loopbackio · bajtos · Jul 17, 2020 · Jul 17, 2020 · Jul 17, 2020 · raymondfeng
diff --git a/docs/site/Creating-components.md b/docs/site/Creating-components.md
@@ -36,6 +36,59 @@ export class MyComponent implements Component {
 }
 ```
 
+## Working with dependencies
+
+Extensions should preferably use LoopBack modules installed by the target
+application, to allow application developers to choose the version of framework
+modules they want to use. For example, they may want to hold to an older version
+until a regression is fixed in the latest version, or even use their own fork to
+have a bug fix available before it's officially published.
+
+We recommend to use `peerDependencies` to specify what packages is your
+extension expecting in the target application and `devDependencies` to make
+these packages available for extension tests.
+
+For example:
+
+```json
+{
+  "name": "my-lb4-extension",
+  "version": "1.0.0",
+  "dependencies": {
+    "tslib": "^2.0.0"
+  },
+  "peerDependencies": {
+    "@loopback/core": "^2.9.1",
+    "@loopback/rest": "^5.2.0"
+  },
+  "devDependencies": {
+    "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
+    "@loopback/eslint-config": "^8.0.3",
+    "@loopback/rest": "^5.2.0",
+    "@loopback/testlab": "^3.2.0"
+  }
+}
+```
+
+It is also possible for a single extension version to support multiple versions
+of a framework dependency:
+
+```json
+{
+  "peerDependencies": {
+    "@loopback/core": "^1.9.0 || ^2.0.0"
+  }
+}
+```
+
+{% include important.html content=' Shrinking the supported version range of a
+peer dependency is a breaking change that should trigger a semver-major release.
+
+For example, changing the range from `"^1.5.3"` to `"^1.5.3 || ^2.0.0"` is
+backwards compatible, while changing the range from `"^1.5.3"` to `"^2.0.0"` is
+a breaking change. ' %}
+
 ## Injecting the target application instance
 
 You can inject anything from the context and access them from a component. In

@@ -38,14 +38,18 @@
     "url": "https://github.com/strongloop/loopback-next.git",
     "directory": "extensions/apiconnect"
   },
-  "dependencies": {
+  "peerDependencies": {
     "@loopback/core": "^2.9.1",
-    "@loopback/rest": "^5.2.0",
+    "@loopback/rest": "^5.2.0"
+  },
+  "dependencies": {
     "tslib": "^2.0.0"
   },
   "devDependencies": {
     "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
     "@loopback/eslint-config": "^8.0.3",
+    "@loopback/rest": "^5.2.0",
     "@loopback/testlab": "^3.2.0",
     "@types/node": "^10.17.27"
   }

diff --git a/extensions/authentication-jwt/package.json b/extensions/authentication-jwt/package.json
@@ -20,22 +20,28 @@
   "publishConfig": {
     "access": "public"
   },
-  "dependencies": {
+  "peerDependencies": {
     "@loopback/authentication": "^4.2.9",
     "@loopback/core": "^2.9.1",
     "@loopback/rest": "^5.2.0",
+    "@loopback/service-proxy": "^2.3.4"
+  },
+  "dependencies": {
     "@loopback/rest-explorer": "^2.2.6",
     "@loopback/security": "^0.2.14",
-    "@loopback/service-proxy": "^2.3.4",
     "@types/bcryptjs": "2.4.2",
     "bcryptjs": "^2.4.3",
     "jsonwebtoken": "^8.5.1"
   },
   "devDependencies": {
+    "@loopback/authentication": "^4.2.9",
     "@loopback/boot": "^2.3.5",
     "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
     "@loopback/eslint-config": "^8.0.3",
     "@loopback/repository": "^2.9.0",
+    "@loopback/rest": "^5.2.0",
+    "@loopback/service-proxy": "^2.3.4",
     "@loopback/testlab": "^2.0.2",
     "@types/lodash": "^4.14.157",
     "@types/node": "^10.17.27",

diff --git a/extensions/authentication-passport/package.json b/extensions/authentication-passport/package.json
