stackkit 0.2.3 → 0.2.7

package/dist/lib/utils/module-loader.js

@@ -0,0 +1,98 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.loadModuleMetadata = loadModuleMetadata;
+exports.loadGeneratorConfig = loadGeneratorConfig;
+exports.findModuleByName = findModuleByName;
+exports.getAllModules = getAllModules;
+exports.getModulesByCategory = getModulesByCategory;
+const path_1 = __importDefault(require("path"));
+const fs_helpers_1 = require("./fs-helpers");
+const json_loader_1 = require("./json-loader");
+const path_resolver_1 = require("./path-resolver");
+async function loadModuleMetadata(category, moduleName) {
+    const moduleJsonPath = (0, path_resolver_1.getModuleJsonPath)(category, moduleName);
+    return (0, json_loader_1.loadJsonAsync)(moduleJsonPath);
+}
+async function loadGeneratorConfig(category, moduleName) {
+    const generatorPath = (0, path_resolver_1.getGeneratorJsonPath)(category, moduleName);
+    return (0, json_loader_1.loadJsonAsync)(generatorPath);
+}
+async function findModuleByName(moduleName, provider) {
+    const modulesDir = (0, path_resolver_1.getModulesPath)();
+    if (!(await (0, fs_helpers_1.pathExists)(modulesDir))) {
+        return null;
+    }
+    const categories = await (0, fs_helpers_1.readDir)(modulesDir);
+    for (const category of categories) {
+        const categoryPath = path_1.default.join(modulesDir, category);
+        if (!(await (0, fs_helpers_1.isDirectory)(categoryPath))) {
+            continue;
+        }
+        const moduleDirs = await (0, fs_helpers_1.readDir)(categoryPath);
+        for (const moduleDir of moduleDirs) {
+            const modulePath = path_1.default.join(categoryPath, moduleDir);
+            if (!(await (0, fs_helpers_1.isDirectory)(modulePath))) {
+                continue;
+            }
+            const metadataPath = path_1.default.join(modulePath, "module.json");
+            if (await (0, fs_helpers_1.pathExists)(metadataPath)) {
+                const metadata = await (0, json_loader_1.loadJsonAsync)(metadataPath);
+                if (!metadata)
+                    continue;
+                if (provider && moduleDir === provider) {
+                    return { category, metadata };
+                }
+                if (!provider && (metadata.category === moduleName || moduleDir === moduleName)) {
+                    return { category, metadata };
+                }
+            }
+        }
+    }
+    return null;
+}
+async function getAllModules() {
+    const modulesDir = (0, path_resolver_1.getModulesPath)();
+    if (!(await (0, fs_helpers_1.pathExists)(modulesDir))) {
+        return [];
+    }
+    const modules = [];
+    const categories = await (0, fs_helpers_1.readDir)(modulesDir);
+    for (const category of categories) {
+        const categoryPath = path_1.default.join(modulesDir, category);
+        if (!(await (0, fs_helpers_1.isDirectory)(categoryPath))) {
+            continue;
+        }
+        const moduleDirs = await (0, fs_helpers_1.readDir)(categoryPath);
+        for (const moduleDir of moduleDirs) {
+            const metadataPath = path_1.default.join(categoryPath, moduleDir, "module.json");
+            if (await (0, fs_helpers_1.pathExists)(metadataPath)) {
+                const metadata = await (0, json_loader_1.loadJsonAsync)(metadataPath);
+                if (metadata) {
+                    modules.push(metadata);
+                }
+            }
+        }
+    }
+    return modules;
+}
+async function getModulesByCategory(category) {
+    const categoryPath = path_1.default.join((0, path_resolver_1.getModulesPath)(), category);
+    if (!(await (0, fs_helpers_1.pathExists)(categoryPath))) {
+        return [];
+    }
+    const modules = [];
+    const moduleDirs = await (0, fs_helpers_1.readDir)(categoryPath);
+    for (const moduleDir of moduleDirs) {
+        const metadataPath = path_1.default.join(categoryPath, moduleDir, "module.json");
+        if (await (0, fs_helpers_1.pathExists)(metadataPath)) {
+            const metadata = await (0, json_loader_1.loadJsonAsync)(metadataPath);
+            if (metadata) {
+                modules.push(metadata);
+            }
+        }
+    }
+    return modules;
+}

package/dist/lib/utils/package-root.d.ts

@@ -1 +1,2 @@
 export declare function getPackageRoot(): string;
+export declare function isPackageRoot(dir: string): boolean;

