aiplang 2.6.2 → 2.7.0

package/aiplang-knowledge.md

@@ -1,98 +1,139 @@
-# aiplang — syntax reference
-File extension: `.aip` (e.g. `app.aip`, `home.aip`)
-Generate ONLY aiplang code. No React, HTML, or other frameworks. No explanations unless asked.
+# aiplang — LLM reference
+Generate ONLY `.aip` syntax. Zero explanation. Zero React. Zero HTML frameworks.
 
-## File structure
+## Config directives (before model/api/pages)
 ```
-~env VAR required          # env validation
-~db sqlite ./app.db        # or: postgres $DATABASE_URL
+~env VAR required              # fail if missing
+~db sqlite ./app.db            # or: postgres $DATABASE_URL
 ~auth jwt $JWT_SECRET expire=7d
-~mail smtp host=x user=$U pass=$P
-~s3 $KEY secret=$S bucket=$B region=us-east-1 prefix=uploads/ maxSize=10mb
+~mail smtp host=x user=$U pass=$P from=no-reply@x.com
+~s3 $KEY secret=$S bucket=$B region=us-east-1 prefix=up/ maxSize=10mb allow=image/jpeg,image/png
 ~stripe $KEY webhook=$WH success=/ok cancel=/pricing
 ~plan free=price_x pro=price_y
 ~admin /admin
 ~use cors origins=https://x.com
 ~use rate-limit max=100 window=60s
 ~use helmet | ~use logger | ~use compression
-~plugin ./my-plugin.js
+~plugin ./plugins/custom.js
+```
 
+## Model
+```
 model Name {
-  id    : uuid  : pk auto
-  field : type  : modifier
-  ~soft-delete
-  ~belongs OtherModel
+  id        : uuid      : pk auto
+  field     : text      : required
+  email     : text      : required unique
+  password  : text      : required hashed
+  count     : int       : default=0
+  price     : float
+  active    : bool      : default=true
+  at        : timestamp
+  data      : json
+  kind      : enum      : a,b,c : default=a
+  ~soft-delete           # adds deleted_at, filters from queries
+  ~belongs OtherModel   # adds other_model_id FK
 }
-# types: uuid text int float bool timestamp json enum
-# modifiers: pk auto required unique hashed default=val index
+```
+Types: `uuid text int float bool timestamp json enum`
+Modifiers: `pk auto required unique hashed default=val index`
 
-api METHOD /path/:id {
-  ~guard auth | admin | subscribed | owner
-  ~validate field required | field email | field min=8 | field numeric
-  ~query page=1 limit=20
+## API — ALWAYS one blank line between ops, return is last
+```
+api POST /path {
+  ~guard auth                          # auth | admin | subscribed | owner
+  ~validate field required | field email | field min=8 | field max=100 | field numeric | field in:a,b,c
   ~unique Model field $body.field | 409
-  ~hash field
-  ~check password $body.pw $user.pw | 401
+  ~hash field                          # bcrypt the field before insert
+  ~check password $body.pw $user.pw | 401  # bcrypt compare
+  ~query page=1 limit=20              # query params with defaults
   ~mail $user.email "Subject" "Body"
   ~dispatch jobName $body
   ~emit event.name $body
-  $var = Model.findBy(field=$body.field)
-  insert Model($body)
-  update Model($id, $body)
-  delete Model($id)
-  restore Model($id)
-  return $inserted | $updated | $auth.user | Model.all(order=created_at desc)
-  return Model.paginate($page, $limit)
-  return Model.count() | Model.sum(field) | Model.avg(field)
+  $var = Model.findBy(field=$body.field)   # assign to $var
+  $var = Model.find($params.id)
+  insert Model($body)                  # sets $inserted
+  update Model($params.id, $body)      # sets $updated
+  delete Model($params.id)             # soft or hard delete
+  restore Model($params.id)
+  return $inserted 201                 # status optional, default 200
+  return $updated
+  return $var
+  return $auth.user
+  return jwt($inserted) 201           # return JWT token
   return jwt($user) 200
+  return Model.all(order=created_at desc)
+  return Model.paginate($page, $limit)
+  return Model.count()
+  return Model.sum(field)
+  return Model.findBy(field=$body.field)
 }
+```
 
-%id theme /route           # dark | light | acid | #bg,#text,#accent
-~theme accent=#hex bg=#hex text=#hex font=Name radius=1rem surface=#hex navbg=#hex
-@var = []                  # state: [] or {} or "string" or 0
-~mount GET /api => @var
-~interval 10000 GET /api => @var
-
-blocks...
----                        # page separator
+## Pages
+```
+%id theme /route     # id=any, theme=dark|light|acid|#bg,#text,#accent, route=/path
+~theme accent=#hex bg=#hex text=#hex font=Name radius=1rem surface=#hex navbg=#hex spacing=5rem
+@list = []           # reactive state — [] for arrays, {} for objects, "str", 0
+@obj = {}
+~mount GET /api/path => @list         # fetch on page load → assign to @list
+~mount GET /api/path => @obj
+~interval 15000 GET /api/path => @obj # repeat every N ms (always pair with ~mount)
 ```
 
