JSPM

  • ESM via JSPM
  • ES Module Entrypoint
  • Export Map
  • Keywords
  • License
  • Repository URL
  • TypeScript Types
  • README
  • Created
  • Published
  • Downloads 846
  • Score
    100M100P100Q82530F
  • License MIT

CLI tool to scaffold a production-ready NestJS authentication system with JWT, refresh tokens, and RBAC

Package Exports

  • create-nestjs-auth
  • create-nestjs-auth/index.js

This package does not declare an exports field, so the exports above have been automatically detected and optimized by JSPM instead. If any package subpath is missing, it is recommended to post an issue to the original package (create-nestjs-auth) to support the "exports" field. If that is not possible, create a JSPM override to customize the exports field for this package.

Readme

create-nestjs-auth

CLI tool to scaffold a production-ready NestJS authentication system with JWT, refresh tokens, and RBAC.

npm version License: MIT

Features

Complete JWT Auth System - Access tokens, refresh token rotation, multi-device sessions
Role-Based Access Control (RBAC) - Admin/User roles with decorator-based guards
Production Security - HttpOnly cookies, bcrypt (12 rounds), rate limiting
Database Ready - PostgreSQL + Prisma ORM with migrations (only supported database)
Developer Experience - Pino logging, health checks, validation, comprehensive tests
Interactive CLI - Guided setup with prompts for configuration options

Quick Start

# Interactive mode (recommended)
npx create-nestjs-auth

# Or provide app name directly
npx create-nestjs-auth my-app

# Or with pnpm
pnpx create-nestjs-auth my-app

# Or install globally
npm install -g create-nestjs-auth
create-nestjs-auth

Usage

Interactive Mode (New! 🎉)

Simply run the command without arguments to enter interactive mode:

npx create-nestjs-auth

Setup Prompts:

  • Project name - Your application name
  • Package manager - npm, pnpm, yarn, or bun (auto-detected)
  • Install dependencies - Whether to install packages automatically
  • Initialize git - Whether to set up a git repository

Post-Setup Prompts (Optional):

  • Complete setup now - Continue with guided configuration
  • Database URL - PostgreSQL connection string
  • Setup database - Run Prisma generate, migrations, and seeding
  • Start dev server - Launch the application immediately

The CLI will:

  • ✨ Auto-generate secure JWT secrets
  • 🔧 Configure your .env file automatically
  • 📦 Set up Prisma and run migrations
  • 🌱 Seed your database with a default admin user
  • 🚀 Optionally start the dev server

Example interactive session:

⚡️ create-nestjs-auth

Production-ready NestJS authentication with Prisma + PostgreSQL

? What is your project name? my-awesome-app
? Which package manager would you like to use? pnpm (detected)
? Install dependencies? Yes
? Initialize git repository? Yes

🚀 Creating my-awesome-app...
📦 Installing dependencies...
🔧 Initializing git repository...

✅ Success! Created my-awesome-app

🎉 Your project is ready!

? Would you like to complete the setup now? Yes

🔑 Generating JWT secrets...
? Enter your PostgreSQL database URL: postgresql://user:pass@localhost:5432/mydb
? Set up the database now? Yes

📦 Setting up database...
✓ Database setup complete!

? Start the development server now? Yes

🚀 Starting development server...
Your API will be available at: http://localhost:8080/api/v1

Basic Usage

npx create-nestjs-auth my-awesome-app
cd my-awesome-app

Edit .env with your database credentials, then:

npm run prisma:generate
npm run prisma:migrate
npm run start:dev

Your API will be running at http://localhost:8080/api/v1

With Options

# Non-interactive mode (skip all prompts)
npx create-nestjs-auth my-app --yes

# Skip dependency installation
npx create-nestjs-auth my-app --skip-install

# Use specific package manager
npx create-nestjs-auth my-app --package-manager pnpm

# Skip git initialization
npx create-nestjs-auth my-app --skip-git

# Combine options
npx create-nestjs-auth my-app --skip-install --skip-git --yes

CLI Options

Option Description Default
--yes Skip all prompts and use defaults (non-interactive mode) false
--skip-install Skip automatic dependency installation false
--package-manager <pm> Choose package manager: npm, pnpm, yarn, or bun Auto-detect
--skip-git Skip git repository initialization false
--help Display help information -
--version Show CLI version -

Requirements

  • Node.js >= 20.x
  • PostgreSQL >= 16.x (or connection to a PostgreSQL database)
  • npm >= 10.x (or pnpm/yarn/bun equivalent)

The CLI will check Node.js version before creating the project.

