Skip to content

BootstrapLaboratory/labkit

BranchesTags

Repository files navigation

Labkit

Labkit is the project-local application framework extracted from the server and webapp. It is a set of small Rush packages under packages/*, not one large shared library.

Labkit packages are published under the @omgjs npm scope with @omgjs/labkit-* package names.

Each child folder is its own package with its own dependency boundary, build, tests, and public API. Applications compose the packages they need.

Package Map

Package Runtime Purpose
@omgjs/labkit-auth-contract Shared Auth shapes and protocol constants that are safe for server and browser code.
@omgjs/labkit-runtime-config Shared Small parsing helpers for environment and runtime configuration values.
@omgjs/labkit-server-observability Server Structured logging helpers and safe error serialization.
@omgjs/labkit-server-config Server Config-reader helpers, env-file selection, CORS, runtime, and auth transport config.
@omgjs/labkit-server-database Server PostgreSQL and TypeORM option helpers, migration safety, and database manifests.
@omgjs/labkit-server-graphql Server Nest GraphQL module setup, HTTP/WS context helpers, scalars, directives, and plugins.
@omgjs/labkit-server-auth Server Auth providers, guards, lifecycle events, access-token helpers, refresh-session orchestration, and transport services.
@omgjs/labkit-server-auth-typeorm Server TypeORM/PostgreSQL adapter for Labkit server auth persistence.
@omgjs/labkit-webapp-external-store Browser Tiny subscription store primitive used by browser runtimes.
@omgjs/labkit-webapp-auth Browser Memory access-token session runtime, refresh/logout API helpers, auth errors, and boot orchestration.
@omgjs/labkit-webapp-realtime Browser GraphQL WS reconnect policy, heartbeat/watchdog handling, and connection state.
@omgjs/labkit-webapp-graphql-relay Browser Relay environment, auth-aware fetch, subscription integration, route preloading, and store helpers.
@omgjs/labkit-webapp-ui Browser UI framework helpers and contracts; concrete product components stay app-owned.
@omgjs/labkit-webapp-build-config Tooling Vite build helpers for production env validation and package chunk grouping.

Dependency Direction

Shared packages sit at the bottom:

@omgjs/labkit-runtime-config
@omgjs/labkit-auth-contract
        ^
        |
        +-------------------+
        |                   |
@omgjs/labkit-server-*      @omgjs/labkit-webapp-*
        |                   |
apps/server           apps/webapp

Rules:

  • Shared packages must not depend on NestJS, TypeORM, React, Relay, Vite, or browser-only globals.
  • Server packages may depend on shared packages and server frameworks.
  • Browser packages may depend on shared packages and browser/webapp frameworks.
  • Server packages must not depend on browser packages.
  • Browser packages must not depend on server packages.
  • App packages may depend on Labkit packages; Labkit packages must not import from app packages.

Server Composition

A server app usually composes the packages in layers:

import { createServerAuthAccessTokenGraphqlModule } from "@omgjs/labkit-server-auth";
import { getEnvFilePaths } from "@omgjs/labkit-server-config";
import { composeServerDatabaseManifests } from "@omgjs/labkit-server-database";
import { serverAuthTypeormDatabaseManifest } from "@omgjs/labkit-server-auth-typeorm";

Typical ownership:

  • Labkit owns reusable policy and adapters: GraphQL context rules, access guards, refresh-token transport, session rotation, config parsing, database safety checks, and TypeORM auth repositories.
  • The app owns product API shape: GraphQL DTOs/resolvers, concrete JWT signing configuration, password hashing implementation, environment variable names, migrations execution, and lifecycle side effects such as notifications or audit logging.

Webapp Composition

A webapp usually keeps app-local adapter files that supply product choices to Labkit helpers:

import { createWebappAuthSession } from "@omgjs/labkit-webapp-auth";
import { createWebappRelayEnvironment } from "@omgjs/labkit-webapp-graphql-relay";
import { createWebappRealtimeConnection } from "@omgjs/labkit-webapp-realtime";
import { createWebappThemeController } from "@omgjs/labkit-webapp-ui";

Typical ownership:

  • Labkit owns reusable browser runtime policy: memory access tokens, non-secret session hints, refresh/logout GraphQL API wrappers, auth-aware Relay retry, GraphQL WS reconnect behavior, route query disposal, external store mechanics, and theme controller mechanics.
  • The app owns endpoints, generated Relay operations, route files, React hooks, storage keys, concrete themes, CSS classes, UI components, and visual design.

Package Format

Browser-consumed and shared packages publish dual CommonJS/ESM entry points:

  • exports.import points to dist/esm/src/index.js.
  • exports.require points to dist/src/index.js.
  • dist/esm/package.json marks the ESM output as "type": "module".

Server-only packages currently publish CommonJS output only. That keeps NestJS and TypeORM consumption simple while browser-facing packages remain bundler friendly.

CI And Release

Pull requests run direct Rush validation in .github/workflows/pr-validate.yaml:

  • rush install
  • rush change --verify
  • rush build
  • rush lint
  • rush test
  • rush verify

Package release is configured in .github/workflows/package-release.yaml. It uses BootstrapLaboratory/rush-delivery@v0.6.6 with the release-packages entrypoint, .dagger/release/npm.yaml, and common/config/rush/.npmrc-publish.

The npm release metadata sets provenance to false explicitly because this workflow currently publishes with an npm token from inside Rush Delivery's release runtime. Provenance should be enabled later when Rush Delivery supports the npm/GitHub Actions OIDC path end to end.

Before running a live release, add the GitHub Actions secret NPM_TOKEN. Keep toolchain-image-provider and rush-cache-provider set to off unless provider metadata is added intentionally.

The first live release is expected to consume the committed Rush change files and publish the public Labkit packages as 0.1.0. The private @omgjs/labkit-eslint-config package stays repository tooling.

Documentation Policy

Every Labkit package must have a package README that explains:

  • what constraint the package owns;
  • what the application still owns;
  • the main public API;
  • at least one typical usage shape;
  • runtime/package-format expectations.

Do not create package-local docs/ folders until a README becomes too large or the package needs separate recipes, migration notes, or provider-specific guides.

About

Labkit is a small package family for building high-end TypeScript GraphQL server/client applications. It captures reusable runtime constraints that are easy to repeat badly: Nest GraphQL setup, auth contracts, refresh sessions, TypeORM database manifests, Relay transport, GraphQL websocket reconnects, browser auth state, and theme mechanics

bootstraplaboratory.github.io/labkit/

Topics

react graphql relay nestjs-graphql

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages