@soapjs/cli 1.0.0 → 1.0.1

package/build/registry/registry.service.js

@@ -3,7 +3,11 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.registerGeneratedFile = exports.assertCanWriteGeneratedFile = exports.upsertGeneratedFile = exports.readFileHash = exports.hashContent = void 0;
+exports.hashContent = hashContent;
+exports.readFileHash = readFileHash;
+exports.upsertGeneratedFile = upsertGeneratedFile;
+exports.assertCanWriteGeneratedFile = assertCanWriteGeneratedFile;
+exports.registerGeneratedFile = registerGeneratedFile;
 const crypto_1 = __importDefault(require("crypto"));
 const promises_1 = __importDefault(require("fs/promises"));
 const path_1 = __importDefault(require("path"));
@@ -11,7 +15,6 @@ const errors_1 = require("../core/errors");
 function hashContent(content) {
     return crypto_1.default.createHash("sha256").update(content).digest("hex");
 }
-exports.hashContent = hashContent;
 async function readFileHash(filePath) {
     try {
         return hashContent(await promises_1.default.readFile(filePath, "utf8"));
@@ -23,7 +26,6 @@ async function readFileHash(filePath) {
         throw error;
     }
 }
-exports.readFileHash = readFileHash;
 function upsertGeneratedFile(registry, entry) {
     const index = registry.generatedFiles.findIndex((item) => item.path === entry.path);
     const next = {
@@ -37,7 +39,6 @@ function upsertGeneratedFile(registry, entry) {
         registry.generatedFiles.push(next);
     }
 }
-exports.upsertGeneratedFile = upsertGeneratedFile;
 async function assertCanWriteGeneratedFile(root, relativePath, registry, options = {}) {
     const targetPath = path_1.default.join(root, relativePath);
     const entry = registry.generatedFiles.find((item) => item.path === relativePath);
@@ -53,7 +54,6 @@ async function assertCanWriteGeneratedFile(root, relativePath, registry, options
     }
     throw new errors_1.CliError(`Refusing to overwrite modified file ${relativePath}. Use --force to overwrite or --write-new to write ${relativePath}.new.`);
 }
-exports.assertCanWriteGeneratedFile = assertCanWriteGeneratedFile;
 async function registerGeneratedFile(options, content, context) {
     upsertGeneratedFile(options.registry, {
         path: options.relativePath,
@@ -65,4 +65,3 @@ async function registerGeneratedFile(options, content, context) {
         context.output.info(`[dry-run] register ${options.relativePath}`);
     }
 }
-exports.registerGeneratedFile = registerGeneratedFile;

package/build/summary/create-summary.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.formatCreateSummary = void 0;
+exports.formatCreateSummary = formatCreateSummary;
 function formatCreateSummary(plan) {
     return [
         `Project: ${plan.name}`,
@@ -18,7 +18,6 @@ function formatCreateSummary(plan) {
         `Package manager: ${plan.packageManager}`,
     ].join("\n");
 }
-exports.formatCreateSummary = formatCreateSummary;
 function formatList(values) {
     return values.length > 0 ? values.join(", ") : "none";
 }

package/build/templates/naming.js

@@ -1,6 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.createNameVariants = exports.pluralize = void 0;
+exports.pluralize = pluralize;
+exports.createNameVariants = createNameVariants;
 const change_case_1 = require("change-case");
 function pluralize(value) {
     if (value.endsWith("s")) {
@@ -14,7 +15,6 @@ function pluralize(value) {
     }
     return `${value}s`;
 }
-exports.pluralize = pluralize;
 function createNameVariants(name) {
     const kebabName = (0, change_case_1.paramCase)(name);
     return {
@@ -27,4 +27,3 @@ function createNameVariants(name) {
         pluralName: pluralize(kebabName),
     };
 }
-exports.createNameVariants = createNameVariants;

package/build/templates/template-engine.js

@@ -1,10 +1,9 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.renderTemplate = void 0;
+exports.renderTemplate = renderTemplate;
 function renderTemplate(template, values) {
     return template.replace(/\{\{\s*([a-zA-Z0-9_.-]+)\s*\}\}/g, (_, key) => {
         const value = values[key];
         return value === undefined ? "" : String(value);
     });
 }
-exports.renderTemplate = renderTemplate;

package/build/templates/template-resolver.js

@@ -1,12 +1,12 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.resolveTemplate = exports.registerTemplate = void 0;
+exports.registerTemplate = registerTemplate;
+exports.resolveTemplate = resolveTemplate;
 const errors_1 = require("../core/errors");
 const templates = new Map();
 function registerTemplate(name, content) {
     templates.set(name, content);
 }
-exports.registerTemplate = registerTemplate;
 function resolveTemplate(name) {
     const content = templates.get(name);
     if (!content) {
@@ -14,4 +14,3 @@ function resolveTemplate(name) {
     }
     return content;
 }
-exports.resolveTemplate = resolveTemplate;

