Skip to content

LukasNespor/document-templates

BranchesTags

Repository files navigation

Document Templates

A modern Next.js application for creating Word documents from templates with field placeholders. Upload Word templates, organize them by groups, fill in field values, and generate customized documents.

Features

  • User Authentication: Secure login with username and password
  • Upload Word (.docx) templates with {{field name}} placeholders
  • Automatic detection of field placeholders in templates
  • Organize templates by groups with a collapsible sidebar
  • Fill in field values through an intuitive form
  • Generate Word documents with merged data
  • Store templates in Azure Blob Storage
  • Store metadata in Azure Table Storage
  • Responsive design with mobile support
  • Modern UI with Tailwind CSS

Prerequisites

  • Node.js 24 or higher
  • npm or yarn
  • Azure Storage Account (for Blob and Table Storage)

Setup Instructions

1. Clone and Install Dependencies

npm install

2. Configure Azure Storage

You need an Azure Storage Account. If you don't have one:

  1. Go to Azure Portal
  2. Create a new Storage Account
  3. Get your connection string and account keys from the Storage Account settings

3. Set Up Environment Variables

Copy the example environment file:

cp .env.example .env

Edit .env and add your Azure credentials:

AZURE_STORAGE_CONNECTION_STRING=DefaultEndpointsProtocol=https;AccountName=YOUR_ACCOUNT_NAME;AccountKey=YOUR_ACCOUNT_KEY;EndpointSuffix=core.windows.net
AZURE_STORAGE_ACCOUNT_NAME=YOUR_ACCOUNT_NAME
AZURE_STORAGE_ACCOUNT_KEY=YOUR_ACCOUNT_KEY
SESSION_SECRET=your_generated_secret_here

Replace:

  • YOUR_ACCOUNT_NAME with your Azure Storage account name
  • YOUR_ACCOUNT_KEY with your Azure Storage account key
  • SESSION_SECRET with a secure random string (at least 32 characters)

To generate a secure session secret:

node -e "console.log(require('crypto').randomBytes(32).toString('hex'))"

4. Create Your First User

When you first run the application, you'll be redirected to the setup page where you can create the initial admin user through the web interface. This first user will automatically have admin privileges and can manage other users later.

Important: Passwords are hashed using bcrypt and cannot be recovered. The hash is one-way encryption, so make sure to remember your password.

5. Run the Development Server

npm run dev

Open http://localhost:3000 in your browser.

If this is your first time running the application, you'll be redirected to the setup page to create your first admin user. Otherwise, you'll be redirected to the login page.

Running with Docker

Using Docker Compose (Recommended)

The easiest way to run the application with Docker:

  1. Make sure you have Docker and Docker Compose installed
  2. Set up your .env file with Azure credentials (see step 3 above)
  3. Build and run the container:
docker-compose up -d

The application will be available at http://localhost:3000.

To stop the container:

docker-compose down

To view logs:

docker-compose logs -f

Using Docker Directly

You can also build and run the Docker image directly:

# Build the image
docker build -t document-templates .

# Run the container
docker run -d \
  -p 3000:3000 \
  --name document-templates \
  --env-file .env \
  document-templates

Creating Users in Docker

When you first access the application in Docker, you'll be redirected to the setup page where you can create the initial admin user through the web interface. After that, admin users can manage other users through the "Manage Users" button in the application.

Authentication & Security

The application implements multiple layers of security best practices to protect user accounts and session data.

Password Security

  • Hashing Algorithm: Passwords are hashed using bcrypt with 10 salt rounds, providing one-way encryption that cannot be reversed
  • Password Requirements:
    • Minimum 6 characters
    • Maximum 72 characters (bcrypt limitation)
  • Input Validation: All authentication inputs are validated using centralized validation rules
  • Secure Storage: Passwords are never stored in plain text and cannot be recovered

Session Management

  • Session Library: Uses iron-session for encrypted, signed session cookies
  • Session Duration: 7 days with automatic expiration
  • Cookie Security:
    • httpOnly: true - Prevents JavaScript access to cookies (XSS protection)
    • secure: true - Cookies only sent over HTTPS in production
    • sameSite: "lax" - Protects against CSRF attacks
  • Session Secret: Required environment variable (SESSION_SECRET) must be at least 32 characters. The application will fail to start in production if this is missing or improperly configured.

