ar-saas 0.3.3 → 0.4.1

package/templates/backend/src/modules/users/users.repository.ts

@@ -1,51 +1,57 @@
-import { Injectable } from '@nestjs/common';
-import { InjectModel } from '@nestjs/mongoose';
-import { Model } from 'mongoose';
-import { User, UserDocument } from './schemas/user.schema';
-
-@Injectable()
-export class UsersRepository {
-  constructor(
-    @InjectModel(User.name) private readonly userModel: Model<UserDocument>,
-  ) {}
-
-  async findByEmail(email: string): Promise<UserDocument | null> {
-    return this.userModel
-      .findOne({ email })
-      .select('+password +refreshToken')
-      .exec();
-  }
-
-  async findById(id: string): Promise<UserDocument | null> {
-    return this.userModel.findById(id).exec();
-  }
-
-  async findByIdWithSecrets(id: string): Promise<UserDocument | null> {
-    return this.userModel.findById(id).select('+refreshToken').exec();
-  }
-
-  async findByVerificationToken(token: string): Promise<UserDocument | null> {
-    return this.userModel
-      .findOne({ emailVerificationToken: token })
-      .select('+emailVerificationToken')
-      .exec();
-  }
-
-  async findByPasswordResetToken(token: string): Promise<UserDocument | null> {
-    return this.userModel
-      .findOne({ passwordResetToken: token })
-      .select('+passwordResetToken')
-      .exec();
-  }
-
-  async create(data: Partial<User>): Promise<UserDocument> {
-    const user = new this.userModel(data);
-    return user.save();
-  }
-
-  async update(id: string, data: Partial<User>): Promise<UserDocument | null> {
-    return this.userModel
-      .findByIdAndUpdate(id, { $set: data }, { returnDocument: 'after' })
-      .exec();
-  }
-}
+import { Injectable } from '@nestjs/common';
+import { InjectModel } from '@nestjs/mongoose';
+import { Model } from 'mongoose';
+import { User, UserDocument } from './schemas/user.schema';
+
+@Injectable()
+export class UsersRepository {
+  constructor(
+    @InjectModel(User.name) private readonly userModel: Model<UserDocument>,
+  ) {}
+
+  async findByEmail(email: string): Promise<UserDocument | null> {
+    return this.userModel
+      .findOne({ email: email.toLowerCase().trim() })
+      .exec();
+  }
+
+  async findByEmailWithPassword(email: string): Promise<UserDocument | null> {
+    return this.userModel
+      .findOne({ email: email.toLowerCase().trim() })
+      .select('+password')
+      .exec();
+  }
+
+  async findById(id: string): Promise<UserDocument | null> {
+    return this.userModel.findById(id).exec();
+  }
+
+  async findByIdWithSecrets(id: string): Promise<UserDocument | null> {
+    return this.userModel.findById(id).select('+refreshToken').exec();
+  }
+
+  async findByVerificationToken(tokenHash: string): Promise<UserDocument | null> {
+    return this.userModel
+      .findOne({ emailVerificationToken: tokenHash })
+      .select('+emailVerificationToken')
+      .exec();
+  }
+
+  async findByPasswordResetToken(tokenHash: string): Promise<UserDocument | null> {
+    return this.userModel
+      .findOne({ passwordResetToken: tokenHash })
+      .select('+passwordResetToken')
+      .exec();
+  }
+
+  async create(data: Partial<User>): Promise<UserDocument> {
+    const user = new this.userModel(data);
+    return user.save();
+  }
+
+  async update(id: string, data: Partial<User>): Promise<UserDocument | null> {
+    return this.userModel
+      .findByIdAndUpdate(id, { $set: data }, { returnDocument: 'after' })
+      .exec();
+  }
+}

package/templates/backend/src/modules/users/users.service.ts

@@ -1,104 +1,130 @@
-import { ConflictException, Injectable } from '@nestjs/common';
-import * as bcrypt from 'bcryptjs';
-import { User, UserDocument, UserRole } from './schemas/user.schema';
-import { UsersRepository } from './users.repository';
-
-@Injectable()
-export class UsersService {
-  constructor(private readonly usersRepository: UsersRepository) {}
-
-  async create(data: {
-    name: string;
-    email: string;
-    password: string;
-    workspaceId: string;
-    role?: UserRole;
-  }): Promise<UserDocument> {
-    const existing = await this.usersRepository.findByEmail(data.email);
-    if (existing) {
-      throw new ConflictException('Este email ya está registrado.');
-    }
-    const hashedPassword = await bcrypt.hash(data.password, 12);
-    return this.usersRepository.create({ ...data, password: hashedPassword });
-  }
-
-  async findByEmail(email: string): Promise<UserDocument | null> {
-    return this.usersRepository.findByEmail(email);
-  }
-
-  async findById(id: string): Promise<UserDocument | null> {
-    return this.usersRepository.findById(id);
-  }
-
-  async updateRefreshToken(
-    userId: string,
-    refreshToken: string | null,
-  ): Promise<void> {
-    const hashed = refreshToken
-      ? await bcrypt.hash(refreshToken, 10)
-      : null;
-    await this.usersRepository.update(userId, { refreshToken: hashed });
-  }
-
-  async validateRefreshToken(
-    userId: string,
-    token: string,
-  ): Promise<UserDocument | null> {
-    const user = await this.usersRepository.findByIdWithSecrets(userId);
-    if (!user?.refreshToken) return null;
-    const valid = await bcrypt.compare(token, user.refreshToken);
-    return valid ? user : null;
-  }
-
-  async setEmailVerificationToken(
-    userId: string,
-    token: string,
-    expiresAt: Date,
-  ): Promise<void> {
-    await this.usersRepository.update(userId, {
-      emailVerificationToken: token,
-      emailVerificationTokenExpiresAt: expiresAt,
-    });
-  }
-
-  async findByVerificationToken(token: string): Promise<UserDocument | null> {
-    return this.usersRepository.findByVerificationToken(token);
-  }
-
-  async markEmailVerified(userId: string): Promise<void> {
-    await this.usersRepository.update(userId, {
-      emailVerified: true,
-      emailVerificationToken: null,
-      emailVerificationTokenExpiresAt: null,
-    });
-  }
-
-  async setPasswordResetToken(
-    userId: string,
-    token: string,
-    expiresAt: Date,
-  ): Promise<void> {
-    await this.usersRepository.update(userId, {
-      passwordResetToken: token,
-      passwordResetTokenExpiresAt: expiresAt,
-    });
-  }
-
-  async findByPasswordResetToken(token: string): Promise<UserDocument | null> {
-    return this.usersRepository.findByPasswordResetToken(token);
-  }
-
-  async updatePassword(userId: string, password: string): Promise<void> {
-    const hashed = await bcrypt.hash(password, 12);
-    await this.usersRepository.update(userId, {
-      password: hashed,
-      passwordResetToken: null,
-      passwordResetTokenExpiresAt: null,
-      refreshToken: null,
-    });
-  }
-
-  async updateLastLoginAt(userId: string): Promise<void> {
-    await this.usersRepository.update(userId, { lastLoginAt: new Date() });
-  }
-}
+import { ConflictException, Injectable } from '@nestjs/common';
+import * as bcrypt from 'bcryptjs';
+import * as crypto from 'crypto';
+import { User, UserDocument, UserRole } from './schemas/user.schema';
+import { UsersRepository } from './users.repository';
+
+@Injectable()
+export class UsersService {
+  constructor(private readonly usersRepository: UsersRepository) {}
+
+  async create(data: {
+    name: string;
+    email: string;
+    password: string;
+    workspaceId: string;
+    role?: UserRole;
+  }): Promise<UserDocument> {
+    const existing = await this.usersRepository.findByEmail(data.email);
+    if (existing) {
+      throw new ConflictException('Este email ya está registrado.');
+    }
+    const hashedPassword = await bcrypt.hash(data.password, 12);
+    return this.usersRepository.create({ ...data, password: hashedPassword });
+  }
+
+  async findByEmail(email: string): Promise<UserDocument | null> {
+    return this.usersRepository.findByEmail(email);
+  }
+
+  async findByEmailWithPassword(email: string): Promise<UserDocument | null> {
+    return this.usersRepository.findByEmailWithPassword(email);
+  }
+
+  async findById(id: string): Promise<UserDocument | null> {
+    return this.usersRepository.findById(id);
+  }
+
+  async updateRefreshToken(
+    userId: string,
+    refreshToken: string | null,
+  ): Promise<void> {
+    const hashed = refreshToken
+      ? await bcrypt.hash(refreshToken, 10)
+      : null;
+    await this.usersRepository.update(userId, { refreshToken: hashed });
+  }
+
+  async validateRefreshToken(
+    userId: string,
+    token: string,
+  ): Promise<UserDocument | null> {
+    const user = await this.usersRepository.findByIdWithSecrets(userId);
+    if (!user?.refreshToken) return null;
+    const valid = await bcrypt.compare(token, user.refreshToken);
+    return valid ? user : null;
+  }
+
+  async setEmailVerificationToken(
+    userId: string,
+    token: string,
+    expiresAt: Date,
+  ): Promise<void> {
+    const tokenHash = this.hashToken(token);
+    await this.usersRepository.update(userId, {
+      emailVerificationToken: tokenHash,
+      emailVerificationTokenExpiresAt: expiresAt,
+    });
+  }
+
+  async findByVerificationToken(token: string): Promise<UserDocument | null> {
+    const tokenHash = this.hashToken(token);
+    return this.usersRepository.findByVerificationToken(tokenHash);
+  }
+
+  async markEmailVerified(userId: string): Promise<void> {
+    await this.usersRepository.update(userId, {
+      emailVerified: true,
+      emailVerificationToken: null,
+      emailVerificationTokenExpiresAt: null,
+    });
+  }
+
+  async setPasswordResetToken(
+    userId: string,
+    token: string,
+    expiresAt: Date,
+  ): Promise<void> {
+    const tokenHash = this.hashToken(token);
+    await this.usersRepository.update(userId, {
+      passwordResetToken: tokenHash,
+      passwordResetTokenExpiresAt: expiresAt,
+    });
+  }
+
+  async findByPasswordResetToken(token: string): Promise<UserDocument | null> {
+    const tokenHash = this.hashToken(token);
+    return this.usersRepository.findByPasswordResetToken(tokenHash);
+  }
+
+  async updatePassword(userId: string, password: string): Promise<void> {
+    const hashed = await bcrypt.hash(password, 12);
+    await this.usersRepository.update(userId, {
+      password: hashed,
+      passwordResetToken: null,
+      passwordResetTokenExpiresAt: null,
+      refreshToken: null,
+    });
+  }
+
+  async updateLastLoginAt(userId: string): Promise<void> {
+    await this.usersRepository.update(userId, { lastLoginAt: new Date() });
+  }
+
+  async updateMe(
+    userId: string,
+    data: { name?: string; email?: string },
+  ): Promise<UserDocument | null> {
+    if (data.email) {
+      const existing = await this.usersRepository.findByEmail(data.email);
+      if (existing && String(existing._id) !== userId) {
+        throw new ConflictException('Este email ya está registrado.');
+      }
+    }
+    return this.usersRepository.update(userId, data);
+  }
+
+  private hashToken(token: string): string {
+    return crypto.createHash('sha256').update(token).digest('hex');
+  }
+}

