limit'
 import { streamChat } from '@/plugins/langchain/lib/agent-factory'
 import { createSSEEncoder } from '@/plugins/langchain/lib/streaming'
 import { loadSystemPrompt } from '@/themes/default/lib/langchain/agents'
@@ -46,7 +47,7 @@ const StreamChatRequestSchema = z.object({
 /**
  * POST - Stream chat response
  */
-export async function POST(request: NextRequest) {
+const postHandler = async (request: NextRequest) => {
     try {
         // 1. Authentication
         const authResult = await authenticateRequest(request)
@@ -210,3 +211,5 @@ export async function POST(request: NextRequest) {
         ) as any
     }
 }
+
+export const POST = withRateLimitTier(postHandler, 'write')

package/api/ai/orchestrator/route.ts

@@ -1,6 +1,7 @@
 import { NextRequest, NextResponse } from 'next/server'
 import { z } from 'zod'
 import { authenticateRequest } from '@nextsparkjs/core/lib/api/auth/dual-auth'
+import { withRateLimitTier } from '@nextsparkjs/core/lib/api/rate-limit'
 import { processMessage } from '@/themes/default/lib/langchain/orchestrator'
 import { dbMemoryStore } from '@/plugins/langchain/lib/db-memory-store'
 import type { ChatMessage } from '@/plugins/langchain/types/langchain.types'
@@ -52,7 +53,7 @@ function convertToApiMessages(
  * - Sub-agents: task-assistant, customer-assistant, page-assistant
  * - Handles ambiguous requests by asking for clarification
  */
-export async function POST(req: NextRequest) {
+const postHandler = async (req: NextRequest) => {
     try {
         // 1. Dual authentication (API key or session)
         const authResult = await authenticateRequest(req)
@@ -118,10 +119,12 @@ export async function POST(req: NextRequest) {
     }
 }
 
+export const POST = withRateLimitTier(postHandler, 'write')
+
 /**
  * GET - Retrieve conversation history
  */
-export async function GET(req: NextRequest) {
+const getHandler = async (req: NextRequest) => {
     const { searchParams } = new URL(req.url)
     const sessionId = searchParams.get('sessionId')
 
@@ -187,10 +190,12 @@ export async function GET(req: NextRequest) {
     }
 }
 
+export const GET = withRateLimitTier(getHandler, 'read')
+
 /**
  * DELETE - Clear conversation
  */
-export async function DELETE(req: NextRequest) {
+const deleteHandler = async (req: NextRequest) => {
     const authResult = await authenticateRequest(req)
     if (!authResult.success || !authResult.user) {
         return NextResponse.json({ success: false, error: 'Unauthorized' }, { status: 401 })
@@ -224,3 +229,5 @@ export async function DELETE(req: NextRequest) {
         return NextResponse.json({ success: false, error: 'Failed to clear' }, { status: 500 })
     }
 }
+
+export const DELETE = withRateLimitTier(deleteHandler, 'write')

package/api/ai/single-agent/route.ts

@@ -14,6 +14,7 @@
 import { NextRequest, NextResponse } from 'next/server'
 import { z } from 'zod'
 import { authenticateRequest } from '@nextsparkjs/core/lib/api/auth/dual-auth'
+import { withRateLimitTier } from '@nextsparkjs/core/lib/api/rate-limit'
 import { createAgent } from '@/plugins/langchain/lib/agent-factory'
 import {
     dbMemoryStore,
@@ -74,7 +75,7 @@ function convertToApiMessages(
 /**
  * POST - Send message to single agent
  */
-export async function POST(req: NextRequest) {
+const postHandler = async (req: NextRequest) => {
     try {
         // 1. Authentication
         const authResult = await authenticateRequest(req)
@@ -181,10 +182,12 @@ export async function POST(req: NextRequest) {
     }
 }
 
+export const POST = withRateLimitTier(postHandler, 'write')
+
 /**
  * GET - Retrieve conversation history
  */
-export async function GET(req: NextRequest) {
+const getHandler = async (req: NextRequest) => {
     const { searchParams } = new URL(req.url)
     const sessionId = searchParams.get('sessionId')
 
@@ -252,10 +255,12 @@ export async function GET(req: NextRequest) {
     }
 }
 
+export const GET = withRateLimitTier(getHandler, 'read')
+
 /**
  * DELETE - Clear conversation
  */
-export async function DELETE(req: NextRequest) {
+const deleteHandler = async (req: NextRequest) => {
     const authResult = await authenticateRequest(req)
     if (!authResult.success || !authResult.user) {
         return NextResponse.json({ success: false, error: 'Unauthorized' }, { status: 401 })
@@ -289,3 +294,5 @@ export async function DELETE(req: NextRequest) {
         return NextResponse.json({ success: false, error: 'Failed to clear' }, { status: 500 })
     }
 }
+
+export const DELETE = withRateLimitTier(deleteHandler, 'write')

package/api/ai/usage/route.ts

@@ -20,6 +20,7 @@
 
 import { NextRequest, NextResponse } from 'next/server'
 import { authenticateRequest } from '@nextsparkjs/core/lib/api/auth/dual-auth'
+import { withRateLimitTier } from '@nextsparkjs/core/lib/api/rate-limit'
 import { tokenTracker } from '@/plugins/langchain/lib/token-tracker'
 import { queryOne } from '@nextsparkjs/core/lib/db'
 
@@ -28,7 +29,7 @@ type Period = 'today' | '7d' | '30d' | 'all'
 /**
  * GET - Retrieve token usage statistics
  */
-export async function GET(request: NextRequest) {
+const getHandler = async (request: NextRequest) => {
     try {
         // 1. Authentication
         const authResult = await authenticateRequest(request)
@@ -120,3 +121,5 @@ export async function GET(request: NextRequest) {
         )
     }
 }
+
+export const GET = withRateLimitTier(getHandler, 'read')

package/blocks/text-content/component.tsx

@@ -65,14 +65,16 @@ export function TextContentBlock({
         )}
 
         {/* Rich Text Content */}
-        <div
-          className={cn(
-            'prose prose-lg dark:prose-invert',
-            maxWidthClasses[maxWidth],
-            alignmentClasses[alignment]
-          )}
-          dangerouslySetInnerHTML={{ __html: content }}
-        />
+        {content && (
+          <div
+            className={cn(
+              'prose prose-lg dark:prose-invert',
+              maxWidthClasses[maxWidth],
+              alignmentClasses[alignment]
+            )}
+            dangerouslySetInnerHTML={{ __html: content }}
+          />
+        )}
 
         {/* Optional CTA */}
         {cta && (

package/config/dashboard.config.ts

@@ -94,6 +94,20 @@ export const DASHBOARD_CONFIG = {
       enabled: true,
     },
 
+    /**
+     * Settings menu dropdown (gear icon)
+     */
+    settingsMenu: {
+      enabled: true,
+      links: [
+        {
+          label: 'navigation.patterns',
+          href: '/dashboard/patterns',
+          icon: 'layers',
+        },
+      ],
+    },
+
     /**
      * User menu dropdown
      */

package/config/permissions.config.ts

@@ -110,6 +110,17 @@ export const PERMISSIONS_CONFIG_OVERRIDES: ThemePermissionsConfig = {
       { action: 'delete', label: 'Delete Pages', description: 'Can delete pages', roles: ['owner', 'admin'], dangerous: true },
       { action: 'publish', label: 'Publish Pages', description: 'Can publish pages to make them public', roles: ['owner', 'admin'] },
     ],
+
+    // ------------------------------------------
+    // PATTERNS
+    // ------------------------------------------
+    patterns: [
+      { action: 'create', label: 'Create Patterns', description: 'Can create reusable patterns', roles: ['owner', 'admin'] },
+      { action: 'read', label: 'View Patterns', description: 'Can view pattern details', roles: ['owner', 'admin', 'member', 'viewer'] },
+      { action: 'list', label: 'List Patterns', description: 'Can see the patterns list', roles: ['owner', 'admin', 'member', 'viewer'] },
+      { action: 'update', label: 'Edit Patterns', description: 'Can modify patterns', roles: ['owner', 'admin'] },
+      { action: 'delete', label: 'Delete Patterns', description: 'Can delete patterns', roles: ['owner', 'admin'], dangerous: true },
+    ],
   },
 
