npm - create-stackr - Versions diffs - 0.2.0 - Mend

create-stackr 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (274) hide show

package/LICENSE +21 -0
package/README.md +642 -0
package/bin/cli.js +12 -0
package/dist/cli.d.ts +3 -0
package/dist/cli.d.ts.map +1 -0
package/dist/cli.js +113 -0
package/dist/cli.js.map +1 -0
package/dist/config/dependencies.d.ts +82 -0
package/dist/config/dependencies.d.ts.map +1 -0
package/dist/config/dependencies.js +82 -0
package/dist/config/dependencies.js.map +1 -0
package/dist/config/presets.d.ts +3 -0
package/dist/config/presets.d.ts.map +1 -0
package/dist/config/presets.js +174 -0
package/dist/config/presets.js.map +1 -0
package/dist/generators/index.d.ts +40 -0
package/dist/generators/index.d.ts.map +1 -0
package/dist/generators/index.js +130 -0
package/dist/generators/index.js.map +1 -0
package/dist/generators/onboarding.d.ts +8 -0
package/dist/generators/onboarding.d.ts.map +1 -0
package/dist/generators/onboarding.js +141 -0
package/dist/generators/onboarding.js.map +1 -0
package/dist/index.d.ts +3 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +65 -0
package/dist/index.js.map +1 -0
package/dist/prompts/features.d.ts +14 -0
package/dist/prompts/features.d.ts.map +1 -0
package/dist/prompts/features.js +96 -0
package/dist/prompts/features.js.map +1 -0
package/dist/prompts/index.d.ts +3 -0
package/dist/prompts/index.d.ts.map +1 -0
package/dist/prompts/index.js +93 -0
package/dist/prompts/index.js.map +1 -0
package/dist/prompts/onboarding.d.ts +6 -0
package/dist/prompts/onboarding.d.ts.map +1 -0
package/dist/prompts/onboarding.js +37 -0
package/dist/prompts/onboarding.js.map +1 -0
package/dist/prompts/orm.d.ts +3 -0
package/dist/prompts/orm.d.ts.map +1 -0
package/dist/prompts/orm.js +23 -0
package/dist/prompts/orm.js.map +1 -0
package/dist/prompts/packageManager.d.ts +2 -0
package/dist/prompts/packageManager.d.ts.map +1 -0
package/dist/prompts/packageManager.js +18 -0
package/dist/prompts/packageManager.js.map +1 -0
package/dist/prompts/platform.d.ts +3 -0
package/dist/prompts/platform.d.ts.map +1 -0
package/dist/prompts/platform.js +21 -0
package/dist/prompts/platform.js.map +1 -0
package/dist/prompts/preset.d.ts +4 -0
package/dist/prompts/preset.d.ts.map +1 -0
package/dist/prompts/preset.js +165 -0
package/dist/prompts/preset.js.map +1 -0
package/dist/prompts/project.d.ts +2 -0
package/dist/prompts/project.d.ts.map +1 -0
package/dist/prompts/project.js +27 -0
package/dist/prompts/project.js.map +1 -0
package/dist/prompts/sdks.d.ts +2 -0
package/dist/prompts/sdks.d.ts.map +1 -0
package/dist/prompts/sdks.js +46 -0
package/dist/prompts/sdks.js.map +1 -0
package/dist/types/index.d.ts +77 -0
package/dist/types/index.d.ts.map +1 -0
package/dist/types/index.js +25 -0
package/dist/types/index.js.map +1 -0
package/dist/utils/cleanup.d.ts +5 -0
package/dist/utils/cleanup.d.ts.map +1 -0
package/dist/utils/cleanup.js +38 -0
package/dist/utils/cleanup.js.map +1 -0
package/dist/utils/copy.d.ts +10 -0
package/dist/utils/copy.d.ts.map +1 -0
package/dist/utils/copy.js +53 -0
package/dist/utils/copy.js.map +1 -0
package/dist/utils/errors.d.ts +33 -0
package/dist/utils/errors.d.ts.map +1 -0
package/dist/utils/errors.js +136 -0
package/dist/utils/errors.js.map +1 -0
package/dist/utils/git.d.ts +5 -0
package/dist/utils/git.d.ts.map +1 -0
package/dist/utils/git.js +33 -0
package/dist/utils/git.js.map +1 -0
package/dist/utils/logger.d.ts +9 -0
package/dist/utils/logger.d.ts.map +1 -0
package/dist/utils/logger.js +22 -0
package/dist/utils/logger.js.map +1 -0
package/dist/utils/package.d.ts +16 -0
package/dist/utils/package.d.ts.map +1 -0
package/dist/utils/package.js +86 -0
package/dist/utils/package.js.map +1 -0
package/dist/utils/system-validation.d.ts +9 -0
package/dist/utils/system-validation.d.ts.map +1 -0
package/dist/utils/system-validation.js +31 -0