package/templates/backend/src/modules/workspaces/workspaces.repository.ts

@@ -1,34 +1,38 @@
-import { Injectable } from '@nestjs/common';
-import { InjectModel } from '@nestjs/mongoose';
-import { Model } from 'mongoose';
-import { Workspace, WorkspaceDocument } from './schemas/workspace.schema';
-
-@Injectable()
-export class WorkspacesRepository {
-  constructor(
-    @InjectModel(Workspace.name)
-    private readonly workspaceModel: Model<WorkspaceDocument>,
-  ) {}
-
-  async findById(id: string): Promise<WorkspaceDocument | null> {
-    return this.workspaceModel.findById(id).exec();
-  }
-
-  async findBySlug(slug: string): Promise<WorkspaceDocument | null> {
-    return this.workspaceModel.findOne({ slug }).exec();
-  }
-
-  async create(data: Partial<Workspace>): Promise<WorkspaceDocument> {
-    const workspace = new this.workspaceModel(data);
-    return workspace.save();
-  }
-
-  async update(
-    id: string,
-    data: Partial<Workspace>,
-  ): Promise<WorkspaceDocument | null> {
-    return this.workspaceModel
-      .findByIdAndUpdate(id, { $set: data }, { returnDocument: 'after' })
-      .exec();
-  }
-}
+import { Injectable } from '@nestjs/common';
+import { InjectModel } from '@nestjs/mongoose';
+import { Model } from 'mongoose';
+import { Workspace, WorkspaceDocument } from './schemas/workspace.schema';
+
+@Injectable()
+export class WorkspacesRepository {
+  constructor(
+    @InjectModel(Workspace.name)
+    private readonly workspaceModel: Model<WorkspaceDocument>,
+  ) {}
+
+  async findById(id: string): Promise<WorkspaceDocument | null> {
+    return this.workspaceModel.findById(id).exec();
+  }
+
+  async findBySlug(slug: string): Promise<WorkspaceDocument | null> {
+    return this.workspaceModel.findOne({ slug }).exec();
+  }
+
+  async create(data: Partial<Workspace>): Promise<WorkspaceDocument> {
+    const workspace = new this.workspaceModel(data);
+    return workspace.save();
+  }
+
+  async update(
+    id: string,
+    data: Partial<Workspace>,
+  ): Promise<WorkspaceDocument | null> {
+    return this.workspaceModel
+      .findByIdAndUpdate(id, { $set: data }, { returnDocument: 'after' })
+      .exec();
+  }
+
+  async delete(id: string): Promise<WorkspaceDocument | null> {
+    return this.workspaceModel.findByIdAndDelete(id).exec();
+  }
+}

