create-backlist 5.0.7 → 6.0.2

package/src/templates/java-spring/partials/User.java.ejs

@@ -0,0 +1,33 @@
+// Auto-generated by create-backlist
+package <%= group %>.<%= projectName %>.model;
+
+import com.fasterxml.jackson.annotation.JsonIgnore;
+import jakarta.persistence.*;
+import lombok.*;
+
+@Data
+@NoArgsConstructor
+@AllArgsConstructor
+@Entity
+@Table(
+  name = "users",
+  indexes = {
+    @Index(name = "idx_users_email", columnList = "email", unique = true)
+  }
+)
+public class User {
+
+  @Id
+  @GeneratedValue(strategy = GenerationType.IDENTITY)
+  private Long id;
+
+  @Column(nullable = false)
+  private String name;
+
+  @Column(nullable = false, unique = true)
+  private String email;
+
+  @JsonIgnore
+  @Column(nullable = false)
+  private String password;
+}

package/src/templates/java-spring/partials/UserDetailsServiceImpl.java.ejs

@@ -0,0 +1,33 @@
+// Auto-generated by create-backlist
+package <%= group %>.<%= projectName %>.security;
+
+import <%= group %>.<%= projectName %>.model.User;
+import <%= group %>.<%= projectName %>.repository.UserRepository;
+
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.core.userdetails.UserDetails;
+import org.springframework.security.core.userdetails.UsernameNotFoundException;
+
+import org.springframework.stereotype.Service;
+
+@Service
+public class UserDetailsServiceImpl implements UserDetailsService {
+
+  private final UserRepository repo;
+
+  public UserDetailsServiceImpl(UserRepository repo) {
+    this.repo = repo;
+  }
+
+  @Override
+  public UserDetails loadUserByUsername(String email) throws UsernameNotFoundException {
+    User u = repo.findByEmail(email)
+      .orElseThrow(() -> new UsernameNotFoundException("User not found: " + email));
+
+    return org.springframework.security.core.userdetails.User
+      .withUsername(u.getEmail())
+      .password(u.getPassword())
+      .authorities("ROLE_USER")
+      .build();
+  }
+}

package/src/templates/java-spring/partials/UserRepository.java.ejs

@@ -0,0 +1,20 @@
+// Auto-generated by create-backlist
+package <%= group %>.<%= projectName %>.repository;
+
+import java.util.Optional;
+
+import org.springframework.data.jpa.repository.JpaRepository;
+import org.springframework.stereotype.Repository;
+
+import <%= group %>.<%= projectName %>.model.User;
+
+@Repository
+public interface UserRepository extends JpaRepository<User, Long> {
+
+  Optional<User> findByEmail(String email);
+
+  boolean existsByEmail(String email);
+
+  // Optional: helpful if emails are stored normalized but requests vary
+  Optional<User> findByEmailIgnoreCase(String email);
+}

package/src/templates/java-spring/partials/docker-compose.yml.ejs

@@ -0,0 +1,35 @@
+version: "3.8"
+
+services:
+  db:
+    image: postgres:16-alpine
+    environment:
+      POSTGRES_USER: ${DB_USER:-postgres}
+      POSTGRES_PASSWORD: ${DB_PASSWORD:-password}
+      POSTGRES_DB: ${DB_NAME:-<%= projectName %>}
+    ports:
+      - "${DB_PORT:-5432}:5432"
+    volumes:
+      - pgdata:/var/lib/postgresql/data
+    healthcheck:
+      test: ["CMD-SHELL", "pg_isready -U ${DB_USER:-postgres} -d ${DB_NAME:-<%= projectName %>}"]
+      interval: 5s
+      timeout: 5s
+      retries: 20
+
+  app:
+    build: .
+    depends_on:
+      db:
+        condition: service_healthy
+    environment:
+      JWT_SECRET: ${JWT_SECRET:-change_me_long_secret_change_me_long_secret}
+      SPRING_DATASOURCE_URL: jdbc:postgresql://db:5432/${DB_NAME:-<%= projectName %>}
+      SPRING_DATASOURCE_USERNAME: ${DB_USER:-postgres}
+      SPRING_DATASOURCE_PASSWORD: ${DB_PASSWORD:-password}
+      SPRING_JPA_HIBERNATE_DDL_AUTO: ${JPA_DDL_AUTO:-update}
+    ports:
+      - "${APP_PORT:-8080}:8080"
+
+volumes:
+  pgdata:

package/src/templates/node-ts-express/base/server.ts

@@ -4,19 +4,26 @@ import dotenv from 'dotenv';
 
 dotenv.config();
 
