@agentuity/cli 0.0.108 → 0.0.110

package/dist/cmd/project/auth/shared.js

@@ -0,0 +1,435 @@
+/**
+ * Shared helpers for Agentuity Auth setup
+ */
+import * as path from 'node:path';
+import { listResources, createResources, dbQuery } from '@agentuity/server';
+import * as tui from '../../../tui';
+import { getCatalystAPIClient } from '../../../config';
+import enquirer from 'enquirer';
+/**
+ * Select an existing database or create a new one
+ */
+export async function selectOrCreateDatabase(options) {
+    const { logger, auth, orgId, region, existingUrl } = options;
+    const catalystClient = getCatalystAPIClient(logger, auth, region);
+    const resources = await tui.spinner({
+        message: `Fetching databases for ${orgId} in ${region}`,
+        clearOnSuccess: true,
+        callback: async () => listResources(catalystClient, orgId, region),
+    });
+    const databases = resources.db;
+    // Extract existing database name from URL if provided
+    let existingDbName;
+    if (existingUrl) {
+        const urlMatch = existingUrl.match(/\/([^/?]+)(\?|$)/);
+        if (urlMatch) {
+            existingDbName = urlMatch[1];
+        }
+    }
+    const choices = [];
+    // Add "use existing" option first if we have an existing URL
+    if (existingUrl && existingDbName) {
+        choices.push({
+            name: '__existing__',
+            message: `${tui.tuiColors.success('✓')} Use existing (found in .env): ${existingDbName}`,
+        });
+    }
+    // Add create new option
+    choices.push({ name: '__create__', message: tui.bold('+ Create new database') });
+    // Add other databases
+    choices.push(...databases
+        .filter((db) => db.name !== existingDbName) // Don't duplicate existing
+        .map((db) => ({
+        name: db.name,
+        message: db.name,
+    })));
+    const response = await enquirer.prompt({
+        type: 'select',
+        name: 'database',
+        message: 'Select a database for auth:',
+        choices,
+    });
+    // Handle "use existing" selection
+    if (response.database === '__existing__' && existingUrl && existingDbName) {
+        return { name: existingDbName, url: existingUrl };
+    }
+    if (response.database === '__create__') {
+        const created = await tui.spinner({
+            message: `Creating database in ${region}`,
+            clearOnSuccess: true,
+            callback: async () => createResources(catalystClient, orgId, region, [{ type: 'db' }]),
+        });
+        if (created.length === 0) {
+            tui.fatal('Failed to create database');
+        }
+        const newDb = created[0];
+        tui.success(`Created database: ${tui.bold(newDb.name)}`);
+        const updatedResources = await listResources(catalystClient, orgId, region);
+        const dbInfo = updatedResources.db.find((d) => d.name === newDb.name);
+        if (!dbInfo?.url) {
+            tui.fatal('Failed to retrieve database connection URL');
+        }
+        return { name: newDb.name, url: dbInfo.url };
+    }
+    const selectedDb = databases.find((d) => d.name === response.database);
+    if (!selectedDb?.url) {
+        tui.fatal('Failed to retrieve database connection URL');
+    }
+    return { name: selectedDb.name, url: selectedDb.url };
+}
+/**
+ * Required auth dependencies
+ */
+export const AUTH_DEPENDENCIES = {
+    '@agentuity/auth': 'latest',
+    'better-auth': '^1.4.9',
+    'drizzle-orm': '^0.44.0',
+};
+/**
+ * Check and install auth dependencies
+ */
+export async function ensureAuthDependencies(options) {
+    const { projectDir } = options;
+    const fs = await import('fs');
+    const path = await import('path');
+    const packageJsonPath = path.join(projectDir, 'package.json');
+    if (!fs.existsSync(packageJsonPath)) {
+        tui.fatal('No package.json found in project directory');
+    }
+    const packageJson = JSON.parse(fs.readFileSync(packageJsonPath, 'utf-8'));
+    const deps = packageJson.dependencies || {};
+    const missingDeps = [];
+    for (const [dep, version] of Object.entries(AUTH_DEPENDENCIES)) {
+        if (!deps[dep]) {
+            missingDeps.push(`${dep}@${version}`);
+        }
+    }
+    if (missingDeps.length === 0) {
+        return false;
+    }
+    tui.info(`Installing auth dependencies: ${missingDeps.join(', ')}`);
+    const proc = Bun.spawn(['bun', 'install', ...missingDeps], {
+        cwd: projectDir,
+        stdout: 'inherit',
+        stderr: 'inherit',
+    });
+    const exitCode = await proc.exited;
+    if (exitCode !== 0) {
+        throw new Error(`bun install failed with code ${exitCode}`);
+    }
+    tui.success('Dependencies installed');
+    return true;
+}
+/**
+ * Get the directory for generated SQL files.
+ * Uses src/generated/ if it exists, otherwise falls back to project root.
+ */
+export async function getGeneratedSqlDir(projectDir) {
+    const generatedDir = path.join(projectDir, 'src', 'generated');
+    if (await Bun.file(path.join(generatedDir, 'registry.ts')).exists()) {
+        return generatedDir;
+    }
+    return projectDir;
+}
+/**
+ * Detect existing ORM setup in project.
+ * TODO: This is probably not 100% accurate. Drizzle config could be in all sorts of places in a repo.