package/dist/lib/utils/package-root.js

@@ -34,12 +34,85 @@ var __importStar = (this && this.__importStar) || (function () {
 })();
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getPackageRoot = getPackageRoot;
+exports.isPackageRoot = isPackageRoot;
+const fs = __importStar(require("fs"));
 const path = __importStar(require("path"));
+const constants_1 = require("../constants");
 function getPackageRoot() {
     try {
-        return path.dirname(require.resolve("stackkit/package.json"));
+        const packageJsonPath = require.resolve("stackkit/package.json");
+        const root = path.dirname(packageJsonPath);
+        if (fs.existsSync(root) && fs.existsSync(path.join(root, constants_1.FILE_NAMES.PACKAGE_JSON))) {
+            return root;
+        }
     }
     catch {
-        return path.resolve(__dirname, "..", "..", "..");
+        void 0;
+    }
+    try {
+        let current = __dirname;
+        let attempts = 0;
+        const maxAttempts = constants_1.RETRY_CONFIG.PACKAGE_ROOT_MAX_ATTEMPTS;
+        while (attempts < maxAttempts) {
+            const packageJsonPath = path.join(current, constants_1.FILE_NAMES.PACKAGE_JSON);
+            if (fs.existsSync(packageJsonPath)) {
+                try {
+                    const packageJson = JSON.parse(fs.readFileSync(packageJsonPath, "utf-8"));
+                    if (packageJson.name === "stackkit") {
+                        return current;
+                    }
+                }
+                catch {
+                    void 0;
+                }
+            }
+            const parent = path.dirname(current);
+            if (parent === current) {
+                break;
+            }
+            current = parent;
+            attempts++;
+        }
+    }
+    catch {
+        void 0;
+    }
+    try {
+        const fallbackRoot = path.resolve(__dirname, "..", "..", "..");
+        const packageJsonPath = path.join(fallbackRoot, constants_1.FILE_NAMES.PACKAGE_JSON);
+        if (fs.existsSync(packageJsonPath)) {
+            try {
+                const packageJson = JSON.parse(fs.readFileSync(packageJsonPath, "utf-8"));
+                if (packageJson.name === "stackkit") {
+                    return fallbackRoot;
+                }
+            }
+            catch {
+                void 0;
+            }
+        }
+    }
+    catch {
+        void 0;
+    }
+    const lastResortPath = path.resolve(__dirname, "..", "..", "..");
+    if (!fs.existsSync(lastResortPath)) {
+        throw new Error("Unable to determine stackkit package root. " +
+            "Please ensure stackkit is properly installed and run from a valid location. " +
+            `Attempted path: ${lastResortPath}`);
+    }
+    return lastResortPath;
+}
+function isPackageRoot(dir) {
+    try {
+        const packageJsonPath = path.join(dir, constants_1.FILE_NAMES.PACKAGE_JSON);
+        if (!fs.existsSync(packageJsonPath)) {
+            return false;
+        }
+        const packageJson = JSON.parse(fs.readFileSync(packageJsonPath, "utf-8"));
+        return packageJson.name === "stackkit";
+    }
+    catch {
+        return false;
     }
 }

package/dist/lib/utils/path-resolver.d.ts

@@ -0,0 +1,9 @@
+export declare function getModulesPath(): string;
+export declare function getTemplatesPath(): string;
+export declare function getModulePath(category: string, moduleName: string): string;
+export declare function getModuleJsonPath(category: string, moduleName: string): string;
+export declare function getGeneratorJsonPath(category: string, moduleName: string): string;
+export declare function getModuleFilesPath(category: string, moduleName: string): string;
+export declare function getTemplateJsonPath(frameworkName: string): string;
+export declare function getDatabaseModulesPath(): string;
+export declare function getAuthModulesPath(): string;

