npm - @thinhnguyencth1204/nextcli - Versions diffs - 0.2.1 → 0.4.0 - Mend

@thinhnguyencth1204/nextcli 0.2.1 → 0.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (98) hide show

package/templates/next-base/src/instrumentation.ts ADDED Viewed

@@ -0,0 +1,14 @@
+export async function register() {
+  if (process.env.NEXT_RUNTIME !== "nodejs") {
+    return;
+  }
+  try {
+    const { runBootstrap } = await import("@/lib/bootstrap");
+    await runBootstrap();
+  } catch (error) {
+    const message =
+      error instanceof Error ? error.message : "Unknown instrumentation error";
+    console.warn(`[instrumentation] Bootstrap failed: ${message}`);
+  }
+}

package/templates/next-base/src/lib/auth-client.ts CHANGED Viewed

@@ -1,7 +1,7 @@
 import { createAuthClient } from "better-auth/react";
-import { jwtClient } from "better-auth/client/plugins";
+import { jwtClient, usernameClient } from "better-auth/client/plugins";
 export const authClient = createAuthClient({
   baseURL: process.env.NEXT_PUBLIC_APP_URL ?? "http://localhost:3000",
-  plugins: [jwtClient()],
+  plugins: [jwtClient(), usernameClient()],
 });

package/templates/next-base/src/lib/auth.ts CHANGED Viewed

@@ -1,6 +1,6 @@
 import { betterAuth } from "better-auth/minimal";
 import { prismaAdapter } from "better-auth/adapters/prisma";
-import { jwt } from "better-auth/plugins";
+import { jwt, username } from "better-auth/plugins";
 import prisma from "@/lib/prisma";
 const socialProviders = {
@@ -12,7 +12,7 @@ export const auth = betterAuth({
   database: prismaAdapter(prisma, {
     provider: "postgresql",
   }),
-  plugins: [jwt()],
+  plugins: [jwt(), username()],
   emailAndPassword: {
     enabled: true,
   },

package/templates/next-base/src/lib/bootstrap.ts ADDED Viewed

@@ -0,0 +1,96 @@
+import type { PrismaClient } from "@prisma/client";
+import {
+  ADMIN_ROLE_LEVEL,
+  ADMIN_ROLE_NAME,
+  INTERNAL_EMAIL_DOMAIN,
+  SUPER_ADMIN_USERNAME,
+} from "@/lib/constants";
+import { auth } from "@/lib/auth";
+import prisma from "@/lib/prisma";
+const DEFAULT_ADMIN_PASSWORD = "admin";
+function hasRoleModel(client: PrismaClient): boolean {
+  const delegate = (
+    client as PrismaClient & { role?: { findUnique?: unknown } }
+  ).role;
+  return typeof delegate?.findUnique === "function";
+}
+function logBootstrapSkip(message: string): void {
+  console.warn(`[bootstrap] ${message}`);
+}
+export async function runBootstrap(): Promise<void> {
+  if (!hasRoleModel(prisma)) {
+    logBootstrapSkip(
+      "Prisma client is missing the Role model. Run: bun run db:generate && bun run db:migrate",
+    );
+    return;
+  }
+  try {
+    let adminRole = await prisma.role.findUnique({
+      where: { name: ADMIN_ROLE_NAME },
+    });
+    if (!adminRole) {
+      adminRole = await prisma.role.create({
+        data: {
+          name: ADMIN_ROLE_NAME,
+          level: ADMIN_ROLE_LEVEL,
+        },
+      });
+    }
+    const existingAdmin = await prisma.user.findUnique({
+      where: { username: SUPER_ADMIN_USERNAME },
+    });
+    if (existingAdmin) {
+      if (!existingAdmin.roleId) {
+        await prisma.user.update({
+          where: { id: existingAdmin.id },
+          data: { roleId: adminRole.id },
+        });
+      }
+      return;
+    }
+    try {
+      await auth.api.signUpEmail({
+        body: {
+          email: `${SUPER_ADMIN_USERNAME}@${INTERNAL_EMAIL_DOMAIN}`,
+          password: DEFAULT_ADMIN_PASSWORD,
+          name: "Administrator",
+          username: SUPER_ADMIN_USERNAME,
+          displayUsername: SUPER_ADMIN_USERNAME,
+        },
+      });
+    } catch {
+      // User may already exist from a partial bootstrap run.
+    }
+    const adminUser = await prisma.user.findUnique({
+      where: { username: SUPER_ADMIN_USERNAME },
+    });
+    if (!adminUser) {
+      return;
+    }
+    await prisma.user.update({
+      where: { id: adminUser.id },
+      data: {
+        roleId: adminRole.id,
+        requirePasswordChange: true,
+      },
+    });
+  } catch (error) {
+    const message =
+      error instanceof Error ? error.message : "Unknown bootstrap error";
+    logBootstrapSkip(
+      `Skipped admin seed (${message}). Ensure Postgres is running and run: bun run db:migrate`,
+    );
+  }
+}

package/templates/next-base/src/lib/constants.ts ADDED Viewed

@@ -0,0 +1,7 @@
+/** Built-in super-admin account username — protected from RBAC mutations. */
+export const SUPER_ADMIN_USERNAME = "admin";
+export const ADMIN_ROLE_NAME = "admin";
+export const ADMIN_ROLE_LEVEL = 100;
+export const INTERNAL_EMAIL_DOMAIN = "internal.local";

package/templates/next-base/src/lib/prisma.ts CHANGED Viewed

@@ -1,10 +1,20 @@
+import { PrismaPg } from "@prisma/adapter-pg";
 import { PrismaClient } from "@prisma/client";
+import { Pool } from "pg";
 declare global {
   var prisma: PrismaClient | undefined;
 }
-const prisma = global.prisma ?? new PrismaClient();
+const connectionString = process.env.DATABASE_URL;
+if (!connectionString) {
+  throw new Error(
+    "DATABASE_URL is missing. Please set it in your environment.",
+  );
+}
+const adapter = new PrismaPg(new Pool({ connectionString }));
+const prisma = global.prisma ?? new PrismaClient({ adapter });
 if (process.env.NODE_ENV !== "production") {
   global.prisma = prisma;

package/templates/next-base/src/lib/rbac.ts ADDED Viewed

@@ -0,0 +1,62 @@
+import { headers } from "next/headers";
+import type { Role, User } from "@prisma/client";
+import { auth } from "@/lib/auth";
+import prisma from "@/lib/prisma";
+import { SUPER_ADMIN_USERNAME } from "@/lib/constants";
+export type SessionUser = User & { role: Role | null };
+export async function getSessionUser(
+  requestHeaders?: Headers,
+): Promise<SessionUser | null> {
+  const session = await auth.api.getSession({
+    headers: requestHeaders ?? (await headers()),
+  });
+  if (!session?.user?.id) {
+    return null;
+  }
+  return prisma.user.findUnique({
+    where: { id: session.user.id },
+    include: { role: true },
+  });
+}
+export function isSuperAdmin(user: Pick<User, "username">): boolean {
+  return user.username === SUPER_ADMIN_USERNAME;
+}
+export function canActOnUser(
+  actor: SessionUser,
+  target: SessionUser,
+): boolean {
+  if (isSuperAdmin(target)) {
+    return false;
+  }
+  if (!actor.role || !target.role) {
+    return false;
+  }
+  return actor.role.level > target.role.level;
+}
+export function canAssignRole(
+  actor: SessionUser,
+  targetRole: Pick<Role, "level">,
+): boolean {
+  if (!actor.role) {
+    return false;
+  }
+  return actor.role.level > targetRole.level;
+}
+export function requireAuthenticated(
+  user: SessionUser | null,
+): asserts user is SessionUser {
+  if (!user) {
+    throw new Error("UNAUTHORIZED");
+  }
+}

package/templates/next-base/src/types/data-table.ts ADDED Viewed

@@ -0,0 +1,4 @@
+export type DataTablePaginationState = {
+  pageIndex: number;
+  pageSize: number;
+};

package/templates/next-base/src/types/index.ts CHANGED Viewed

@@ -38,3 +38,5 @@ export type ApiErrorResponse = {
 };
 export type ApiResponse<T> = ApiSuccess<T> | ApiErrorResponse;
+export * from "@/types/data-table";

package/templates/next-base/tsconfig.json CHANGED Viewed

@@ -1,7 +1,11 @@
 {
   "compilerOptions": {
     "target": "ES2022",
-    "lib": ["dom", "dom.iterable", "esnext"],
+    "lib": [
+      "dom",
+      "dom.iterable",
+      "esnext"
+    ],
     "allowJs": false,
     "skipLibCheck": true,
     "strict": true,
@@ -11,14 +15,32 @@
     "moduleResolution": "bundler",
     "resolveJsonModule": true,
     "isolatedModules": true,
-    "jsx": "preserve",
-    "types": ["node", "react", "react-dom"],
+    "jsx": "react-jsx",
+    "types": [
+      "node",
+      "react",
+      "react-dom"
+    ],
     "incremental": true,
-    "plugins": [{ "name": "next" }],
+    "plugins": [
+      {
+        "name": "next"
+      }
+    ],
     "paths": {
-      "@/*": ["./src/*"]
+      "@/*": [
+        "./src/*"
+      ]
     }
   },
-  "include": ["next-env.d.ts", "**/*.ts", "**/*.tsx", ".next/types/**/*.ts"],
-  "exclude": ["node_modules"]
+  "include": [
+    "next-env.d.ts",
+    "**/*.ts",
+    "**/*.tsx",
+    ".next/types/**/*.ts",
+    ".next/dev/types/**/*.ts"
+  ],
+  "exclude": [
+    "node_modules"
+  ]
 }

package/templates/next-base/middleware.ts DELETED Viewed

@@ -1,10 +0,0 @@
-import createMiddleware from "next-intl/middleware";
-export default createMiddleware({
-  locales: ["en", "vi"],
-  defaultLocale: "en",
-});
-export const config = {
-  matcher: ["/((?!api|_next|.*\\..*).*)"],
-};

package/templates/next-base/src/app/styles.css DELETED Viewed

@@ -1,12 +0,0 @@
-:root {
-  color-scheme: light dark;
-}
-* {
-  box-sizing: border-box;
-}
-body {
-  margin: 0;
-  font-family: Arial, sans-serif;
-}