Name: Appwrite Typescript
Author: Appwrite
Install
Terminal · npx
$npx skills add https://github.com/vercel-labs/agent-skills --skill vercel-react-best-practices
Works with Paperclip
How Appwrite Typescript fits into a Paperclip company.

Appwrite Typescript drops into any Paperclip agent that handles this kind of work. Assign it to a specialist inside a pre-configured PaperclipOrg company and the skill becomes available on every heartbeat — no prompt engineering, no tool wiring.
SaaS FactoryPaired
Pre-configured AI company — 18 agents, 18 skills, one-time purchase.
$27$59
Explore pack
Source file
SKILL.md705 linesmarkdown
Expand
1---2name: appwrite-typescript3description: Appwrite TypeScript SDK skill. Use when building browser-based JavaScript/TypeScript apps, React Native mobile apps, or server-side Node.js/Deno backends with Appwrite. Covers client-side auth (email, OAuth, anonymous), database queries, file uploads, real-time subscriptions, and server-side admin via API keys for user management, database administration, storage, and functions.4---5 6 7# Appwrite TypeScript SDK8 9## Installation10 11```bash12# Web13npm install appwrite14 15# React Native16npm install react-native-appwrite17 18# Node.js / Deno19npm install node-appwrite20```21 22## Setting Up the Client23 24### Client-side (Web / React Native)25 26```typescript27// Web28import { Client, Account, TablesDB, Storage, ID, Query } from 'appwrite';29 30// React Native31import { Client, Account, TablesDB, Storage, ID, Query } from 'react-native-appwrite';32 33const client = new Client()34    .setEndpoint('https://<REGION>.cloud.appwrite.io/v1')35    .setProject('[PROJECT_ID]');36```37 38### Server-side (Node.js / Deno)39 40```typescript41import { Client, Users, TablesDB, Storage, Functions, ID, Query } from 'node-appwrite';42 43const client = new Client()44    .setEndpoint('https://<REGION>.cloud.appwrite.io/v1')45    .setProject(process.env.APPWRITE_PROJECT_ID)46    .setKey(process.env.APPWRITE_API_KEY);47```48 49## Code Examples50 51### Authentication (client-side)52 53```typescript54const account = new Account(client);55 56// Email signup57await account.create({58    userId: ID.unique(),59    email: 'user@example.com',60    password: 'password123',61    name: 'User Name'62});63 64// Email login65const session = await account.createEmailPasswordSession({66    email: 'user@example.com',67    password: 'password123'68});69 70// OAuth login (Web)71account.createOAuth2Session({72    provider: OAuthProvider.Github,73    success: 'https://example.com/success',74    failure: 'https://example.com/fail',75    scopes: ['repo', 'user'] // optional — provider-specific scopes76});77 78// Get current user79const user = await account.get();80 81// Logout82await account.deleteSession({ sessionId: 'current' });83```84 85### OAuth 2 Login (React Native)86 87> **Important:** `createOAuth2Session()` does **not** work on React Native. You must use `createOAuth2Token()` with deep linking instead.88 89#### Setup90 91Install the required dependencies:92 93```bash94npx expo install react-native-appwrite react-native-url-polyfill95npm install expo-auth-session expo-web-browser expo-linking96```97 98Set the URL scheme in your `app.json`:99 100```json101{102  "expo": {103    "scheme": "appwrite-callback-[PROJECT_ID]"104  }105}106```107 108#### OAuth Flow109 110```typescript111import { Client, Account, OAuthProvider } from 'react-native-appwrite';112import { makeRedirectUri } from 'expo-auth-session';113import * as WebBrowser from 'expo-web-browser';114 115const client = new Client()116    .setEndpoint('https://<REGION>.cloud.appwrite.io/v1')117    .setProject('[PROJECT_ID]');118 119const account = new Account(client);120 121async function oauthLogin(provider: OAuthProvider) {122    // Create deep link that works across Expo environments123    const deepLink = new URL(makeRedirectUri({ preferLocalhost: true }));124    const scheme = `${deepLink.protocol}//`; // e.g. 