npm - claude-all-config - Versions diffs - 3.2.0 → 3.3.1 - Mend

claude-all-config 3.2.0 → 3.3.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/VERSION +1 -1
package/mcp.json +5 -5
package/package.json +2 -2
package/skills/whatsapp-business-platform/SKILL.md +430 -0
package/skills/whatsapp-business-platform/templates/.env.template +93 -0
package/skills/whatsapp-business-platform/templates/backend-main.go.template +105 -0
package/skills/whatsapp-business-platform/templates/docker-compose.yml.template +142 -0
package/skills/whatsapp-business-platform/templates/hooks.server.ts.template +116 -0

package/VERSION CHANGED Viewed

	@@ -1 +1 @@
1	- 3.2.0
1	+ 3.3.0

package/mcp.json CHANGED Viewed

@@ -4,7 +4,7 @@
       "command": "npx",
       "args": ["-y", "@upstash/context7-mcp"],
       "env": {
-        "CONTEXT7_API_KEY": "YOUR_CONTEXT7_API_KEY"
+        "CONTEXT7_API_KEY": "ctx7sk-dfdd3d92-65fd-4e1d-bd1c-1bee51cbacf0"
       }
     },
     "sequential-thinking": {
@@ -15,7 +15,7 @@
       "command": "npx",
       "args": ["-y", "exa-mcp-server"],
       "env": {
-        "EXA_API_KEY": "YOUR_EXA_API_KEY"
+        "EXA_API_KEY": "8bab0085-90d5-4767-911d-6fd2f5caf6eb"
       }
     },
     "memory": {
@@ -34,14 +34,14 @@
       "type": "http",
       "url": "https://api.z.ai/api/mcp/zread/mcp",
       "headers": {
-        "Authorization": "Bearer YOUR_ZAI_API_KEY"
+        "Authorization": "Bearer 7b1a5a0d145545ae8f2baa2957691ac4.lOH07gIuomdiNa7E"
       }
     },
     "vision": {
       "command": "npx",
       "args": ["-y", "@z_ai/mcp-server"],
       "env": {
-        "Z_AI_API_KEY": "YOUR_ZAI_API_KEY",
+        "Z_AI_API_KEY": "7b1a5a0d145545ae8f2baa2957691ac4.lOH07gIuomdiNa7E",
         "Z_AI_MODE": "ZAI"
       }
     },
@@ -49,7 +49,7 @@
       "type": "http",
       "url": "https://api.z.ai/api/mcp/web_search_prime/mcp",
       "headers": {
-        "Authorization": "Bearer YOUR_ZAI_API_KEY"
+        "Authorization": "Bearer 7b1a5a0d145545ae8f2baa2957691ac4.lOH07gIuomdiNa7E"
       }
     },
     "minimax": {

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "claude-all-config",
-  "version": "3.2.0",
+  "version": "3.3.1",
   "description": "🤖 Universal AI CLI Config with Advanced Skills System - Quality Scoring, Scaffolding, Testing, Hooks & Multi-Agent Support (Claude Code, Cursor, Copilot, Gemini & 20+ More)",
   "main": "index.js",
   "bin": {
@@ -120,7 +120,7 @@
       "codex",
       "trae"
     ],
-    "skillsCount": 61,
+    "skillsCount": 62,
     "agentsCount": 14,
     "commandsCount": 3
   },