@@ -39,20 +39,25 @@
     "url": "https://github.com/strongloop/loopback-next.git",
     "directory": "extensions/authentication-passport"
   },
-  "dependencies": {
+  "peerDependencies": {
     "@loopback/authentication": "^4.2.9",
     "@loopback/core": "^2.9.1",
-    "@loopback/rest": "^5.2.0",
+    "@loopback/rest": "^5.2.0"
+  },
+  "dependencies": {
     "@loopback/security": "^0.2.14",
     "passport": "^0.4.1",
     "tslib": "^2.0.0",
     "util-promisifyall": "^1.0.6"
   },
   "devDependencies": {
+    "@loopback/authentication": "^4.2.9",
     "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
     "@loopback/eslint-config": "^8.0.3",
     "@loopback/mock-oauth2-provider": "^0.1.3",
     "@loopback/openapi-spec-builder": "^2.1.9",
+    "@loopback/rest": "^5.2.0",
     "@loopback/testlab": "^3.2.0",
     "@types/jsonwebtoken": "^8.5.0",
     "@types/lodash": "^4.14.157",

@@ -20,15 +20,19 @@
   "publishConfig": {
     "access": "public"
   },
-  "dependencies": {
+  "peerDependencies": {
     "@loopback/core": "^2.9.1",
-    "@loopback/rest": "^5.2.0",
+    "@loopback/rest": "^5.2.0"
+  },
+  "dependencies": {
     "ts-graphviz": "^0.13.1",
     "viz.js": "^2.1.2"
   },
   "devDependencies": {
     "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
     "@loopback/eslint-config": "^8.0.3",
+    "@loopback/rest": "^5.2.0",
     "@loopback/testlab": "^3.2.0",
     "@types/node": "^10.17.27"
   },

@@ -20,8 +20,10 @@
   "publishConfig": {
     "access": "public"
   },
+  "peerDependencies": {
+    "@loopback/core": "^2.9.1"
+  },
   "dependencies": {
-    "@loopback/core": "^2.9.1",
     "@types/cron": "^1.7.2",
     "@types/debug": "^4.1.5",
     "cron": "^1.8.2",
@@ -30,6 +32,7 @@
   },
   "devDependencies": {
     "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
     "@loopback/eslint-config": "^8.0.3",
     "@loopback/testlab": "^3.2.0",
     "@types/node": "^10.17.27"

@@ -21,15 +21,19 @@
   "publishConfig": {
     "access": "public"
   },
+  "peerDependencies": {
+    "@loopback/core": "^2.9.1",
+    "@loopback/rest": "^5.2.0"
+  },
   "dependencies": {
     "@cloudnative/health": "^2.1.2",
-    "@loopback/core": "^2.9.1",
-    "@loopback/rest": "^5.2.0",
     "tslib": "^2.0.0"
   },
   "devDependencies": {
     "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
     "@loopback/eslint-config": "^8.0.3",
+    "@loopback/rest": "^5.2.0",
     "@loopback/testlab": "^3.2.0",
     "@types/node": "^10.17.27"
   },

@@ -20,9 +20,11 @@
   "publishConfig": {
     "access": "public"
   },
-  "dependencies": {
+  "peerDependencies": {
     "@loopback/core": "^2.9.1",
-    "@loopback/rest": "^5.2.0",
+    "@loopback/rest": "^5.2.0"
+  },
+  "dependencies": {
     "fluent-logger": "^3.4.1",
     "morgan": "^1.10.0",
     "tslib": "^2.0.0",
@@ -31,7 +33,9 @@
   },
   "devDependencies": {
     "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
     "@loopback/eslint-config": "^8.0.3",
+    "@loopback/rest": "^5.2.0",
     "@loopback/testlab": "^3.2.0",
     "@types/morgan": "^1.9.1",
     "@types/node": "^10.17.27"

@@ -20,15 +20,19 @@
   "publishConfig": {
     "access": "public"
   },
-  "dependencies": {
+  "peerDependencies": {
     "@loopback/core": "^2.9.1",
-    "@loopback/rest": "^5.2.0",
+    "@loopback/rest": "^5.2.0"
+  },
+  "dependencies": {
     "prom-client": "^12.0.0",
     "tslib": "^2.0.0"
   },
   "devDependencies": {
     "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
     "@loopback/eslint-config": "^8.0.3",
+    "@loopback/rest": "^5.2.0",
     "@loopback/testlab": "^3.2.0",
     "@types/express": "^4.17.7",
     "@types/node": "^10.17.27",

@@ -31,14 +31,17 @@
     "src",
     "!*/__tests__"
   ],
+  "peerDependencies": {
+    "@loopback/core": "^2.9.1"
+  },
   "dependencies": {
-    "@loopback/core": "^2.9.1",
     "@types/generic-pool": "^3.1.9",
     "generic-pool": "^3.7.1",
     "tslib": "^2.0.0"
   },
   "devDependencies": {
     "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
     "@loopback/testlab": "^3.2.0",
     "@types/node": "^10.17.27",
     "typescript": "~3.9.7"

diff --git a/extensions/typeorm/package.json b/extensions/typeorm/package.json
@@ -21,19 +21,24 @@
   "publishConfig": {
     "access": "public"
   },
+  "peerDependencies": {
+    "@loopback/boot": "^2.3.3",
+    "@loopback/core": "^2.8.0",
+    "@loopback/rest": "^5.1.1"
+  },
   "devDependencies": {
+    "@loopback/boot": "^2.3.3",
     "@loopback/build": "^5.4.3",
+    "@loopback/core": "^2.8.0",
     "@loopback/eslint-config": "^8.0.1",
     "@loopback/repository": "^2.7.0",
+    "@loopback/rest": "^5.1.1",
     "@loopback/testlab": "^3.1.7",
     "@types/json-schema": "^7.0.5",
     "@types/node": "^10.17.27",
     "sqlite3": "^5.0.0"
   },
   "dependencies": {
-    "@loopback/boot": "^2.3.3",
-    "@loopback/core": "^2.8.0",
-    "@loopback/rest": "^5.1.1",
     "tslib": "^2.0.0",
     "typeorm": "^0.2.25"
   },

@@ -23,9 +23,11 @@
   "publishConfig": {
     "access": "public"
   },
-  "dependencies": {
+  "peerDependencies": {
     "@loopback/core": "^2.9.1",
-    "@loopback/rest": "^5.2.0",
+    "@loopback/rest": "^5.2.0"
+  },
+  "dependencies": {
     "@loopback/security": "^0.2.14",
     "@types/express": "^4.17.7",
     "@types/lodash": "^4.14.157",
@@ -34,8 +36,10 @@
   },
   "devDependencies": {
     "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
     "@loopback/eslint-config": "^8.0.3",
     "@loopback/openapi-spec-builder": "^2.1.9",
+    "@loopback/rest": "^5.2.0",
     "@loopback/testlab": "^3.2.0",
     "@types/node": "^10.17.27",
     "jsonwebtoken": "^8.5.1"

diff --git a/packages/authorization/package.json b/packages/authorization/package.json
@@ -23,14 +23,17 @@
   "publishConfig": {
     "access": "public"
   },
+  "peerDependencies": {
+    "@loopback/core": "^2.9.1"
+  },
   "dependencies": {
-    "@loopback/core": "^2.9.1",
     "@loopback/security": "^0.2.14",
     "debug": "^4.1.1",
     "tslib": "^2.0.0"
   },
   "devDependencies": {
     "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
     "@loopback/testlab": "^3.2.0",
     "@types/debug": "^4.1.5",
     "@types/node": "10.17.27",

diff --git a/packages/boot/package.json b/packages/boot/package.json
@@ -23,8 +23,10 @@
   "publishConfig": {
     "access": "public"
   },
+  "peerDependencies": {
+    "@loopback/core": "^2.9.1"
+  },
   "dependencies": {
-    "@loopback/core": "^2.9.1",
     "@loopback/model-api-builder": "^2.1.9",
     "@loopback/repository": "^2.9.0",
     "@loopback/service-proxy": "^2.3.4",
@@ -36,6 +38,7 @@
   },
   "devDependencies": {
     "@loopback/build": "^6.1.0",
+    "@loopback/core": "^2.9.1",
     "@loopback/eslint-config": "^8.0.3",
     "@loopback/rest": "^5.2.0",
     "@loopback/rest-crud": "^0.8.9",

@@ -20,6 +20,11 @@
   "publishConfig": {
     "access": "public"
   },
+  "peerDependencies": {
+    "@loopback/boot": "^2.3.5",
+    "@loopback/core": "^2.9.1",
+    "@loopback/rest": "^5.2.0"
+  },
   "dependencies": {
     "@types/express": "^4.17.7",
     "debug": "^4.1.1",
@@ -28,11 +33,6 @@
     "swagger2openapi": "^6.2.1",
     "tslib": "^2.0.0"
   },
-  "peerDependencies": {
-    "@loopback/boot": "^2.3.5",
-    "@loopback/core": "^2.9.1",
-    "@loopback/rest": "^5.2.0"
-  },
   "devDependencies": {
     "@loopback/boot": "^2.3.5",
     "@loopback/build": "^6.1.0",