'exp://' or 'appwrite-callback-[PROJECT_ID]://'125 126    // Get the OAuth login URL127    const loginUrl = await account.createOAuth2Token({128        provider,129        success: `${deepLink}`,130        failure: `${deepLink}`,131    });132 133    // Open browser and listen for the scheme redirect134    const result = await WebBrowser.openAuthSessionAsync(`${loginUrl}`, scheme);135 136    if (result.type !== 'success') return;137 138    // Extract credentials from the redirect URL139    const url = new URL(result.url);140    const secret = url.searchParams.get('secret');141    const userId = url.searchParams.get('userId');142 143    // Create session with the OAuth credentials144    await account.createSession({ userId, secret });145}146 147// Usage148await oauthLogin(OAuthProvider.Github);149await oauthLogin(OAuthProvider.Google);150```151 152### User Management (server-side)153 154```typescript155const users = new Users(client);156 157// Create user158const user = await users.create({159    userId: ID.unique(),160    email: 'user@example.com',161    password: 'password123',162    name: 'User Name'163});164 165// List users166const list = await users.list({ queries: [Query.limit(25)] });167 168// Get user169const fetched = await users.get({ userId: '[USER_ID]' });170 171// Delete user172await users.delete({ userId: '[USER_ID]' });173```174 175### Database Operations176 177> **Note:** Use `TablesDB` (not the deprecated `Databases` class) for all new code. Only use `Databases` if the existing codebase already relies on it or the user explicitly requests it.178>179> **Tip:** Prefer the object-params calling style (e.g., `{ databaseId: '...' }`) for all SDK method calls. Only use positional arguments if the existing codebase already uses them or the user explicitly requests it.180 181```typescript182const tablesDB = new TablesDB(client);183 184// Create database (server-side only)185const db = await tablesDB.create({ databaseId: ID.unique(), name: 'My Database' });186 187// Create table (server-side only)188const col = await tablesDB.createTable({189    databaseId: '[DATABASE_ID]',190    tableId: ID.unique(),191    name: 'My Table'192});193 194// Create row195const doc = await tablesDB.createRow({196    databaseId: '[DATABASE_ID]',197    tableId: '[TABLE_ID]',198    rowId: ID.unique(),199    data: { title: 'Hello World', content: 'Example content' }200});201 202// List rows with query203const results = await tablesDB.listRows({204    databaseId: '[DATABASE_ID]',205    tableId: '[TABLE_ID]',206    queries: [Query.equal('status', 'active'), Query.limit(10)]207});208 209// Get row210const row = await tablesDB.getRow({211    databaseId: '[DATABASE_ID]',212    tableId: '[TABLE_ID]',213    rowId: '[ROW_ID]'214});215 216// Update row217await tablesDB.updateRow({218    databaseId: '[DATABASE_ID]',219    tableId: '[TABLE_ID]',220    rowId: '[ROW_ID]',221    data: { title: 'Updated Title' }222});223 224// Delete row225await tablesDB.deleteRow({226    databaseId: '[DATABASE_ID]',227    tableId: '[TABLE_ID]',228    rowId: '[ROW_ID]'229});230```231 232#### String Column Types233 234> **Note:** The legacy `string` type is deprecated. Use explicit column types for all new columns.235 236| Type | Max characters | Indexing | Storage |237|------|---------------|----------|---------|238| `varchar` | 16,383 | Full index (if size ≤ 768) | Inline in row |239| `text` | 16,383 | Prefix only | Off-page |240| `mediumtext` | 4,194,303 | Prefix only | Off-page |241| `longtext` | 1,073,741,823 | Prefix only | Off-page |242 243- `varchar` is stored inline and counts towards the 64 KB row size limit. Prefer for short, indexed fields like names, slugs, or identifiers.244- `text`, `mediumtext`, and `longtext` are stored off-page (only a 20-byte pointer lives in the row), so they don't consume the row size budget. `size` is not required for these types.245 246```typescript247// Create table with explicit string column types248await tablesDB.createTable({249    databaseId: '[DATABASE_ID]',250    tableId: ID.unique(),251    name: 'articles',252    columns: [253        { key: 'title',    type: 'varchar',    size: 255, required: true  },  // inline, fully indexable254        { key: 'summary',  type: 'text',                  required: false },  // off-page, prefix index only255        { key: 'body',     type: 