package/dist/utils/system-validation.js.map +1 -0
package/dist/utils/template.d.ts +20 -0
package/dist/utils/template.d.ts.map +1 -0
package/dist/utils/template.js +234 -0
package/dist/utils/template.js.map +1 -0
package/dist/utils/validation.d.ts +8 -0
package/dist/utils/validation.d.ts.map +1 -0
package/dist/utils/validation.js +94 -0
package/dist/utils/validation.js.map +1 -0
package/package.json +96 -0
package/templates/base/backend/.dockerignore.ejs +62 -0
package/templates/base/backend/.env.example.ejs +116 -0
package/templates/base/backend/Dockerfile.ejs +142 -0
package/templates/base/backend/controllers/event-queue/index.ts +20 -0
package/templates/base/backend/controllers/event-queue/workers/user.ts +39 -0
package/templates/base/backend/controllers/rest-api/index.ts +48 -0
package/templates/base/backend/controllers/rest-api/plugins/auth.ts +152 -0
package/templates/base/backend/controllers/rest-api/plugins/config.ts +64 -0
package/templates/base/backend/controllers/rest-api/plugins/error-handler.ts +118 -0
package/templates/base/backend/controllers/rest-api/routes/auth.ts.ejs +180 -0
package/templates/base/backend/controllers/rest-api/routes/device-sessions.ts +197 -0
package/templates/base/backend/controllers/rest-api/routes/oauth-web.ts.ejs +375 -0
package/templates/base/backend/controllers/rest-api/server.ts.ejs +87 -0
package/templates/base/backend/domain/device-session/repository.drizzle.ts +209 -0
package/templates/base/backend/domain/device-session/repository.prisma.ts +248 -0
package/templates/base/backend/domain/device-session/schema.ts +72 -0
package/templates/base/backend/domain/session/repository.drizzle.ts +72 -0
package/templates/base/backend/domain/session/repository.prisma.ts +72 -0
package/templates/base/backend/domain/session/schema.ts +29 -0
package/templates/base/backend/domain/user/repository.drizzle.ts +127 -0
package/templates/base/backend/domain/user/repository.prisma.ts +115 -0
package/templates/base/backend/domain/user/schema.ts +14 -0
package/templates/base/backend/drizzle/schema.drizzle.ts +111 -0
package/templates/base/backend/drizzle.config.drizzle.ts +13 -0
package/templates/base/backend/lib/auth.drizzle.ts.ejs +104 -0
package/templates/base/backend/lib/auth.prisma.ts.ejs +97 -0
package/templates/base/backend/lib/constants.ts.ejs +29 -0
package/templates/base/backend/package.json.ejs +50 -0
package/templates/base/backend/prisma/schema.prisma.ejs +102 -0
package/templates/base/backend/prisma.config.prisma.ts +12 -0
package/templates/base/backend/tsconfig.json +39 -0
package/templates/base/backend/utils/db.drizzle.ts +41 -0
package/templates/base/backend/utils/db.prisma.ts +51 -0
package/templates/base/backend/utils/email.ts.ejs +35 -0
package/templates/base/backend/utils/errors.ts +348 -0
package/templates/base/backend/utils/redis.ts.ejs +279 -0
package/templates/base/mobile/.env.example.ejs +35 -0
package/templates/base/mobile/.gitignore.ejs +167 -0
package/templates/base/mobile/app/+not-found.tsx +85 -0
package/templates/base/mobile/app/_layout.tsx.ejs +71 -0
package/templates/base/mobile/app.json.ejs +88 -0
package/templates/base/mobile/assets/images/adaptive-icon.png +0 -0
package/templates/base/mobile/assets/images/favicon.png +0 -0
package/templates/base/mobile/assets/images/icon.png +0 -0
package/templates/base/mobile/assets/images/onboarding_page_1.png +0 -0
package/templates/base/mobile/assets/images/onboarding_page_2.png +0 -0
package/templates/base/mobile/assets/images/onboarding_page_3.png +0 -0
package/templates/base/mobile/assets/images/paywall_image.png +0 -0
package/templates/base/mobile/assets/images/splash.png +0 -0
package/templates/base/mobile/eas.json.ejs +49 -0
package/templates/base/mobile/metro.config.js +9 -0
package/templates/base/mobile/package.json.ejs +53 -0
package/templates/base/mobile/src/components/ui/Button.tsx +131 -0