-const app: Express = express(); // Added :Express type
+const app: Express = express();
 
 app.use(cors());
 app.use(express.json());
 
-app.get('/', (req: Request, res: Response) => { // Added :Request and :Response types
+app.get('/', (req: Request, res: Response) => {
   res.send('Node.js Backend says Hello! Generated by Backlist.');
 });
 
-// INJECT:ROUTES
+// <backlist:imports>
+// </backlist:imports>
 
-const PORT: number | string = process.env.PORT || 8000; // Added type for PORT
+// <backlist:setup>
+// </backlist:setup>
+
+// <backlist:routes>
+// </backlist:routes>
+
+const PORT: number | string = process.env.PORT || 8000;
 
 app.listen(PORT, () => {
-  console.log(`⚡️ Server running on http://localhost:${PORT}`);
+  console.log(`Server running on http://localhost:${PORT}`);
 });

package/src/templates/node-ts-express/base/tsconfig.json

@@ -1,10 +1,20 @@
 {
   "compilerOptions": {
-    "target": "es6",
+    "target": "ES2021",
     "module": "commonjs",
+    "moduleResolution": "node",
     "rootDir": "./src",
     "outDir": "./dist",
+
     "esModuleInterop": true,
-    "strict": true
-  }
+    "strict": true,
+
+    "types": ["node"],
+    "resolveJsonModule": true,
+    "forceConsistentCasingInFileNames": true,
+    "skipLibCheck": true,
+
+    "sourceMap": true
+  },
+  "include": ["src/**/*"]
 }

package/src/templates/node-ts-express/partials/ApiDocs.ts.ejs

@@ -1,4 +1,4 @@
-// Auto-generated by create-backlist v5.0
+// Auto-generated by create-backlist v5.1
 import swaggerUi from 'swagger-ui-express';
 import swaggerJsdoc from 'swagger-jsdoc';
 import { Express } from 'express';
@@ -17,17 +17,27 @@ const options: swaggerJsdoc.Options = {
         description: 'Development server',
       },
     ],
-    // TODO: Add components (e.g., securitySchemes for JWT)
+<% if (addAuth) { -%>
+    components: {
+      securitySchemes: {
+        bearerAuth: {
+          type: 'http',
+          scheme: 'bearer',
+          bearerFormat: 'JWT',
+        },
+      },
+    },
+    security: [{ bearerAuth: [] }],
+<% } -%>
   },
-  // Path to the API docs
-  apis: ['./src/routes/*.ts', './src/routes.ts'], // Looks for JSDoc comments in routes
+
+  // Scan all TS files (routes/controllers) for JSDoc @swagger comments
+  apis: ['./src/**/*.ts'],
 };
 
 const swaggerSpec = swaggerJsdoc(options);
 
 export function setupSwagger(app: Express) {
   app.use('/api-docs', swaggerUi.serve, swaggerUi.setup(swaggerSpec));
-  console.log(
-    `📄 API documentation is available at http://localhost:<%= port %>/api-docs`
-  );
+  console.log(`API documentation: http://localhost:<%= port %>/api-docs`);
 }

package/src/templates/node-ts-express/partials/App.test.ts.ejs

@@ -1,38 +1,38 @@
-// Auto-generated by create-backlist v5.0
+// Auto-generated by create-backlist v5.1
 import request from 'supertest';
 import express from 'express';
-// Import your main app configuration. This might need path adjustment.
-// For simplicity, we create a test server here.
-import apiRoutes from '../routes'; // Assuming main routes
-import authRoutes from '../routes/Auth.routes'; // Assuming auth routes
+
+import apiRoutes from '../routes'; 
+<% if (addAuth) { -%>
+import authRoutes from '../routes/Auth.routes';
+<% } -%>
 
 const app = express();
 app.use(express.json());
-app.use('/api', apiRoutes);
-app.use('/api/auth', authRoutes);
-
 
-describe('API Endpoints', () => {
+<% if (addAuth) { -%>
+app.use('/api/auth', authRoutes);
+<% } -%>
+app.use('/api', apiRoutes);
 
-  it('should respond to the root GET endpoint', async () => {
-    // This test assumes a GET /api/ endpoint exists or a similar public one.
-    // You might need to adjust this to a real endpoint from your app.
-    // Example for GET /api/users
-    // const res = await request(app).get('/api/users');
-    // expect(res.statusCode).toEqual(200);
-    
-    // For now, a placeholder test:
+describe('API Endpoints (Generated)', () => {
+  it('sanity check', () => {
     expect(1 + 1).toBe(2);
   });
 
