@kevinmarrec/create-app 0.3.0 → 0.5.0

package/dist/index.js

@@ -8,7 +8,7 @@ import { x } from "tinyexec";
 import fs from "node:fs/promises";
 
 //#region package.json
-var version = "0.3.0";
+var version = "0.5.0";
 
 //#endregion
 //#region src/utils/fs.ts

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@kevinmarrec/create-app",
   "type": "module",
-  "version": "0.3.0",
+  "version": "0.5.0",
   "description": "CLI that scaffolds an opinionated Bun & Vue fullstack application.",
   "author": "Kevin Marrec <kevin@marrec.io>",
   "license": "MIT",
@@ -49,19 +49,19 @@
   },
   "devDependencies": {
     "@faker-js/faker": "^10.0.0",
-    "@kevinmarrec/eslint-config": "^1.0.0",
-    "@kevinmarrec/stylelint-config": "^1.0.0",
-    "@kevinmarrec/tsconfig": "^1.0.0",
-    "@types/bun": "^1.2.21",
+    "@kevinmarrec/eslint-config": "^1.4.0",
+    "@kevinmarrec/stylelint-config": "^1.2.0",
+    "@kevinmarrec/tsconfig": "^1.1.0",
+    "@types/bun": "^1.2.22",
     "@vitest/coverage-v8": "^3.2.4",
     "bumpp": "^10.2.3",
-    "eslint": "^9.34.0",
-    "knip": "^5.63.0",
-    "stylelint": "^16.23.1",
-    "taze": "^19.3.0",
-    "tsdown": "^0.14.2",
+    "eslint": "^9.36.0",
+    "knip": "^5.63.1",
+    "stylelint": "^16.24.0",
+    "taze": "^19.7.0",
+    "tsdown": "^0.15.2",
     "typescript": "^5.9.2",
     "vitest": "^3.2.4",
-    "vue-tsc": "^3.0.6"
+    "vue-tsc": "^3.0.7"
   }
 }

package/template/backend/.env.development

@@ -1,2 +1,4 @@
-NODE_ENV=development
+BETTER_AUTH_SECRET=foo
+BETTER_AUTH_URL=http://localhost:5137
 DATABASE_URL=dev.db
+NODE_ENV=development

package/template/backend/package.json

@@ -3,20 +3,21 @@
   "type": "module",
   "private": true,
   "scripts": {
-    "dev": "bun --watch --no-clear-screen src/server.ts",
-    "build": "bun build src/server.ts --compile --minify --sourcemap --outfile dist/server",
-    "db:generate": "bun --bun run drizzle-kit generate --config src/config/drizzle.ts",
-    "db:migrate": "bun --bun run drizzle-kit migrate --config src/config/drizzle.ts"
+    "dev": "bun --watch --no-clear-screen src/main.ts",
+    "build": "bun build src/main.ts --compile --minify --sourcemap --outfile dist/server",
+    "db:generate": "bun --bun run drizzle-kit generate --config src/database/drizzle.config.ts",
+    "db:migrate": "bun --bun run drizzle-kit migrate --config src/database/drizzle.config.ts"
   },
   "dependencies": {
-    "@orpc/server": "^1.8.5",
+    "@orpc/server": "^1.8.9",
+    "better-auth": "^1.3.12",
     "drizzle-orm": "^0.44.5",
-    "pino": "^9.9.0",
+    "pino": "^9.10.0",
     "valibot": "^1.1.0"
   },
   "devDependencies": {
-    "@libsql/client": "^0.15.14",
-    "@types/bun": "^1.2.21",
+    "@libsql/client": "^0.15.15",
+    "@types/bun": "^1.2.22",
     "drizzle-kit": "^0.31.4",
     "pino-pretty": "^13.1.1"
   }

