npm - create-brainerce-store - Versions diffs - 1.18.0 → 1.20.0 - Mend

create-brainerce-store 1.18.0 → 1.20.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (67) hide show

package/templates/nextjs/base/src/app/account/page.tsx CHANGED Viewed

@@ -1,122 +1,122 @@
-'use client';
-import { useEffect, useState } from 'react';
-import { useRouter } from 'next/navigation';
-import type { CustomerProfile, Order } from 'brainerce';
-import { getClient } from '@/lib/brainerce';
-import { useAuth } from '@/providers/store-provider';
-import { LoadingSpinner } from '@/components/shared/loading-spinner';
-import { ProfileSection } from '@/components/account/profile-section';
-import { AddressBook } from '@/components/account/address-book';
-import { OrderHistory } from '@/components/account/order-history';
-import { useTranslations } from '@/lib/translations';
-export default function AccountPage() {
-  const router = useRouter();
-  const { isLoggedIn, authLoading, logout } = useAuth();
-  const t = useTranslations('account');
-  const tc = useTranslations('common');
-  const [profile, setProfile] = useState<CustomerProfile | null>(null);
-  const [orders, setOrders] = useState<Order[]>([]);
-  const [loading, setLoading] = useState(true);
-  const [error, setError] = useState<string | null>(null);
-  useEffect(() => {
-    if (authLoading) return;
-    if (!isLoggedIn) {
-      router.push('/login');
-      return;
-    }
-    async function loadAccountData() {
-      try {
-        const client = getClient();
-        const [profileResult, ordersResult] = await Promise.allSettled([
-          client.getMyProfile(),
-          client.getMyOrders({ limit: 20 }),
-        ]);
-        if (profileResult.status === 'fulfilled') {
-          setProfile(profileResult.value);
-        } else {
-          setError('Failed to load profile.');
-        }
-        if (ordersResult.status === 'fulfilled') {
-          setOrders(ordersResult.value.data);
-        }
-      } catch (err) {
-        const message = err instanceof Error ? err.message : 'Failed to load account data.';
-        setError(message);
-      } finally {
-        setLoading(false);
-      }
-    }
-    loadAccountData();
-  }, [isLoggedIn, authLoading, router]);
-  if (authLoading || !isLoggedIn) {
-    return null;
-  }
-  if (loading) {
-    return (
-      <div className="flex min-h-[60vh] items-center justify-center">
-        <LoadingSpinner size="lg" />
-      </div>
-    );
-  }
-  if (error && !profile) {
-    return (
-      <div className="mx-auto max-w-3xl px-4 py-16 text-center sm:px-6 lg:px-8">
-        <h1 className="text-foreground text-2xl font-bold">{tc('error')}</h1>
-        <p className="text-muted-foreground mt-2">{error}</p>
-        <button
-          type="button"
-          onClick={() => window.location.reload()}
-          className="bg-primary text-primary-foreground mt-6 inline-flex items-center rounded px-6 py-3 font-medium transition-opacity hover:opacity-90"
-        >
-          {tc('tryAgain')}
-        </button>
-      </div>
-    );
-  }
-  return (
-    <div className="mx-auto max-w-3xl px-4 py-8 sm:px-6 lg:px-8">
-      <div className="mb-6 flex items-center justify-between">
-        <h1 className="text-foreground text-2xl font-bold">{t('myAccount')}</h1>
-        <button
-          type="button"
-          onClick={logout}
-          className="text-muted-foreground hover:text-foreground text-sm transition-colors"
-        >
-          {t('signOut')}
-        </button>
-      </div>
-      {/* Profile Section */}
-      {profile && (
-        <ProfileSection profile={profile} onProfileUpdate={setProfile} className="mb-6" />
-      )}
-      {/* Address Book */}
-      {profile && (
-        <AddressBook
-          addresses={profile.addresses ?? []}
-          onUpdate={(updated) => setProfile((p) => (p ? { ...p, addresses: updated } : p))}
-          className="mb-8"
-        />
-      )}
-      {/* Order History */}
-      <div>
-        <h2 className="text-foreground mb-4 text-lg font-semibold">{t('orderHistory')}</h2>
-        <OrderHistory orders={orders} />
-      </div>
-    </div>
-  );
-}
+'use client';
+import { useEffect, useState } from 'react';
+import { useRouter } from 'next/navigation';
+import type { CustomerProfile, Order } from 'brainerce';
+import { getClient } from '@/lib/brainerce';
+import { useAuth } from '@/providers/store-provider';
+import { LoadingSpinner } from '@/components/shared/loading-spinner';
+import { ProfileSection } from '@/components/account/profile-section';
+import { AddressBook } from '@/components/account/address-book';
+import { OrderHistory } from '@/components/account/order-history';
+import { useTranslations } from '@/lib/translations';
+export default function AccountPage() {
+  const router = useRouter();
+  const { isLoggedIn, authLoading, logout } = useAuth();
+  const t = useTranslations('account');
+  const tc = useTranslations('common');
+  const [profile, setProfile] = useState<CustomerProfile | null>(null);
+  const [orders, setOrders] = useState<Order[]>([]);
+  const [loading, setLoading] = useState(true);
+  const [error, setError] = useState<string | null>(null);
+  useEffect(() => {
+    if (authLoading) return;
+    if (!isLoggedIn) {
+      router.push('/login');
+      return;
+    }
+    async function loadAccountData() {
+      try {
+        const client = getClient();
+        const [profileResult, ordersResult] = await Promise.allSettled([
+          client.getMyProfile(),
+          client.getMyOrders({ limit: 20 }),
+        ]);
+        if (profileResult.status === 'fulfilled') {
+          setProfile(profileResult.value);
+        } else {
+          setError('Failed to load profile.');
+        }
+        if (ordersResult.status === 'fulfilled') {
+          setOrders(ordersResult.value.data);
+        }
+      } catch (err) {
+        const message = err instanceof Error ? err.message : 'Failed to load account data.';
+        setError(message);
+      } finally {
+        setLoading(false);
+      }
+    }
+    loadAccountData();
+  }, [isLoggedIn, authLoading, router]);
+  if (authLoading || !isLoggedIn) {
+    return null;
+  }
+  if (loading) {
+    return (
+      <div className="flex min-h-[60vh] items-center justify-center">
+        <LoadingSpinner size="lg" />
+      </div>
+    );
+  }
+  if (error && !profile) {
+    return (
+      <div className="mx-auto max-w-3xl px-4 py-16 text-center sm:px-6 lg:px-8">
+        <h1 className="text-foreground text-2xl font-bold">{tc('error')}</h1>
+        <p className="text-muted-foreground mt-2">{error}</p>
+        <button
+          type="button"
+          onClick={() => window.location.reload()}
+          className="bg-primary text-primary-foreground mt-6 inline-flex items-center rounded px-6 py-3 font-medium transition-opacity hover:opacity-90"
+        >
+          {tc('tryAgain')}
+        </button>
+      </div>
+    );
+  }
+  return (
+    <div className="mx-auto max-w-3xl px-4 py-8 sm:px-6 lg:px-8">
+      <div className="mb-6 flex items-center justify-between">
+        <h1 className="text-foreground text-2xl font-bold">{t('myAccount')}</h1>
+        <button
+          type="button"
+          onClick={logout}
+          className="text-muted-foreground hover:text-foreground text-sm transition-colors"
+        >
+          {t('signOut')}
+        </button>
+      </div>
+      {/* Profile Section */}
+      {profile && (
+        <ProfileSection profile={profile} onProfileUpdate={setProfile} className="mb-6" />
+      )}
+      {/* Address Book */}
+      {profile && (
+        <AddressBook
+          addresses={profile.addresses ?? []}
+          onUpdate={(updated) => setProfile((p) => (p ? { ...p, addresses: updated } : p))}
+          className="mb-8"
+        />
+      )}
+      {/* Order History */}
+      <div>
+        <h2 className="text-foreground mb-4 text-lg font-semibold">{t('orderHistory')}</h2>
+        <OrderHistory orders={orders} />
+      </div>
+    </div>
+  );
+}