-  // TODO: Add more specific tests for your generated endpoints
-  // describe('POST /api/users', () => {
-  //   it('should create a new user', async () => {
-  //     const res = await request(app)
-  //       .post('/api/users')
-  //       .send({ name: 'Test User', email: 'test@example.com', password: 'password123' });
-  //     expect(res.statusCode).toEqual(201);
-  //     expect(res.body).toHaveProperty('name', 'Test User');
-  //   });
-  // });
+  <% endpoints
+      .filter(ep => ep && ep.route && ep.method)
+      .forEach(ep => { 
+        const method = ep.method.toLowerCase();
+        const url = (ep.route.startsWith('/api/') ? ep.route.replace(/^\/api/, '') : ep.route)
+          .replace(/:\w+/g, '1'); // replace path params with dummy value
+  -%>
+  it('<%= ep.method %> <%= url %> should respond', async () => {
+    const res = await request(app).<%= method %>('<%= '/api' + url %>')<% if (['post','put','patch'].includes(method) && ep.schemaFields) { %>
+      .send(<%- JSON.stringify(Object.fromEntries(Object.entries(ep.schemaFields).map(([k,t]) => [k, t === 'Number' ? 1 : (t === 'Boolean' ? true : 'test') ]))) %>)<% } %>;
+    // We only assert "not 404" because generated handlers may be TODO stubs,
+    // and auth/validation may affect exact status codes.
+    expect(res.statusCode).not.toBe(404);
+  });
+  <% }) -%>
 });

package/src/templates/node-ts-express/partials/Auth.controller.ts.ejs

@@ -3,87 +3,81 @@ import { Request, Response } from 'express';
 import bcrypt from 'bcryptjs';
 import jwt from 'jsonwebtoken';
 
-<% if (dbType === 'mongoose') { %>
+<% if (dbType === 'mongoose') { -%>
 import User from '../models/User.model';
-<% } else if (dbType === 'prisma') { %>
-import { prisma } from '../server';
-<% } %>
+<% } else if (dbType === 'prisma') { -%>
+import { prisma } from '../db/prisma';
+<% } -%>
 
-// @desc    Register a new user
+function signToken(res: Response, userId: string) {
+  const secret = process.env.JWT_SECRET;
+  if (!secret) {
+    return res.status(500).json({ message: 'JWT_SECRET is not configured' });
+  }
+
+  const payload = { user: { id: userId } };
+
+  jwt.sign(payload, secret, { expiresIn: '5h' }, (err, token) => {
+    if (err || !token) return res.status(500).json({ message: 'Failed to sign token' });
+    return res.status(201).json({ token });
+  });
+}
+
+// Register
 export const registerUser = async (req: Request, res: Response) => {
-  const { name, email, password } = req.body;
+  const { name, email, password } = req.body || {};
 
   try {
-    <% if (dbType === 'mongoose') { %>
-    // Mongoose Logic
-    let user = await User.findOne({ email });
-    if (user) {
-      return res.status(400).json({ message: 'User already exists' });
+    if (!name || !email || !password) {
+      return res.status(400).json({ message: 'name, email, password are required' });
     }
-    user = new User({ name, email, password });
+
+<% if (dbType === 'mongoose') { -%>
+    const existing = await User.findOne({ email });
+    if (existing) return res.status(400).json({ message: 'User already exists' });
+
+    const user = new User({ name, email, password }); // password will be hashed by pre-save hook
     await user.save();
-    <% } else if (dbType === 'prisma') { %>
-    // Prisma Logic
-    const existingUser = await prisma.user.findUnique({ where: { email } });
-    if (existingUser) {
-        return res.status(400).json({ message: 'User already exists' });
-    }
-    const hashedPassword = await bcrypt.hash(password, 10);
-    const user = await prisma.user.create({
-        data: { name, email, password: hashedPassword },
-    });
-    <% } %>
+    return signToken(res, String(user._id));
+<% } else if (dbType === 'prisma') { -%>
+    const existing = await prisma.user.findUnique({ where: { email } });
+    if (existing) return res.status(400).json({ message: 'User already exists' });
 
-    const payload = { user: { id: user.id } };
-    jwt.sign(
-      payload,
-      process.env.JWT_SECRET as string,
-      { expiresIn: '5h' },
-      (err, token) => {
-        if (err) throw err;
-        res.status(201).json({ token });
-      }
-    );
-  } catch (error) {
-    console.error(error);
-    res.status(500).send('Server Error');
+    const hashedPassword = await bcrypt.hash(password, 10);
+    const user = await prisma.user.create({ data: { name, email, password: hashedPassword } });
+    return signToken(res, String(user.id));
+<% } -%>
+  } catch (error: any) {
+    return res.status(500).json({ message: 'Server Error', error: error?.message || error });
   }
 };
 