package/template/backend/src/auth/index.ts

@@ -0,0 +1,23 @@
+import { betterAuth } from 'better-auth'
+import { type DB, drizzleAdapter } from 'better-auth/adapters/drizzle'
+import type { BaseLogger } from 'pino'
+
+export function createBetterAuth({ db, logger }: { db: DB, logger: BaseLogger }) {
+  return betterAuth({
+    database: drizzleAdapter(db, {
+      provider: 'sqlite',
+      usePlural: true,
+    }),
+    logger: {
+      log: (level, message) => {
+        logger[level](message)
+      },
+    },
+    emailAndPassword: {
+      enabled: true,
+    },
+  })
+}
+
+export type Auth = ReturnType<typeof createBetterAuth>
+export type Session = Auth['$Infer']['Session']

package/template/backend/src/core/builder.ts

@@ -0,0 +1,14 @@
+import { os } from '@orpc/server'
+
+import type { Context } from './context'
+import { requiredAuthMiddleware } from './middlewares/auth'
+
+export const pub = os
+  .$context<Context>()
+  .errors({
+    UNAUTHORIZED: { status: 401 },
+  })
+
+/** @beta */
+export const authed = pub
+  .use(requiredAuthMiddleware)

package/template/backend/src/core/context.ts

@@ -0,0 +1,10 @@
+import type { Auth } from '@backend/auth'
+import type { Database } from '@backend/database'
+import type { Logger } from '@backend/utils/logger'
+import type { RequestHeadersPluginContext, ResponseHeadersPluginContext } from '@orpc/server/plugins'
+
+export interface Context extends RequestHeadersPluginContext, ResponseHeadersPluginContext {
+  auth: Auth
+  db: Database
+  logger: Logger
+}

package/template/backend/src/core/index.ts

@@ -0,0 +1,33 @@
+import { onError, ORPCError } from '@orpc/server'
+import { RPCHandler } from '@orpc/server/fetch'
+import { CORSPlugin, RequestHeadersPlugin, ResponseHeadersPlugin } from '@orpc/server/plugins'
+import { APIError } from 'better-auth/api'
+
+import { router } from './router'
+
+export const rpcHandler = new RPCHandler(router, {
+  plugins: [
+    new CORSPlugin({
+      credentials: true,
+      maxAge: 7200, // 2 hours https://developer.mozilla.org/en-US/docs/Web/HTTP/Reference/Headers/Access-Control-Max-Age
+    }),
+    new RequestHeadersPlugin(),
+    new ResponseHeadersPlugin(),
+  ],
+  clientInterceptors: [
+    onError((error, { context }) => {
+      if (error instanceof APIError) {
+        throw new ORPCError(error.body?.code ?? 'INTERNAL_SERVER_ERROR', {
+          status: error.statusCode,
+          message: error.body?.message,
+        })
+      }
+
+      if (error instanceof ORPCError) {
+        throw error
+      }
+
+      context.logger.error(error)
+    }),
+  ],
+})

package/template/backend/src/core/middlewares/auth.ts

@@ -0,0 +1,37 @@
+import type { Session } from '@backend/auth'
+import type { Context } from '@backend/core/context'
+import { copyHeaders } from '@backend/utils/headers'
+import { ORPCError, os } from '@orpc/server'
+
+export const authMiddleware = os
+  .$context<Context>()
+  .middleware(async ({ context, next }) => {
+    const response = await context.auth.api.getSession({
+      headers: context.reqHeaders ?? new Headers(),
+      asResponse: true,
+    })
+
+    const session = await response.json() as Session | null
+
+    copyHeaders(response.headers, context.resHeaders)
+
+    return next({
+      context: {
+        user: session ? session.user : null,
+      },
+    })
+  })
+
+export const requiredAuthMiddleware = authMiddleware
+  .concat(async ({ context, next }) => {
+    if (!context.user) {
+      throw new ORPCError('UNAUTHORIZED')
+    }
+
+    return next({
+      context: {
+        user: context.user,
+      },
+    })
+  },
+  )