package/templates/base/mobile/src/components/ui/Card.tsx +68 -0
package/templates/base/mobile/src/components/ui/IconSymbol.tsx +90 -0
package/templates/base/mobile/src/components/ui/Input.tsx +142 -0
package/templates/base/mobile/src/components/ui/LoadingSpinner.tsx +98 -0
package/templates/base/mobile/src/components/ui/OnboardingLayout.tsx +356 -0
package/templates/base/mobile/src/components/ui/PaywallLayout.tsx +311 -0
package/templates/base/mobile/src/components/ui/Skeleton.tsx +58 -0
package/templates/base/mobile/src/components/ui/index.ts +6 -0
package/templates/base/mobile/src/constants/Theme.ts +163 -0
package/templates/base/mobile/src/context/ThemeContext.tsx +157 -0
package/templates/base/mobile/src/lib/auth-client.ts.ejs +51 -0
package/templates/base/mobile/src/services/api.ts.ejs +71 -0
package/templates/base/mobile/src/services/errorService.ts +179 -0
package/templates/base/mobile/src/services/sdkInitializer.ts.ejs +36 -0
package/templates/base/mobile/src/store/index.ts.ejs +18 -0
package/templates/base/mobile/src/store/ui.store.ts +100 -0
package/templates/base/mobile/src/utils/formatters.ts +105 -0
package/templates/base/mobile/src/utils/logger.ts +73 -0
package/templates/base/mobile/src/utils/responsive.ts +234 -0
package/templates/base/mobile/tsconfig.json +32 -0
package/templates/base/web/.env.example.ejs +26 -0
package/templates/base/web/components.json +22 -0
package/templates/base/web/eslint.config.mjs +18 -0
package/templates/base/web/next.config.ts +7 -0
package/templates/base/web/package.json.ejs +35 -0
package/templates/base/web/postcss.config.mjs +7 -0
package/templates/base/web/public/.gitkeep +0 -0
package/templates/base/web/public/file.svg +1 -0
package/templates/base/web/public/globe.svg +1 -0
package/templates/base/web/public/next.svg +1 -0
package/templates/base/web/public/vercel.svg +1 -0
package/templates/base/web/public/window.svg +1 -0
package/templates/base/web/src/app/favicon.ico +0 -0
package/templates/base/web/src/app/globals.css +152 -0
package/templates/base/web/src/app/layout.tsx.ejs +54 -0
package/templates/base/web/src/app/page.tsx.ejs +92 -0
package/templates/base/web/src/components/auth/auth-hydrator.tsx.ejs +19 -0
package/templates/base/web/src/components/auth/protected-route.tsx.ejs +109 -0
package/templates/base/web/src/components/providers/device-session-setup.tsx.ejs +56 -0
package/templates/base/web/src/components/providers/theme-provider.tsx +17 -0
package/templates/base/web/src/components/theme-toggle.tsx +34 -0
package/templates/base/web/src/components/ui/button.tsx +62 -0
package/templates/base/web/src/components/ui/card.tsx +92 -0
package/templates/base/web/src/components/ui/input.tsx +21 -0
package/templates/base/web/src/components/ui/label.tsx +24 -0
package/templates/base/web/src/components/ui/skeleton.tsx +13 -0
package/templates/base/web/src/components/ui/spinner.tsx +20 -0
package/templates/base/web/src/hooks/use-device-session.ts.ejs +40 -0
package/templates/base/web/src/hooks/use-session.ts.ejs +56 -0
package/templates/base/web/src/lib/auth/actions.ts.ejs +334 -0
package/templates/base/web/src/lib/auth/config.ts.ejs +65 -0
package/templates/base/web/src/lib/auth/cookies.ts.ejs +74 -0
package/templates/base/web/src/lib/auth/index.ts.ejs +40 -0
package/templates/base/web/src/lib/auth/oauth.ts.ejs +72 -0
package/templates/base/web/src/lib/auth/pkce.ts.ejs +48 -0
package/templates/base/web/src/lib/auth/sessions.ts.ejs +135 -0
package/templates/base/web/src/lib/auth/user-agent.ts.ejs +47 -0
package/templates/base/web/src/lib/device/actions.ts.ejs +148 -0
package/templates/base/web/src/lib/device/id.ts.ejs +74 -0
package/templates/base/web/src/lib/utils.ts +6 -0
package/templates/base/web/src/proxy.ts.ejs +66 -0
package/templates/base/web/src/store/auth.store.ts.ejs +89 -0
package/templates/base/web/src/store/deviceSession.store.ts.ejs +141 -0
package/templates/base/web/tsconfig.json +34 -0
package/templates/features/mobile/auth/app/(auth)/_layout.tsx +16 -0
package/templates/features/mobile/auth/app/(auth)/login.tsx +86 -0
package/templates/features/mobile/auth/app/(auth)/register.tsx +86 -0
package/templates/features/mobile/auth/components/auth/LoginForm.tsx.ejs +349 -0
package/templates/features/mobile/auth/components/auth/RegisterForm.tsx.ejs +407 -0
package/templates/features/mobile/auth/components/auth/index.ts +2 -0
package/templates/features/mobile/auth/hooks/index.ts.ejs +1 -0
package/templates/features/mobile/auth/hooks/useAuth.ts.ejs +367 -0
package/templates/features/mobile/auth/services/deviceSession.ts +370 -0
package/templates/features/mobile/auth/store/deviceSession.store.ts +326 -0
package/templates/features/mobile/onboarding/app/(onboarding)/_layout.tsx.ejs +11 -0
package/templates/features/mobile/onboarding/app/(onboarding)/page-1.tsx.ejs +52 -0
package/templates/features/mobile/onboarding/app/(onboarding)/page-2.tsx.ejs +52 -0
package/templates/features/mobile/onboarding/app/(onboarding)/page-3.tsx.ejs +60 -0
package/templates/features/mobile/paywall/app/paywall.tsx +550 -0
package/templates/features/mobile/tabs/app/(tabs)/_layout.tsx +26 -0
package/templates/features/mobile/tabs/app/(tabs)/index.tsx +565 -0
package/templates/features/web/.gitkeep +0 -0
package/templates/features/web/auth/app/(app)/dashboard/dashboard-client.tsx.ejs +166 -0
package/templates/features/web/auth/app/(app)/dashboard/page.tsx.ejs +24 -0
package/templates/features/web/auth/app/(app)/layout.tsx.ejs +43 -0
package/templates/features/web/auth/app/(app)/settings/sessions/page.tsx.ejs +29 -0
package/templates/features/web/auth/app/(app)/settings/sessions/sessions-client.tsx.ejs +77 -0
package/templates/features/web/auth/app/(auth)/forgot-password/page.tsx.ejs +127 -0
package/templates/features/web/auth/app/(auth)/layout.tsx.ejs +32 -0
package/templates/features/web/auth/app/(auth)/login/page.tsx.ejs +35 -0
package/templates/features/web/auth/app/(auth)/register/page.tsx.ejs +19 -0
package/templates/features/web/auth/app/(auth)/reset-password/page.tsx.ejs +40 -0
package/templates/features/web/auth/app/(auth)/verify-email/page.tsx.ejs +198 -0
package/templates/features/web/auth/app/auth/callback/route.ts.ejs +152 -0
package/templates/features/web/auth/components/auth/login-form.tsx.ejs +100 -0
package/templates/features/web/auth/components/auth/oauth-buttons.tsx.ejs +126 -0
package/templates/features/web/auth/components/auth/password-reset-form.tsx.ejs +103 -0
package/templates/features/web/auth/components/auth/register-form.tsx.ejs +139 -0
package/templates/features/web/auth/components/settings/session-card.tsx.ejs +132 -0
package/templates/integrations/mobile/adjust/services/adjustService.ts.ejs +163 -0
package/templates/integrations/mobile/adjust/store/adjust.store.ts +243 -0
package/templates/integrations/mobile/att/services/attService.ts +84 -0
package/templates/integrations/mobile/att/services/trackingPermissions.ts +208 -0
package/templates/integrations/mobile/att/store/att.store.ts +162 -0
package/templates/integrations/mobile/revenuecat/services/revenuecatService.ts.ejs +174 -0
package/templates/integrations/mobile/revenuecat/store/revenuecat.store.ts +286 -0
package/templates/integrations/mobile/scate/services/scateService.ts.ejs +85 -0
package/templates/integrations/mobile/scate/store/scate.store.ts +125 -0
package/templates/integrations/web/.gitkeep +0 -0
package/templates/shared/.env.example.ejs +21 -0
package/templates/shared/.gitignore.ejs +145 -0
package/templates/shared/README.md.ejs +134 -0
package/templates/shared/docker-compose.prod.yml.ejs +120 -0
package/templates/shared/docker-compose.yml.ejs +129 -0
package/templates/shared/scripts/docker-dev.sh.ejs +395 -0
package/templates/shared/scripts/docker-prod.sh.ejs +542 -0
package/templates/shared/scripts/setup.sh.ejs +979 -0

package/templates/base/backend/controllers/rest-api/routes/auth.ts.ejs ADDED Viewed

@@ -0,0 +1,180 @@
+import type { AuthFastifyRequest } from "fastify";
+import { FastifyPluginAsync, FastifyRequest } from "fastify";
+import { auth } from "../../../lib/auth";
+import { Type } from "@sinclair/typebox";
+import { updateUserProfile, deleteUser } from "../../../domain/user/repository";
+import { findUserSessionById, revokeSessionByToken } from "../../../domain/session/repository";
+/**
+ * Convert Fastify request to Fetch API Request for BetterAuth
+ * BetterAuth expects a standard Fetch API Request object
+ */
+function toFetchRequest(request: FastifyRequest): Request {
+  // Construct full URL
+  const url = `${request.protocol}://${request.hostname}${request.url}`;
+  // Convert Fastify headers to Fetch API Headers
+  const headers = new Headers();
+  Object.entries(request.headers).forEach(([key, value]) => {
+    if (value) {
+      headers.set(key, Array.isArray(value) ? value[0] : value);
+    }
+  });
+  // Create Fetch API compatible Request
+  // Note: GET and HEAD requests cannot have a body
+  const hasBody = request.method !== "GET" && request.method !== "HEAD" && request.body;
+  return new Request(url, {
+    method: request.method,
+    headers,
+    body: hasBody ? JSON.stringify(request.body) : undefined,
+  });
+}
+const authRoutes: FastifyPluginAsync = async (server) => {
+  // Mount BetterAuth handler for all /* routes under this plugin
+  // Since this plugin is registered at /api/auth, BetterAuth handles /api/auth/*
+  // BetterAuth handles: sign-in, sign-up, sign-out, oauth callbacks, etc.
+  server.all("/*", async (request, reply) => {
+    // Convert Fastify request to Fetch API Request for BetterAuth
+    const fetchRequest = toFetchRequest(request);
+    const response = await auth.handler(fetchRequest);
+    // Copy response headers
+    response.headers.forEach((value, key) => {
+      reply.header(key, value);
+    });
+    // Send response body
+    // Use text() to get the response body as BetterAuth may return JSON or other content
+    const body = await response.text();
+    reply.status(response.status).send(body);
+  });
+  // Keep custom endpoints that extend BetterAuth functionality
+  // Get current user (uses BetterAuth session)
+  server.get(
+    "/me",
+    {
+      onRequest: server.requireAuth,
+      schema: {
+        response: {
+          200: Type.Object({
+            id: Type.String(),
+            email: Type.String(),
+            name: Type.Optional(Type.Union([Type.String(), Type.Null()])),
+            emailVerified: Type.Boolean(),
+            image: Type.Optional(Type.Union([Type.String(), Type.Null()])),
+            createdAt: Type.String(),
+            updatedAt: Type.String(),
+          }),
+        },
+      },
+    },
+    async (request, reply) => {
+      // user is attached by requireAuth middleware
+      const { user } = request as AuthFastifyRequest;
+      return reply.send({
+        id: user.id,
+        email: user.email,
+        name: user.name,
+        emailVerified: user.emailVerified,
+        image: user.image,
+        createdAt: user.createdAt.toISOString(),
+        updatedAt: user.updatedAt.toISOString(),
+      });
+    }
+  );
+  // Update profile (custom endpoint, BetterAuth doesn't provide this)
+  server.put(
+    "/profile",
+    {
+      onRequest: server.requireAuth,
+      schema: {
+        body: Type.Object({
+          name: Type.Optional(Type.String()),
+        }),
+      },
+    },
+    async (request, reply) => {
+      const { user } = request as AuthFastifyRequest;
+      const { name } = request.body as { name?: string };
+      const updatedUser = await updateUserProfile(user.id, { name });
+      return reply.send({
+        id: updatedUser.id,
+        email: updatedUser.email,
+        name: updatedUser.name,
+        emailVerified: updatedUser.emailVerified,
+        image: updatedUser.image,
+        createdAt: updatedUser.createdAt.toISOString(),
+        updatedAt: updatedUser.updatedAt.toISOString(),
+      });
+    }
+  );
+  // Delete account
+  server.delete(
+    "/account",
+    {
+      onRequest: server.requireAuth,
+    },
+    async (request, reply) => {
+      const { user } = request as AuthFastifyRequest;
+      await deleteUser(user.id);
+      return reply.send({ message: "Account deleted successfully" });
+    }
+  );
+  // Revoke a specific session by ID (BFF endpoint)
+  // Better Auth's native revokeSession requires the token, but list-sessions
+  // doesn't expose tokens for security. This endpoint looks up the token by ID
+  // and calls the native Better Auth revocation.
+  server.post(
+    "/revoke-session-by-id",
+    {
+      onRequest: server.requireAuth,
+      schema: {
+        body: Type.Object({
+          sessionId: Type.String(),
+        }),
+      },
+    },
+    async (request, reply) => {
+      const { user } = request as AuthFastifyRequest;
+      const { sessionId } = request.body as { sessionId: string };
+      // Find the session (validates it belongs to user)
+      const session = await findUserSessionById(sessionId, user.id);
+      if (!session) {
+        return reply.status(404).send({ error: "Session not found" });
+      }
+      // Revoke using Better Auth's native method
+      const response = await revokeSessionByToken(
+        session.token,
+        request.headers as unknown as Headers
+      );
+      return reply.send(response);
+    }
+  );
+  // Health check
+  server.get("/health", async (_request, reply) => {
+    return reply.send({
+      status: "ok",
+      timestamp: new Date().toISOString(),
+      service: "auth",
+    });
+  });
+};
+export default authRoutes;

package/templates/base/backend/controllers/rest-api/routes/device-sessions.ts ADDED Viewed

@@ -0,0 +1,197 @@
+import type { DeviceSessionFastifyRequest } from "fastify";
+import { FastifyPluginAsync } from "fastify";
+import {
+  CreateDeviceSessionBodySchema,
+  CreateDeviceSessionResponseSchema,
+  ValidateDeviceSessionBodySchema,
+  DeviceSessionValidationResponseSchema,
+  UpdateDeviceSessionActivityBodySchema,
+  DeviceSessionMigrationEligibilityResponseSchema,
+} from "../../../domain/device-session/schema";
+import {
+  createDeviceSession,
+  validateDeviceSession,
+  updateDeviceSessionActivity,
+  validateDeviceSessionMigrationEligibility,
+  deleteDeviceSession,
+  cleanupExpiredDeviceSessions,
+} from "../../../domain/device-session/repository";
+import { Type } from "@sinclair/typebox";
+const deviceSessionRoutes: FastifyPluginAsync = async (server) => {
+  // Create new anonymous device session
+  server.post<{
+    Body: typeof CreateDeviceSessionBodySchema._type;
+    Reply: typeof CreateDeviceSessionResponseSchema._type;
+  }>(
+    "/",
+    {
+      schema: {
+        body: CreateDeviceSessionBodySchema,
+        response: {
+          201: CreateDeviceSessionResponseSchema,
+        },
+      },
+    },
+    async (request, reply) => {
+      const { deviceId } = request.body as typeof CreateDeviceSessionBodySchema._type;
+      const result = await createDeviceSession({ deviceId });
+      return reply.status(201).send(result);
+    }
+  );
+  // Validate device session token
+  server.post<{
+    Body: typeof ValidateDeviceSessionBodySchema._type;
+    Reply: typeof DeviceSessionValidationResponseSchema._type;
+  }>(
+    "/validate",
+    {
+      schema: {
+        body: ValidateDeviceSessionBodySchema,
+        response: {
+          200: DeviceSessionValidationResponseSchema,
+        },
+      },
+    },
+    async (request, reply) => {
