feat: domain discovery and email event listeners (#237)

Implements a plugin to automatically discover "domains" added in the domain folder. This will automatically register routes, controllers, listeners, and update the signature namespace.

Author: cofin

.pre-commit-config.yaml

@@ -25,7 +25,7 @@ repos:
       - id: mixed-line-ending
       - id: trailing-whitespace
   - repo: https://github.com/charliermarsh/ruff-pre-commit
-    rev: "v0.14.10"
+    rev: "v0.14.11"
     hooks:
       # Run the linter.
       - id: ruff

.vscode/settings.json

@@ -26,7 +26,7 @@
     ".static": true,
     "dist": false,
     ".dmypy.json": true,
-    ".claude": false,
+    ".claude": true,
     "htmlcov": true
   },
   "mypy-type-checker.importStrategy": "fromEnvironment",

Makefile

@@ -12,7 +12,9 @@ MAKEFLAGS += --no-print-directory
 COMPOSE_DIR := tools/deploy/docker
 COMPOSE_INFRA := $(COMPOSE_DIR)/docker-compose.infra.yml
 COMPOSE_APP := $(COMPOSE_DIR)/docker-compose.yml
-COMPOSE_DEV := $(COMPOSE_DIR)/docker-compose.dev.yml
+
+# Define project name for docker-compose
+COMPOSE_PROJECT_NAME := fullstack-spa
 
 # Define colors and formatting
 BLUE := $(shell printf "\033[1;34m")
@@ -295,28 +297,28 @@ docker-logs:                                       ## Tail production Docker sta
 .PHONY: start-all-docker-dev
 start-all-docker-dev:                              ## Start development Docker stack (with hot-reload)
 	@echo "${INFO} Building and starting development Docker stack... 🐳"
-	@docker compose -f $(COMPOSE_DEV) up -d --build --force-recreate
+	@docker compose -f $(COMPOSE_APP) -f $(COMPOSE_DIR)/docker-compose.override.yml up -d --build --force-recreate
 	@echo "${OK} Development Docker stack is running"
 
 .PHONY: stop-all-docker-dev
 stop-all-docker-dev:                               ## Stop development Docker stack
 	@echo "${INFO} Stopping development Docker stack... 🛑"
-	@docker compose -f $(COMPOSE_DEV) down
+	@docker compose -f $(COMPOSE_APP) -f $(COMPOSE_DIR)/docker-compose.override.yml down
 	@echo "${OK} Development Docker stack stopped"
 
 .PHONY: wipe-all-docker-dev
 wipe-all-docker-dev:                               ## Remove development Docker stack, images, and volumes
 	@echo "${INFO} Wiping development Docker stack... 🧹"
-	@docker compose -f $(COMPOSE_DEV) down -v --remove-orphans --rmi local
+	@docker compose -f $(COMPOSE_APP) -f $(COMPOSE_DIR)/docker-compose.override.yml down -v --remove-orphans --rmi local
 	@echo "${OK} Development Docker stack wiped clean"
 
 .PHONY: docker-dev-logs
 docker-dev-logs:                                   ## Tail development Docker stack logs
-	@docker compose -f $(COMPOSE_DEV) logs -f
+	@docker compose -f $(COMPOSE_APP) -f $(COMPOSE_DIR)/docker-compose.override.yml logs -f
 
 .PHONY: docker-shell
 docker-shell:                                      ## Open a shell in the app container
-	@docker compose -f $(COMPOSE_DEV) exec app /bin/bash || docker compose -f $(COMPOSE_DEV) exec app /bin/sh
+	@docker compose -f $(COMPOSE_APP) -f $(COMPOSE_DIR)/docker-compose.override.yml exec app /bin/bash || docker compose -f $(COMPOSE_APP) -f $(COMPOSE_DIR)/docker-compose.override.yml exec app /bin/sh
 
 
 # =============================================================================

src/js/web/bun.lock

@@ -24,45 +24,45 @@
     "@radix-ui/react-tooltip": "^1.2.8",
     "@tailwindcss/postcss": "^4.1.18",
     "@tailwindcss/vite": "^4.1.18",
-    "@tanstack/react-query": "^5.90.16",
+    "@tanstack/react-query": "^5.90.17",
     "@tanstack/react-query-devtools": "^5.91.2",
-    "@tanstack/react-router": "^1.145.11",
-    "@tanstack/react-router-devtools": "^1.145.11",
+    "@tanstack/react-router": "^1.149.3",
+    "@tanstack/react-router-devtools": "^1.149.3",
     "@tanstack/react-table": "^8.21.3",
-    "@tanstack/router-vite-plugin": "^1.145.11",
+    "@tanstack/router-vite-plugin": "^1.149.3",
     "axios": "^1.13.2",
     "class-variance-authority": "^0.7.1",
     "clsx": "^2.1.1",
-    "framer-motion": "^12.24.10",
-    "litestar-vite-plugin": "^0.15.0",
-    "lucide-react": "^0.507.0",
+    "framer-motion": "^12.26.2",
+    "litestar-vite-plugin": "^0.16.4",
+    "lucide-react": "^0.562.0",
     "react": "^19.2.3",
     "react-dom": "^19.2.3",
-    "react-hook-form": "^7.70.0",
+    "react-hook-form": "^7.71.1",
     "sonner": "^2.0.7",
     "tailwind-merge": "^3.4.0",
     "tailwindcss": "^4.1.18",
-    "zod": "^3.25.76",
-    "zustand": "^5.0.9"
+    "zod": "^4.3.5",
+    "zustand": "^5.0.10"
   },
   "devDependencies": {
     "@biomejs/biome": "^2.3.11",
-    "@hey-api/openapi-ts": "^0.90.2",
-    "@tanstack/router-plugin": "^1.145.11",
+    "@hey-api/openapi-ts": "^0.90.3",
+    "@tanstack/router-plugin": "^1.149.3",
     "@testing-library/dom": "^10.4.1",
     "@testing-library/react": "^16.3.1",
-    "@types/node": "^22.19.3",
-    "@types/react": "^19.2.7",
+    "@types/node": "^25.0.8",
+    "@types/react": "^19.2.8",
     "@types/react-dom": "^19.2.3",
-    "@vitejs/plugin-react": "^4.7.0",
+    "@vitejs/plugin-react": "^5.1.2",
     "autoprefixer": "^10.4.23",
-    "jsdom": "^26.1.0",
+    "jsdom": "^27.4.0",
     "postcss": "^8.5.6",
     "tsx": "^4.21.0",
     "tw-animate-css": "^1.4.0",
     "typescript": "^5.9.3",
     "vite": "^7.3.1",
-    "vitest": "^3.2.4",
-    "web-vitals": "^4.2.4"
+    "vitest": "^4.0.17",
+    "web-vitals": "^5.1.0"
   }
 }

src/js/web/package.json

@@ -1247,7 +1247,7 @@
             "type": "string"
           },
           "version": {
-            "default": "0.2.0",
+            "default": "0.3.0",
             "type": "string"
           }
         },
@@ -1932,7 +1932,7 @@
   },
   "info": {
     "title": "Litestar Fullstack Template",
-    "version": "0.2.0"
+    "version": "0.3.0"
   },
   "openapi": "3.1.0",
   "paths": {

src/js/web/src/lib/generated/openapi.json

@@ -33,14 +33,10 @@ def fixed_format_help(self: Any, ctx: Any, formatter: Any) -> None:
             self: The LitestarExtensionGroup instance
             ctx: The click Context
             formatter: The help formatter
-
-        Returns:
-            None
         """
-        self._prepare(ctx)  # Force plugin loading
+        self._prepare(ctx)
         return original_format_help(self, ctx, formatter)
 
-    # Type ignore needed for monkey-patching
     setattr(LitestarExtensionGroup, "format_help", fixed_format_help)
 