package/templates/nextjs/base/src/app/api/auth/logout/route.ts CHANGED Viewed

@@ -1,14 +1,14 @@
-import { NextResponse } from 'next/server';
-const TOKEN_COOKIE = 'brainerce_customer_token';
-const LOGGED_IN_COOKIE = 'brainerce_logged_in';
-/**
- * Logout endpoint. Clears auth cookies.
- */
-export async function POST() {
-  const response = NextResponse.json({ success: true });
-  response.cookies.delete(TOKEN_COOKIE);
-  response.cookies.delete(LOGGED_IN_COOKIE);
-  return response;
-}
+import { NextResponse } from 'next/server';
+const TOKEN_COOKIE = 'brainerce_customer_token';
+const LOGGED_IN_COOKIE = 'brainerce_logged_in';
+/**
+ * Logout endpoint. Clears auth cookies.
+ */
+export async function POST() {
+  const response = NextResponse.json({ success: true });
+  response.cookies.delete(TOKEN_COOKIE);
+  response.cookies.delete(LOGGED_IN_COOKIE);
+  return response;
+}

package/templates/nextjs/base/src/app/api/auth/me/route.ts CHANGED Viewed

@@ -1,56 +1,56 @@
-import { NextResponse } from 'next/server';
-import { cookies, headers } from 'next/headers';
-const BACKEND_URL = (process.env.BRAINERCE_API_URL || 'https://api.brainerce.com').replace(
-  /\/$/,
-  ''
-);
-const CONNECTION_ID = process.env.NEXT_PUBLIC_BRAINERCE_CONNECTION_ID || '';
-const TOKEN_COOKIE = 'brainerce_customer_token';
-const LOGGED_IN_COOKIE = 'brainerce_logged_in';
-/**
- * Auth status check endpoint.
- * Reads the httpOnly cookie, validates against backend, returns auth state.
- */
-export async function GET() {
-  const cookieStore = await cookies();
-  const tokenCookie = cookieStore.get(TOKEN_COOKIE);
-  if (!tokenCookie?.value) {
-    return NextResponse.json({ isLoggedIn: false });
-  }
-  // Derive Origin from the incoming request so the backend's BrowserOriginGuard accepts it
-  const requestHeaders = await headers();
-  const host = requestHeaders.get('host') || 'localhost:3000';
-  const proto = requestHeaders.get('x-forwarded-proto') || 'http';
-  const origin = requestHeaders.get('origin') || `${proto}://${host}`;
-  try {
-    // Validate token by calling backend profile endpoint
-    const response = await fetch(`${BACKEND_URL}/api/vc/${CONNECTION_ID}/customers/me`, {
-      headers: {
-        Authorization: `Bearer ${tokenCookie.value}`,
-        'Content-Type': 'application/json',
-        Origin: origin,
-      },
-    });
-    if (!response.ok) {
-      // Token is invalid or expired — clear cookies
-      const res = NextResponse.json({ isLoggedIn: false });
-      res.cookies.delete(TOKEN_COOKIE);
-      res.cookies.delete(LOGGED_IN_COOKIE);
-      return res;
-    }
-    const customer = await response.json();
-    return NextResponse.json({ isLoggedIn: true, customer });
-  } catch {
-    // Backend unreachable — don't clear cookies, might be temporary
-    return NextResponse.json({ isLoggedIn: false, error: 'Service unavailable' }, { status: 503 });
-  }
-}
+import { NextResponse } from 'next/server';
+import { cookies, headers } from 'next/headers';
+const BACKEND_URL = (process.env.BRAINERCE_API_URL || 'https://api.brainerce.com').replace(
+  /\/$/,
+  ''
+);
+const CONNECTION_ID = process.env.NEXT_PUBLIC_BRAINERCE_CONNECTION_ID || '';
+const TOKEN_COOKIE = 'brainerce_customer_token';
+const LOGGED_IN_COOKIE = 'brainerce_logged_in';
+/**
+ * Auth status check endpoint.
+ * Reads the httpOnly cookie, validates against backend, returns auth state.
+ */
+export async function GET() {
+  const cookieStore = await cookies();
+  const tokenCookie = cookieStore.get(TOKEN_COOKIE);
+  if (!tokenCookie?.value) {
+    return NextResponse.json({ isLoggedIn: false });
+  }
+  // Derive Origin from the incoming request so the backend's BrowserOriginGuard accepts it
+  const requestHeaders = await headers();
+  const host = requestHeaders.get('host') || 'localhost:3000';
+  const proto = requestHeaders.get('x-forwarded-proto') || 'http';
+  const origin = requestHeaders.get('origin') || `${proto}://${host}`;
+  try {
+    // Validate token by calling backend profile endpoint
+    const response = await fetch(`${BACKEND_URL}/api/vc/${CONNECTION_ID}/customers/me`, {
+      headers: {
+        Authorization: `Bearer ${tokenCookie.value}`,
+        'Content-Type': 'application/json',
+        Origin: origin,
+      },
+    });
+    if (!response.ok) {
+      // Token is invalid or expired — clear cookies
+      const res = NextResponse.json({ isLoggedIn: false });
+      res.cookies.delete(TOKEN_COOKIE);
+      res.cookies.delete(LOGGED_IN_COOKIE);
+      return res;
+    }
+    const customer = await response.json();
+    return NextResponse.json({ isLoggedIn: true, customer });
+  } catch {
+    // Backend unreachable — don't clear cookies, might be temporary
+    return NextResponse.json({ isLoggedIn: false, error: 'Service unavailable' }, { status: 503 });
+  }
+}