'mediumtext',            required: false },  // up to ~4 M chars256        { key: 'raw_data', type: 'longtext',              required: false },  // up to ~1 B chars257    ]258});259```260 261#### TypeScript Generics262 263```typescript264import { Models } from 'appwrite';265// Server-side: import from 'node-appwrite'266 267// Define a typed interface for your row data268interface Todo {269    title: string;270    done: boolean;271    priority: number;272}273 274// listRows returns Models.DocumentList<Models.Document> by default275// Cast or use generics for typed results276const results = await tablesDB.listRows({277    databaseId: '[DATABASE_ID]',278    tableId: '[TABLE_ID]',279    queries: [Query.equal('done', false)]280});281 282// Each document includes built-in fields alongside your data283const doc = results.documents[0];284doc.$id;            // string — unique row ID285doc.$createdAt;     // string — ISO 8601 creation timestamp286doc.$updatedAt;     // string — ISO 8601 update timestamp287doc.$permissions;   // string[] — permission strings288doc.$databaseId;    // string289doc.$collectionId;  // string290 291// Common model types292// Models.User<Preferences>  — user account293// Models.Session             — auth session294// Models.File                — storage file metadata295// Models.Team                — team object296// Models.Execution           — function execution result297// Models.DocumentList<T>     — paginated list with total count298```299 300### Query Methods301 302```typescript303// Filtering304Query.equal('field', 'value')           // field == value (or pass array for IN)305Query.notEqual('field', 'value')        // field != value306Query.lessThan('field', 100)            // field < value307Query.lessThanEqual('field', 100)       // field <= value308Query.greaterThan('field', 100)         // field > value309Query.greaterThanEqual('field', 100)    // field >= value310Query.between('field', 1, 100)          // 1 <= field <= 100311Query.isNull('field')                   // field is null312Query.isNotNull('field')                // field is not null313Query.startsWith('field', 'prefix')     // string starts with prefix314Query.endsWith('field', 'suffix')       // string ends with suffix315Query.contains('field', 'substring')    // string/array contains value316Query.search('field', 'keywords')       // full-text search (requires full-text index)317 318// Sorting319Query.orderAsc('field')                 // sort ascending320Query.orderDesc('field')                // sort descending321 322// Pagination323Query.limit(25)                         // max rows returned (default 25, max 100)324Query.offset(0)                         // skip N rows325Query.cursorAfter('[ROW_ID]')           // paginate after this row ID (preferred for large datasets)326Query.cursorBefore('[ROW_ID]')          // paginate before this row ID327 328// Selection329Query.select(['field1', 'field2'])      // return only specified fields330 331// Logical332Query.or([Query.equal('a', 1), Query.equal('b', 2)])   // OR condition333Query.and([Query.greaterThan('age', 18), Query.lessThan('age', 65)])  // explicit AND (queries are AND by default)334```335 336### File Storage337 338```typescript339const storage = new Storage(client);340 341// Upload file (client-side — from file input)342const file = await storage.createFile({343    bucketId: '[BUCKET_ID]',344    fileId: ID.unique(),345    file: document.getElementById('file-input').files[0]346});347 348// Upload file (server-side — from path)349import { InputFile } from 'node-appwrite/file';350 351const file2 = await storage.createFile({352    bucketId: '[BUCKET_ID]',353    fileId: ID.unique(),354    file: InputFile.fromPath('/path/to/file.png', 'file.png')355});356 357// List files358const files = await storage.listFiles({ bucketId: '[BUCKET_ID]' });359 360// Get file preview (image)361const preview = storage.getFilePreview({362    bucketId: '[BUCKET_ID]',363    fileId: '[FILE_ID]',364    width: 300,365    height: 300366});367 368// Download file369const download = await storage.getFileDownload({370    bucketId: '[BUCKET_ID]',371    fileId: '[FILE_ID]'372});373 