 ## All blocks
 ```
 nav{Brand>/path:Link>/path:Link}
-hero{Title|Sub>/path:CTA} | hero{Title|Sub>/path:CTA|img:https://url}
-stats{@val:Label|99%:Uptime|$0:Free}
+hero{Title|Subtitle>/path:CTA}
+hero{Title|Sub>/path:CTA|img:https://url}   # split layout with image
+stats{@obj.field:Label|99%:Uptime|$0:Free}
 row2{icon>Title>Body} | row3{...} | row4{...}
 sect{Title|Optional body}
-table @list { Col:field | edit PUT /api/{id} | delete /api/{id} | empty: msg }
-form POST /api => @list.push($result) { Label:type:placeholder | Label:select:a,b,c }
-form POST /api => redirect /path { Label:type | Label:password }
-pricing{Name>Price>Desc>/path:CTA|Name>Price>Desc>/path:CTA}
-faq{Question?>Answer.|Q2?>A2.}
-testimonial{Name, Role @ Co|"Quote."|img:https://url}
-gallery{https://img1|https://img2|https://img3}
-btn{Label > METHOD /api/path} | btn{Label > DELETE /api > confirm:Sure?}
+table @list { Col:field | Col:field | edit PUT /api/path/{id} | delete /api/path/{id} | empty: msg }
+form POST /api/path => @list.push($result) { Label:type:placeholder | Label:select:a,b,c }
+form POST /api/path => redirect /dashboard { Label:type | Label:password }
+pricing{Name>$0/mo>Desc>/path:CTA | Name>$19/mo>Desc>/path:CTA}
+faq{Question?>Answer. | Q2?>A2.}
+testimonial{Name, Role|"Quote."|img:https://url}
+gallery{https://img1 | https://img2 | https://img3}
+btn{Label > METHOD /api/path}
+btn{Label > DELETE /api/path > confirm:Are you sure?}
 select @filterVar { All | Active | Inactive }
 if @var { blocks }
-raw{<div>any HTML</div>}
+raw{<div>any HTML or embed</div>}
 foot{© 2025 Name>/path:Link}
 ```
 
-## Block modifiers (any block)
-`animate:fade-up | fade-in | blur-in | slide-left | slide-right | zoom-in | stagger`
-`class:my-class`
+## Animate any block
+`block{...} animate:fade-up` · `animate:fade-in` · `animate:blur-in` · `animate:stagger` · `animate:slide-left` · `animate:zoom-in`
 
-## S3 auto-routes
-`POST /api/upload` · `DELETE /api/upload/:key` · `GET /api/upload/presign?key=x`
+## Multiple pages — separate with ---
+```
+%home dark /
+nav{...}
+hero{...}
+---
+%dashboard dark /dashboard
+@data = []
+~mount GET /api/data => @data
+table @data { ... }
+---
+%login dark /login
+form POST /api/auth/login => redirect /dashboard { Email:email | Password:password }
+```
 
-## Stripe auto-routes
-`POST /api/stripe/checkout` · `POST /api/stripe/portal` · `GET /api/stripe/subscription`
+## Icons (use in row blocks)
+`rocket bolt shield chart star check globe gear fire money bell mail user lock eye tag search home`
 
-## Rules
-1. Dark theme default
-2. `@var = []` + `~mount` for all dynamic data
-3. Tables always have `edit` + `delete` unless readonly
-4. Forms: `=> @list.push($result)` or `=> redirect /path`
-5. `~theme` before `%` declarations
-6. Separate pages with `---`
-7. Full-stack: `~db` + `~auth` + `model` + `api` before pages
+## S3 auto-routes (generated when ~s3 configured)
+`POST /api/upload` · `DELETE /api/upload/:key` · `GET /api/upload/presign?key=x&expires=3600`
+
+## Stripe auto-routes (generated when ~stripe configured)
+`POST /api/stripe/checkout {plan,email}` · `POST /api/stripe/portal` · `GET /api/stripe/subscription` · `POST /api/stripe/webhook`
+Webhooks auto-handled: checkout.completed → sets user.plan, subscription.deleted → resets to free
+
+## Run
+```bash
+npx aiplang start app.aip    # full-stack
+npx aiplang serve            # frontend dev
+npx aiplang build pages/     # static build
+```

package/bin/aiplang.js

@@ -5,7 +5,7 @@ const fs   = require('fs')
 const path = require('path')
 const http = require('http')
 
-const VERSION     = '2.6.2'
+const VERSION     = '2.7.0'
 const RUNTIME_DIR = path.join(__dirname, '..', 'runtime')
 const cmd         = process.argv[2]
 const args        = process.argv.slice(3)
@@ -121,6 +121,23 @@ api GET /api/me {
   return $auth.user
 }
 
+api GET /api/users {
+  ~guard admin
+  ~query page=1
+  return User.paginate($page, 20)
+}
+
+api PUT /api/users/:id {
+  ~guard admin
+  update User($id, $body)
+  return $updated
+}
+
+api DELETE /api/users/:id {
+  ~guard admin
+  delete User($id)
+}
+
 api GET /api/stats {
   return User.count()
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "aiplang",
-  "version": "2.6.2",
+  "version": "2.7.0",
   "description": "AI-first full-stack language. Frontend + Backend + DB + Auth in one file. Competes with Laravel.",
   "keywords": [
     "aiplang",

package/server/server.js

@@ -1435,7 +1435,7 @@ async function startServer(aipFile, port = 3000) {
 
   // Health
   srv.addRoute('GET', '/health', (req, res) => res.json(200, {
-    status:'ok', version:'2.6.2',
+    status:'ok', version:'2.7.0',
     models: app.models.map(m=>m.name),
     routes: app.apis.length, pages: app.pages.length,
     admin: app.admin?.prefix || null,