package/templates/nextjs/base/src/app/api/auth/oauth-callback/route.ts CHANGED Viewed

@@ -1,59 +1,59 @@
-import { NextRequest, NextResponse } from 'next/server';
-const TOKEN_COOKIE = 'brainerce_customer_token';
-const LOGGED_IN_COOKIE = 'brainerce_logged_in';
-const COOKIE_MAX_AGE = 7 * 24 * 60 * 60; // 7 days
-function isSecure(): boolean {
-  return process.env.NODE_ENV === 'production';
-}
-/**
- * OAuth callback handler.
- * The backend redirects here with ?token=jwt&oauth_success=true after OAuth code exchange.
- * We set the httpOnly cookie and redirect to the client-side callback page (without the token).
- */
-export async function GET(request: NextRequest) {
-  const { searchParams } = request.nextUrl;
-  const token = searchParams.get('token');
-  const oauthSuccess = searchParams.get('oauth_success');
-  const oauthError = searchParams.get('oauth_error');
-  // Build redirect URL to client-side callback page
-  const redirectUrl = new URL('/auth/callback', request.url);
-  if (oauthError) {
-    redirectUrl.searchParams.set('oauth_error', oauthError);
-    return NextResponse.redirect(redirectUrl);
-  }
-  if (oauthSuccess === 'true' && token) {
-    redirectUrl.searchParams.set('oauth_success', 'true');
-    const response = NextResponse.redirect(redirectUrl);
-    // Set httpOnly cookie with the token
-    response.cookies.set(TOKEN_COOKIE, token, {
-      httpOnly: true,
-      secure: isSecure(),
-      sameSite: 'lax',
-      path: '/',
-      maxAge: COOKIE_MAX_AGE,
-    });
-    // Set indicator cookie (readable by client JS)
-    response.cookies.set(LOGGED_IN_COOKIE, '1', {
-      httpOnly: false,
-      secure: isSecure(),
-      sameSite: 'lax',
-      path: '/',
-      maxAge: COOKIE_MAX_AGE,
-    });
-    return response;
-  }
-  // Fallback: no token or success flag
-  redirectUrl.searchParams.set('oauth_error', 'Authentication failed');
-  return NextResponse.redirect(redirectUrl);
-}
+import { NextRequest, NextResponse } from 'next/server';
+const TOKEN_COOKIE = 'brainerce_customer_token';
+const LOGGED_IN_COOKIE = 'brainerce_logged_in';
+const COOKIE_MAX_AGE = 7 * 24 * 60 * 60; // 7 days
+function isSecure(): boolean {
+  return process.env.NODE_ENV === 'production';
+}
+/**
+ * OAuth callback handler.
+ * The backend redirects here with ?token=jwt&oauth_success=true after OAuth code exchange.
+ * We set the httpOnly cookie and redirect to the client-side callback page (without the token).
+ */
+export async function GET(request: NextRequest) {
+  const { searchParams } = request.nextUrl;
+  const token = searchParams.get('token');
+  const oauthSuccess = searchParams.get('oauth_success');
+  const oauthError = searchParams.get('oauth_error');
+  // Build redirect URL to client-side callback page
+  const redirectUrl = new URL('/auth/callback', request.url);
+  if (oauthError) {
+    redirectUrl.searchParams.set('oauth_error', oauthError);
+    return NextResponse.redirect(redirectUrl);
+  }
+  if (oauthSuccess === 'true' && token) {
+    redirectUrl.searchParams.set('oauth_success', 'true');
+    const response = NextResponse.redirect(redirectUrl);
+    // Set httpOnly cookie with the token
+    response.cookies.set(TOKEN_COOKIE, token, {
+      httpOnly: true,
+      secure: isSecure(),
+      sameSite: 'lax',
+      path: '/',
+      maxAge: COOKIE_MAX_AGE,
+    });
+    // Set indicator cookie (readable by client JS)
+    response.cookies.set(LOGGED_IN_COOKIE, '1', {
+      httpOnly: false,
+      secure: isSecure(),
+      sameSite: 'lax',
+      path: '/',
+      maxAge: COOKIE_MAX_AGE,
+    });
+    return response;
+  }
+  // Fallback: no token or success flag
+  redirectUrl.searchParams.set('oauth_error', 'Authentication failed');
+  return NextResponse.redirect(redirectUrl);
+}