374// Delete file375await storage.deleteFile({ bucketId: '[BUCKET_ID]', fileId: '[FILE_ID]' });376```377 378#### InputFile Factory Methods (server-side)379 380```typescript381import { InputFile } from 'node-appwrite/file';382 383InputFile.fromPath('/path/to/file.png', 'file.png')          // from filesystem path384InputFile.fromBuffer(buffer, 'file.png')                       // from Buffer385InputFile.fromStream(readableStream, 'file.png', size)         // from ReadableStream (size in bytes required)386InputFile.fromPlainText('Hello world', 'hello.txt')            // from string content387```388 389### Teams390 391```typescript392const teams = new Teams(client);393 394// Create team395const team = await teams.create({ teamId: ID.unique(), name: 'Engineering' });396 397// List teams398const list = await teams.list();399 400// Create membership (invite a user by email)401const membership = await teams.createMembership({402    teamId: '[TEAM_ID]',403    roles: ['editor'],404    email: 'user@example.com',405});406 407// List memberships408const members = await teams.listMemberships({ teamId: '[TEAM_ID]' });409 410// Update membership roles411await teams.updateMembership({412    teamId: '[TEAM_ID]',413    membershipId: '[MEMBERSHIP_ID]',414    roles: ['admin'],415});416 417// Delete team418await teams.delete({ teamId: '[TEAM_ID]' });419```420 421> **Role-based access:** Use `Role.team('[TEAM_ID]')` for all team members or `Role.team('[TEAM_ID]', 'editor')` for a specific team role when setting permissions.422 423### Real-time Subscriptions (client-side)424 425```typescript426import { Realtime, Channel } from 'appwrite';427 428const realtime = new Realtime(client);429 430// Subscribe to row changes431const subscription = await realtime.subscribe(432    Channel.tablesdb('[DATABASE_ID]').table('[TABLE_ID]').row(),433    (response) => {434        console.log(response.events);   // e.g. ['tablesdb.*.tables.*.rows.*.create']435        console.log(response.payload);  // the affected resource436    }437);438 439// Subscribe to a specific row440await realtime.subscribe(441    Channel.tablesdb('[DATABASE_ID]').table('[TABLE_ID]').row('[ROW_ID]'),442    (response) => { /* ... */ }443);444 445// Subscribe to multiple channels446await realtime.subscribe([447    Channel.tablesdb('[DATABASE_ID]').table('[TABLE_ID]').row(),448    Channel.bucket('[BUCKET_ID]').file(),449], (response) => { /* ... */ });450 451// Unsubscribe452await subscription.close();453```454 455**Available channels:**456 457| Channel | Description |458|---------|-------------|459| `account` | Changes to the authenticated user's account |460| `tablesdb.[DB_ID].tables.[TABLE_ID].rows` | All rows in a table |461| `tablesdb.[DB_ID].tables.[TABLE_ID].rows.[ROW_ID]` | A specific row |462| `buckets.[BUCKET_ID].files` | All files in a bucket |463| `buckets.[BUCKET_ID].files.[FILE_ID]` | A specific file |464| `teams` | Changes to teams the user belongs to |465| `teams.[TEAM_ID]` | Changes to a specific team |466| `memberships` | Changes to the user's team memberships |467| `memberships.[MEMBERSHIP_ID]` | A specific membership |468| `functions.[FUNCTION_ID].executions` | Execution updates for a function |469 470The `response` object includes: `events` (array of event strings), `payload` (the affected resource), `channels` (channels matched), and `timestamp` (ISO 8601).471 472### Serverless Functions (server-side)473 474```typescript475const functions = new Functions(client);476 477// Execute function478const execution = await functions.createExecution({479    functionId: '[FUNCTION_ID]',480    body: JSON.stringify({ key: 'value' })481});482 483// List executions484const executions = await functions.listExecutions({ functionId: '[FUNCTION_ID]' });485```486 487#### Writing a Function Handler (Node.js runtime)488 489When deploying your own Appwrite Function, the entry point file must export a default async function:490 491```typescript492// src/main.js (or src/main.ts)493export default async ({ req, res, log, error }) => {494    // Request properties495    // req.body        — raw request body (string)496    // req.bodyJson    — parsed JSON body (object, or undefined if not JSON)497    // req.headers     — request headers (object)498    // req.method      — HTTP method (GET, POST, PUT, DELETE, PATCH)499    // req.path        — URL path (e.g. '/hello')500    // req.query       — parsed query parameters (object)501    // req.queryString — raw query string502 503    log('Processing request: ' + req.method + ' ' + req.path);504 505    if (req.method === 'GET') {506        return res.json({ message: 'Hello from Appwrite Function!' });507    }508 509    const data = req.bodyJson;510    if (!data?.name) {511        error('Missing name field');512        return res.json({ error: 'Name is required' }, 400);513    }514 515    // Response methods516    return res.json({ success: true });                    // JSON (sets Content-Type automatically)517    // return res.text('Hello');                           // plain text518    // return res.empty();                                 // 204 No Content519    // return res.redirect('https://example.com');         // 302 Redirect520    // return res.send('data', 200, { 'X-Custom': '1' }); // custom body, status, headers521};522```523 524### Server-Side Rendering (SSR) Authentication525 526SSR apps (Next.js, SvelteKit, Nuxt, Remix, Astro) use the **server SDK** (`node-appwrite`) to handle auth. You need two clients:527 528- **Admin client** — uses an API key, creates sessions, bypasses rate limits (reusable singleton)529- **Session client** — uses a session cookie, acts on behalf of a user (create per-request, never share)530 531```typescript532import { Client, Account, OAuthProvider } from 'node-appwrite';533 534// Admin client (reusable)535const adminClient = new Client()536    .setEndpoint('https://<REGION>.cloud.appwrite.io/v1')537    .setProject('[PROJECT_ID]')538    .setKey(process.env.APPWRITE_API_KEY);539 540// Session client (create per-request)541const sessionClient = new Client()542    .setEndpoint('https://<REGION>.cloud.appwrite.io/v1')543    .setProject('[PROJECT_ID]');544 545const session = req.cookies['a_session_[PROJECT_ID]'];546if (session) {547    sessionClient.setSession(session);548}549```550 551#### Email/Password Login552 553```typescript554app.post('/login', async (req, res) => {555    const account = new Account(adminClient);556    const session = await account.createEmailPasswordSession({557        email: req.body.email,558        password: req.body.password,559    });560 561    // Cookie name must be a_session_<PROJECT_ID>562    res.cookie('a_session_[PROJECT_ID]', session.secret, {563        httpOnly: true,564        secure: true,565        sameSite: 'strict',566        expires: new Date(session.expire),567        path: '/',568    });569 570    res.json({ success: true });571});572```573 574#### Authenticated Requests575 576```typescript577app.get('/user', async (req, res) => {578    const session = req.cookies['a_session_[PROJECT_ID]'];579    if (!session) return res.status(401).json({ error: 'Unauthorized' });580 581    // Create a fresh session client per request582    const sessionClient = new Client()583        .setEndpoint('https://<REGION>.cloud.appwrite.io/v1')584        .setProject('[PROJECT_ID]')585        .setSession(session);586 587    const account = new Account(sessionClient);588    const user = await account.get();589    res.json(user);590});591```592 593#### OAuth2 SSR Flow594 595```typescript596// Step 1: Redirect to OAuth provider597app.get('/oauth', async (req, res) => {598    const account = new Account(adminClient);599    const redirectUrl = await account.createOAuth2Token({600        provider: OAuthProvider.Github,601        success: 'https://example.com/oauth/success',602        failure: 'https://example.com/oauth/failure',603    });604    res.redirect(redirectUrl);605});606 607// Step 2: Handle callback — exchange token for session608app.get('/oauth/success', async (req, res) => {609    const account = new Account(adminClient);610    const session = await account.createSession({611        userId: req.query.userId,612        secret: req.query.secret,613    });614 615    res.cookie('a_session_[PROJECT_ID]', session.secret, {616        httpOnly: true, secure: true, sameSite: 'strict',617        expires: new Date(session.expire), path: '/',618    });619    res.json({ success: true });620});621```622 623> **Cookie security:** Always use `httpOnly`, `secure`, and `sameSite: 'strict'` to prevent XSS. The cookie name must be `a_session_<PROJECT_ID>`.624 625> **Forwarding user agent:** Call `sessionClient.setForwardedUserAgent(req.headers['user-agent'])` to record the end-user's browser info for debugging and security.626 627## Error Handling628 629```typescript630import { AppwriteException } from 'appwrite';631// Server-side: import from 'node-appwrite'632 633try {634    const doc = await tablesDB.getRow({635        databaseId: '[DATABASE_ID]',636        tableId: '[TABLE_ID]',637        rowId: '[ROW_ID]',638    });639} catch (err) {640    if (err instanceof AppwriteException) {641        console.log(err.message);   // human-readable error message642        console.log(err.code);      // HTTP status code (number)643        console.log(err.type);      // Appwrite error type string (e.g. 'document_not_found')644        console.log(err.response);  // full response body (object)645    }646}647```648 649**Common error codes:**650 651| Code | Meaning |652|------|---------|653| `401` | Unauthorized — missing or invalid session/API key |654| `403` | Forbidden — insufficient permissions for this action |655| `404` | Not found — resource does not exist |656| `409` | Conflict — duplicate ID or unique constraint violation |657| `429` | Rate limited — too many requests, retry after backoff |658 659## Permissions & Roles (Critical)660 661Appwrite uses permission strings to control access to resources. Each permission pairs an action (`read`, `update`, `delete`, `create`, or `write` which grants create + update + delete) with a role target. By default, **no user has access** unless permissions are explicitly set at the document/file level or inherited from the collection/bucket settings. Permissions are arrays of strings built with the `Permission` and `Role` helpers.662 663```typescript664import { Permission, Role } from 'appwrite';665// Server-side: import from 'node-appwrite'666```667 668### Database Row with Permissions669 670```typescript671const doc = await tablesDB.createRow({672    databaseId: '[DATABASE_ID]',673    tableId: '[TABLE_ID]',674    rowId: ID.unique(),675    data: { title: 'Hello World' },676    permissions: [677        Permission.read(Role.user('[USER_ID]')),     // specific user can read678        Permission.update(Role.user('[USER_ID]')),   // specific user can update679        Permission.read(Role.team('[TEAM_ID]')),     // all team members can read680        Permission.read(Role.any()),                 // anyone (including guests) can read681    ]682});683```684 685### File Upload with Permissions686 687```typescript688const file = await storage.createFile({689    bucketId: '[BUCKET_ID]',690    fileId: ID.unique(),691    file: document.getElementById('file-input').files[0],692    permissions: [693        Permission.read(Role.any()),694        Permission.update(Role.user('[USER_ID]')),695        Permission.delete(Role.user('[USER_ID]')),696    ]697});698```699 700> **When to set permissions:** Set document/file-level permissions when you need per-resource access control. If all documents in a collection share the same rules, configure permissions at the collection/bucket level and leave document permissions empty.701 702> **Common mistakes:**703> - **Forgetting permissions** — the resource becomes inaccessible to all users (including the creator)704> - **`Role.any()` with `write`/`update`/`delete`** — allows any user, including unauthenticated guests, to modify or remove the resource705> - **`Permission.read(Role.any())` on sensitive data** — makes the resource publicly readable
Related skills
1password

Install 1password skill for Claude Code from steipete/clawdis.
3d Web Experience

Install 3d Web Experience skill for Claude Code from sickn33/antigravity-awesome-skills.
Ab Test Setup

This handles the full A/B testing workflow from hypothesis formation to statistical analysis. It walks you through proper test design, calculates sample sizes,