+ */
+export async function detectOrmSetup(projectDir) {
+    const drizzleConfigTs = path.join(projectDir, 'drizzle.config.ts');
+    const drizzleConfigJs = path.join(projectDir, 'drizzle.config.js');
+    const prismaSchema = path.join(projectDir, 'prisma', 'schema.prisma');
+    if ((await Bun.file(drizzleConfigTs).exists()) || (await Bun.file(drizzleConfigJs).exists())) {
+        return 'drizzle';
+    }
+    if (await Bun.file(prismaSchema).exists()) {
+        return 'prisma';
+    }
+    return 'none';
+}
+/**
+ * Generate auth schema SQL using drizzle-kit export.
+ *
+ * This generates SQL DDL statements from the @agentuity/auth Drizzle schema
+ * without needing a database connection.
+ *
+ * @param projectDir - Project directory (must have @agentuity/auth installed)
+ * @returns SQL DDL statements for auth tables
+ */
+export async function generateAuthSchemaSql(projectDir) {
+    const schemaPath = path.join(projectDir, 'node_modules/@agentuity/auth/src/schema.ts');
+    if (!(await Bun.file(schemaPath).exists())) {
+        throw new Error(`@agentuity/auth schema not found at ${schemaPath}. Ensure @agentuity/auth is installed.`);
+    }
+    const proc = Bun.spawn(['bunx', 'drizzle-kit', 'export', '--dialect=postgresql', `--schema=${schemaPath}`], {
+        cwd: projectDir,
+        stdout: 'pipe',
+        stderr: 'pipe',
+    });
+    const [stdout, stderr, exitCode] = await Promise.all([
+        new Response(proc.stdout).text(),
+        new Response(proc.stderr).text(),
+        proc.exited,
+    ]);
+    if (exitCode !== 0) {
+        const errorMsg = stderr
+            .split('\n')
+            .filter((line) => !line.includes('Please install'))
+            .join('\n')
+            .trim();
+        throw new Error(`drizzle-kit export failed with code ${exitCode}: ${errorMsg}`);
+    }
+    return makeIdempotent(stdout);
+}
+/**
+ * Transform drizzle-kit SQL output to be idempotent.
+ *
+ * - Converts CREATE TABLE to CREATE TABLE IF NOT EXISTS
+ * - Converts CREATE INDEX to CREATE INDEX IF NOT EXISTS
+ * - Wraps ALTER TABLE ADD CONSTRAINT in DO blocks to handle existing constraints
+ */
+function makeIdempotent(sql) {
+    const lines = sql.split('\n');
+    const result = [];
+    for (const line of lines) {
+        const trimmed = line.trim();
+        if (trimmed.startsWith('CREATE TABLE ') && !trimmed.includes('IF NOT EXISTS')) {
+            result.push(line.replace('CREATE TABLE ', 'CREATE TABLE IF NOT EXISTS '));
+        }
+        else if (trimmed.startsWith('CREATE INDEX ') && !trimmed.includes('IF NOT EXISTS')) {
+            result.push(line.replace('CREATE INDEX ', 'CREATE INDEX IF NOT EXISTS '));
+        }
+        else if (trimmed.startsWith('ALTER TABLE ') && trimmed.includes('ADD CONSTRAINT')) {
+            const constraintMatch = trimmed.match(/ADD CONSTRAINT "([^"]+)"/);
+            if (constraintMatch) {
+                result.push(`DO $$ BEGIN ${trimmed} EXCEPTION WHEN duplicate_object THEN NULL; END $$;`);
+            }
+            else {
+                result.push(line);
+            }
+        }
+        else {
+            result.push(line);
+        }
+    }
+    return result.join('\n');
+}
+/**
+ * Split SQL into individual statements for sequential execution
+ * The dbQuery API only supports single statements
+ */
+export function splitSqlStatements(sql) {
+    // Split on semicolons, but be careful about edge cases
+    const statements = [];
+    let current = '';
+    for (const line of sql.split('\n')) {
+        const trimmed = line.trim();
+        // Skip empty lines and comments
+        if (!trimmed || trimmed.startsWith('--')) {
+            continue;
+        }
+        current += line + '\n';
+        // If line ends with semicolon, it's end of statement
+        if (trimmed.endsWith(';')) {
+            const stmt = current.trim();
+            if (stmt && stmt !== ';') {
+                statements.push(stmt);
+            }
+            current = '';
+        }
+    }
+    // Handle any remaining content
+    if (current.trim()) {
+        statements.push(current.trim());
+    }
+    return statements;
+}
+/**
+ * Run auth migrations against a database.
+ *
+ * @param options.sql - SQL to execute (from generateAuthSchemaSql or custom)
+ */
+export async function runAuthMigrations(options) {
+    const { logger, auth, orgId, region, databaseName, sql } = options;
+    const catalystClient = getCatalystAPIClient(logger, auth, region);
+    const statements = splitSqlStatements(sql);
+    await tui.spinner({
+        message: `Creating auth tables in database "${databaseName}" (${statements.length} SQL statements)`,
+        clearOnSuccess: true,
+        callback: async () => {
+            for (const statement of statements) {
+                await dbQuery(catalystClient, {
+                    database: databaseName,
+                    query: statement,
+                    orgId,
+                    region,
+                });
+            }
+        },
+    });
+    tui.success(`Auth tables created in ${tui.bold(databaseName)}`);
+}
+/**
+ * Generate the auth.ts file content
+ */
+export function generateAuthFileContent() {
+    return `/**
+ * Agentuity Auth configuration.
+ *
+ * This is the single source of truth for authentication in this project.
+ * All auth tables are stored in your Postgres database.
+ */
+
+import {
+	createAuth,
+	createSessionMiddleware,
+	createApiKeyMiddleware,
+} from '@agentuity/auth';
+
+/**
+ * Database URL for authentication.