Input Validation

  • Username Requirements: 3-50 characters, alphanumeric with spaces, dots, hyphens, and underscores
  • Automatic Trimming: Usernames are automatically trimmed to prevent whitespace issues
  • Consistent Validation: All authentication endpoints use the same centralized validation logic

Security Features

  • User Enumeration Prevention: Login errors return generic messages to prevent attackers from discovering valid usernames
  • Secure Logging: Authentication errors and attempts are logged without exposing sensitive information
  • Audit Trail: All authentication attempts are logged with timestamps for security monitoring
  • Protected Routes: All application routes require authentication. Unauthenticated users are redirected to the login page, and API requests return 401 Unauthorized.
  • First-Time Setup: Initial user is created through a dedicated /setup page with automatic admin privileges

User Storage

User accounts are stored in Azure Table Storage in the DocumentTemplateUsers table with the following information:

  • User ID (UUID)
  • Username
  • Password hash (bcrypt)
  • Creation timestamp
  • Optional salutation
  • Admin flag (for role-based access)

Managing Users

Admin users can manage other users directly through the web interface:

  1. Log in as an admin user
  2. Click the "Manage Users" button in the top bar
  3. From the user management dialog, you can:
    • View all users
    • Create new users (regular or admin)
    • Edit existing users (username, salutation, admin status)
    • Change user passwords
    • Delete users

Usage

Creating a Template

  1. Click the "Add Template" button in the top bar
  2. Fill in the template details:
    • Name: A descriptive name for your template
    • Group: Category to organize templates (e.g., "Invoices", "Contracts")
    • Note: Optional description or instructions
    • File: Upload a .docx file containing field placeholders
  3. Field placeholders should be written as {{field name}} in your Word document
    • Example: {{Name}}, {{Invoice Number}}, {{Date}}
    • Field names are case-insensitive ({{Name}} = {{name}})
    • Special field: {{dnes}} is automatically filled with current date in Czech format
  4. Click "Upload"

Generating Documents

  1. Select a template from the sidebar
  2. Fill in all field values in the form
  3. Click "Generate Document"
  4. The generated Word document will download automatically

Project Structure

document-templates/
├── app/
│   ├── api/
│   │   ├── auth/               # Authentication API routes
│   │   │   ├── login/          # Login endpoint
│   │   │   ├── logout/         # Logout endpoint
│   │   │   └── session/        # Session check endpoint
│   │   └── templates/          # Template API routes
│   │       ├── route.ts        # List templates
│   │       ├── upload/         # Upload templates
│   │       ├── [id]/           # Get template by ID
│   │       └── generate/       # Generate documents
│   ├── login/
│   │   └── page.tsx            # Login page
│   ├── globals.css             # Global styles
│   ├── layout.tsx              # Root layout
│   └── page.tsx                # Main page (protected)
├── components/
│   ├── TopBar.tsx              # Top navigation bar with logout
│   ├── Sidebar.tsx             # Template sidebar
│   ├── HelpDialog.tsx          # Help modal
│   ├── UploadTemplateDialog.tsx # Upload modal
│   └── TemplateForm.tsx        # Field value form
├── lib/
│   ├── auth.ts                 # Authentication utilities (bcrypt, sessions)
│   ├── auth-errors.ts          # Centralized error handling and secure logging
│   ├── session-config.ts       # Centralized session configuration
│   ├── validation.ts           # Centralized input validation
│   ├── azure-blob.ts           # Blob Storage utilities
│   ├── azure-table.ts          # Table Storage utilities
│   ├── azure-users.ts          # User management in Table Storage
│   └── docx-processor.ts       # Word document processing
├── scripts/
│   └── create-user.ts          # User creation script
├── types/
│   └── index.ts                # TypeScript types
└── middleware.ts               # Authentication middleware

Technologies Used

  • Next.js 15 - React framework with App Router
  • TypeScript - Type-safe development
  • Tailwind CSS - Utility-first styling
  • Azure Blob Storage - File storage
  • Azure Table Storage - Metadata and user storage
  • bcrypt - Secure password hashing
  • iron-session - Encrypted session management
  • docxtemplater - Word document templating
  • pizzip - ZIP file handling for .docx files

Building for Production

npm run build
npm start

Deployment

This application can be deployed to any platform that supports Next.js or Docker:

Next.js Platforms:

  • Vercel
  • Netlify
  • AWS Amplify

Docker/Container Platforms:

  • Azure App Service (with Docker)
  • AWS ECS/Fargate
  • Google Cloud Run
  • Any VPS with Docker support

Make sure to set the environment variables in your deployment platform.

License

ISC

About

Next.js application for generating customized Word documents from templates with dynamic field placeholders and user authentication

document-templates-9etd.vercel.app

Resources

Readme

License

ISC license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Contributors

Languages