-// @desc    Authenticate user & get token (Login)
+// Login
 export const loginUser = async (req: Request, res: Response) => {
-  const { email, password } = req.body;
+  const { email, password } = req.body || {};
 
   try {
-    <% if (dbType === 'mongoose') { %>
-    // Mongoose Logic
+    if (!email || !password) {
+      return res.status(400).json({ message: 'email and password are required' });
+    }
+
+<% if (dbType === 'mongoose') { -%>
     const user = await User.findOne({ email });
-    <% } else if (dbType === 'prisma') { %>
-    // Prisma Logic
+<% } else if (dbType === 'prisma') { -%>
     const user = await prisma.user.findUnique({ where: { email } });
-    <% } %>
+<% } -%>
 
-    if (!user) {
-      return res.status(400).json({ message: 'Invalid Credentials' });
-    }
+    if (!user) return res.status(400).json({ message: 'Invalid Credentials' });
 
     const isMatch = await bcrypt.compare(password, user.password);
-    if (!isMatch) {
-      return res.status(400).json({ message: 'Invalid Credentials' });
-    }
+    if (!isMatch) return res.status(400).json({ message: 'Invalid Credentials' });
 
-    const payload = { user: { id: user.id } };
-    jwt.sign(
-      payload,
-      process.env.JWT_SECRET as string,
-      { expiresIn: '5h' },
-      (err, token) => {
-        if (err) throw err;
-        res.json({ token });
-      }
-    );
-  } catch (error) {
-    console.error(error);
-    res.status(500).send('Server Error');
+<% if (dbType === 'mongoose') { -%>
+    return signToken(res, String(user._id));
+<% } else { -%>
+    return signToken(res, String(user.id));
+<% } -%>
+  } catch (error: any) {
+    return res.status(500).json({ message: 'Server Error', error: error?.message || error });
   }
 };

package/src/templates/node-ts-express/partials/Auth.middleware.ts.ejs

@@ -1,27 +1,38 @@
-// Auto-generated by create-backlist v3.0 on <%= new Date().toISOString() %>
+// Auto-generated by create-backlist v5.1 on <%= new Date().toISOString() %>
 import { Request, Response, NextFunction } from 'express';
 import jwt from 'jsonwebtoken';
 
-// Extend the default Request interface to include our 'user' property
 interface AuthRequest extends Request {
   user?: any;
 }
 
 export const protect = (req: AuthRequest, res: Response, next: NextFunction) => {
-  // Get token from header
-  const token = req.header('x-auth-token');
+  const secret = process.env.JWT_SECRET;
+  if (!secret) return res.status(500).json({ message: 'JWT_SECRET is not configured' });
+
+  // Support both:
+  // 1) Authorization: Bearer <token>
+  // 2) x-auth-token: <token>
+  const authHeader = req.header('authorization');
+  const xToken = req.header('x-auth-token');
+
+  let token: string | undefined;
+
+  if (authHeader && authHeader.toLowerCase().startsWith('bearer ')) {
+    token = authHeader.slice(7).trim();
+  } else if (xToken) {
+    token = xToken.trim();
+  }
 
-  // Check if not token
   if (!token) {
     return res.status(401).json({ message: 'No token, authorization denied' });
   }
 
-  // Verify token
   try {
-    const decoded = jwt.verify(token, process.env.JWT_SECRET as string);
+    const decoded: any = jwt.verify(token, secret);
     req.user = decoded.user;
-    next();
-  } catch (err) {
-    res.status(401).json({ message: 'Token is not valid' });
+    return next();
+  } catch {
+    return res.status(401).json({ message: 'Token is not valid' });
   }
 };

package/src/templates/node-ts-express/partials/Controller.ts.ejs

@@ -1,50 +1,50 @@
 // Auto-generated by create-backlist on <%= new Date().toISOString() %>
 import { Request, Response } from 'express';
 
-export const create<%= modelName %> = async (req: Request, res: Response) => {
-  try {
-    // TODO: implement create logic
-    res.status(201).json({ message: '<%= modelName %> created', data: req.body });
-  } catch (error) {
-    res.status(500).json({ message: 'Error creating <%= modelName %>', error });
-  }
-};
+/**
+ * Controller: <%= controllerName %>
+ * Generated from frontend AST scan.
+ */
 
-export const getAll<%= modelName %>s = async (_req: Request, res: Response) => {
-  try {
-    // TODO: implement list logic
-    res.status(200).json([]);
-  } catch (error) {
-    res.status(500).json({ message: 'Error fetching <%= modelName %>s', error });
-  }
-};
+<%
+function safeAction(name, fallback) {
+  if (!name) return fallback;
+  return String(name).replace(/[^a-zA-Z0-9_]/g, '');
+}
 