package/dist/lib/utils/path-resolver.js

@@ -0,0 +1,44 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getModulesPath = getModulesPath;
+exports.getTemplatesPath = getTemplatesPath;
+exports.getModulePath = getModulePath;
+exports.getModuleJsonPath = getModuleJsonPath;
+exports.getGeneratorJsonPath = getGeneratorJsonPath;
+exports.getModuleFilesPath = getModuleFilesPath;
+exports.getTemplateJsonPath = getTemplateJsonPath;
+exports.getDatabaseModulesPath = getDatabaseModulesPath;
+exports.getAuthModulesPath = getAuthModulesPath;
+const path_1 = __importDefault(require("path"));
+const constants_1 = require("../constants");
+const package_root_1 = require("./package-root");
+function getModulesPath() {
+    return path_1.default.join((0, package_root_1.getPackageRoot)(), constants_1.DIRECTORY_NAMES.MODULES);
+}
+function getTemplatesPath() {
+    return path_1.default.join((0, package_root_1.getPackageRoot)(), constants_1.DIRECTORY_NAMES.TEMPLATES);
+}
+function getModulePath(category, moduleName) {
+    return path_1.default.join(getModulesPath(), category, moduleName);
+}
+function getModuleJsonPath(category, moduleName) {
+    return path_1.default.join(getModulePath(category, moduleName), constants_1.FILE_NAMES.MODULE_JSON);
+}
+function getGeneratorJsonPath(category, moduleName) {
+    return path_1.default.join(getModulePath(category, moduleName), constants_1.FILE_NAMES.GENERATOR_JSON);
+}
+function getModuleFilesPath(category, moduleName) {
+    return path_1.default.join(getModulePath(category, moduleName), constants_1.DIRECTORY_NAMES.FILES);
+}
+function getTemplateJsonPath(frameworkName) {
+    return path_1.default.join(getTemplatesPath(), frameworkName, constants_1.FILE_NAMES.TEMPLATE_JSON);
+}
+function getDatabaseModulesPath() {
+    return path_1.default.join(getModulesPath(), constants_1.MODULE_CATEGORIES.DATABASE);
+}
+function getAuthModulesPath() {
+    return path_1.default.join(getModulesPath(), constants_1.MODULE_CATEGORIES.AUTH);
+}

package/modules/auth/authjs/files/nextjs/api/auth/[...nextauth]/route.ts

@@ -0,0 +1,3 @@
+import { handlers } from "@/auth"
+
+export const { GET, POST } = handlers

package/modules/auth/authjs/files/nextjs/proxy.ts

@@ -0,0 +1 @@
+export { auth as proxy } from "@/lib/auth";

package/modules/auth/authjs/files/shared/lib/auth.ts

@@ -0,0 +1,119 @@
+/* eslint-disable @typescript-eslint/no-explicit-any */
+import { PrismaAdapter } from "@auth/prisma-adapter";
+import bcrypt from "bcryptjs";
+import NextAuth from "next-auth";
+import Credentials from "next-auth/providers/credentials";
+import EmailProvider from "next-auth/providers/email";
+import Google from "next-auth/providers/google";
+import {
+  getUserById,
+  getUserByProviderAccountId,
+  getUserByUsername,
+} from "./actions/auth";
+import { sendEmail } from "./email/email-service";
+import { getVerificationEmailTemplate } from "./email/email-templates";
+import { prisma } from "./prisma";
+
+const options: any = {
+  adapter: PrismaAdapter(prisma),
+  providers: [
+    Google({
+      clientId: process.env.GOOGLE_CLIENT_ID ?? "",
+      clientSecret: process.env.GOOGLE_CLIENT_SECRET ?? "",
+      profile(profile: any) {
+        const p = profile as Record<string, any>;
+        return {
+          id: p.sub ?? p.id,
+          name: p.name,
+          email: p.email,
+          image: p.picture,
+          role: p.role ?? "USER",
+        };
+      },
+    }),
+    (Credentials({
+      id: "credentials",
+      name: "Credentials",
+      credentials: {
+        username: { label: "Email", type: "text" },
+        password: { label: "Password", type: "password" },
+      },
+      async authorize(credentials: any) {
+        if (!credentials?.username || !credentials?.password) return null;
+        const user = await getUserByUsername(credentials.username as string);
+        if (!user) return null;
+        const hashed = (user as any).password;
+        if (!hashed) return null; // OAuth-only account
+        const ok = await bcrypt.compare(credentials.password as string, hashed);
+        if (!ok) return null;
+        // strip sensitive fields
+        const safe = { ...user } as Record<string, any>;
+        delete safe.password;
+        return safe;
+      },
+    }),
+    EmailProvider({
+      server: process.env.EMAIL_SERVER,
+      from: process.env.EMAIL_FROM,
+      async sendVerificationRequest({ identifier, url, provider }: any) {
+        const { html, text } = getVerificationEmailTemplate(
+          { email: identifier },
+          url,
+        );
+        await sendEmail({
+          to: identifier,
+          subject: "Verify your email",
+          html,
+          text,
+          from: provider?.from,
+        });
+      },
+    })),
+  ],
+  callbacks: {
+    // ensure provider-account linking is safe
+    async signIn({ user, account }: any) {
+      if (account && account.provider !== "credentials") {
+        const linked = await getUserByProviderAccountId(
+          account.providerAccountId as string,
+        );
+        if (linked && linked.id !== user.id)
+          return "/sign-in/?error=OAuthAccountNotLinked";
+      }
+      return true;
+    },
+    // keep session payload minimal
+    async jwt({ token, user }: any) {
+      if (user) {
+        token.user = {
+          id: user.id,
+          email: user.email,
+          name: user.name,
+          role: user.role ?? "USER",
+        };
+        token.role = token.user.role;
+      }
+      if (token.sub && !token.user) {
+        const dbUser = await getUserById(token.sub as string);
+        if (dbUser)
+          token.user = {
+            id: dbUser.id,
+            email: dbUser.email,
+            name: dbUser.name,
+            role: (dbUser as any).role ?? "USER",
+          };
+      }
+      return token;
+    },
+    async session({ session, token }: any) {
+      session.user = token.user;
+      session.role = token.role ?? "USER";
+      return session;
+    },
+  },
+  session: { strategy: "jwt" },
+  secret: process.env.AUTH_SECRET,
+  debug: process.env.NODE_ENV !== "production",
+};
+
+export const { handlers, signIn, signOut, auth } = NextAuth(options);

