├── .env
├── .eslintrc.cjs
├── .gitignore
├── .vscode
└── settings.json
├── LICENSE
├── README.md
├── next.config.js
├── package-lock.json
├── package.json
├── postcss.config.cjs
├── prettier.config.js
├── prisma
└── schema.prisma
├── public
└── favicon.ico
├── schema.zmodel
├── src
├── app
│ ├── api
│ │ ├── auth
│ │ │ └── [...nextauth]
│ │ │ │ └── route.ts
│ │ └── model
│ │ │ └── [...path]
│ │ │ └── route.ts
│ ├── layout.tsx
│ ├── page.tsx
│ ├── providers.tsx
│ ├── signin
│ │ └── page.tsx
│ └── signup
│ │ └── page.tsx
├── env.js
├── lib
│ └── hooks
│ │ ├── __model_meta.ts
│ │ ├── account.ts
│ │ ├── index.ts
│ │ ├── post.ts
│ │ ├── session.ts
│ │ ├── user.ts
│ │ └── verification-token.ts
├── server
│ ├── auth.ts
│ └── db.ts
└── styles
│ └── globals.css
├── tailwind.config.ts
└── tsconfig.json
/.env:
--------------------------------------------------------------------------------
1 | # When adding additional environment variables, the schema in "/src/env.js"
2 | # should be updated accordingly.
3 |
4 | # Prisma
5 | # https://www.prisma.io/docs/reference/database-reference/connection-urls#env
6 | DATABASE_URL="file:./db.sqlite"
7 |
8 | # Next Auth
9 | # You can generate a new secret on the command line with:
10 | # openssl rand -base64 32
11 | # https://next-auth.js.org/configuration/options#secret
12 | # NEXTAUTH_SECRET=""
13 | NEXTAUTH_URL="http://localhost:3000"
14 |
15 | NEXTAUTH_SECRET=abc123
--------------------------------------------------------------------------------
/.eslintrc.cjs:
--------------------------------------------------------------------------------
1 | /** @type {import("eslint").Linter.Config} */
2 | const config = {
3 | parser: "@typescript-eslint/parser",
4 | parserOptions: {
5 | project: true,
6 | },
7 | plugins: ["@typescript-eslint"],
8 | extends: [
9 | "next/core-web-vitals",
10 | "plugin:@typescript-eslint/recommended-type-checked",
11 | "plugin:@typescript-eslint/stylistic-type-checked",
12 | ],
13 | rules: {
14 | // These opinionated rules are enabled in stylistic-type-checked above.
15 | // Feel free to reconfigure them to your own preference.
16 | "@typescript-eslint/array-type": "off",
17 | "@typescript-eslint/consistent-type-definitions": "off",
18 |
19 | "@typescript-eslint/consistent-type-imports": [
20 | "warn",
21 | {
22 | prefer: "type-imports",
23 | fixStyle: "inline-type-imports",
24 | },
25 | ],
26 | "@typescript-eslint/no-unused-vars": ["warn", { argsIgnorePattern: "^_" }],
27 | "@typescript-eslint/require-await": "off",
28 | "@typescript-eslint/no-misused-promises": [
29 | "error",
30 | {
31 | checksVoidReturn: { attributes: false },
32 | },
33 | ],
34 | },
35 | };
36 |
37 | module.exports = config;
38 |
--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 | # See https://help.github.com/articles/ignoring-files/ for more about ignoring files.
2 |
3 | # dependencies
4 | /node_modules
5 | /.pnp
6 | .pnp.js
7 |
8 | # testing
9 | /coverage
10 |
11 | # database
12 | /prisma/db.sqlite
13 | /prisma/db.sqlite-journal
14 |
15 | # next.js
16 | /.next/
17 | /out/
18 | next-env.d.ts
19 |
20 | # production
21 | /build
22 |
23 | # misc
24 | .DS_Store
25 | *.pem
26 |
27 | # debug
28 | npm-debug.log*
29 | yarn-debug.log*
30 | yarn-error.log*
31 | .pnpm-debug.log*
32 |
33 | # local env files
34 | # do not commit any .env files to git, except for the .env.example file. https://create.t3.gg/en/usage/env-variables#using-environment-variables
35 | .env
36 | .env*.local
37 |
38 | # vercel
39 | .vercel
40 |
41 | # typescript
42 | *.tsbuildinfo
43 |
--------------------------------------------------------------------------------
/.vscode/settings.json:
--------------------------------------------------------------------------------
1 | {
2 | "typescript.tsdk": "node_modules/typescript/lib"
3 | }
4 |
--------------------------------------------------------------------------------
/LICENSE:
--------------------------------------------------------------------------------
1 | MIT License
2 |
3 | Copyright (c) 2022 ZenStack
4 |
5 | Permission is hereby granted, free of charge, to any person obtaining a copy
6 | of this software and associated documentation files (the "Software"), to deal
7 | in the Software without restriction, including without limitation the rights
8 | to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
9 | copies of the Software, and to permit persons to whom the Software is
10 | furnished to do so, subject to the following conditions:
11 |
12 | The above copyright notice and this permission notice shall be included in all
13 | copies or substantial portions of the Software.
14 |
15 | THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
16 | IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
17 | FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
18 | AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
19 | LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
20 | OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
21 | SOFTWARE.
22 |
--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
1 | # ZenStack Next.js Tutorial Project
2 |
3 | This is a sample project for demonstrating how to use ZenStack in a Next.js project (v14 with the new "app" router).
4 |
5 | See documentation [here](https://zenstack.dev/docs/quick-start/next-app-router).
6 |
7 | To run the project:
8 |
9 | ```
10 | npm run build
11 | npm run dev
12 | ```
13 |
--------------------------------------------------------------------------------
/next.config.js:
--------------------------------------------------------------------------------
1 | /**
2 | * Run `build` or `dev` with `SKIP_ENV_VALIDATION` to skip env validation. This is especially useful
3 | * for Docker builds.
4 | */
5 | await import("./src/env.js");
6 |
7 | /** @type {import("next").NextConfig} */
8 | const config = {};
9 |
10 | export default config;
11 |
--------------------------------------------------------------------------------
/package.json:
--------------------------------------------------------------------------------
1 | {
2 | "name": "my-blog-app",
3 | "version": "0.1.0",
4 | "private": true,
5 | "type": "module",
6 | "scripts": {
7 | "generate": "zenstack generate && prisma db push",
8 | "build": "npm run generate && next build",
9 | "dev": "next dev",
10 | "postinstall": "prisma generate",
11 | "lint": "next lint",
12 | "start": "next start",
13 | "package-clean": "npm rm @zenstackhq/runtime @zenstackhq/server zenstack @zenstackhq/tanstack-query",
14 | "up": "npm run package-clean && npm i --save-exact @zenstackhq/runtime@latest @zenstackhq/server@latest && npm i -D --save-exact zenstack@latest @zenstackhq/tanstack-query@latest"
15 | },
16 | "dependencies": {
17 | "@auth/prisma-adapter": "^1.4.0",
18 | "@prisma/client": "^5.21.1",
19 | "@t3-oss/env-nextjs": "^0.9.2",
20 | "@tanstack/react-query": "^5.24.1",
21 | "@zenstackhq/runtime": "2.7.4",
22 | "@zenstackhq/server": "2.7.4",
23 | "next": "^15.0.1",
24 | "next-auth": "^4.24.10",
25 | "react": "18.2.0",
26 | "react-dom": "18.2.0",
27 | "zod": "^3.22.4"
28 | },
29 | "devDependencies": {
30 | "@types/bcryptjs": "^2.4.6",
31 | "@types/eslint": "^8.56.2",
32 | "@types/node": "^20.11.20",
33 | "@types/react": "^18.2.57",
34 | "@types/react-dom": "^18.2.19",
35 | "@typescript-eslint/eslint-plugin": "^7.6.0",
36 | "@typescript-eslint/parser": "^7.6.0",
37 | "@zenstackhq/tanstack-query": "2.7.4",
38 | "eslint": "^8.57.0",
39 | "eslint-config-next": "^14.1.4",
40 | "postcss": "^8.4.34",
41 | "prettier": "^3.2.5",
42 | "prettier-plugin-tailwindcss": "^0.5.11",
43 | "prisma": "^5.21.1",
44 | "tailwindcss": "^3.4.1",
45 | "typescript": "^5.4.5",
46 | "zenstack": "2.7.4"
47 | },
48 | "ct3aMetadata": {
49 | "initVersion": "7.28.0"
50 | },
51 | "packageManager": "npm@10.2.3"
52 | }
53 |
--------------------------------------------------------------------------------
/postcss.config.cjs:
--------------------------------------------------------------------------------
1 | const config = {
2 | plugins: {
3 | tailwindcss: {},
4 | },
5 | };
6 |
7 | module.exports = config;
8 |
--------------------------------------------------------------------------------
/prettier.config.js:
--------------------------------------------------------------------------------
1 | /** @type {import('prettier').Config & import('prettier-plugin-tailwindcss').PluginOptions} */
2 | const config = {
3 | plugins: ["prettier-plugin-tailwindcss"],
4 | };
5 |
6 | export default config;
7 |
--------------------------------------------------------------------------------
/prisma/schema.prisma:
--------------------------------------------------------------------------------
1 | //////////////////////////////////////////////////////////////////////////////////////////////
2 | // DO NOT MODIFY THIS FILE //
3 | // This file is automatically generated by ZenStack CLI and should not be manually updated. //
4 | //////////////////////////////////////////////////////////////////////////////////////////////
5 |
6 | datasource db {
7 | provider = "sqlite"
8 | url = env("DATABASE_URL")
9 | }
10 |
11 | generator client {
12 | provider = "prisma-client-js"
13 | }
14 |
15 | /// @@allow('all', auth() == createdBy)
16 | /// @@allow('read', auth() != null && published)
17 | model Post {
18 | id Int @id() @default(autoincrement())
19 | name String
20 | createdAt DateTime @default(now())
21 | updatedAt DateTime @updatedAt()
22 | published Boolean @default(false)
23 | createdBy User @relation(fields: [createdById], references: [id])
24 | createdById String
25 |
26 | @@index([name])
27 | }
28 |
29 | model Account {
30 | id String @id() @default(cuid())
31 | userId String
32 | type String
33 | provider String
34 | providerAccountId String
35 | refresh_token String?
36 | access_token String?
37 | expires_at Int?
38 | token_type String?
39 | scope String?
40 | id_token String?
41 | session_state String?
42 | user User @relation(fields: [userId], references: [id], onDelete: Cascade)
43 |
44 | @@unique([provider, providerAccountId])
45 | }
46 |
47 | model Session {
48 | id String @id() @default(cuid())
49 | sessionToken String @unique()
50 | userId String
51 | expires DateTime
52 | user User @relation(fields: [userId], references: [id], onDelete: Cascade)
53 | }
54 |
55 | /// @@allow('create,read', true)
56 | /// @@allow('update,delete', auth() == this)
57 | model User {
58 | id String @id() @default(cuid())
59 | name String?
60 | email String? @unique()
61 | emailVerified DateTime?
62 | /// @password
63 | /// @omit
64 | password String
65 | image String?
66 | accounts Account[]
67 | sessions Session[]
68 | posts Post[]
69 | }
70 |
71 | model VerificationToken {
72 | identifier String
73 | token String @unique()
74 | expires DateTime
75 |
76 | @@unique([identifier, token])
77 | }
78 |
--------------------------------------------------------------------------------
/public/favicon.ico:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/zenstackhq/docs-tutorial-nextjs-app-dir/014416c3c44df7eebd4b878236d79b8ef85a4d44/public/favicon.ico
--------------------------------------------------------------------------------
/schema.zmodel:
--------------------------------------------------------------------------------
1 | generator client {
2 | provider = "prisma-client-js"
3 | }
4 |
5 | datasource db {
6 | provider = "sqlite"
7 | url = env("DATABASE_URL")
8 | }
9 |
10 | plugin hooks {
11 | provider = '@zenstackhq/tanstack-query'
12 | target = 'react'
13 | output = "./src/lib/hooks"
14 | }
15 |
16 | model Post {
17 | id Int @id @default(autoincrement())
18 | name String
19 | createdAt DateTime @default(now())
20 | updatedAt DateTime @updatedAt
21 | published Boolean @default(false)
22 |
23 | createdBy User @relation(fields: [createdById], references: [id])
24 | createdById String @default(auth().id)
25 |
26 | @@index([name])
27 |
28 | // author has full access
29 | @@allow('all', auth() == createdBy)
30 |
31 | // logged-in users can view published posts
32 | @@allow('read', auth() != null && published)
33 | }
34 |
35 | // Necessary for Next auth
36 | model Account {
37 | id String @id @default(cuid())
38 | userId String
39 | type String
40 | provider String
41 | providerAccountId String
42 | refresh_token String? // @db.Text
43 | access_token String? // @db.Text
44 | expires_at Int?
45 | token_type String?
46 | scope String?
47 | id_token String? // @db.Text
48 | session_state String?
49 | user User @relation(fields: [userId], references: [id], onDelete: Cascade)
50 |
51 | @@unique([provider, providerAccountId])
52 | }
53 |
54 | model Session {
55 | id String @id @default(cuid())
56 | sessionToken String @unique
57 | userId String
58 | expires DateTime
59 | user User @relation(fields: [userId], references: [id], onDelete: Cascade)
60 | }
61 |
62 | model User {
63 | id String @id @default(cuid())
64 | name String?
65 | email String? @unique
66 | emailVerified DateTime?
67 | password String @password @omit
68 | image String?
69 | accounts Account[]
70 | sessions Session[]
71 | posts Post[]
72 |
73 | // everyone can signup, and user profile is also publicly readable
74 | @@allow('create,read', true)
75 |
76 | // only the user can update or delete their own profile
77 | @@allow('update,delete', auth() == this)
78 | }
79 |
80 | model VerificationToken {
81 | identifier String
82 | token String @unique
83 | expires DateTime
84 |
85 | @@unique([identifier, token])
86 | }
87 |
--------------------------------------------------------------------------------
/src/app/api/auth/[...nextauth]/route.ts:
--------------------------------------------------------------------------------
1 | import NextAuth from "next-auth";
2 |
3 | import { authOptions } from "~/server/auth";
4 |
5 | // eslint-disable-next-line @typescript-eslint/no-unsafe-assignment
6 | const handler = NextAuth(authOptions);
7 | export { handler as GET, handler as POST };
8 |
--------------------------------------------------------------------------------
/src/app/api/model/[...path]/route.ts:
--------------------------------------------------------------------------------
1 | import { enhance } from "@zenstackhq/runtime";
2 | import { NextRequestHandler } from "@zenstackhq/server/next";
3 | import { getServerAuthSession } from "~/server/auth";
4 | import { db } from "~/server/db";
5 |
6 | // create an enhanced Prisma client with user context
7 | async function getPrisma() {
8 | const session = await getServerAuthSession();
9 | return enhance(db, { user: session?.user });
10 | }
11 |
12 | const handler = NextRequestHandler({ getPrisma, useAppDir: true });
13 |
14 | export {
15 | handler as DELETE,
16 | handler as GET,
17 | handler as PATCH,
18 | handler as POST,
19 | handler as PUT,
20 | };
21 |
--------------------------------------------------------------------------------
/src/app/layout.tsx:
--------------------------------------------------------------------------------
1 | "use client";
2 |
3 | import "~/styles/globals.css";
4 |
5 | import { Inter } from "next/font/google";
6 | import Providers from "./providers";
7 |
8 | const inter = Inter({
9 | subsets: ["latin"],
10 | variable: "--font-sans",
11 | });
12 |
13 | export default function RootLayout({
14 | children,
15 | }: {
16 | children: React.ReactNode;
17 | }) {
18 | return (
19 |
20 |
21 | {children}
22 |
23 |
24 | );
25 | }
26 |
--------------------------------------------------------------------------------
/src/app/page.tsx:
--------------------------------------------------------------------------------
1 | "use client";
2 |
3 | import type { Post } from "@prisma/client";
4 | import { type NextPage } from "next";
5 | import { signOut, useSession } from "next-auth/react";
6 | import Link from "next/link";
7 | import { useRouter } from "next/navigation";
8 | import {
9 | useFindManyPost,
10 | useCreatePost,
11 | useUpdatePost,
12 | useDeletePost,
13 | } from "../lib/hooks";
14 |
15 | type AuthUser = { id: string; email?: string | null };
16 |
17 | const Welcome = ({ user }: { user: AuthUser }) => {
18 | const router = useRouter();
19 | async function onSignout() {
20 | await signOut({ redirect: false });
21 | router.push("/signin");
22 | }
23 | return (
24 |
25 |
Welcome back, {user?.email}
26 |
32 |
33 | );
34 | };
35 |
36 | const SigninSignup = () => {
37 | return (
38 |
39 |
40 | Signin
41 |
42 |
43 | Signup
44 |
45 |
46 | );
47 | };
48 |
49 | const Posts = () => {
50 | // Post crud hooks
51 | const { mutateAsync: createPost } = useCreatePost();
52 | const { mutateAsync: updatePost } = useUpdatePost();
53 | const { mutateAsync: deletePost } = useDeletePost();
54 |
55 | // list all posts that're visible to the current user, together with their authors
56 | const { data: posts } = useFindManyPost({
57 | include: { createdBy: true },
58 | orderBy: { createdAt: "desc" },
59 | });
60 |
61 | async function onCreatePost() {
62 | const name = prompt("Enter post name");
63 | if (name) {
64 | await createPost({ data: { name } });
65 | }
66 | }
67 |
68 | async function onTogglePublished(post: Post) {
69 | await updatePost({
70 | where: { id: post.id },
71 | data: { published: !post.published },
72 | });
73 | }
74 |
75 | async function onDelete(post: Post) {
76 | await deletePost({ where: { id: post.id } });
77 | }
78 |
79 | return (
80 |
81 |
87 |
88 |
89 | {posts?.map((post) => (
90 | -
91 |
92 | {post.name}
93 | by {post.createdBy.email}
94 |
95 |
96 |
102 |
105 |
106 |
107 | ))}
108 |
109 |
Loading ...
;
117 |
118 | return (
119 |
120 |
121 |
My Awesome Blog
122 |
123 | {session?.user ? (
124 | // welcome & blog posts
125 |
131 | ) : (
132 | // if not logged in
133 |
134 | )}
135 |