npm - @shipindays/shipindays - Versions diffs - 0.1.2 → 0.1.4 - Mend

@shipindays/shipindays 0.1.2 → 0.1.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of @shipindays/shipindays might be problematic. Click here for more details.

Files changed (25) hide show

package/templates/blocks/auth/supabase/src/lib/supabase/client.ts ADDED Viewed

@@ -0,0 +1,30 @@
+"use client";
+// FILE: src/lib/supabase/client.ts
+// ROUTE: not a route — imported by "use client" components ONLY
+// ROLE: creates a browser-side Supabase singleton
+//
+// Use this in:
+//   - Client components (anything with "use client" at the top)
+//   - Login/signup forms
+//   - OAuth buttons
+//
+// NEVER use this in server components or API routes — use server.ts instead.
+// ─────────────────────────────────────────────────────────────────────────────
+import { createBrowserClient } from "@supabase/ssr";
+// Singleton — reuses the same instance across the app
+// Prevents multiple GoTrue clients warning in dev
+let client: ReturnType<typeof createBrowserClient> | undefined;
+export function createSupabaseBrowserClient() {
+  if (client) return client;
+  client = createBrowserClient(
+    process.env.NEXT_PUBLIC_SUPABASE_URL!,
+    process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!,
+  );
+  return client;
+}

package/templates/blocks/auth/supabase/src/lib/supabase/server.ts ADDED Viewed

@@ -0,0 +1,40 @@
+// FILE: src/lib/supabase/server.ts
+// ROUTE: not a route — imported by server components and API routes ONLY
+// ROLE: creates a Supabase client that reads session cookies server-side
+//
+// Use this in:
+//   - Server components (app/dashboard/page.tsx)
+//   - API routes (app/api/*)
+//   - middleware.ts
+//
+// NEVER use this in "use client" components — use client.ts instead.
+// ─────────────────────────────────────────────────────────────────────────────
+import { createServerClient } from "@supabase/ssr";
+import { cookies } from "next/headers";
+export async function createSupabaseServerClient() {
+  const cookieStore = await cookies();
+  return createServerClient(
+    process.env.NEXT_PUBLIC_SUPABASE_URL!,
+    process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!,
+    {
+      cookies: {
+        getAll() {
+          return cookieStore.getAll();
+        },
+        setAll(cookiesToSet) {
+          try {
+            cookiesToSet.forEach(({ name, value, options }) =>
+              cookieStore.set(name, value, options),
+            );
+          } catch {
+            // called from a Server Component — safe to ignore
+            // middleware handles cookie refresh instead
+          }
+        },
+      },
+    },
+  );
+}

package/templates/blocks/auth/supabase/src/middleware.ts CHANGED Viewed

@@ -1,9 +1,9 @@
 // FILE: src/middleware.ts
-// ROUTE: runs on every request before the page renders
+// ROUTE: runs on every request before page renders
 // ROLE: Supabase Auth middleware
 //
 // INJECTED BY CLI when user picks "Supabase Auth"
-// Replaces base placeholder at src/middleware.ts
+// Overwrites base placeholder at src/middleware.ts
 //
 // Does two things:
 //   1. Refreshes the Supabase session cookie on every request (required by Supabase SSR)
@@ -16,29 +16,35 @@ import { NextRequest, NextResponse } from "next/server";
 export async function middleware(req: NextRequest) {
   let res = NextResponse.next({ request: req });
-  // Create Supabase client that can read + refresh session cookies
+  // Create Supabase client that can refresh session cookies
   const supabase = createServerClient(
     process.env.NEXT_PUBLIC_SUPABASE_URL!,
     process.env.NEXT_PUBLIC_SUPABASE_ANON_KEY!,
     {
       cookies: {
-        getAll()           { return req.cookies.getAll(); },
-        setAll(toSet) {
-          // Update cookies on both the request and response
-          toSet.forEach(({ name, value }) => req.cookies.set(name, value));
+        getAll() {
+          return req.cookies.getAll();
+        },
+        setAll(cookiesToSet) {
+          cookiesToSet.forEach(({ name, value }) =>
+            req.cookies.set(name, value),
+          );
           res = NextResponse.next({ request: req });
-          toSet.forEach(({ name, value, options }) =>
-            res.cookies.set(name, value, options)
+          cookiesToSet.forEach(({ name, value, options }) =>
+            res.cookies.set(name, value, options),
           );
         },
       },
-    }
+    },
   );
-  // IMPORTANT: always call getUser() in middleware — this refreshes the session
-  const { data: { user } } = await supabase.auth.getUser();
+  // IMPORTANT: always call getUser() in middleware
+  // This refreshes the session and keeps cookies up to date
+  const {
+    data: { user },
+  } = await supabase.auth.getUser();
-  // Protect /dashboard — redirect to /login if not authenticated
+  // Protect /dashboard and all nested routes
   const isProtected = req.nextUrl.pathname.startsWith("/dashboard");
   if (isProtected && !user) {
     const loginUrl = new URL("/login", req.url);
@@ -46,9 +52,16 @@ export async function middleware(req: NextRequest) {
     return NextResponse.redirect(loginUrl);
   }
+  // Redirect logged-in users away from /login and /signup
+  const isAuthPage =
+    req.nextUrl.pathname === "/login" || req.nextUrl.pathname === "/signup";
+  if (isAuthPage && user) {
+    return NextResponse.redirect(new URL("/dashboard", req.url));
+  }
   return res;
 }
 export const config = {
   matcher: ["/((?!api|_next/static|_next/image|favicon.ico).*)"],
-};
+};

package/templates/blocks/email/resend/{index.ts → src/lib/resend/index.ts} RENAMED Viewed

@@ -14,12 +14,18 @@ const resend = new Resend(process.env.RESEND_API_KEY);
 const FROM = "You <hello@yourdomain.com>"; // TODO: replace with your verified Resend domain
 // ─── sendWelcomeEmail ─────────────────────────────────────────────────────────
-export async function sendWelcomeEmail({ to, name }: { to: string; name: string }) {
-    await resend.emails.send({
-        from: FROM,
-        to,
-        subject: "Welcome! 🎉",
-        html: `
+export async function sendWelcomeEmail({
+  to,
+  name,
+}: {
+  to: string;
+  name: string;
+}) {
+  await resend.emails.send({
+    from: FROM,
+    to,
+    subject: "Welcome! 🎉",
+    html: `
       <div style="font-family:sans-serif;max-width:560px;margin:0 auto;padding:40px 20px">
         <h1 style="font-size:24px;color:#111">Hey ${name}, welcome aboard!</h1>
         <p style="color:#555;line-height:1.7">Your account is ready. Click below to get started.</p>
@@ -29,16 +35,22 @@ export async function sendWelcomeEmail({ to, name }: { to: string; name: string
         </a>
       </div>
     `,
-    });
+  });
 }
 // ─── sendPasswordResetEmail ───────────────────────────────────────────────────
-export async function sendPasswordResetEmail({ to, resetUrl }: { to: string; resetUrl: string }) {
-    await resend.emails.send({
-        from: FROM,
-        to,
-        subject: "Reset your password",
-        html: `
+export async function sendPasswordResetEmail({
+  to,
+  resetUrl,
+}: {
+  to: string;
+  resetUrl: string;
+}) {
+  await resend.emails.send({
+    from: FROM,
+    to,
+    subject: "Reset your password",
+    html: `
       <div style="font-family:sans-serif;max-width:560px;margin:0 auto;padding:40px 20px">
         <h1 style="font-size:24px;color:#111">Reset your password</h1>
         <p style="color:#555;line-height:1.7">Click below to reset your password. Link expires in 1 hour.</p>
@@ -49,5 +61,5 @@ export async function sendPasswordResetEmail({ to, resetUrl }: { to: string; res
         <p style="margin-top:24px;color:#999;font-size:12px">If you didn't request this, ignore this email.</p>
       </div>
     `,
-    });
-}
+  });
+}

package/templates/blocks/auth/nextauth/app/api/auth/[...nextauth]/route.ts DELETED Viewed

@@ -1,19 +0,0 @@
-// FILE: src/app/api/auth/[...nextauth]/route.ts
-// ROUTE: /api/auth/* (GET + POST)
-// ROLE: NextAuth v5 route handler
-//
-// INJECTED BY CLI — only exists when user picks NextAuth.
-// Supabase block does NOT have this file so it never gets created.
-//
-// Handles all NextAuth endpoints automatically:
-//   GET  /api/auth/session
-//   GET  /api/auth/csrf
-//   GET  /api/auth/providers
-//   POST /api/auth/signin
-//   POST /api/auth/signout
-//   GET  /api/auth/callback/:provider  ← OAuth redirect comes back here
-// ─────────────────────────────────────────────────────────────────────────────
-import { handlers } from "@/lib/auth";
-export const { GET, POST } = handlers;

package/templates/blocks/auth/nextauth/lib/auth/index.ts DELETED Viewed

@@ -1,98 +0,0 @@
-// FILE: src/lib/auth/index.ts
-// ROUTE: not a route — imported by middleware, dashboard, API routes
-// ROLE: NextAuth v5 implementation
-//
-// INJECTED BY CLI when user picks "NextAuth v5"
-// Replaces base placeholder at src/lib/auth/index.ts
-//
-// NextAuth DOES need an API route: src/app/api/auth/[...nextauth]/route.ts
-// That file is also included in this block and gets copied automatically.
-// ─────────────────────────────────────────────────────────────────────────────
-import NextAuth from "next-auth";
-import GitHub from "next-auth/providers/github";
-import Google from "next-auth/providers/google";
-import Credentials from "next-auth/providers/credentials";
-import { redirect } from "next/navigation";
-// ─── NextAuth config ──────────────────────────────────────────────────────────
-// handlers → used by /api/auth/[...nextauth]/route.ts
-// auth     → used by middleware + server components to read the session
-// signIn   → used by login page
-// signOut  → used by logout button
-export const { handlers, auth, signIn: nextAuthSignIn, signOut: nextAuthSignOut } = NextAuth({
-  providers: [
-    Google({
-      clientId:     process.env.AUTH_GOOGLE_ID!,
-      clientSecret: process.env.AUTH_GOOGLE_SECRET!,
-    }),
-    GitHub({
-      clientId:     process.env.AUTH_GITHUB_ID!,
-      clientSecret: process.env.AUTH_GITHUB_SECRET!,
-    }),
-    Credentials({
-      name: "credentials",
-      credentials: {
-        email:    { label: "Email",    type: "email" },
-        password: { label: "Password", type: "password" },
-      },
-      async authorize(credentials) {
-        // TODO: validate credentials against your database
-        // Example with your User model:
-        //   const user = await User.findOne({ email: credentials.email })
-        //   const valid = await bcrypt.compare(credentials.password, user.password)
-        //   if (!valid) return null
-        //   return { id: user._id, email: user.email, name: user.name }
-        return null;
-      },
-    }),
-  ],
-  callbacks: {
-    // Attach user id to the JWT token so we can read it in session
-    async jwt({ token, user }) {
-      if (user) token.id = user.id;
-      return token;
-    },
-    // Attach user id from token to the session object
-    async session({ session, token }) {
-      if (token && session.user) session.user.id = token.id as string;
-      return session;
-    },
-  },
-  pages: {
-    signIn: "/login",   // redirect here when auth is required
-    error:  "/login",   // redirect here on auth errors
-  },
-  session: { strategy: "jwt" },
-  secret: process.env.AUTH_SECRET,
-});
-// ─────────────────────────────────────────────────────────────────────────────
-// THE CONTRACT — same 3 functions as Supabase block
-// Rest of app calls these, never touches NextAuth directly
-// ─────────────────────────────────────────────────────────────────────────────
-// ─── getCurrentUser ───────────────────────────────────────────────────────────
-// Returns the logged-in user or null.
-export async function getCurrentUser() {
-  const session = await auth();
-  if (!session?.user) return null;
-  return session.user;
-}
-// ─── requireUser ─────────────────────────────────────────────────────────────
-// Returns the logged-in user OR redirects to /login.
-export async function requireUser() {
-  const user = await getCurrentUser();
-  if (!user) redirect("/login");
-  return user;
-}
-// ─── signOut ──────────────────────────────────────────────────────────────────
-// Signs the user out and redirects to home.
-export async function signOut() {
-  await nextAuthSignOut({ redirectTo: "/" });
-}

package/templates/blocks/auth/nextauth/middleware.ts DELETED Viewed

@@ -1,30 +0,0 @@
-// FILE: src/middleware.ts
-// ROUTE: runs on every request before the page renders
-// ROLE: NextAuth v5 middleware
-//
-// INJECTED BY CLI when user picks "NextAuth v5"
-// Replaces base placeholder at src/middleware.ts
-//
-// Reads the NextAuth JWT and redirects unauthenticated users
-// away from /dashboard to /login.
-// ─────────────────────────────────────────────────────────────────────────────
-import { auth } from "@/lib/auth";
-import { NextResponse } from "next/server";
-export default auth((req) => {
-  const isLoggedIn  = !!req.auth?.user;
-  const isProtected = req.nextUrl.pathname.startsWith("/dashboard");
-  if (isProtected && !isLoggedIn) {
-    const loginUrl = new URL("/login", req.url);
-    loginUrl.searchParams.set("callbackUrl", req.nextUrl.pathname);
-    return NextResponse.redirect(loginUrl);
-  }
-  return NextResponse.next();
-});
-export const config = {
-  matcher: ["/((?!api|_next/static|_next/image|favicon.ico).*)"],
-};