+ *
+ * Set via DATABASE_URL environment variable.
+ * Get yours from: \`agentuity cloud database list --region use --json\`
+ */
+const DATABASE_URL = process.env.DATABASE_URL;
+
+if (!DATABASE_URL) {
+	throw new Error('DATABASE_URL environment variable is required for authentication');
+}
+
+/**
+ * Agentuity Auth instance with sensible defaults.
+ *
+ * Defaults:
+ * - basePath: '/api/auth'
+ * - emailAndPassword: { enabled: true }
+ * - Uses AGENTUITY_AUTH_SECRET env var for signing
+ *
+ * Default plugins included:
+ * - organization (multi-tenancy)
+ * - jwt (token signing)
+ * - bearer (API auth)
+ * - apiKey (programmatic access)
+ */
+export const auth = createAuth({
+	// Simplest setup: just provide the connection string
+	// We create pg pool + Drizzle internally with joins enabled
+	connectionString: DATABASE_URL,
+	// All options below have sensible defaults and can be omitted:
+	// secret: process.env.AGENTUITY_AUTH_SECRET, // auto-resolved from env
+	// basePath: '/api/auth', // default
+	// emailAndPassword: { enabled: true }, // default
+});
+
+/**
+ * Session middleware - validates cookies/bearer tokens.
+ * Use for routes that require authentication.
+ */
+export const authMiddleware = createSessionMiddleware(auth);
+
+/**
+ * Optional auth middleware - allows anonymous access.
+ * Sets ctx.auth = null for unauthenticated requests.
+ */
+export const optionalAuthMiddleware = createSessionMiddleware(auth, { optional: true });
+
+/**
+ * API key middleware for programmatic access.
+ * Use for webhook endpoints or external integrations.
+ */
+export const apiKeyMiddleware = createApiKeyMiddleware(auth);
+
+/**
+ * Optional API key middleware - continues without auth if no API key present.
+ */
+export const optionalApiKeyMiddleware = createApiKeyMiddleware(auth, { optional: true });
+
+/**
+ * Type export for end-to-end type safety.
+ */
+export type Auth = typeof auth;
+`;
+}
+/**
+ * Print integration examples to the console
+ */
+export function printIntegrationExamples() {
+    tui.newline();
+    tui.info(tui.bold('Next Steps - Add these to your project:'));
+    tui.newline();
+    console.log(tui.muted('━'.repeat(60)));
+    console.log(tui.bold(' 1. Set up your API routes (e.g., src/api/index.ts):'));
+    console.log(tui.muted('━'.repeat(60)));
+    console.log(`
+import { createRouter } from '@agentuity/runtime';
+import { mountAuthRoutes } from '@agentuity/auth';
+import { auth, authMiddleware } from '../auth';
+
+const api = createRouter();
+
+// Mount auth routes (sign-in, sign-up, sign-out, session, etc.)
+// Must match the basePath configured in createAuth (default: /api/auth)
+api.on(['GET', 'POST'], '/api/auth/*', mountAuthRoutes(auth));
+
+// Protect your API routes with auth middleware
+api.use('/api/*', authMiddleware);
+
+api.get('/api/me', async (c) => {
+  const user = await c.var.auth.getUser();
+  return c.json({ id: user.id, email: user.email });
+});
+
+export default api;
+`);
+    console.log(tui.muted('━'.repeat(60)));
+    console.log(tui.bold(' 2. Wrap your React app with AuthProvider:'));
+    console.log(tui.muted('━'.repeat(60)));
+    console.log(`
+import { AgentuityProvider } from '@agentuity/react';
+import { createAuthClient } from '@agentuity/auth/react';
+import { AuthProvider } from '@agentuity/auth';
+
+const authClient = createAuthClient();
+
+function App() {
+  return (
+    <AgentuityProvider>
+      <AuthProvider authClient={authClient}>
+        {/* your app */}
+      </AuthProvider>
+    </AgentuityProvider>
+  );
+}
+`);
+    console.log(tui.muted('━'.repeat(60)));
+    console.log(tui.bold(' 3. Access auth in agents via ctx.auth:'));
+    console.log(tui.muted('━'.repeat(60)));
+    console.log(`
+import { createAgent } from '@agentuity/runtime';
+
+export default createAgent('my-agent', {
+  schema: { input: s.object({ name: s.string() }), output: s.string() },
+  handler: async (ctx, input) => {
+    // ctx.auth is available when using auth middleware
+    if (ctx.auth) {
+      const user = await ctx.auth.getUser();
+      return \`Hello, \${user.email}!\`;
+    }
+    return 'Hello, anonymous!';
+  },
+});
+`);
+    tui.newline();
+    console.log(tui.muted('━'.repeat(60)));
+    tui.info('Checklist:');
+    console.log(`  ${tui.tuiColors.success('✓')} DATABASE_URL configured`);
+    console.log(`  ${tui.tuiColors.success('✓')} AGENTUITY_AUTH_SECRET configured`);
+    console.log(`  ${tui.tuiColors.success('✓')} Auth tables migrated`);
+    console.log(`  ${tui.tuiColors.success('✓')} Dependencies installed`);
+    console.log(`  ${tui.muted('○')} Wire Hono middleware`);
+    console.log(`  ${tui.muted('○')} Add auth routes (mountAuthRoutes at /api/auth/*)`);
+    console.log(`  ${tui.muted('○')} Wrap app with AuthProvider`);
+    tui.newline();
+}
+//# sourceMappingURL=shared.js.map

package/dist/cmd/project/auth/shared.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"shared.js","sourceRoot":"","sources":["../../../../src/cmd/project/auth/shared.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAClC,OAAO,EAAE,aAAa,EAAE,eAAe,EAAE,OAAO,EAAE,MAAM,mBAAmB,CAAC;AAC5E,OAAO,KAAK,GAAG,MAAM,cAAc,CAAC;AACpC,OAAO,EAAE,oBAAoB,EAAE,MAAM,iBAAiB,CAAC;AAGvD,OAAO,QAAQ,MAAM,UAAU,CAAC;AAUhC;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAAC,OAM5C;IACA,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,GAAG,OAAO,CAAC;IAC7D,MAAM,cAAc,GAAG,oBAAoB,CAAC,MAAM,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;IAElE,MAAM,SAAS,GAAG,MAAM,GAAG,CAAC,OAAO,CAAC;QACnC,OAAO,EAAE,0BAA0B,KAAK,OAAO,MAAM,EAAE;QACvD,cAAc,EAAE,IAAI;QACpB,QAAQ,EAAE,KAAK,IAAI,EAAE,CAAC,aAAa,CAAC,cAAc,EAAE,KAAK,EAAE,MAAM,CAAC;KAClE,CAAC,CAAC;IAEH,MAAM,SAAS,GAAG,SAAS,CAAC,EAAE,CAAC;IAE/B,sDAAsD;IACtD,IAAI,cAAkC,CAAC;IACvC,IAAI,WAAW,EAAE,CAAC;QACjB,MAAM,QAAQ,GAAG,WAAW,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC;QACvD,IAAI,QAAQ,EAAE,CAAC;YACd,cAAc,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC;QAC9B,CAAC;IACF,CAAC;IAGD,MAAM,OAAO,GAAa,EAAE,CAAC;IAE7B,6DAA6D;IAC7D,IAAI,WAAW,IAAI,cAAc,EAAE,CAAC;QACnC,OAAO,CAAC,IAAI,CAAC;YACZ,IAAI,EAAE,cAAc;YACpB,OAAO,EAAE,GAAG,GAAG,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,kCAAkC,cAAc,EAAE;SACxF,CAAC,CAAC;IACJ,CAAC;IAED,wBAAwB;IACxB,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,YAAY,EAAE,OAAO,EAAE,GAAG,CAAC,IAAI,CAAC,uBAAuB,CAAC,EAAE,CAAC,CAAC;IAEjF,sBAAsB;IACtB,OAAO,CAAC,IAAI,CACX,GAAG,SAAS;SACV,MAAM,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,IAAI,KAAK,cAAc,CAAC,CAAC,2BAA2B;SACtE,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QACb,IAAI,EAAE,EAAE,CAAC,IAAI;QACb,OAAO,EAAE,EAAE,CAAC,IAAI;KAChB,CAAC,CAAC,CACJ,CAAC;IAEF,MAAM,QAAQ,GAAG,MAAM,QAAQ,CAAC,MAAM,CAAuB;QAC5D,IAAI,EAAE,QAAQ;QACd,IAAI,EAAE,UAAU;QAChB,OAAO,EAAE,6BAA6B;QACtC,OAAO;KACP,CAAC,CAAC;IAEH,kCAAkC;IAClC,IAAI,QAAQ,CAAC,QAAQ,KAAK,cAAc,IAAI,WAAW,IAAI,cAAc,EAAE,CAAC;QAC3E,OAAO,EAAE,IAAI,EAAE,cAAc,EAAE,GAAG,EAAE,WAAW,EAAE,CAAC;IACnD,CAAC;IAED,IAAI,QAAQ,CAAC,QAAQ,KAAK,YAAY,EAAE,CAAC;QACxC,MAAM,OAAO,GAAG,MAAM,GAAG,CAAC,OAAO,CAAC;YACjC,OAAO,EAAE,wBAAwB,MAAM,EAAE;YACzC,cAAc,EAAE,IAAI;YACpB,QAAQ,EAAE,KAAK,IAAI,EAAE,CAAC,eAAe,CAAC,cAAc,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC;SACtF,CAAC,CAAC;QAEH,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1B,GAAG,CAAC,KAAK,CAAC,2BAA2B,CAAC,CAAC;QACxC,CAAC;QAED,MAAM,KAAK,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;QACzB,GAAG,CAAC,OAAO,CAAC,qBAAqB,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAEzD,MAAM,gBAAgB,GAAG,MAAM,aAAa,CAAC,cAAc,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC;QAC5E,MAAM,MAAM,GAAG,gBAAgB,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,KAAK,CAAC,IAAI,CAAC,CAAC;QAEtE,IAAI,CAAC,MAAM,EAAE,GAAG,EAAE,CAAC;YAClB,GAAG,CAAC,KAAK,CAAC,4CAA4C,CAAC,CAAC;QACzD,CAAC;QAED,OAAO,EAAE,IAAI,EAAE,KAAK,CAAC,IAAI,EAAE,GAAG,EAAE,MAAM,CAAC,GAAG,EAAE,CAAC;IAC9C,CAAC;IAED,MAAM,UAAU,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACvE,IAAI,CAAC,UAAU,EAAE,GAAG,EAAE,CAAC;QACtB,GAAG,CAAC,KAAK,CAAC,4CAA4C,CAAC,CAAC;IACzD,CAAC;IAED,OAAO,EAAE,IAAI,EAAE,UAAU,CAAC,IAAI,EAAE,GAAG,EAAE,UAAU,CAAC,GAAG,EAAE,CAAC;AACvD,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG;IAChC,iBAAiB,EAAE,QAAQ;IAC3B,aAAa,EAAE,QAAQ;IACvB,aAAa,EAAE,SAAS;CACf,CAAC;AAEX;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAAC,OAG5C;IACA,MAAM,EAAE,UAAU,EAAE,GAAG,OAAO,CAAC;IAC/B,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,CAAC;IAC9B,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,CAAC;IAElC,MAAM,eAAe,GAAG,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,cAAc,CAAC,CAAC;IAE9D,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,eAAe,CAAC,EAAE,CAAC;QACrC,GAAG,CAAC,KAAK,CAAC,4CAA4C,CAAC,CAAC;IACzD,CAAC;IAED,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,eAAe,EAAE,OAAO,CAAC,CAAC,CAAC;IAC1E,MAAM,IAAI,GAAG,WAAW,CAAC,YAAY,IAAI,EAAE,CAAC;IAE5C,MAAM,WAAW,GAAa,EAAE,CAAC;IAEjC,KAAK,MAAM,CAAC,GAAG,EAAE,OAAO,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,iBAAiB,CAAC,EAAE,CAAC;QAChE,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YAChB,WAAW,CAAC,IAAI,CAAC,GAAG,GAAG,IAAI,OAAO,EAAE