   // ==========================================

package/messages/en/admin.json

@@ -258,7 +258,18 @@
         "noDesignFields": "No design fields",
         "noAdvancedFields": "No advanced fields"
       },
-      "noFields": "This block has no configurable fields"
+      "noFields": "This block has no configurable fields",
+      "pattern": {
+        "title": "Pattern Reference",
+        "locked": {
+          "title": "Pattern is read-only",
+          "description": "To edit this pattern's content, edit the pattern directly. Changes will be reflected everywhere it's used."
+        },
+        "actions": {
+          "edit": "Edit Pattern",
+          "remove": "Remove from page"
+        }
+      }
     }
   }
 }

package/messages/es/admin.json

@@ -258,7 +258,18 @@
         "noDesignFields": "Sin campos de diseño",
         "noAdvancedFields": "Sin campos avanzados"
       },
-      "noFields": "Este bloque no tiene campos configurables"
+      "noFields": "Este bloque no tiene campos configurables",
+      "pattern": {
+        "title": "Referencia de Patrón",
+        "locked": {
+          "title": "El patrón es de solo lectura",
+          "description": "Para editar el contenido de este patrón, edítalo directamente. Los cambios se reflejarán en todos los lugares donde se usa."
+        },
+        "actions": {
+          "edit": "Editar Patrón",
+          "remove": "Quitar de la página"
+        }
+      }
     }
   }
 }

package/migrations/093_pages_sample_data.sql

@@ -20,7 +20,7 @@ INSERT INTO public.pages (
   "createdAt",
   "updatedAt"
 ) VALUES (
-  gen_random_uuid(),
+  '00000000-0000-4000-a000-000000000001',
   'usr-carlos-001',
   'team-everpoint-001',
   'home',
@@ -332,7 +332,7 @@ INSERT INTO public.pages (
   "createdAt",
   "updatedAt"
 ) VALUES (
-  gen_random_uuid(),
+  '00000000-0000-4000-a000-000000000002',
   'usr-carlos-001',
   'team-everpoint-001',
   'features',
@@ -500,7 +500,7 @@ INSERT INTO public.pages (
   "createdAt",
   "updatedAt"
 ) VALUES (
-  gen_random_uuid(),
+  '00000000-0000-4000-a000-000000000003',
   'usr-carlos-001',
   'team-everpoint-001',
   'pricing',
@@ -644,7 +644,7 @@ INSERT INTO public.pages (
   "createdAt",
   "updatedAt"
 ) VALUES (
-  gen_random_uuid(),
+  '00000000-0000-4000-a000-000000000004',
   'usr-carlos-001',
   'team-everpoint-001',
   'about',
@@ -803,7 +803,7 @@ INSERT INTO public.pages (
   "createdAt",
   "updatedAt"
 ) VALUES (
-  gen_random_uuid(),
+  '00000000-0000-4000-a000-000000000005',
   'usr-carlos-001',
   'team-everpoint-001',
   'getting-started',
@@ -955,7 +955,7 @@ INSERT INTO public.pages (
   "createdAt",
   "updatedAt"
 ) VALUES (
-  gen_random_uuid(),
+  '00000000-0000-4000-a000-000000000006',
   'usr-carlos-001',
   'team-everpoint-001',
   'contact',
@@ -1068,7 +1068,7 @@ INSERT INTO public.pages (
   "createdAt",
   "updatedAt"
 ) VALUES (
-  gen_random_uuid(),
+  '00000000-0000-4000-a000-000000000007',
   'usr-carlos-001',
   'team-everpoint-001',
   'demo',