package/templates/backend/src/modules/workspaces/workspaces.service.ts

@@ -1,42 +1,51 @@
-import { Injectable } from '@nestjs/common';
-import { Workspace, WorkspaceDocument } from './schemas/workspace.schema';
-import { WorkspacesRepository } from './workspaces.repository';
-
-@Injectable()
-export class WorkspacesService {
-  constructor(
-    private readonly workspacesRepository: WorkspacesRepository,
-  ) {}
-
-  async create(ownerId: string, name: string): Promise<WorkspaceDocument> {
-    const slug = await this.generateUniqueSlug(name);
-    return this.workspacesRepository.create({ name, slug, ownerId });
-  }
-
-  async update(
-    id: string,
-    data: Partial<Workspace>,
-  ): Promise<WorkspaceDocument | null> {
-    return this.workspacesRepository.update(id, data);
-  }
-
-  async findById(id: string): Promise<WorkspaceDocument | null> {
-    return this.workspacesRepository.findById(id);
-  }
-
-  private async generateUniqueSlug(name: string): Promise<string> {
-    const base = name
-      .toLowerCase()
-      .normalize('NFD')
-      .replace(/\p{M}/gu, '')
-      .replace(/[^a-z0-9]+/g, '-')
-      .replace(/^-+|-+$/g, '');
-
-    let slug = base || 'workspace';
-    let counter = 1;
-    while (await this.workspacesRepository.findBySlug(slug)) {
-      slug = `${base}-${counter++}`;
-    }
-    return slug;
-  }
-}
+import { Injectable } from '@nestjs/common';
+import * as crypto from 'crypto';
+import { Workspace, WorkspaceDocument } from './schemas/workspace.schema';
+import { WorkspacesRepository } from './workspaces.repository';
+
+@Injectable()
+export class WorkspacesService {
+  constructor(
+    private readonly workspacesRepository: WorkspacesRepository,
+  ) {}
+
+  async create(ownerId: string, name: string): Promise<WorkspaceDocument> {
+    const slug = await this.generateUniqueSlug(name);
+    return this.workspacesRepository.create({ name, slug, ownerId });
+  }
+
+  async update(
+    id: string,
+    data: Partial<Workspace>,
+  ): Promise<WorkspaceDocument | null> {
+    return this.workspacesRepository.update(id, data);
+  }
+
+  async delete(id: string): Promise<WorkspaceDocument | null> {
+    return this.workspacesRepository.delete(id);
+  }
+
+  async findById(id: string): Promise<WorkspaceDocument | null> {
+    return this.workspacesRepository.findById(id);
+  }
+
+  private async generateUniqueSlug(name: string): Promise<string> {
+    const base = name
+      .toLowerCase()
+      .normalize('NFD')
+      .replace(/\p{M}/gu, '')
+      .replace(/[^a-z0-9]+/g, '-')
+      .replace(/^-+|-+$/g, '');
+
+    let slug = base || 'workspace';
+    let counter = 1;
+    const MAX_ATTEMPTS = 20;
+    while (counter <= MAX_ATTEMPTS && (await this.workspacesRepository.findBySlug(slug))) {
+      slug = `${base}-${counter++}`;
+    }
+    if (counter > MAX_ATTEMPTS) {
+      slug = `${base}-${crypto.randomBytes(4).toString('hex')}`;
+    }
+    return slug;
+  }
+}

package/templates/frontend/README.md

@@ -1,4 +1,4 @@
-# create-saas-ar — Frontend
+# ar-saas — Frontend
 
 Frontend del template SaaS para startups argentinas. Stack: Next.js 15, TypeScript, Tailwind CSS 4, shadcn/ui.
 