 

src/py/app/__main__.py

@@ -3,7 +3,7 @@
 from __future__ import annotations
 
 import logging
-from typing import TYPE_CHECKING, Annotated, Any, cast
+from typing import TYPE_CHECKING, Annotated, Any
 
 from advanced_alchemy.exceptions import DuplicateKeyError
 from advanced_alchemy.utils.text import slugify
@@ -47,13 +47,11 @@
     from litestar.security.jwt import OAuth2Login, Token
 
     from app.domain.accounts.services import (
-        EmailVerificationTokenService,
         PasswordResetService,
         RoleService,
         UserService,
     )
     from app.lib.email import AppEmailService
-    from app.lib.email.service import UserProtocol
     from app.lib.settings import AppSettings
 
 logger = logging.getLogger(__name__)
@@ -397,19 +395,20 @@ async def signup(
         request: Request[m.User, Token, Any],
         users_service: UserService,
         roles_service: RoleService,
-        verification_service: EmailVerificationTokenService,
-        app_email_service: AppEmailService,
         data: AccountRegister,
+        app_mailer: AppEmailService,
     ) -> User:
         """User Signup.
 
         Args:
             request: Request
             users_service: User Service
             roles_service: Role Service
-            verification_service: Email Verification Service
-            app_email_service: Email service for sending verification emails
             data: Account Register Data
+            app_mailer: Email service for sending notifications
+
+        Raises:
+            ClientException: If user with this email already exists
 
         Returns:
             User
@@ -426,21 +425,18 @@ async def signup(
             user = await users_service.create(user_data)
         except DuplicateKeyError as exc:
             raise ClientException(detail="User with this email already exists", status_code=409) from exc
-        request.app.emit(event_id="user_created", user_id=user.id)
-
-        _, verification_token = await verification_service.create_verification_token(user_id=user.id, email=user.email)
-        await app_email_service.send_verification_email(cast("UserProtocol", user), verification_token)
+        request.app.emit(event_id="user_created", user_id=user.id, mailer=app_mailer)
 
         return users_service.to_schema(user, schema_type=User)
 
     @post(operation_id="ForgotPassword", path="/api/access/forgot-password", exclude_from_auth=True, security=[])
     async def forgot_password(
         self,
-        data: ForgotPasswordRequest,
-        request: Request[m.User, Token, Any],
         users_service: UserService,
         password_reset_service: PasswordResetService,
-        app_email_service: AppEmailService,
+        app_mailer: AppEmailService,
+        request: Request[m.User, Token, Any],
+        data: ForgotPasswordRequest,
     ) -> PasswordResetSent:
         """Initiate password reset flow.
 
@@ -449,15 +445,11 @@ async def forgot_password(
             request: HTTP request object
             users_service: User service
             password_reset_service: Password reset service
-            app_email_service: Email service for sending reset emails
+            app_mailer: Email service for sending notifications
 
         Returns:
             Response indicating reset email status
         """
-
-        ip_address = request.client.host if request.client else "unknown"
-        user_agent = request.headers.get("user-agent", "unknown")
-
         user = await users_service.get_one_or_none(email=data.email)
 
         if user is None or not user.is_active:
@@ -470,15 +462,7 @@ async def forgot_password(
                 message="Too many password reset requests. Please try again later", expires_in_minutes=60
             )
 
-        _, reset_token = await password_reset_service.create_reset_token(
-            user_id=user.id, ip_address=ip_address, user_agent=user_agent
-        )
-
-        await app_email_service.send_password_reset_email(
-            user=cast("UserProtocol", user),
-            reset_token=reset_token,
-            expires_in_minutes=60,
-        )
+        request.app.emit(event_id="password_reset_requested", user_id=user.id, mailer=app_mailer)
 
         return PasswordResetSent(
             message="If the email exists, a password reset link has been sent", expires_in_minutes=60
@@ -516,15 +500,17 @@ async def reset_password_with_token(
         data: ResetPasswordRequest,
         users_service: UserService,
         password_reset_service: PasswordResetService,
-        app_email_service: AppEmailService,
+        request: Request[m.User, Token, Any],
+        app_mailer: AppEmailService,
     ) -> PasswordResetComplete:
         """Complete password reset with token.
 
