Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/mtguerson/next-saas-rbac
🚀 - A Next.js SaaS boilerplate with multi-tenant support, authentication, organization and project management, billing, and role-based access control (RBAC). Ideal for building SaaS platforms with flexible user roles and permissions.
https://github.com/mtguerson/next-saas-rbac
bcryptjs fastify nextjs nodejs swagger turborepo zod
Last synced: 3 months ago
JSON representation
🚀 - A Next.js SaaS boilerplate with multi-tenant support, authentication, organization and project management, billing, and role-based access control (RBAC). Ideal for building SaaS platforms with flexible user roles and permissions.
- Host: GitHub
- URL: https://github.com/mtguerson/next-saas-rbac
- Owner: mtguerson
- Created: 2024-08-29T14:51:46.000Z (4 months ago)
- Default Branch: main
- Last Pushed: 2024-09-27T17:53:53.000Z (4 months ago)
- Last Synced: 2024-09-30T07:21:04.580Z (3 months ago)
- Topics: bcryptjs, fastify, nextjs, nodejs, swagger, turborepo, zod
- Language: TypeScript
- Homepage: https://next-saas-rbac-lilac.vercel.app
- Size: 1.09 MB
- Stars: 1
- Watchers: 1
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Next.js SaaS + RBAC
This project contains all the necessary boilerplate to setup a multi-tenant SaaS with Next.js including authentication and RBAC authorization.
## Features
### Authentication
- [X] It should be able to authenticate using e-mail & password;
- [X] It should be able to authenticate using Github account;
- [X] It should be able to recover password using e-mail;
- [X] It should be able to create an account (e-mail, name and password);
### Organizations
- [X] It should be able to create a new organization;
- [X] It should be able to get organizations to which the user belongs;
- [X] It should be able to update an organization;
- [X] It should be able to shutdown an organization;
- [X] It should be able to transfer organization ownership;
### Invites
- [X] It should be able to invite a new member (e-mail, role);
- [X] It should be able to accept an invite;
- [X] It should be able to revoke a pending invite;
### Members
- [X] It should be able to get organization members;
- [X] It should be able to update a member role;
### Projects
- [X] It should be able to get projects within a organization;
- [X] It should be able to create a new project (name, url, description);
- [X] It should be able to update a project (name, url, description);
- [X] It should be able to delete a project;
### Billing
- [X] It should be able to get billing details for organization ($20 per project / $10 per member excluding billing role);
## RBAC
Roles & permissions.
### Roles
- Owner (count as administrator)
- Administrator
- Member
- Billing (one per organization)
- Anonymous
### Permissions table
| | Administrator | Member | Billing | Anonymous |
| ------------------------ | ------------- | ------ | ------- | --------- |
| Update organization | ✅ | ❌ | ❌ | ❌ |
| Delete organization | ✅ | ❌ | ❌ | ❌ |
| Invite a member | ✅ | ❌ | ❌ | ❌ |
| Revoke an invite | ✅ | ❌ | ❌ | ❌ |
| List members | ✅ | ✅ | ✅ | ❌ |
| Transfer ownership | ⚠️ | ❌ | ❌ | ❌ |
| Update member role | ✅ | ❌ | ❌ | ❌ |
| Delete member | ✅ | ⚠️ | ❌ | ❌ |
| List projects | ✅ | ✅ | ✅ | ❌ |
| Create a new project | ✅ | ✅ | ❌ | ❌ |
| Update a project | ✅ | ⚠️ | ❌ | ❌ |
| Delete a project | ✅ | ⚠️ | ❌ | ❌ |
| Get billing details | ✅ | ❌ | ✅ | ❌ |
| Export billing details | ✅ | ❌ | ✅ | ❌ |
> ✅ = allowed
> ❌ = not allowed
> ⚠️ = allowed w/ conditions
#### Conditions
- Only owners may transfer organization ownership;
- Only administrators and project authors may update/delete the project;
- Members can leave their own organization;
### Screenshots