@@ -98,7 +98,7 @@ src/
 │   ├── (legal)/         # Términos y privacidad
 │   ├── setup/           # Pantalla de setup inicial (se muestra al arrancar por primera vez)
 │   ├── layout.tsx       # Layout raíz con AuthProvider
-│   └── page.tsx         # Redirige a /setup
+│   └── page.tsx         # Redirige a /login
 ├── components/
 │   ├── landing/         # Componentes de la landing page (navbar, hero, features, pricing)
 │   ├── dashboard/       # Sidebar, header y cards del dashboard

package/templates/frontend/package.json

@@ -1,5 +1,5 @@
 {
-  "name": "create-saas-ar-frontend",
+  "name": "ar-saas-frontend",
   "version": "0.1.0",
   "private": true,
   "scripts": {
@@ -9,7 +9,6 @@
     "lint": "next lint"
   },
   "dependencies": {
-    "@hookform/resolvers": "^3.9.1",
     "@radix-ui/react-accordion": "^1.2.13",
     "@radix-ui/react-avatar": "^1.1.12",
     "@radix-ui/react-checkbox": "^1.3.4",
@@ -24,19 +23,16 @@
     "axios": "^1.7.9",
     "class-variance-authority": "^0.7.1",
     "clsx": "^2.1.1",
-    "js-cookie": "^3.0.5",
     "lucide-react": "^0.477.0",
     "next": "^15.3.3",
     "react": "^19.1.0",
     "react-dom": "^19.1.0",
     "react-hook-form": "^7.54.2",
-    "tailwind-merge": "^2.6.0",
-    "zod": "^3.24.1"
+    "tailwind-merge": "^2.6.0"
   },
   "devDependencies": {
     "@eslint/eslintrc": "^3.2.0",
     "@tailwindcss/postcss": "^4.1.0",
-    "@types/js-cookie": "^3.0.6",
     "@types/node": "^22.10.7",
     "@types/react": "^19.1.0",
     "@types/react-dom": "^19.1.0",

package/templates/frontend/pnpm-workspace.yaml

@@ -1,3 +1,3 @@
 allowBuilds:
-  sharp: set this to true or false
-  unrs-resolver: set this to true or false
+  sharp: true
+  unrs-resolver: true

package/templates/frontend/src/app/(auth)/layout.tsx

@@ -1,28 +1,29 @@
-'use client'
-
-import { useEffect } from 'react'
-import { useRouter } from 'next/navigation'
-import { useAuth } from '@/lib/hooks/use-auth'
-
-export default function AuthLayout({ children }: { children: React.ReactNode }) {
-  const { isAuthenticated, isLoading } = useAuth()
-  const router = useRouter()
-
-  useEffect(() => {
-    if (!isLoading && isAuthenticated) {
-      router.replace('/dashboard')
-    }
-  }, [isAuthenticated, isLoading, router])
-
-  if (isLoading) return null
-
-  return (
-    <div className="min-h-screen flex flex-col items-center justify-center bg-muted/40 px-4">
-      <div className="mb-8 text-center">
-        <h1 className="text-2xl font-bold tracking-tight">create-saas-ar</h1>
-        <p className="text-sm text-muted-foreground mt-1">Tu SaaS listo para Argentina</p>
-      </div>
-      <div className="w-full max-w-md">{children}</div>
-    </div>
-  )
-}
+'use client'
+
+import { useEffect } from 'react'
+import { useRouter } from 'next/navigation'
+import { useAuth } from '@/lib/hooks/use-auth'
+import { siteConfig } from '@/config/site'
+
+export default function AuthLayout({ children }: { children: React.ReactNode }) {
+  const { isAuthenticated, isLoading } = useAuth()
+  const router = useRouter()
+
+  useEffect(() => {
+    if (!isLoading && isAuthenticated) {
+      router.replace('/dashboard')
+    }
+  }, [isAuthenticated, isLoading, router])
+
+  if (isLoading) return null
+
+  return (
+    <div className="min-h-screen flex flex-col items-center justify-center bg-muted/40 px-4">
+      <div className="mb-8 text-center">
+        <h1 className="text-2xl font-bold tracking-tight">{siteConfig.name}</h1>
+        <p className="text-sm text-muted-foreground mt-1">{siteConfig.tagline}</p>
+      </div>
+      <div className="w-full max-w-md">{children}</div>
+    </div>
+  )
+}