package/build/terminal/terminal-capabilities.js

@@ -1,14 +1,13 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.canRunInteractiveMode = exports.getTerminalCapabilities = void 0;
+exports.getTerminalCapabilities = getTerminalCapabilities;
+exports.canRunInteractiveMode = canRunInteractiveMode;
 function getTerminalCapabilities() {
     return {
         stdinIsTty: Boolean(process.stdin.isTTY),
         stdoutIsTty: Boolean(process.stdout.isTTY),
     };
 }
-exports.getTerminalCapabilities = getTerminalCapabilities;
 function canRunInteractiveMode(capabilities = getTerminalCapabilities()) {
     return capabilities.stdinIsTty && capabilities.stdoutIsTty;
 }
-exports.canRunInteractiveMode = canRunInteractiveMode;

package/docs/cli/create.md

@@ -28,7 +28,7 @@ Prompts cover the supported MVP capabilities:
 - auth
 - messaging
 - realtime
-- telemetry
+- telemetry (`logs`, `otel-noop`, `metrics`, `memory`)
 - OpenAPI docs
 - contracts
 - Bruno API client
@@ -67,6 +67,9 @@ In interactive mode, preset values become prompt defaults. Explicit CLI flags st
 
 - Only `express` is currently supported.
 - `--contracts zod` enables generated contracts backed by Zod.
+- Auth projects use `@soapjs/soap-auth` 1.x recipe configs and the `@soapjs/soap-express/auth` router/middleware helpers.
+- Security defaults are generated through soap-express security config. Auth projects include route-specific throttling for login, refresh, and OAuth callbacks.
+- `--telemetry metrics` exposes `/metrics`; `--telemetry memory` exposes `/memory`. Minimal projects keep these monitoring endpoints disabled.
 - Database capabilities include `mongo`, `postgres`, `mysql`, `sqlite`, and `redis`. Resource repositories are generated for Mongo and SQL adapters; Redis is infrastructure-only for now.
 - `--install` runs the selected package manager after files are written. `--skip-install` always skips installation.
 - `--git-init` runs `git init` after files are written. It does not commit or push.

package/docs/guides/auth.md

@@ -1,6 +1,7 @@
 # Guide: Auth And Route Policies
 
 SoapJS CLI supports project-level auth capabilities and route-level policies.
+Generated auth bootstrap is based on `@soapjs/soap-auth` 1.x recipe configs and `@soapjs/soap-express/auth` helpers. The CLI registers `SoapAuth.create(...)` with the Express app and exposes generated auth routes through `createAuthRouter(...)`.
 
 ## Enable Auth
 
@@ -25,6 +26,14 @@ Supported auth capabilities:
 
 For routes, `local` is normalized to `jwt`.
 
+JWT projects include a local development login strategy so `/auth/login` can issue JWT access and refresh tokens. API key projects use `createApiKeyAuthConfig(...)` with a development `retrieveUserByApiKey` implementation. Generated `.env.example` includes `JWT_ACCESS_SECRET`, `JWT_REFRESH_SECRET`, and API key variables when relevant.
+
+Auth projects also enable route-specific throttling for:
+
+- `POST /auth/login`
+- `POST /auth/refresh`
+- `GET /auth/oauth/:provider/callback`
+
 ## Add Protected CRUD Routes
 
 ```bash
@@ -87,4 +96,3 @@ soap check routes
 ```
 
 This checks unknown auth strategies, disabled auth capabilities, invalid zones, policy-without-auth, contracts, and Bruno files.
-

package/docs/guides/index.md

@@ -4,6 +4,7 @@ Use these guides when building a service with SoapJS CLI.
 
 SoapJS CLI and generated projects require Node.js `>=24.17.0` (Node 24 LTS or newer).
 Generated projects include `.nvmrc` with `24.17.0`.
+Generated auth projects use `@soapjs/soap-auth` 1.x with the soap-express auth router and middleware helpers. Security defaults are emitted through soap-express security config, and metrics/memory endpoints are opt-in telemetry capabilities.
 
 ## Start Here
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@soapjs/cli",
-  "version": "1.0.0",
+  "version": "1.0.1",
   "description": "Deterministic project and code generator for SoapJS services.",
   "homepage": "https://docs.soapjs.com",
   "repository": "https://github.com/soapjs/soap-cli",
@@ -33,12 +33,12 @@
     "prepublish": "npm run clean && tsc --project tsconfig.build.json"
   },
   "dependencies": {
-    "@inquirer/prompts": "^3.3.2",
+    "@inquirer/prompts": "^8.5.2",
     "change-case": "^4.1.2",
     "commander": "^10.0.0"
   },
   "devDependencies": {
     "@types/node": "^24.0.0",
-    "typescript": "^4.5.4"
+    "typescript": "^5.9.3"
   }
 }