package/modules/auth/authjs/files/{prisma → shared/prisma}/schema.prisma

@@ -1,4 +1,8 @@
-{{#var defaultId = {{#if prismaProvider == "mongodb"}}@default(auto()) @map("_id") @db.ObjectId{{else}}@default(cuid()){{/if}}}}
+{{#if prismaProvider == "mongodb"}}
+{{#var defaultId = @default(auto()) @map("_id") @db.ObjectId}}
+{{else}}
+{{#var defaultId = @default(cuid())}}
+{{/if}}
 model Account {
   id                String  @id {{defaultId}}
   userId            String  @map("user_id")
@@ -35,6 +39,7 @@ model User {
   email         String?   @unique
   emailVerified DateTime? @map("email_verified")
   image         String?
+  role          Role      @default(USER)
   accounts      Account[]
   sessions      Session[]
 
@@ -48,4 +53,9 @@ model VerificationToken {
 
   @@unique([identifier, token])
   @@map("verification_tokens")
+}
+
+enum Role {
+  USER
+  ADMIN
 }

package/modules/auth/authjs/generator.json

@@ -5,18 +5,18 @@
   "operations": [
     {
       "type": "create-file",
-      "source": "lib/auth.ts",
-      "destination": "lib/auth.ts"
+      "source": "shared/lib/auth.ts",
+      "destination": "server/auth/auth.ts"
     },
     {
       "type": "create-file",
-      "source": "api/auth/[...nextauth]/route.ts",
+      "source": "nextjs/api/auth/[...nextauth]/route.ts",
       "destination": "app/api/auth/[...nextauth]/route.ts"
     },
     {
       "type": "create-file",
-      "destination": "proxy.ts",
-      "content": "export { auth as proxy } from \"@/lib/auth\""
+      "source": "nextjs/proxy.ts",
+      "destination": "proxy.ts"
     },
     {
       "type": "patch-file",
@@ -25,7 +25,7 @@
       "operations": [
         {
           "type": "add-to-bottom",
-          "source": "prisma/schema.prisma"
+          "source": "shared/prisma/schema.prisma"
         }
       ]
     },
@@ -41,13 +41,23 @@
       "envVars": {
         "AUTH_SECRET": "",
         "AUTH_GOOGLE_ID": "",
-        "AUTH_GOOGLE_SECRET": ""
+        "AUTH_GOOGLE_SECRET": "",
+        "EMAIL_HOST": "smtp.gmail.com",
+        "EMAIL_PORT": "587",
+        "EMAIL_USER": "",
+        "EMAIL_PASS": "",
+        "EMAIL_FROM": "noreply@yourapp.com"
       }
     },
     {
       "type": "add-dependency",
       "dependencies": {
-        "next-auth": "^5.0.0-beta.30"
+        "next-auth": "^5.0.0-beta.30",
+        "bcryptjs": "^3.0.3",
+        "nodemailer": "^7.0.12"
+      },
+      "devDependencies": {
+        "@types/nodemailer": "^7.0.5"
       }
     }
   ]

package/modules/auth/better-auth/files/express/middlewares/authorize.ts

@@ -0,0 +1,54 @@
+import { NextFunction, Request, Response } from "express";
+import { auth } from "../../modules/auth/auth";
+
+export enum UserRole {
+    USER = "USER",
+    ADMIN = "ADMIN"
+}
+
+const authorize = (...roles: UserRole[]) => {
+  return async (req: Request, res: Response, next: NextFunction) => {
+    try {
+      // get user session
+      const session = await auth?.api.getSession({
+        headers: req.headers as any,
+      });
+
+      if (!session) {
+        return res.status(401).json({
+          success: false,
+          message: "You are not authorized!",
+        });
+      }
+
+      if (!session.user.emailVerified) {
+        return res.status(403).json({
+          success: false,
+          message: "Email verification required. Please verify your email!",
+        });
+      }
+
+      req.user = {
+        id: session.user.id,
+        email: session.user.email,
+        name: session.user.name,
+        role: session.user.role as string,
+        emailVerified: session.user.emailVerified,
+      };
+
+      if (roles.length && !roles.includes(req.user.role as UserRole)) {
+        return res.status(403).json({
+          success: false,
+          message:
+            "Forbidden! You don't have permission to access this resources!",
+        });
+      }
+
+      next();
+    } catch (err) {
+      next(err);
+    }
+  };
+};
+
+export default authorize;

package/modules/auth/better-auth/files/express/types/express.d.ts

@@ -0,0 +1,16 @@
+declare global {
+    namespace Express {
+        interface Request {
+            user?: {
+                id: string;
+                email: string;
+                name: string;
+                role: string;
+                emailVerified: boolean;
+            }
+        }
+    }
+}
+
+export { };
+

package/modules/auth/better-auth/files/nextjs/lib/auth/auth-guards.ts

@@ -0,0 +1,31 @@
+import { auth } from "@/lib/auth";
+import { headers } from "next/headers";
+import { redirect } from "next/navigation";
+
+export async function getSession() {
+  const session = await auth.api.getSession({
+    headers: await headers(),
+  });
+
+  return session;
+}
+
+export async function requireAdmin() {
+  const session = await getSession();
+
+  if (!session || session.user.role !== "ADMIN") {
+    redirect("/login");
+  }
+
+  return session.user;
+}
+
+export async function getUser() {
+  const session = await getSession();
+
+  if (!session) {
+    redirect("/login");
+  }
+
+  return session.user;
+}

package/modules/auth/better-auth/files/nextjs/proxy.ts

@@ -0,0 +1,34 @@
+import { NextResponse, type NextRequest } from "next/server";
+
+function isAuthenticated(req: NextRequest) {
+  const token = req.cookies.get("better-auth.session_token")?.value;
+
+  return Boolean(token);
+}
+
+export function proxy(req: NextRequest) {
+  const { pathname, search } = req.nextUrl;
+  const authed = isAuthenticated(req);
+
+  if (pathname === "/login" || pathname === "/signup") {
+    if (authed) return NextResponse.redirect(new URL("/dashboard", req.url));
+    return NextResponse.next();
+  }
+
+  if (pathname.startsWith("/dashboard") && !authed) {
+    const next = encodeURIComponent(pathname + (search || ""));
+    return NextResponse.redirect(new URL(`/login?next=${next}`, req.url));
+  }
+
+  return NextResponse.next();
+}
+
+export const config = {
+  matcher: [
+    "/((?!_next|[^?]*\\.(?:html?|css|js(?!on)|jpe?g|webp|png|gif|svg|ttf|woff2?|ico|csv|docx?|xlsx?|zip|webmanifest)).*)",
+    "/(api|trpc)(.*)",
+    "/login",
+    "/signup",
+    "/dashboard/:path*",
+  ],
+};

package/modules/auth/better-auth/files/{lib → shared/lib}/auth-client.ts

@@ -1,7 +1,7 @@
 import { createAuthClient } from "better-auth/react";
 
 export const authClient = createAuthClient({
-  baseURL: "http://localhost:3000",
+  baseURL: process.env.BETTER_AUTH_URL || "http://localhost:4000",
 });
 
 export const { signIn, signUp, signOut, useSession } = authClient;