Why NETrock?

Every project starts the same way: authentication, role management, rate limiting, validation, API documentation, Docker setup... You spend weeks on infrastructure before writing a single line of business logic.

NETrock skips all of that. It ships a production-grade .NET 10 API with a SvelteKit frontend that goes far beyond boilerplate. Users can log in with Google, GitHub, Discord, Apple, Microsoft, Facebook, LinkedIn, or X - configured by admins from the UI, no redeploy needed. Two-factor authentication with TOTP and recovery codes is built in. The permission system enforces role hierarchy. The admin panel manages users, roles, background jobs, and OAuth providers with AES-256-GCM encrypted credentials. Full audit trail, PII compliance, and rate limiting are part of the foundation.

For developers, every convention is documented, the architecture is tested at the layer boundary, and Claude Code skills automate common workflows. For end users, the product they interact with has dark mode, i18n, a command palette, responsive design, and security features they expect from a real application.

Fork it, init it, own it. After initialization, there is no dependency on "the template." It's your code, your architecture, your product. Every decision is documented so you can understand it, change it, or throw it away.

What You Get

Backend - JWT auth with token rotation and reuse detection, TOTP two-factor authentication with recovery codes, OAuth/OIDC external login with 8 providers (admin-configurable from the UI), permission-based authorization with role hierarchy, transactional email with Fluid templates, rate limiting, HybridCache, PostgreSQL with soft delete and audit trails, S3-compatible file storage, Hangfire background jobs, OpenAPI docs, health checks, Result pattern with ProblemDetails. See full details ->

Frontend - Svelte 5 runes, type-safe API client from OpenAPI, Tailwind CSS 4 with shadcn-svelte component library, Cmd+K command palette with permission-gated navigation, BFF proxy with CSRF protection, i18n (English + Czech, add more with a single JSON file), dark mode, responsive design with 44px touch targets, admin panel with user/role/job/OAuth provider management. See full details ->

Infrastructure - Aspire AppHost for local development (one command for the full stack with OTEL dashboard and MailPit for email testing), production-ready Dockerfiles, init script for project bootstrapping, GitHub Actions CI with smart path filtering, Claude Code skills for development workflows. See full details ->

Security - HttpOnly JWT cookies, refresh token rotation with reuse detection, TOTP 2FA with challenge tokens and recovery codes, OAuth state tokens with TOCTOU protection, AES-256-GCM encrypted provider credentials, PII compliance with server-side masking, security stamp propagation, CSP with nonces, rate limiting, input validation everywhere. See full details ->

Quick Start

Want to see it first? Check out the live demo.

Prerequisites

• Docker Desktop
• .NET 10 SDK
• Node.js 22+ (run corepack enable for pnpm)
• Git

1. Clone & Initialize

git clone https://github.com/fpindej/netrock.git my-saas
cd my-saas

macOS / Linux:

chmod +x init.sh
./init.sh

Windows (PowerShell):

.\init.ps1

The init script will ask for your project name and base port, then rename everything and optionally create the initial migration.

2. Launch Everything

dotnet run --project src/backend/MyProject.AppHost

That's it. Aspire starts all infrastructure (PostgreSQL, MinIO) as containers and launches the API and frontend dev server. The Aspire Dashboard URL appears in the console - all service URLs (API docs, pgAdmin, MinIO) are linked from the Dashboard.

A Superuser is seeded with credentials you provide during init.sh / init.ps1 (defaults: [email protected] / Superuser123!). Configured in appsettings.Development.json.

3. Start Building

Add your domain entities, services, and pages - the architecture guides you.

Claude Code Integration

NETrock ships with 20+ native Claude Code skills that automate common development workflows. Type / in Claude Code to see all available skills.

Skills are also loaded automatically when Claude Code plans work - it reads the relevant skill and follows the procedure without you having to invoke it. The project also includes CLAUDE.md and FILEMAP.md as structured context files, plus 12 specialized agents (.claude/agents/) and lifecycle hooks (.claude/hooks/) for auto-formatting, safety gates, and quality checks. No separate onboarding needed.

Documentation

Deep dives: Features · Security · Architecture · Development · Before You Ship · Troubleshooting

Localization

i18n with Paraglide JS - type-safe keys, SSR-compatible, auto-detection via Accept-Language. Ships with English and Czech. Adding a language is a single JSON file.

What This Is NOT

NETrock is opinionated by design. It's not:

• A generic starter - it makes real choices (PostgreSQL, not "any database"; JWT cookies, not "pluggable auth")
• A microservices framework - it's a monolith, because that's what 95% of products should start as
• A frontend framework - SvelteKit is included, but you can use just the API with any other frontend
• Magic - you still need to understand .NET (and SvelteKit if you keep it)

Contributing

Contributions are welcome! See CONTRIBUTING.md for guidelines.

Support the Project

NETrock is free and open source under the MIT License. If it saves you time, consider supporting its development:

Star the repo on GitHub · Join the Discord · Need custom development, consulting, or training? Get in touch

License

This project is licensed under the MIT License.