-export const get<%= modelName %>ById = async (req: Request, res: Response) => {
-  try {
-    const { id } = req.params;
-    // TODO: implement get by id logic
-    res.status(200).json({ id });
-  } catch (error) {
-    res.status(500).json({ message: 'Error fetching <%= modelName %>', error });
-  }
-};
+function hasBody(method) {
+  const m = String(method || 'GET').toUpperCase();
+  return ['POST', 'PUT', 'PATCH'].includes(m);
+}
+%>
 
-export const update<%= modelName %>ById = async (req: Request, res: Response) => {
-  try {
-    const { id } = req.params;
-    // TODO: implement update logic
-    res.status(200).json({ id, ...req.body });
-  } catch (error) {
-    res.status(500).json({ message: 'Error updating <%= modelName %>', error });
-  }
-};
+<% if (!Array.isArray(endpoints) || endpoints.length === 0) { %>
+export async function health(_req: Request, res: Response) {
+  return res.status(200).json({ ok: true });
+}
+<% } %>
 
-export const delete<%= modelName %>ById = async (req: Request, res: Response) => {
+<% (endpoints || []).forEach((ep, i) => { 
+  const method = String(ep.method || 'GET').toUpperCase();
+  const actionName = safeAction(ep.actionName, `handler${i}`);
+  const route = ep.route || ep.path || '';
+-%>
+/**
+ * <%= method %> <%= route %>
+ */
+export async function <%= actionName %>(req: Request, res: Response) {
   try {
-    const { id } = req.params;
-    // TODO: implement delete logic
-    res.status(204).send();
+<% if (hasBody(method)) { -%>
+    // Body schema (inferred):
+    // <%- JSON.stringify(ep.schemaFields || ep.requestBody?.fields || {}, null, 2).split('\n').map(l => '// ' + l).join('\n') %>
+    const payload = req.body;
+    return res.status(<%= method === 'POST' ? 201 : 200 %>).json({ message: 'TODO: implement', payload });
+<% } else { -%>
+    return res.status(200).json({ message: 'TODO: implement', params: req.params, query: req.query });
+<% } -%>
   } catch (error) {
-    res.status(500).json({ message: 'Error deleting <%= modelName %>', error });
+    return res.status(500).json({ message: 'Internal Server Error', error });
   }
-};
+}
+
+<% }) -%>

package/src/templates/node-ts-express/partials/DbContext.cs.ejs

@@ -8,8 +8,8 @@ namespace <%= projectName %>.Data
     {
         public ApplicationDbContext(DbContextOptions<ApplicationDbContext> options) : base(options) { }
 
-        <% modelsToGenerate.forEach(model => { %>
-        public DbSet<<%= model.name %>> <%= model.name %>s { get; set; }
-        <% }); %>
+<% modelsToGenerate.forEach(model => { -%>
+        public DbSet<<%= model.name %>> <%= model.name %> { get; set; } = default!;
+<% }); -%>
     }
 }

package/src/templates/node-ts-express/partials/Dockerfile.ejs

@@ -1,33 +1,31 @@
-# Auto-generated by create-backlist v5.0
+# Auto-generated by create-backlist v5.1
 
-# ---- Base Stage ----
 FROM node:18-alpine AS base
 WORKDIR /usr/src/app
 COPY package*.json ./
 
-# ---- Dependencies Stage ----
 FROM base AS dependencies
-RUN npm install --frozen-lockfile
+# Use npm ci for reproducible installs
+RUN npm ci
 
-# ---- Build Stage ----
 FROM base AS build
 COPY --from=dependencies /usr/src/app/node_modules ./node_modules
 COPY . .
-<% if (dbType === 'prisma') { %>
+<% if (dbType === 'prisma') { -%>
 RUN npx prisma generate
-<% } %>
+<% } -%>
 RUN npm run build
 
-# ---- Production Stage ----
 FROM node:18-alpine AS production
 WORKDIR /usr/src/app
+ENV NODE_ENV=production
+
 COPY --from=build /usr/src/app/dist ./dist
 COPY --from=dependencies /usr/src/app/node_modules ./node_modules
 COPY package*.json ./
-<% if (dbType === 'prisma') { %>
-# Copy Prisma schema for runtime
+<% if (dbType === 'prisma') { -%>
 COPY prisma ./prisma
-<% } %>
+<% } -%>
 
 EXPOSE <%= port %>
 CMD ["node", "dist/server.js"]