package/templates/nextjs/base/src/app/api/auth/reset-callback/route.ts CHANGED Viewed

@@ -1,41 +1,41 @@
-import { NextRequest, NextResponse } from 'next/server';
-const RESET_TOKEN_COOKIE = 'brainerce_reset_token';
-const RESET_TOKEN_MAX_AGE = 10 * 60; // 10 minutes
-function isSecure(): boolean {
-  return process.env.NODE_ENV === 'production';
-}
-/**
- * Password-reset callback handler.
- * The email link redirects here with ?token=... from the backend.
- * We store the token in an httpOnly cookie and redirect to /reset-password (clean URL).
- * This mirrors the OAuth callback pattern — the token never reaches client JS.
- */
-export async function GET(request: NextRequest) {
-  const { searchParams } = request.nextUrl;
-  const token = searchParams.get('token');
-  if (!token) {
-    const redirectUrl = new URL('/forgot-password', request.url);
-    return NextResponse.redirect(redirectUrl);
-  }
-  const redirectUrl = new URL('/reset-password', request.url);
-  const response = NextResponse.redirect(redirectUrl);
-  // Set httpOnly cookie with the reset token (short-lived)
-  response.cookies.set(RESET_TOKEN_COOKIE, token, {
-    httpOnly: true,
-    secure: isSecure(),
-    sameSite: 'lax',
-    path: '/',
-    maxAge: RESET_TOKEN_MAX_AGE,
-  });
-  // Prevent token leaking via Referer header
-  response.headers.set('Referrer-Policy', 'no-referrer');
-  return response;
-}
+import { NextRequest, NextResponse } from 'next/server';
+const RESET_TOKEN_COOKIE = 'brainerce_reset_token';
+const RESET_TOKEN_MAX_AGE = 10 * 60; // 10 minutes
+function isSecure(): boolean {
+  return process.env.NODE_ENV === 'production';
+}
+/**
+ * Password-reset callback handler.
+ * The email link redirects here with ?token=... from the backend.
+ * We store the token in an httpOnly cookie and redirect to /reset-password (clean URL).
+ * This mirrors the OAuth callback pattern — the token never reaches client JS.
+ */
+export async function GET(request: NextRequest) {
+  const { searchParams } = request.nextUrl;
+  const token = searchParams.get('token');
+  if (!token) {
+    const redirectUrl = new URL('/forgot-password', request.url);
+    return NextResponse.redirect(redirectUrl);
+  }
+  const redirectUrl = new URL('/reset-password', request.url);
+  const response = NextResponse.redirect(redirectUrl);
+  // Set httpOnly cookie with the reset token (short-lived)
+  response.cookies.set(RESET_TOKEN_COOKIE, token, {
+    httpOnly: true,
+    secure: isSecure(),
+    sameSite: 'lax',
+    path: '/',
+    maxAge: RESET_TOKEN_MAX_AGE,
+  });
+  // Prevent token leaking via Referer header
+  response.headers.set('Referrer-Policy', 'no-referrer');
+  return response;
+}