package/skills/whatsapp-business-platform/SKILL.md ADDED Viewed

@@ -0,0 +1,430 @@
+---
+name: whatsapp-business-platform
+description: Build WhatsApp Business API platforms with SvelteKit frontend, Go/Fiber backend, OAuth integration, Docker deployment, and Cloudflare tunneling. Use when creating messaging platforms, WhatsApp Business integrations, multi-tenant SaaS messaging solutions, or customer communication platforms.
+---
+# WhatsApp Business Platform
+Build production-ready WhatsApp Business API platforms using proven architecture patterns.
+## When to Use
+- Building WhatsApp Business API integrations
+- Creating messaging platforms or CRM systems
+- Multi-tenant SaaS messaging solutions
+- Customer communication dashboards
+- E-commerce messaging automation
+## Architecture Pattern
+**Frontend:** SvelteKit (TypeScript)
+**Backend:** Go with Fiber framework
+**Database:** PostgreSQL + Redis
+**Deployment:** Docker + Cloudflare Tunnel
+**Authentication:** OAuth (Google/Facebook) + JWT
+**Domain Routing:** Landing page + app subdomain
+## Quick Start
+1. **Initialize Project Structure**
+```bash
+mkdir my-messaging-platform && cd my-messaging-platform
+mkdir -p {backend/{cmd/api,internal/{config,database,handlers,middleware,services,storage,queue}},frontend/src/{lib,routes,hooks},docs,assets}
+```
+2. **Backend Setup (Go/Fiber)**
+Create `backend/cmd/api/main.go`:
+```go
+package main
+import (
+    "log"
+    "os"
+    "os/signal"
+    "syscall"
+    "github.com/gofiber/fiber/v2"
+    "github.com/gofiber/fiber/v2/middleware/cors"
+    "github.com/gofiber/fiber/v2/middleware/helmet"
+    "github.com/gofiber/fiber/v2/middleware/logger"
+    "github.com/gofiber/fiber/v2/middleware/recover"
+    "github.com/joho/godotenv"
+)
+func main() {
+    if err := godotenv.Load(); err != nil {
+        log.Println("No .env file found")
+    }
+    app := fiber.New(fiber.Config{
+        ServerHeader: "WhatsApp Platform API",
+        AppName:      "WhatsApp Business Platform v1.0",
+    })
+    // Middleware
+    app.Use(cors.New(cors.Config{
+        AllowOrigins: os.Getenv("ALLOWED_ORIGINS"),
+        AllowHeaders: "Origin, Content-Type, Accept, Authorization",
+    }))
+    app.Use(helmet.New())
+    app.Use(logger.New())
+    app.Use(recover.New())
+    // Routes
+    app.Get("/health", func(c *fiber.Ctx) error {
+        return c.JSON(fiber.Map{"status": "ok"})
+    })
+    // API routes
+    api := app.Group("/api/v1")
+    api.Post("/webhooks/whatsapp", handleWhatsAppWebhook)
+    api.Post("/auth/google/callback", handleGoogleCallback)
+    api.Post("/auth/facebook/callback", handleFacebookCallback)
+    port := os.Getenv("PORT")
+    if port == "" {
+        port = "8080"
+    }
+    log.Printf("Server starting on port %s", port)
+    if err := app.Listen(":" + port); err != nil {
+        log.Fatalf("Failed to start server: %v", err)
+    }
+}
+```
+3. **Frontend Setup (SvelteKit)**
+Create `frontend/src/hooks.server.ts` for domain routing:
+```typescript
+import type { Handle } from '@sveltejs/kit';
+import { redirect } from '@sveltejs/kit';
+const LANDING_PATHS = ['/', '/docs', '/pricing', '/contact'];
+const APP_PATHS = ['/login', '/register', '/dashboard', '/inbox', '/contacts', '/settings'];
+export const handle: Handle = async ({ event, resolve }) => {
+  const hostname = event.url.hostname;
+  const pathname = event.url.pathname;
+  const isLandingDomain = hostname === 'yourdomain.com' || hostname === 'www.yourdomain.com';
+  const isAppDomain = hostname === 'app.yourdomain.com';
+  if (isLandingDomain) {
+    const isAppPath = APP_PATHS.some(p => pathname === p || pathname.startsWith(p + '/'));
+    if (isAppPath) {
+      throw redirect(302, 'https://app.yourdomain.com' + pathname + event.url.search);
+    }
+  }
+  if (isAppDomain) {
+    const isLandingPath = LANDING_PATHS.some(p => pathname === p || pathname.startsWith(p + '/'));
+    if (isLandingPath && pathname !== '/') {
+      throw redirect(302, 'https://yourdomain.com' + pathname + event.url.search);
+    }
+    if (pathname === '/') {
+      throw redirect(302, 'https://app.yourdomain.com/login');
+    }
+  }
+  const response = await resolve(event);
+  response.headers.set('X-Frame-Options', 'SAMEORIGIN');
+  response.headers.set('X-Content-Type-Options', 'nosniff');
+  response.headers.set('Referrer-Policy', 'strict-origin-when-cross-origin');
+  return response;
+};
+```
+4. **Environment Configuration**
+Create `backend/.env.example`:
+```bash
+# Server
+ENVIRONMENT=development
+PORT=8080
+# Database
+DATABASE_URL=postgres://postgres:postgres@localhost:5432/messaging_platform?sslmode=disable
+# JWT
+JWT_SECRET=your-super-secret-jwt-key-min-32-chars-here
+JWT_EXPIRY=15m
+JWT_REFRESH_EXPIRY=168h
+# OAuth - Google
+GOOGLE_CLIENT_ID=your-google-client-id
+GOOGLE_CLIENT_SECRET=your-google-client-secret
+GOOGLE_REDIRECT_URI=https://app.yourdomain.com/auth/google/callback
+# OAuth - Facebook
+FACEBOOK_APP_ID=your-facebook-app-id
+FACEBOOK_APP_SECRET=your-facebook-app-secret
+FACEBOOK_REDIRECT_URI=https://app.yourdomain.com/auth/facebook/callback
+# WhatsApp Business API
+META_ACCESS_TOKEN=your-meta-access-token
+WEBHOOK_VERIFY_TOKEN=your-webhook-verify-token
+WHATSAPP_PHONE_NUMBER_ID=your-phone-number-id
+# CORS
+ALLOWED_ORIGINS=https://yourdomain.com,https://app.yourdomain.com
+# Redis
+REDIS_ADDR=localhost:6379
+REDIS_PASSWORD=
+REDIS_DB=0
+```
+5. **Docker Configuration**
+Create `docker-compose.yml`:
+```yaml
+version: '3.8'
+services:
+  backend:
+    build: ./backend
+    container_name: messaging-backend
+    restart: unless-stopped
+    ports:
+      - "127.0.0.1:8084:8080"
+    environment:
+      - PORT=8080
+      - TZ=Asia/Jakarta
+    env_file:
+      - backend/.env
+    networks:
+      - messaging-network
+    depends_on:
+      - db
+      - redis
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:8080/health"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+  frontend:
+    build: ./frontend
+    container_name: messaging-frontend
+    restart: unless-stopped
+    ports:
+      - "127.0.0.1:3002:3000"
+    environment:
+      - NODE_ENV=production
+    networks:
+      - messaging-network
+  db:
+    image: postgres:15
+    container_name: messaging-db
+    restart: unless-stopped
+    ports:
+      - "127.0.0.1:5434:5432"
+    environment:
+      - POSTGRES_DB=messaging_platform
+      - POSTGRES_USER=postgres
+      - POSTGRES_PASSWORD=postgres
+    volumes:
+      - messaging_db_data:/var/lib/postgresql/data
+    networks:
+      - messaging-network
+  redis:
+    image: redis:7-alpine
+    container_name: messaging-redis
+    restart: unless-stopped
+    ports:
+      - "127.0.0.1:6379:6379"
+    volumes:
+      - messaging_redis_data:/data
+    networks:
+      - messaging-network
+networks:
+  messaging-network:
+    driver: bridge
+volumes:
+  messaging_db_data:
+  messaging_redis_data:
+```
+## Meta WhatsApp Business API Setup
+1. **Create Meta App**
+   - Go to Meta for Developers
+   - Create new app → Business
+   - Add WhatsApp product
+2. **Configure Webhooks**
+```go
+func handleWhatsAppWebhook(c *fiber.Ctx) error {
+    // Webhook verification
+    if c.Query("hub.verify_token") == os.Getenv("WEBHOOK_VERIFY_TOKEN") {
+        return c.SendString(c.Query("hub.challenge"))
+    }
+    // Handle incoming messages
+    var payload WebhookPayload
+    if err := c.BodyParser(&payload); err != nil {
+        return c.Status(400).JSON(fiber.Map{"error": "Invalid payload"})
+    }
+    // Process messages asynchronously
+    go processWhatsAppMessage(payload)
+    return c.JSON(fiber.Map{"status": "received"})
+}
+```
+3. **Send Messages**
+```go
+func sendWhatsAppMessage(to, message string) error {
+    url := "https://graph.facebook.com/v18.0/{PHONE_NUMBER_ID}/messages"
+    payload := map[string]interface{}{
+        "messaging_product": "whatsapp",
+        "to": to,
+        "text": map[string]string{"body": message},
+    }
+    // HTTP request with Meta Access Token
+    // Implementation details...
+    return nil
+}
+```
+## OAuth Integration
+**Google OAuth Setup:**
+```go
+func handleGoogleCallback(c *fiber.Ctx) error {
+    code := c.Query("code")
+    // Exchange code for tokens
+    tokenResp, err := exchangeGoogleCode(code)
+    if err != nil {
+        return c.Status(400).JSON(fiber.Map{"error": "Invalid code"})
+    }
+    // Get user info
+    userInfo, err := getGoogleUserInfo(tokenResp.AccessToken)
+    if err != nil {
+        return c.Status(500).JSON(fiber.Map{"error": "Failed to get user info"})
+    }
+    // Create/update user in database
+    user, err := createOrUpdateUser(userInfo)
+    if err != nil {
+        return c.Status(500).JSON(fiber.Map{"error": "Database error"})
+    }
+    // Generate JWT
+    token, err := generateJWT(user)
+    if err != nil {
+        return c.Status(500).JSON(fiber.Map{"error": "Token generation failed"})
+    }
+    return c.JSON(fiber.Map{
+        "success": true,
+        "token": token,
+        "user": user,
+    })
+}
+```
+## Domain Routing Strategy
+**Landing Domain** (`yourdomain.com`):
+- `/` - Homepage
+- `/pricing` - Pricing page
+- `/docs` - Documentation
+- `/contact` - Contact form
+**App Domain** (`app.yourdomain.com`):
+- `/login` - Login page
+- `/register` - Registration
+- `/dashboard` - Main dashboard
+- `/inbox` - Message inbox
+- `/contacts` - Contact management
+- `/settings` - User settings
+All app routes on landing domain redirect to app domain.
+All landing routes on app domain redirect to landing domain.
+## Security Best Practices
+1. **Environment Variables**
+   - Never commit `.env` files
+   - Use strong JWT secrets (32+ chars)
+   - Rotate tokens regularly
+2. **CORS Configuration**
+   - Specific origins only
+   - No wildcards in production
+3. **Webhook Security**
+   - Verify webhook tokens
+   - Validate payloads
+   - Rate limiting
+4. **Database Security**
+   - Localhost-only binding (127.0.0.1)
+   - Strong passwords
+   - Connection pooling
+## Deployment
+1. **Standard Architecture**
+   - Use `claude` standard-architecture skill for Nginx + Unix Socket + CF Tunnel
+   - Localhost-only port binding (127.0.0.1)
+   - SSL termination at Cloudflare
+2. **Domain Setup**
+   - Configure DNS for yourdomain.com and app.yourdomain.com
+   - Both pointing to Cloudflare Tunnel
+3. **Environment Setup**
+   - Copy `.env.example` to `.env`
+   - Configure all variables
+   - Test OAuth callbacks
+## Testing
+1. **Backend Health Check**
+```bash
+curl http://localhost:8080/health
+```
+2. **Webhook Testing**
+```bash
+curl -X POST http://localhost:8080/api/v1/webhooks/whatsapp \
+  -H "Content-Type: application/json" \
+  -d '{"test": "payload"}'
+```
+3. **Frontend Routing**
+   - Test domain redirects
+   - Verify OAuth flows
+   - Check security headers
+## Scaling Considerations
+- **Message Queue**: Use Redis/Asynq for background processing
+- **Database**: PostgreSQL with read replicas
+- **Cache**: Redis for session storage
+- **Monitoring**: Health checks and logs
+- **Rate Limiting**: Per-user and global limits
+## Revenue Features
+- **Multi-tenancy**: Workspace isolation
+- **Usage tracking**: Message counts, API calls
+- **Billing integration**: Stripe/payment gateway
+- **Analytics**: User engagement, conversion
+- **API limits**: Tiered pricing model
+This pattern provides a solid foundation for building scalable WhatsApp Business platforms with modern web technologies.

package/skills/whatsapp-business-platform/templates/.env.template ADDED Viewed

@@ -0,0 +1,93 @@
+# =============================================================================
+# {{PROJECT_NAME}} Configuration
+# =============================================================================
+# Server Configuration
+ENVIRONMENT=production
+PORT=8080
+HOST=0.0.0.0
+# Database Configuration
+DATABASE_URL=postgres://{{DB_USER}}:{{DB_PASSWORD}}@{{DB_HOST}}:{{DB_PORT}}/{{DB_NAME}}?sslmode=disable
+DB_MAX_CONNECTIONS=25
+DB_MAX_IDLE_CONNECTIONS=5
+# Redis Configuration
+REDIS_ADDR={{REDIS_HOST}}:{{REDIS_PORT}}
+REDIS_PASSWORD={{REDIS_PASSWORD}}
+REDIS_DB=0
+REDIS_MAX_RETRIES=3
+# JWT Configuration
+JWT_SECRET={{JWT_SECRET}}
+JWT_EXPIRY=15m
+JWT_REFRESH_EXPIRY=168h
+JWT_ISSUER={{PROJECT_NAME}}
+# Encryption (AES-256, must be exactly 32 bytes)
+ENCRYPTION_KEY={{ENCRYPTION_KEY}}
+# CORS Configuration
+ALLOWED_ORIGINS=https://{{MAIN_DOMAIN}},https://app.{{MAIN_DOMAIN}}
+# Rate Limiting
+RATE_LIMIT_REQUESTS=100
+RATE_LIMIT_WINDOW=60s
+# Google OAuth Configuration
+GOOGLE_CLIENT_ID={{GOOGLE_CLIENT_ID}}
+GOOGLE_CLIENT_SECRET={{GOOGLE_CLIENT_SECRET}}
+GOOGLE_REDIRECT_URI=https://app.{{MAIN_DOMAIN}}/auth/google/callback
+# Facebook OAuth Configuration
+FACEBOOK_APP_ID={{FACEBOOK_APP_ID}}
+FACEBOOK_APP_SECRET={{FACEBOOK_APP_SECRET}}
+FACEBOOK_REDIRECT_URI=https://app.{{MAIN_DOMAIN}}/auth/facebook/callback
+# WhatsApp Business API Configuration
+META_ACCESS_TOKEN={{META_ACCESS_TOKEN}}
+META_APP_SECRET={{META_APP_SECRET}}
+WEBHOOK_VERIFY_TOKEN={{WEBHOOK_VERIFY_TOKEN}}
+WHATSAPP_PHONE_NUMBER_ID={{WHATSAPP_PHONE_NUMBER_ID}}
+WHATSAPP_BUSINESS_ACCOUNT_ID={{WHATSAPP_BUSINESS_ACCOUNT_ID}}
+# Email Configuration (Optional)
+SMTP_HOST={{SMTP_HOST}}
+SMTP_PORT={{SMTP_PORT}}
+SMTP_USERNAME={{SMTP_USERNAME}}
+SMTP_PASSWORD={{SMTP_PASSWORD}}
+FROM_EMAIL={{FROM_EMAIL}}
+# File Upload Configuration
+MAX_FILE_SIZE=10MB
+ALLOWED_FILE_TYPES=image/jpeg,image/png,image/gif,application/pdf
+UPLOAD_DIR=./uploads
+# Logging Configuration
+LOG_LEVEL=info
+LOG_FORMAT=json
+# Monitoring Configuration
+SENTRY_DSN={{SENTRY_DSN}}
+HEALTH_CHECK_INTERVAL=30s
+# Business Configuration
+COMPANY_NAME={{COMPANY_NAME}}
+SUPPORT_EMAIL={{SUPPORT_EMAIL}}
+COMPANY_WEBSITE=https://{{MAIN_DOMAIN}}
+# Feature Flags
+ENABLE_REGISTRATION=true
+ENABLE_GOOGLE_AUTH=true
+ENABLE_FACEBOOK_AUTH=true
+ENABLE_EMAIL_VERIFICATION=true
+ENABLE_RATE_LIMITING=true
+# Timezone
+TZ=Asia/Jakarta
+# =============================================================================
+# Development Only (Remove in Production)
+# =============================================================================
+# DATABASE_URL=postgres://postgres:postgres@localhost:5432/{{DB_NAME}}_dev?sslmode=disable
+# REDIS_ADDR=localhost:6379

package/skills/whatsapp-business-platform/templates/backend-main.go.template ADDED Viewed

@@ -0,0 +1,105 @@
+package main
+import (
+	"log"
+	"os"
+	"os/signal"
+	"syscall"
+	"github.com/gofiber/fiber/v2"
+	"github.com/gofiber/fiber/v2/middleware/cors"
+	"github.com/gofiber/fiber/v2/middleware/helmet"
+	"github.com/gofiber/fiber/v2/middleware/logger"
+	"github.com/gofiber/fiber/v2/middleware/recover"
+	"github.com/joho/godotenv"
+)
+func main() {
+	// Load environment variables
+	if err := godotenv.Load(); err != nil {
+		log.Println("No .env file found, using system environment variables")
+	}
+	// Initialize Fiber app
+	app := fiber.New(fiber.Config{
+		ServerHeader: "{{PROJECT_NAME}} API",
+		AppName:      "{{PROJECT_NAME}} v1.0",
+		ErrorHandler: errorHandler,
+	})
+	// Middleware
+	app.Use(cors.New(cors.Config{
+		AllowOrigins:     os.Getenv("ALLOWED_ORIGINS"),
+		AllowHeaders:     "Origin, Content-Type, Accept, Authorization",
+		AllowMethods:     "GET, POST, PUT, DELETE, OPTIONS",
+		AllowCredentials: true,
+	}))
+	app.Use(helmet.New())
+	app.Use(logger.New())
+	app.Use(recover.New())
+	// Health check
+	app.Get("/health", func(c *fiber.Ctx) error {
+		return c.JSON(fiber.Map{
+			"status":    "ok",
+			"timestamp": time.Now().Unix(),
+			"service":   "{{PROJECT_NAME}}",
+		})
+	})
+	// API routes
+	api := app.Group("/api/v1")
+	// Auth routes
+	auth := api.Group("/auth")
+	auth.Post("/google/callback", handleGoogleCallback)
+	auth.Post("/facebook/callback", handleFacebookCallback)
+	auth.Post("/refresh", handleTokenRefresh)
+	auth.Post("/logout", middleware.RequireAuth(), handleLogout)
+	// WhatsApp webhook
+	api.Post("/webhooks/whatsapp", handleWhatsAppWebhook)
+	api.Get("/webhooks/whatsapp", handleWhatsAppVerification)
+	// Protected routes
+	protected := api.Group("/", middleware.RequireAuth())
+	protected.Get("/me", getUserProfile)
+	protected.Post("/messages", sendMessage)
+	protected.Get("/conversations", getConversations)
+	protected.Get("/contacts", getContacts)
+	// Graceful shutdown
+	c := make(chan os.Signal, 1)
+	signal.Notify(c, os.Interrupt, syscall.SIGTERM)
+	go func() {
+		<-c
+		log.Println("Gracefully shutting down...")
+		_ = app.Shutdown()
+	}()
+	// Start server
+	port := os.Getenv("PORT")
+	if port == "" {
+		port = "8080"
+	}
+	log.Printf("🚀 Server starting on port %s", port)
+	log.Printf("🔗 Health check: http://localhost:%s/health", port)
+	if err := app.Listen(":" + port); err != nil {
+		log.Fatalf("❌ Failed to start server: %v", err)
+	}
+}
+func errorHandler(c *fiber.Ctx, err error) error {
+	code := fiber.StatusInternalServerError
+	if e, ok := err.(*fiber.Error); ok {
+		code = e.Code
+	}
+	return c.Status(code).JSON(fiber.Map{
+		"error":   true,
+		"message": err.Error(),
+		"code":    code,
+	})
+}

package/skills/whatsapp-business-platform/templates/docker-compose.yml.template ADDED Viewed

@@ -0,0 +1,142 @@
+version: '3.8'
+services:
+  # Backend API Service
+  backend:
+    build:
+      context: ./backend
+      dockerfile: Dockerfile
+    container_name: {{PROJECT_NAME}}-backend
+    restart: unless-stopped
+    ports:
+      - "127.0.0.1:{{BACKEND_PORT}}:8080"
+    environment:
+      - PORT=8080
+      - TZ=Asia/Jakarta
+      - DATABASE_URL=postgres://{{DB_USER}}:{{DB_PASSWORD}}@{{PROJECT_NAME}}-db:5432/{{DB_NAME}}?sslmode=disable
+      - REDIS_ADDR={{PROJECT_NAME}}-redis:6379
+    env_file:
+      - backend/.env
+    networks:
+      - {{PROJECT_NAME}}-network
+    depends_on:
+      - db
+      - redis
+    volumes:
+      - ./backend/uploads:/app/uploads
+      - ./backend/logs:/app/logs
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:8080/health"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+      start_period: 30s
+  # Frontend Service
+  frontend:
+    build:
+      context: ./frontend
+      dockerfile: Dockerfile
+    container_name: {{PROJECT_NAME}}-frontend
+    restart: unless-stopped
+    ports:
+      - "127.0.0.1:{{FRONTEND_PORT}}:3000"
+    environment:
+      - NODE_ENV=production
+      - API_URL=http://{{PROJECT_NAME}}-backend:8080
+      - DOMAIN={{MAIN_DOMAIN}}
+    networks:
+      - {{PROJECT_NAME}}-network
+    depends_on:
+      - backend
+  # PostgreSQL Database
+  db:
+    image: postgres:15-alpine
+    container_name: {{PROJECT_NAME}}-db
+    restart: unless-stopped
+    ports:
+      - "127.0.0.1:{{DB_PORT}}:5432"
+    environment:
+      - POSTGRES_DB={{DB_NAME}}
+      - POSTGRES_USER={{DB_USER}}
+      - POSTGRES_PASSWORD={{DB_PASSWORD}}
+      - POSTGRES_INITDB_ARGS=--auth-host=scram-sha-256
+    volumes:
+      - {{PROJECT_NAME}}_db_data:/var/lib/postgresql/data
+      - ./backend/migrations:/docker-entrypoint-initdb.d
+    networks:
+      - {{PROJECT_NAME}}-network
+    healthcheck:
+      test: ["CMD-SHELL", "pg_isready -U {{DB_USER}} -d {{DB_NAME}}"]
+      interval: 30s
+      timeout: 10s
+      retries: 3
+  # Redis Cache & Queue
+  redis:
+    image: redis:7-alpine
+    container_name: {{PROJECT_NAME}}-redis
+    restart: unless-stopped
+    ports:
+      - "127.0.0.1:{{REDIS_PORT}}:6379"
+    command: redis-server --requirepass {{REDIS_PASSWORD}}
+    volumes:
+      - {{PROJECT_NAME}}_redis_data:/data
+      - ./backend/redis.conf:/usr/local/etc/redis/redis.conf
+    networks:
+      - {{PROJECT_NAME}}-network
+    healthcheck:
+      test: ["CMD", "redis-cli", "--raw", "incr", "ping"]
+      interval: 30s
+      timeout: 3s
+      retries: 5
+  # Background Job Worker (Optional)
+  worker:
+    build:
+      context: ./backend
+      dockerfile: Dockerfile
+    container_name: {{PROJECT_NAME}}-worker
+    restart: unless-stopped
+    command: ["./worker"]
+    environment:
+      - TZ=Asia/Jakarta
+      - DATABASE_URL=postgres://{{DB_USER}}:{{DB_PASSWORD}}@{{PROJECT_NAME}}-db:5432/{{DB_NAME}}?sslmode=disable
+      - REDIS_ADDR={{PROJECT_NAME}}-redis:6379
+    env_file:
+      - backend/.env
+    networks:
+      - {{PROJECT_NAME}}-network
+    depends_on:
+      - db
+      - redis
+    volumes:
+      - ./backend/uploads:/app/uploads
+      - ./backend/logs:/app/logs
+# Networks
+networks:
+  {{PROJECT_NAME}}-network:
+    driver: bridge
+    ipam:
+      config:
+        - subnet: 172.{{SUBNET}}.0.0/16
+# Volumes
+volumes:
+  {{PROJECT_NAME}}_db_data:
+    driver: local
+  {{PROJECT_NAME}}_redis_data:
+    driver: local
+# =============================================================================
+# Production Considerations:
+# =============================================================================
+# 1. Use Docker secrets for sensitive data
+# 2. Set up log rotation for container logs
+# 3. Configure backup strategy for volumes
+# 4. Monitor container resource usage
+# 5. Use health checks for all services
+# 6. Set up monitoring with Prometheus/Grafana
+# =============================================================================

package/skills/whatsapp-business-platform/templates/hooks.server.ts.template ADDED Viewed

@@ -0,0 +1,116 @@
+import type { Handle } from '@sveltejs/kit';
+import { redirect } from '@sveltejs/kit';
+// Landing page paths (served on main domain)
+const LANDING_PATHS = [
+	'/',
+	'/docs',
+	'/pricing',
+	'/contact',
+	'/about',
+	'/features',
+	'/blog',
+	'/legal/privacy',
+	'/legal/terms'
+];
+// App paths (served on app subdomain)
+const APP_PATHS = [
+	'/login',
+	'/register',
+	'/forgot-password',
+	'/reset-password',
+	'/verify-email',
+	'/resend-verification',
+	'/dashboard',
+	'/inbox',
+	'/conversations',
+	'/contacts',
+	'/templates',
+	'/webhooks',
+	'/auto-reply',
+	'/broadcasts',
+	'/analytics',
+	'/billing',
+	'/settings',
+	'/team',
+	'/integrations',
+	'/api-keys',
+	'/profile'
+];
+export const handle: Handle = async ({ event, resolve }) => {
+	const hostname = event.url.hostname;
+	const pathname = event.url.pathname;
+	// Define domain patterns
+	const isLandingDomain = hostname === '{{MAIN_DOMAIN}}' || hostname === 'www.{{MAIN_DOMAIN}}';
+	const isAppDomain = hostname === 'app.{{MAIN_DOMAIN}}';
+	// Landing domain logic
+	if (isLandingDomain) {
+		// If user accesses app path on landing domain, redirect to app domain
+		const isAppPath = APP_PATHS.some(p => pathname === p || pathname.startsWith(p + '/'));
+		if (isAppPath) {
+			throw redirect(302, 'https://app.{{MAIN_DOMAIN}}' + pathname + event.url.search);
+		}
+	}
+	// App domain logic
+	if (isAppDomain) {
+		// If user accesses landing path on app domain, redirect to landing domain
+		const isLandingPath = LANDING_PATHS.some(p =>
+			pathname === p || (p !== '/' && pathname.startsWith(p + '/'))
+		);
+		if (isLandingPath && pathname !== '/') {
+			throw redirect(302, 'https://{{MAIN_DOMAIN}}' + pathname + event.url.search);
+		}
+		// Root path on app domain should redirect to login/dashboard
+		if (pathname === '/') {
+			// Check if user is authenticated (you can implement JWT verification here)
+			const token = event.cookies.get('auth_token');
+			if (token && await verifyToken(token)) {
+				throw redirect(302, 'https://app.{{MAIN_DOMAIN}}/dashboard');
+			} else {
+				throw redirect(302, 'https://app.{{MAIN_DOMAIN}}/login');
+			}
+		}
+	}
+	// Process the request
+	const response = await resolve(event);
+	// Add security headers
+	response.headers.set('X-Frame-Options', 'SAMEORIGIN');
+	response.headers.set('X-Content-Type-Options', 'nosniff');
+	response.headers.set('Referrer-Policy', 'strict-origin-when-cross-origin');
+	response.headers.set('X-XSS-Protection', '1; mode=block');
+	// HSTS for production
+	if (hostname.includes('{{MAIN_DOMAIN}}')) {
+		response.headers.set('Strict-Transport-Security', 'max-age=31536000; includeSubDomains');
+	}
+	return response;
+};
+// Helper function to verify JWT token
+async function verifyToken(token: string): Promise<boolean> {
+	try {
+		// Implement JWT verification logic here
+		// This is a placeholder - replace with actual JWT verification
+		const response = await fetch('http://localhost:8080/api/v1/auth/verify', {
+			headers: {
+				'Authorization': `Bearer ${token}`
+			}
+		});
+		return response.ok;
+	} catch (error) {
+		console.error('Token verification failed:', error);
+		return false;
+	}
+}