What Gets Created

my-app/
├── prisma/
│   ├── schema.prisma       # Database schema
│   ├── seed.ts             # Seed data (default admin user)
│   └── migrations/         # Database migrations
├── src/
│   ├── modules/
│   │   ├── auth/           # Authentication endpoints
│   │   ├── users/          # User management
│   │   └── health/         # Health check endpoints
│   ├── common/
│   │   ├── decorators/     # @Roles(), @Public(), @GetUser()
│   │   ├── guards/         # JWT guards, RBAC guards
│   │   ├── interceptors/   # Response transformation
│   │   └── validators/     # Custom validators
│   └── config/             # Configuration, logging
├── test/                   # E2E tests
├── .env                    # Environment variables (created from .env.example)
├── .env.example            # Template with all required variables
└── package.json

Post-Creation Steps

When you run npx create-nestjs-auth without the --yes flag, the CLI will guide you through:

  1. Automatic JWT Secret Generation - Secure secrets created for you
  2. Database Configuration - Enter your PostgreSQL URL
  3. Database Setup - Prisma client generation, migrations, and seeding
  4. Dev Server Launch - Start coding immediately

No manual steps needed!

Option 2: Manual Setup

If you prefer manual control or used --yes flag, follow these steps:

1. Configure Environment Variables

Edit .env file (already created from .env.example):

# Generate secure JWT secrets
openssl rand -base64 32  # For JWT_ACCESS_SECRET
openssl rand -base64 32  # For JWT_REFRESH_SECRET

Update critical values:

DATABASE_URL="postgresql://user:password@localhost:5432/mydb"
JWT_ACCESS_SECRET="your-generated-secret-here"
JWT_REFRESH_SECRET="your-different-secret-here"

2. Setup Database

# Generate Prisma client
npm run prisma:generate

# Run migrations
npm run prisma:migrate

# Seed default admin user
npm run prisma:seed

Default credentials: admin@example.com / Admin@123

3. Start Development Server

npm run start:dev

4. Test the API

# Check health
curl http://localhost:8080/api/v1/health

# Login with default admin
curl -X POST http://localhost:8080/api/v1/auth/login \
  -H "Content-Type: application/json" \
  -d '{"email":"admin@example.com","password":"Admin@123"}'

What's Included in the Template

Authentication Features

  • JWT access tokens (short-lived, 1 hour)
  • Refresh token rotation (30 days)
  • Multi-device session support (5 devices/user)
  • Secure HttpOnly cookies
  • Password hashing with bcrypt (12 rounds)

Security Features

  • Rate limiting (5 auth attempts/min, 10 global/min)
  • CORS configuration
  • Helmet security headers
  • PII-safe logging (passwords/tokens redacted)
  • Input validation with class-validator
  • Environment variable validation with Zod

Role-Based Access Control

@Roles(UserRole.ADMIN)
@Get('users')
getAllUsers() { }

API Endpoints

  • Auth: /auth/signup, /auth/login, /auth/refresh, /auth/logout, /auth/me
  • Users: /users (CRUD with pagination, admin-only)
  • Profile: /users/profile (user's own profile management)
  • Health: /health, /health/ready, /health/live

Developer Tools

  • Pino structured logging
  • Prisma Studio for database UI
  • Health check endpoints (Kubernetes-ready)
  • E2E test setup with Jest
  • ESLint + Prettier configured

Troubleshooting

CLI Installation Issues

Problem: command not found: create-nestjs-auth

Solution: 

# Use npx instead
npx create-nestjs-auth my-app

# Or install globally
npm install -g create-nestjs-auth

Template Creation Issues

Problem: "Template directory not found"

Solution: Reinstall the package:

npm uninstall -g create-nestjs-auth
npm install -g create-nestjs-auth

Dependency Installation Fails

Problem: npm install fails during creation

Solution: 

# Create without installing, then troubleshoot
npx create-nestjs-auth my-app --skip-install
cd my-app
npm install --verbose

Node Version Issues

Problem: "Node.js version X.X is not supported"

Solution: Upgrade Node.js:

# Using nvm
nvm install 20
nvm use 20

# Or download from nodejs.org

Publishing Your Own Fork

If you've customized the template and want to publish your own version:

# 1. Update package.json name
{
  "name": "@yourname/create-nestjs-auth",
  "version": "1.0.0"
}

# 2. Login to npm
npm login

# 3. Publish
npm publish --access public

Development

Want to contribute or modify the CLI?

# Clone the repo
git clone https://github.com/masabinhok/create-nestjs-auth.git
cd create-nestjs-auth/cli

# Install dependencies
npm install

# Test locally
npm link
create-nestjs-auth test-app

# Run test script
npm test

Support

License

MIT © Sabin Shrestha

Built with ❤️ by masabinhok

If this helped you, please ⭐ star the repo!