,CAAC,CAAC;QACvC,CAAC;IACF,CAAC;IAED,IAAI,WAAW,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC9B,OAAO,KAAK,CAAC;IACd,CAAC;IAED,GAAG,CAAC,IAAI,CAAC,iCAAiC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEpE,MAAM,IAAI,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,SAAS,EAAE,GAAG,WAAW,CAAC,EAAE;QAC1D,GAAG,EAAE,UAAU;QACf,MAAM,EAAE,SAAS;QACjB,MAAM,EAAE,SAAS;KACjB,CAAC,CAAC;IAEH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC;IACnC,IAAI,QAAQ,KAAK,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,gCAAgC,QAAQ,EAAE,CAAC,CAAC;IAC7D,CAAC;IAED,GAAG,CAAC,OAAO,CAAC,wBAAwB,CAAC,CAAC;IACtC,OAAO,IAAI,CAAC;AACb,CAAC;AAOD;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CAAC,UAAkB;IAC1D,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,KAAK,EAAE,WAAW,CAAC,CAAC;IAC/D,IAAI,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,aAAa,CAAC,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC;QACrE,OAAO,YAAY,CAAC;IACrB,CAAC;IACD,OAAO,UAAU,CAAC;AACnB,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,cAAc,CAAC,UAAkB;IACtD,MAAM,eAAe,GAAG,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,mBAAmB,CAAC,CAAC;IACnE,MAAM,eAAe,GAAG,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,mBAAmB,CAAC,CAAC;IACnE,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,QAAQ,EAAE,eAAe,CAAC,CAAC;IAEtE,IAAI,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,MAAM,EAAE,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,CAAC;QAC9F,OAAO,SAAS,CAAC;IAClB,CAAC;IAED,IAAI,MAAM,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC;QAC3C,OAAO,QAAQ,CAAC;IACjB,CAAC;IAED,OAAO,MAAM,CAAC;AACf,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CAAC,UAAkB;IAC7D,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,UAAU,EAAE,4CAA4C,CAAC,CAAC;IAEvF,IAAI,CAAC,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,CAAC;QAC5C,MAAM,IAAI,KAAK,CACd,uCAAuC,UAAU,wCAAwC,CACzF,CAAC;IACH,CAAC;IAED,MAAM,IAAI,GAAG,GAAG,CAAC,KAAK,CACrB,CAAC,MAAM,EAAE,aAAa,EAAE,QAAQ,EAAE,sBAAsB,EAAE,YAAY,UAAU,EAAE,CAAC,EACnF;QACC,GAAG,EAAE,UAAU;QACf,MAAM,EAAE,MAAM;QACd,MAAM,EAAE,MAAM;KACd,CACD,CAAC;IAEF,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;QACpD,IAAI,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE;QAChC,IAAI,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE;QAChC,IAAI,CAAC,MAAM;KACX,CAAC,CAAC;IAEH,IAAI,QAAQ,KAAK,CAAC,EAAE,CAAC;QACpB,MAAM,QAAQ,GAAG,MAAM;aACrB,KAAK,CAAC,IAAI,CAAC;aACX,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC;aAClD,IAAI,CAAC,IAAI,CAAC;aACV,IAAI,EAAE,CAAC;QACT,MAAM,IAAI,KAAK,CAAC,uCAAuC,QAAQ,KAAK,QAAQ,EAAE,CAAC,CAAC;IACjF,CAAC;IAED,OAAO,cAAc,CAAC,MAAM,CAAC,CAAC;AAC/B,CAAC;AAED;;;;;;GAMG;AACH,SAAS,cAAc,CAAC,GAAW;IAClC,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC9B,MAAM,MAAM,GAAa,EAAE,CAAC;IAE5B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QAC1B,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAE5B,IAAI,OAAO,CAAC,UAAU,CAAC,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;YAC/E,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,eAAe,EAAE,6BAA6B,CAAC,CAAC,CAAC;QAC3E,CAAC;aAAM,IAAI,OAAO,CAAC,UAAU,CAAC,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;YACtF,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,eAAe,EAAE,6BAA6B,CAAC,CAAC,CAAC;QAC3E,CAAC;aAAM,IAAI,OAAO,CAAC,UAAU,CAAC,cAAc,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,CAAC;YACrF,MAAM,eAAe,GAAG,OAAO,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC;YAClE,IAAI,eAAe,EAAE,CAAC;gBACrB,MAAM,CAAC,IAAI,CACV,eAAe,OAAO,qDAAqD,CAC3E,CAAC;YACH,CAAC;iBAAM,CAAC;gBACP,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACnB,CAAC;QACF,CAAC;aAAM,CAAC;YACP,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACnB,CAAC;IACF,CAAC;IAED,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,kBAAkB,CAAC,GAAW;IAC7C,uDAAuD;IACvD,MAAM,UAAU,GAAa,EAAE,CAAC;IAChC,IAAI,OAAO,GAAG,EAAE,CAAC;IAEjB,KAAK,MAAM,IAAI,IAAI,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;QACpC,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;QAE5B,gCAAgC;QAChC,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YAC1C,SAAS;QACV,CAAC;QAED,OAAO,IAAI,IAAI,GAAG,IAAI,CAAC;QAEvB,qDAAqD;QACrD,IAAI,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YAC3B,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;YAC5B,IAAI,IAAI,IAAI,IAAI,KAAK,GAAG,EAAE,CAAC;gBAC1B,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACvB,CAAC;YACD,OAAO,GAAG,EAAE,CAAC;QACd,CAAC;IACF,CAAC;IAED,+BAA+B;IAC/B,IAAI,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC;QACpB,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC;IACjC,CAAC;IAED,OAAO,UAAU,CAAC;AACnB,CAAC;AAED;;;;GAIG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CAAC,OAOvC;IACA,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,YAAY,EAAE,GAAG,EAAE,GAAG,OAAO,CAAC;IACnE,MAAM,cAAc,GAAG,oBAAoB,CAAC,MAAM,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC;IAElE,MAAM,UAAU,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;IAE3C,MAAM,GAAG,CAAC,OAAO,CAAC;QACjB,OAAO,EAAE,qCAAqC,YAAY,MAAM,UAAU,CAAC,MAAM,kBAAkB;QACnG,cAAc,EAAE,IAAI;QACpB,QAAQ,EAAE,KAAK,IAAI,EAAE;YACpB,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;gBACpC,MAAM,OAAO,CAAC,cAAc,EAAE;oBAC7B,QAAQ,EAAE,YAAY;oBACtB,KAAK,EAAE,SAAS;oBAChB,KAAK;oBACL,MAAM;iBACN,CAAC,CAAC;YACJ,CAAC;QACF,CAAC;KACD,CAAC,CAAC;IAEH,GAAG,CAAC,OAAO,CAAC,0BAA0B,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC,CAAC;AACjE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,uBAAuB;IACtC,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA4EP,CAAC;AACF,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,wBAAwB;IACvC,GAAG,CAAC,OAAO,EAAE,CAAC;IACd,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,yCAAyC,CAAC,CAAC,CAAC;IAC9D,GAAG,CAAC,OAAO,EAAE,CAAC;IAEd,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACvC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,sDAAsD,CAAC,CAAC,CAAC;IAC9E,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACvC,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;;;;;CAoBZ,CAAC,CAAC;IAEF,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACvC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,4CAA4C,CAAC,CAAC,CAAC;IACpE,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACvC,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;;;CAgBZ,CAAC,CAAC;IAEF,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACvC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,yCAAyC,CAAC,CAAC,CAAC;IACjE,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACvC,OAAO,CAAC,GAAG,CAAC;;;;;;;;;;;;;;CAcZ,CAAC,CAAC;IAEF,GAAG,CAAC,OAAO,EAAE,CAAC;IACd,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACvC,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IACvB,OAAO,CAAC,GAAG,CAAC,KAAK,GAAG,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,0BAA0B,CAAC,CAAC;IACvE,OAAO,CAAC,GAAG,CAAC,KAAK,GAAG,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,mCAAmC,CAAC,CAAC;IAChF,OAAO,CAAC,GAAG,CAAC,KAAK,GAAG,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;IACpE,OAAO,CAAC,GAAG,CAAC,KAAK,GAAG,CAAC,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAC;IACtE,OAAO,CAAC,GAAG,CAAC,KAAK,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;IACxD,OAAO,CAAC,GAAG,CAAC,KAAK,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,mDAAmD,CAAC,CAAC;IACpF,OAAO,CAAC,GAAG,CAAC,KAAK,GAAG,CAAC,KAAK,CAAC,GAAG,CAAC,6BAA6B,CAAC,CAAC;IAC9D,GAAG,CAAC,OAAO,EAAE,CAAC;AACf,CAAC"}

package/dist/cmd/project/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/cmd/project/index.ts"],"names":[],"mappings":"AAOA,eAAO,MAAM,OAAO,mCASlB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/cmd/project/index.ts"],"names":[],"mappings":"AAQA,eAAO,MAAM,OAAO,mCAgBlB,CAAC"}

package/dist/cmd/project/index.js

@@ -3,6 +3,7 @@ import { createProjectSubcommand } from './create';
 import { listSubcommand } from './list';
 import { deleteSubcommand } from './delete';
 import { showSubcommand } from './show';
+import { authCommand } from './auth';
 import { getCommand } from '../../command-prefix';
 export const command = createCommand({
     name: 'project',
@@ -11,7 +12,14 @@ export const command = createCommand({
     examples: [
         { command: getCommand('project create my-agent'), description: 'Create a new project' },
         { command: getCommand('project list'), description: 'List all projects' },
+        { command: getCommand('project auth init'), description: 'Set up Agentuity Auth' },
+    ],
+    subcommands: [
+        createProjectSubcommand,
+        listSubcommand,
+        deleteSubcommand,
+        showSubcommand,
+        authCommand,
     ],
-    subcommands: [createProjectSubcommand, listSubcommand, deleteSubcommand, showSubcommand],
 });
 //# sourceMappingURL=index.js.map