+      const { sessionToken } = request.body as typeof ValidateDeviceSessionBodySchema._type;
+      const session = await validateDeviceSession(sessionToken);
+      return reply.status(200).send({
+        valid: !!session,
+        session: session || undefined,
+      });
+    }
+  );
+  // Update device session activity (heartbeat)
+  server.put<{
+    Body: typeof UpdateDeviceSessionActivityBodySchema._type;
+  }>(
+    "/activity",
+    {
+      schema: {
+        body: UpdateDeviceSessionActivityBodySchema,
+        response: {
+          200: Type.Object({
+            message: Type.String(),
+          }),
+        },
+      },
+    },
+    async (request, reply) => {
+      const { sessionToken } = request.body as typeof UpdateDeviceSessionActivityBodySchema._type;
+      await updateDeviceSessionActivity(sessionToken);
+      return reply.status(200).send({ message: "Device session activity updated" });
+    }
+  );
+  // Get device session info (requires device session auth)
+  server.get<{
+    Reply: typeof DeviceSessionMigrationEligibilityResponseSchema._type;
+  }>(
+    "/info",
+    {
+      onRequest: server.requireDeviceSession,
+      schema: {
+        response: {
+          200: DeviceSessionMigrationEligibilityResponseSchema,
+        },
+      },
+    },
+    async (request, reply) => {
+      const sessionRequest = request as DeviceSessionFastifyRequest;
+      const sessionToken = sessionRequest.sessionToken;
+      const eligibility = await validateDeviceSessionMigrationEligibility(sessionToken);
+      return reply.status(200).send(eligibility);
+    }
+  );
+  // Check migration eligibility
+  server.post<{
+    Body: typeof ValidateDeviceSessionBodySchema._type;
+    Reply: typeof DeviceSessionMigrationEligibilityResponseSchema._type;
+  }>(
+    "/migration-eligibility",
+    {
+      schema: {
+        body: ValidateDeviceSessionBodySchema,
+        response: {
+          200: DeviceSessionMigrationEligibilityResponseSchema,
+        },
+      },
+    },
+    async (request, reply) => {
+      const { sessionToken } = request.body as typeof ValidateDeviceSessionBodySchema._type;
+      const eligibility = await validateDeviceSessionMigrationEligibility(sessionToken);
+      return reply.status(200).send(eligibility);
+    }
+  );
+  // Delete device session
+  server.delete<{
+    Body: typeof ValidateDeviceSessionBodySchema._type;
+  }>(
+    "/",
+    {
+      schema: {
+        body: ValidateDeviceSessionBodySchema,
+        response: {
+          200: Type.Object({
+            message: Type.String(),
+          }),
+        },
+      },
+    },
+    async (request, reply) => {
+      const { sessionToken } = request.body as typeof ValidateDeviceSessionBodySchema._type;
+      await deleteDeviceSession(sessionToken);
+      return reply.status(200).send({ message: "Device session deleted successfully" });
+    }
+  );
+  // Device session cleanup endpoint (for admin/cron use)
+  server.delete<{
+    Reply: {
+      message: string;
+      deletedCount: number;
+    };
+  }>(
+    "/cleanup",
+    {
+      // Note: In production, this should be protected by admin auth or API key
+      schema: {
+        response: {
+          200: Type.Object({
+            message: Type.String(),
+            deletedCount: Type.Number(),
+          }),
+        },
+      },
+    },
+    async (request, reply) => {
+      const deletedCount = await cleanupExpiredDeviceSessions();
+      return reply.status(200).send({
+        message: `Cleaned up ${deletedCount} expired device sessions`,
+        deletedCount,
+      });
+    }
+  );
+  // Health check endpoint
+  server.get("/health", async (request, reply) => {
+    return reply.code(200).send({
+      status: "ok",
+      timestamp: new Date().toISOString(),
+      service: "device-session"
+    });
+  });
+};
+export default deviceSessionRoutes;