package/migrations/098_patterns_sample_data.sql

@@ -0,0 +1,234 @@
+-- Migration: 098_patterns_sample_data.sql
+-- Description: Sample patterns for testing pattern references and usage tracking
+-- Date: 2025-01-17
+
+-- =====================================================
+-- PATTERNS SAMPLE DATA
+-- =====================================================
+
+-- Pattern 1: Newsletter CTA (Published)
+INSERT INTO public.patterns (
+  id,
+  "userId",
+  "teamId",
+  title,
+  slug,
+  blocks,
+  status,
+  description,
+  "createdAt",
+  "updatedAt"
+) VALUES (
+  '00000000-0000-4000-b000-000000000001',
+  'usr-carlos-001',
+  'team-everpoint-001',
+  'Newsletter CTA',
+  'newsletter-cta',
+  '[
+    {
+      "id": "newsletter-cta-block",
+      "blockSlug": "cta-section",
+      "props": {
+        "title": "Stay Updated",
+        "content": "Subscribe to our newsletter for the latest updates, tips, and exclusive content delivered straight to your inbox.",
+        "backgroundColor": "primary",
+        "textColor": "white",
+        "primaryCta": {
+          "label": "Subscribe Now",
+          "url": "/newsletter",
+          "variant": "secondary"
+        },
+        "secondaryCta": {
+          "label": "Learn More",
+          "url": "/about",
+          "variant": "outline"
+        }
+      }
+    }
+  ]',
+  'published',
+  'Reusable newsletter call-to-action section for pages',
+  NOW() - INTERVAL '7 days',
+  NOW() - INTERVAL '2 days'
+) ON CONFLICT (id) DO UPDATE SET
+  title = EXCLUDED.title,
+  slug = EXCLUDED.slug,
+  blocks = EXCLUDED.blocks,
+  status = EXCLUDED.status,
+  description = EXCLUDED.description,
+  "updatedAt" = EXCLUDED."updatedAt";
+
+-- Pattern 2: Footer Links (Published)
+INSERT INTO public.patterns (
+  id,
+  "userId",
+  "teamId",
+  title,
+  slug,
+  blocks,
+  status,
+  description,
+  "createdAt",
+  "updatedAt"
+) VALUES (
+  '00000000-0000-4000-b000-000000000002',
+  'usr-carlos-001',
+  'team-everpoint-001',
+  'Footer Links',
+  'footer-links',
+  '[
+    {
+      "id": "footer-links-block",
+      "blockSlug": "text-content",
+      "props": {
+        "content": "## Quick Links\n\n- [Home](/)\n- [Features](/features)\n- [Pricing](/pricing)\n- [About](/about)\n- [Contact](/contact)\n\n## Resources\n\n- [Documentation](/getting-started)\n- [API Reference](/api)\n- [Support](/support)\n- [Blog](/blog)",
+        "textAlign": "left",
+        "maxWidth": "4xl",
+        "padding": "lg"
+      }
+    }
+  ]',
+  'published',
+  'Common footer links section for all pages',
+  NOW() - INTERVAL '14 days',
+  NOW() - INTERVAL '5 days'
+) ON CONFLICT (id) DO UPDATE SET
+  title = EXCLUDED.title,
+  slug = EXCLUDED.slug,
+  blocks = EXCLUDED.blocks,
+  status = EXCLUDED.status,
+  description = EXCLUDED.description,
+  "updatedAt" = EXCLUDED."updatedAt";
+
+-- Pattern 3: Hero Header (Draft)
+INSERT INTO public.patterns (
+  id,
+  "userId",
+  "teamId",
+  title,
+  slug,
+  blocks,
+  status,
+  description,
+  "createdAt",
+  "updatedAt"
+) VALUES (
+  '00000000-0000-4000-b000-000000000003',
+  'usr-carlos-001',
+  'team-everpoint-001',
+  'Hero Header',
+  'hero-header',
+  '[
+    {
+      "id": "hero-header-block",
+      "blockSlug": "hero",
+      "props": {
+        "title": "Welcome to NextSpark",
+        "content": "The complete SaaS boilerplate for modern web applications. Build faster, scale smarter.",
+        "textAlign": "center",
+        "size": "lg",
+        "cta": {
+          "text": "Get Started",