package/dist/cmd/project/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/cmd/project/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAC5C,OAAO,EAAE,uBAAuB,EAAE,MAAM,UAAU,CAAC;AACnD,OAAO,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AACxC,OAAO,EAAE,gBAAgB,EAAE,MAAM,UAAU,CAAC;AAC5C,OAAO,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AACxC,OAAO,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AAElD,MAAM,CAAC,MAAM,OAAO,GAAG,aAAa,CAAC;IACpC,IAAI,EAAE,SAAS;IACf,WAAW,EAAE,0BAA0B;IACvC,IAAI,EAAE,CAAC,MAAM,EAAE,eAAe,CAAC;IAC/B,QAAQ,EAAE;QACT,EAAE,OAAO,EAAE,UAAU,CAAC,yBAAyB,CAAC,EAAE,WAAW,EAAE,sBAAsB,EAAE;QACvF,EAAE,OAAO,EAAE,UAAU,CAAC,cAAc,CAAC,EAAE,WAAW,EAAE,mBAAmB,EAAE;KACzE;IACD,WAAW,EAAE,CAAC,uBAAuB,EAAE,cAAc,EAAE,gBAAgB,EAAE,cAAc,CAAC;CACxF,CAAC,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/cmd/project/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAC5C,OAAO,EAAE,uBAAuB,EAAE,MAAM,UAAU,CAAC;AACnD,OAAO,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AACxC,OAAO,EAAE,gBAAgB,EAAE,MAAM,UAAU,CAAC;AAC5C,OAAO,EAAE,cAAc,EAAE,MAAM,QAAQ,CAAC;AACxC,OAAO,EAAE,WAAW,EAAE,MAAM,QAAQ,CAAC;AACrC,OAAO,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AAElD,MAAM,CAAC,MAAM,OAAO,GAAG,aAAa,CAAC;IACpC,IAAI,EAAE,SAAS;IACf,WAAW,EAAE,0BAA0B;IACvC,IAAI,EAAE,CAAC,MAAM,EAAE,eAAe,CAAC;IAC/B,QAAQ,EAAE;QACT,EAAE,OAAO,EAAE,UAAU,CAAC,yBAAyB,CAAC,EAAE,WAAW,EAAE,sBAAsB,EAAE;QACvF,EAAE,OAAO,EAAE,UAAU,CAAC,cAAc,CAAC,EAAE,WAAW,EAAE,mBAAmB,EAAE;QACzE,EAAE,OAAO,EAAE,UAAU,CAAC,mBAAmB,CAAC,EAAE,WAAW,EAAE,uBAAuB,EAAE;KAClF;IACD,WAAW,EAAE;QACZ,uBAAuB;QACvB,cAAc;QACd,gBAAgB;QAChB,cAAc;QACd,WAAW;KACX;CACD,CAAC,CAAC"}

package/dist/cmd/project/template-flow.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"template-flow.d.ts","sourceRoot":"","sources":["../../../src/cmd/project/template-flow.ts"],"names":[],"mappings":"AAaA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,iBAAiB,CAAC;AAM9C,OAAO,EAAE,KAAK,QAAQ,EAAE,KAAK,MAAM,EAAE,MAAM,aAAa,CAAC;AAEzD,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAY3C,UAAU,iBAAiB;IAC1B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,SAAS,EAAE,OAAO,CAAC;IACnB,OAAO,EAAE,OAAO,CAAC;IACjB,WAAW,EAAE,OAAO,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,CAAC,EAAE,QAAQ,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,SAAS,CAAC;CACtB;AAED,wBAAsB,aAAa,CAAC,OAAO,EAAE,iBAAiB,GAAG,OAAO,CAAC,IAAI,CAAC,CA4a7E"}
+{"version":3,"file":"template-flow.d.ts","sourceRoot":"","sources":["../../../src/cmd/project/template-flow.ts"],"names":[],"mappings":"AAaA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,iBAAiB,CAAC;AAM9C,OAAO,EAAE,KAAK,QAAQ,EAAE,KAAK,MAAM,EAAE,MAAM,aAAa,CAAC;AAEzD,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAmB3C,UAAU,iBAAiB;IAC1B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,SAAS,EAAE,OAAO,CAAC;IACnB,OAAO,EAAE,OAAO,CAAC;IACjB,WAAW,EAAE,OAAO,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,CAAC,EAAE,QAAQ,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,SAAS,CAAC;CACtB;AAED,wBAAsB,aAAa,CAAC,OAAO,EAAE,iBAAiB,GAAG,OAAO,CAAC,IAAI,CAAC,CAkiB7E"}

package/dist/cmd/project/template-flow.js

@@ -12,6 +12,7 @@ import { ErrorCode } from '../../errors';
 import { createProjectConfig } from '../../config';
 import { findExistingEnvFile, readEnvFile, filterAgentuitySdkKeys, splitEnvAndSecrets, addResourceEnvVars, } from '../../env-util';
 import { promptForDNS } from '../../domain';
+import { ensureAuthDependencies, runAuthMigrations, generateAuthFileContent, printIntegrationExamples, generateAuthSchemaSql, } from './auth/shared';
 export async function runCreateFlow(options) {
     const { projectName: initialProjectName, dir: targetDir, template: initialTemplate, templateDir, templateBranch, skipPrompts, logger, auth, config, orgId: selectedOrgId, region, apiClient, domains, } = options;
     // Fetch available templates
@@ -278,6 +279,92 @@ export async function runCreateFlow(options) {
             }
         }
     }
+    // Auth setup - either from template or user choice
+    const templateHasAuth = selectedTemplate.id === 'agentuity-auth';
+    let authEnabled = templateHasAuth; // Auth templates have auth enabled by default
+    let authDatabaseName;
+    let authDatabaseUrl;
+    // For non-auth templates, ask if they want to enable auth
+    if (auth && catalystClient && orgId && region && !skipPrompts && !templateHasAuth) {
+        const enableAuth = await prompt.select({
+            message: 'Enable Agentuity Authentication?',
+            options: [
+                { value: 'no', label: "No, I'll add auth later" },
+                { value: 'yes', label: 'Yes, set up Agentuity Auth' },
+            ],
+        });
+        if (enableAuth === 'yes') {
+            authEnabled = true;
+        }
+    }
+    // Set up database and secret for any auth-enabled project
+    if (authEnabled && auth && catalystClient && orgId && region && !skipPrompts) {
+        // If a database was already selected/created above, use it for auth
+        if (resourceEnvVars.DATABASE_URL) {
+            authDatabaseUrl = resourceEnvVars.DATABASE_URL;
+            // Extract database name from URL using proper URL parsing
+            try {
+                const dbUrl = new URL(authDatabaseUrl);
+                const dbName = dbUrl.pathname.replace(/^\/+/, ''); // Remove leading slashes
+                // Validate: non-empty and contains only safe characters
+                if (dbName && /^[A-Za-z0-9_-]+$/.test(dbName)) {
+                    authDatabaseName = dbName;
+                }
+            }
+            catch {
+                // Invalid URL format, authDatabaseName stays undefined
+            }
+        }
+        else {
+            // No database selected yet, create one for auth
+            const created = await tui.spinner({
+                message: 'Provisioning database for auth',
+                clearOnSuccess: true,
+                callback: async () => {
+                    return createResources(catalystClient, orgId, region, [{ type: 'db' }]);
+                },
+            });
+            authDatabaseName = created[0].name;
+            // Get env vars from created resource
+            if (created[0]?.env) {
+                authDatabaseUrl = created[0].env.DATABASE_URL;
+                // Also add to resourceEnvVars if not already set
+                if (!resourceEnvVars.DATABASE_URL) {
+                    Object.assign(resourceEnvVars, created[0].env);
+                }
+            }
+        }
+        // Install auth dependencies (skip for agentuity-auth template which has them)
+        if (!templateHasAuth) {
+            await ensureAuthDependencies({ projectDir: dest, logger });
+            // Generate auth.ts
+            const authFilePath = resolve(dest, 'src', 'auth.ts');
+            if (!existsSync(authFilePath)) {
+                const srcDir = resolve(dest, 'src');
+                if (!existsSync(srcDir)) {
+                    await Bun.write(resolve(srcDir, '.gitkeep'), '');
+                }
+                await Bun.write(authFilePath, generateAuthFileContent());
+                tui.success('Created src/auth.ts');
+            }
+        }
+        // Run migrations
+        if (authDatabaseName) {
+            const sql = await tui.spinner({
+                message: 'Preparing auth database schema...',
+                clearOnSuccess: true,
+                callback: () => generateAuthSchemaSql(dest),
+            });
+            await runAuthMigrations({
+                logger,
+                auth,
+                orgId,
+                region,
+                databaseName: authDatabaseName,
+                sql,
+            });
+        }
+    }
     let projectId;
     if (auth && apiClient && orgId) {
         const cloudRegion = region ?? process.env.AGENTUITY_REGION ?? 'usc';
@@ -312,9 +399,24 @@ export async function runCreateFlow(options) {
                 });
             },
         });
+        // Add auth secret to resourceEnvVars if auth is enabled
+        if (authEnabled && !resourceEnvVars.AGENTUITY_AUTH_SECRET) {
+            const devSecret = `dev-${crypto.randomUUID()}`;
+            resourceEnvVars.AGENTUITY_AUTH_SECRET = devSecret;
+        }
         // Write resource environment variables to .env
         if (Object.keys(resourceEnvVars).length > 0) {
             await addResourceEnvVars(dest, resourceEnvVars);
+            // Show user feedback for auth-related env vars
+            if (authEnabled) {
+                if (resourceEnvVars.DATABASE_URL) {
+                    tui.success('DATABASE_URL added to .env');
+                }
+                if (resourceEnvVars.AGENTUITY_AUTH_SECRET) {
+                    tui.success('AGENTUITY_AUTH_SECRET added to .env');
+                    tui.info(`Generate one with: ${tui.muted('npx @better-auth/cli secret')} or ${tui.muted('openssl rand -hex 32')}`);
+                }
+            }
         }
         // After registration, push any existing env/secrets from .env
         if (projectId) {
@@ -373,6 +475,10 @@ export async function runCreateFlow(options) {
             await promptForDNS(projectId, _domains, config);
         }
     }
+    // Print auth integration examples if auth was enabled (skip for auth template - already set up)
+    if (authEnabled && !templateHasAuth) {
+        printIntegrationExamples();
+    }
 }
 /**
  * Sanitize a project name to create a safe directory/package name