         Args:
             data: Password reset request data
             users_service: User service
             password_reset_service: Password reset service
-            app_email_service: Email service for sending confirmation emails
+            request: HTTP request object
+            app_mailer: Email service for sending notifications
 
         Returns:
             Password reset confirmation
@@ -545,6 +531,6 @@ async def reset_password_with_token(
 
         user = await users_service.reset_password_with_token(user_id=reset_token.user_id, new_password=data.password)
 
-        await app_email_service.send_password_reset_confirmation_email(cast("UserProtocol", user))
+        request.app.emit(event_id="password_reset_completed", user_id=user.id, mailer=app_mailer)
 
         return PasswordResetComplete(message="Password has been successfully reset", user_id=user.id)

src/py/app/domain/accounts/controllers/_access.py

@@ -2,9 +2,9 @@
 
 from __future__ import annotations
 
-from typing import TYPE_CHECKING, cast
+from typing import TYPE_CHECKING, Any
 
-from litestar import Controller, get, post
+from litestar import Controller, Request, get, post
 from litestar.di import Provide
 from litestar.status_codes import HTTP_200_OK, HTTP_201_CREATED
 
@@ -20,9 +20,11 @@
 if TYPE_CHECKING:
     from uuid import UUID
 
+    from litestar.security.jwt import Token
+
+    from app.db import models as m
     from app.domain.accounts.services import EmailVerificationTokenService, UserService
     from app.lib.email import AppEmailService
-    from app.lib.email.service import UserProtocol
 
 
 class EmailVerificationController(Controller):
@@ -38,10 +40,10 @@ class EmailVerificationController(Controller):
     @post("/request", status_code=HTTP_201_CREATED)
     async def request_verification(
         self,
-        data: EmailVerificationRequest,
         users_service: UserService,
-        verification_service: EmailVerificationTokenService,
-        app_email_service: AppEmailService,
+        app_mailer: AppEmailService,
+        request: Request[m.User, Token, Any],
+        data: EmailVerificationRequest,
     ) -> EmailVerificationSent:
         """Request email verification for a user."""
 
@@ -52,11 +54,9 @@ async def request_verification(
         if user.is_verified:
             return EmailVerificationSent(message="Email is already verified")
 
-        _, token = await verification_service.create_verification_token(user_id=user.id, email=user.email)
-
-        await app_email_service.send_verification_email(cast("UserProtocol", user), token)
+        request.app.emit(event_id="verification_requested", user_id=user.id, mailer=app_mailer)
 
-        return EmailVerificationSent(message="Verification email sent", token=token)
+        return EmailVerificationSent(message="Verification email sent")
 
     @post("/verify", status_code=HTTP_200_OK)
     async def verify_email(

src/py/app/domain/accounts/controllers/_email_verification.py

@@ -159,7 +159,7 @@ async def google_authorize(
             client_secret=settings.GOOGLE_OAUTH2_CLIENT_SECRET,
         )
 
-        frontend_callback = redirect_url or f"{settings.URL}/auth/google/callback"
+        frontend_callback = redirect_url or "/auth/google/callback"
 
         state = create_oauth_state(
             provider="google",
@@ -192,7 +192,7 @@ async def google_callback(
         oauth_error: str | None = Parameter(query="error", required=False),
     ) -> Redirect:
         """Handle Google OAuth callback for login and account linking."""
-        default_callback = f"{settings.URL}/auth/google/callback"
+        default_callback = "/auth/google/callback"
         redirect_path = build_oauth_error_redirect(default_callback, "oauth_failed", "Missing state parameter")
 
         if not oauth_state:
@@ -302,7 +302,7 @@ async def github_authorize(
             client_secret=settings.GITHUB_OAUTH2_CLIENT_SECRET,
         )
 
-        frontend_callback = redirect_url or f"{settings.URL}/auth/github/callback"
+        frontend_callback = redirect_url or "/auth/github/callback"
 
         state = create_oauth_state(
             provider="github",
@@ -336,7 +336,7 @@ async def github_callback(
         oauth_error_description: str | None = Parameter(query="error_description", required=False),
     ) -> Redirect:
         """Handle GitHub OAuth callback for login and account linking."""
-        default_callback = f"{settings.URL}/auth/github/callback"
+        default_callback = "/auth/github/callback"
         redirect_path = build_oauth_error_redirect(default_callback, "oauth_failed", "Missing state parameter")
 
         if not oauth_state: