Skip to main content

Glossary

Definitions for the main Next.js template, workspace, API access, and documentation terms.

SectionGeneral / Glossary
PurposeTemplate user documentation
UpdatedJul 6, 2026
AuthorTemplate Maintainers
Versionv1.1.0
Reading time6 min

Glossary

This glossary defines terms used by the template and its documentation. It is not a product-domain dictionary: after creating your own application, you can extend or replace it with terms from your domain.

Application and routing

TermMeaning
TemplateThe starter Next.js project with auth, workspaces, localization, API keys, documentation, and quality checks.
App RouterNext.js routing where pages, layouts, and route handlers live under src/app.
Public routeA route that can be opened without signing in, such as /, /auth/login, /docs, or /api/v1.
Protected routeA route that requires a valid Better Auth session.
Proxysrc/proxy.ts, which checks the public/protected route boundary before a page renders.
Feature SliceThe project structure where business logic for a feature lives under src/features/{feature}.
Server actionA server-side mutation that validates input, checks access, changes data, and refreshes cache state.
Application shellThe protected layout and navigation structure used by signed-in application pages.
DashboardThe starter protected overview page that demonstrates the shell and should be replaced with product-specific content.

Accounts and authentication

TermMeaning
Better AuthThe auth library used for users, sessions, OAuth providers, organizations, teams, and API keys.
SessionA confirmed sign-in for a user. Sessions allow protected routes and server actions to identify the actor.
OAuth providerAn external sign-in provider such as Google, GitHub, GitLab, VK, or Yandex. Only fully configured providers appear in the UI.
Connected accountA link between the current user and an OAuth provider on the account settings page.
Local automation authA local-only mode for Playwright and browser automation. It creates temporary users outside production only when explicitly enabled.
Danger zoneThe account section for destructive actions such as deleting the current user account.

Workspaces

TermMeaning
WorkspaceThe user-facing name for an application workspace. In the template, a workspace is backed by a Better Auth Organization.
OrganizationThe Better Auth model that stores workspace members, roles, teams, invitations, and API keys.
Organization keyThe URL segment in /w/:organizationKey/.... It can be an organization slug or id.
Active workspaceThe workspace selected in the user's current session. /dashboard redirects to it or to a deterministic fallback.
MemberA user who belongs to a workspace and has one of the built-in roles.
RoleA set of member permissions. The template includes owner, admin, and member.
InvitationA request to join a workspace. Invitees can accept or reject it after signing in.
TeamAn explicit subgroup inside a workspace. New workspaces do not create an automatic team; zero teams is a valid state.
Team-targeted invitationAn invitation that joins the accepted user to the workspace and to one selected team.
Allowed email domainsA workspace setting that allows invitations only for configured email domains and warns about existing out-of-policy members.
Zero-workspace onboardingThe experience shown to users with no accessible workspaces. It keeps workspace creation and personal invitation review available.
Workspace settingsDedicated section pages for workspace details, users, invitations, teams, roles, and workspace API keys.

API and integrations

TermMeaning
API keyA key for machine access to /api/v1. Browser cookies are not accepted for these routes.
API v1The starter external API surface authenticated by API keys and returned through stable JSON envelopes.
Personal API keyA user-owned key. It acts as the owner and can read workspace data only while that user remains a workspace member.
Organization API keyA workspace-owned key. It acts as one organization and is managed from workspace settings.
Permission presetA reusable group of API key scopes. Product teams can extend presets with their own permissions.
ScopeA concrete API key permission checked before a route handler returns data.
Rate limitA request-frequency limit applied to an API key.
JSON envelopeThe common API response shape: { data: ... } for success and { error: { code, message } } for handled errors.

Localization, cache, and documentation

TermMeaning
PUBLIC_DEFAULT_LOCALEThe environment variable that sets the default app and documentation locale. If unsupported, the template falls back to en.
Locale variantA documentation file with a locale suffix, such as index.en.md or index.ru.md.
Fallback language markerThe documentation UI marker shown when the page content is not available in the selected interface locale.
Cache ComponentsThe Next.js caching mode used by the template for server rendering and cached data access.
Remote cacheOptional Redis/Valkey storage for Cache Components and ISR, enabled with REMOTE_CACHING_ENABLED=true.
OpenSpecRequirements under openspec/specs that describe user-visible behavior and drive E2E coverage.
OpenSpec-backed E2EPlaywright scenarios under e2e/specs/<capability> that mirror an OpenSpec capability.
Settings shellThe shared layout pattern used by account and workspace settings pages.