+          "link": "/signup",
+          "variant": "default"
+        },
+        "secondaryCta": {
+          "text": "View Demo",
+          "link": "/demo",
+          "variant": "outline"
+        }
+      }
+    }
+  ]',
+  'draft',
+  'Standard hero header for landing pages (work in progress)',
+  NOW() - INTERVAL '3 days',
+  NOW() - INTERVAL '1 day'
+) ON CONFLICT (id) DO UPDATE SET
+  title = EXCLUDED.title,
+  slug = EXCLUDED.slug,
+  blocks = EXCLUDED.blocks,
+  status = EXCLUDED.status,
+  description = EXCLUDED.description,
+  "updatedAt" = EXCLUDED."updatedAt";
+
+-- =====================================================
+-- PATTERN USAGES SAMPLE DATA
+-- =====================================================
+
+-- Usage 1: Newsletter CTA used in Home page
+INSERT INTO public.pattern_usages (
+  id,
+  "patternId",
+  "entityType",
+  "entityId",
+  "teamId",
+  "createdAt"
+) VALUES (
+  '00000000-0000-4000-c000-000000000001',
+  '00000000-0000-4000-b000-000000000001',
+  'pages',
+  '00000000-0000-4000-a000-000000000001',
+  'team-everpoint-001',
+  NOW() - INTERVAL '5 days'
+) ON CONFLICT ("patternId", "entityType", "entityId") DO NOTHING;
+
+-- Usage 2: Newsletter CTA used in Features page
+INSERT INTO public.pattern_usages (
+  id,
+  "patternId",
+  "entityType",
+  "entityId",
+  "teamId",
+  "createdAt"
+) VALUES (
+  '00000000-0000-4000-c000-000000000002',
+  '00000000-0000-4000-b000-000000000001',
+  'pages',
+  '00000000-0000-4000-a000-000000000002',
+  'team-everpoint-001',
+  NOW() - INTERVAL '4 days'
+) ON CONFLICT ("patternId", "entityType", "entityId") DO NOTHING;
+
+-- Usage 3: Footer Links used in Home page
+INSERT INTO public.pattern_usages (
+  id,
+  "patternId",
+  "entityType",
+  "entityId",
+  "teamId",
+  "createdAt"
+) VALUES (
+  '00000000-0000-4000-c000-000000000003',
+  '00000000-0000-4000-b000-000000000002',
+  'pages',
+  '00000000-0000-4000-a000-000000000001',
+  'team-everpoint-001',
+  NOW() - INTERVAL '10 days'
+) ON CONFLICT ("patternId", "entityType", "entityId") DO NOTHING;
+
+-- Usage 4: Footer Links used in About page
+INSERT INTO public.pattern_usages (
+  id,
+  "patternId",
+  "entityType",
+  "entityId",
+  "teamId",
+  "createdAt"
+) VALUES (
+  '00000000-0000-4000-c000-000000000004',
+  '00000000-0000-4000-b000-000000000002',
+  'pages',
+  '00000000-0000-4000-a000-000000000004',
+  'team-everpoint-001',
+  NOW() - INTERVAL '8 days'
+) ON CONFLICT ("patternId", "entityType", "entityId") DO NOTHING;
+
+-- =====================================================
+-- VERIFICATION QUERIES (for manual testing)
+-- =====================================================
+-- SELECT id, title, status FROM patterns WHERE id::text LIKE '00000000-0000-4000-b000-%';
+-- Expected: 3 rows (newsletter, footer-links, hero-header)
+
+-- SELECT id, "patternId", "entityType", "entityId" FROM pattern_usages WHERE id::text LIKE '00000000-0000-4000-c000-%';
+-- Expected: 4 rows

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nextsparkjs/theme-default",
-  "version": "0.1.0-beta.49",
+  "version": "0.1.0-beta.51",
   "private": false,
   "type": "module",
   "main": "./config/theme.config.ts",
@@ -17,8 +17,8 @@
     "react-dom": "^19.0.0",
     "react-markdown": "^10.1.0",
     "zod": "^4.0.0",
-    "@nextsparkjs/core": "0.1.0-beta.49",
-    "@nextsparkjs/testing": "0.1.0-beta.49"
+    "@nextsparkjs/core": "0.1.0-beta.51",
+    "@nextsparkjs/testing": "0.1.0-beta.51"
   },
   "nextspark": {
     "type": "theme",