package/template/backend/src/core/router/auth.ts

@@ -0,0 +1,55 @@
+import { pub } from '@backend/core/builder'
+import { authMiddleware } from '@backend/core/middlewares/auth'
+import { copyHeaders } from '@backend/utils/headers'
+import * as v from 'valibot'
+
+export const getCurrentUser = pub
+  .use(authMiddleware)
+  .handler(async ({ context }) => context.user)
+
+export const signUp = pub
+  .input(v.object({
+    name: v.string(),
+    email: v.pipe(v.string(), v.email()),
+    password: v.string(),
+    rememberMe: v.optional(v.boolean(), true),
+  }))
+  .handler(async ({ input, context: { resHeaders, auth } }) => {
+    const { headers, response } = await auth.api.signUpEmail({
+      body: input,
+      returnHeaders: true,
+    })
+
+    copyHeaders(headers, resHeaders)
+
+    return response.user
+  })
+
+export const signIn = pub
+  .input(v.object({
+    email: v.pipe(v.string(), v.email()),
+    password: v.string(),
+    rememberMe: v.optional(v.boolean(), true),
+  }))
+  .handler(async ({ input, context: { resHeaders, auth } }) => {
+    const { headers, response } = await auth.api.signInEmail({
+      body: input,
+      returnHeaders: true,
+    })
+
+    copyHeaders(headers, resHeaders)
+
+    return response.user
+  })
+
+export const signOut = pub
+  .handler(async ({ context: { auth, reqHeaders, resHeaders } }) => {
+    const { headers, response } = await auth.api.signOut({
+      headers: reqHeaders ?? new Headers(),
+      returnHeaders: true,
+    })
+
+    copyHeaders(headers, resHeaders)
+
+    return response
+  })

package/template/backend/src/{router → core/router}/index.ts

@@ -1,9 +1,9 @@
-import { welcome } from './welcome'
+import * as auth from './auth'
 
 export type { RouterClient } from '@orpc/server'
 
 export const router = {
-  welcome,
+  auth,
 }
 
 export type Router = typeof router

package/template/backend/src/database/drizzle.config.ts

@@ -0,0 +1,9 @@
+import { defineConfig } from 'drizzle-kit'
+
+export default defineConfig({
+  casing: 'snake_case',
+  dialect: 'sqlite',
+  dbCredentials: { url: import.meta.env.DATABASE_URL },
+  schema: 'src/database/schema',
+  out: 'src/database/migrations',
+})

package/template/backend/src/database/index.ts

@@ -1,16 +1,16 @@
-import { url } from '@backend/config/database'
-import { logger } from '@backend/logger'
+import { logger } from '@backend/utils/logger'
 import { drizzle } from 'drizzle-orm/bun-sqlite'
 
 import * as schema from './schema'
 
-export const db = drizzle(url, {
+export const db = drizzle(import.meta.env.DATABASE_URL, {
+  casing: 'snake_case',
   schema,
   logger: {
     logQuery: (query, params) => {
       let msg = `[SQL] ${query}`
       msg += params.length ? ` [${params}]` : ''
-      logger.info(msg)
+      logger.debug(msg)
     },
   },
 })

package/template/backend/src/database/migrations/0000_violet_enchantress.sql

@@ -0,0 +1,49 @@
+CREATE TABLE `accounts` (
+	`id` text PRIMARY KEY NOT NULL,
+	`user_id` text NOT NULL,
+	`account_id` text NOT NULL,
+	`provider_id` text NOT NULL,
+	`id_token` text,
+	`access_token` text,
+	`access_token_expires_at` integer,
+	`refresh_token` text,
+	`refresh_token_expires_at` integer,
+	`scope` text,
+	`password` text,
+	`created_at` integer NOT NULL,
+	`updated_at` integer NOT NULL,
+	FOREIGN KEY (`user_id`) REFERENCES `users`(`id`) ON UPDATE no action ON DELETE cascade
+);
+--> statement-breakpoint
+CREATE TABLE `sessions` (
+	`id` text PRIMARY KEY NOT NULL,
+	`user_id` text NOT NULL,
+	`token` text NOT NULL,
+	`expires_at` integer NOT NULL,
+	`ip_address` text,
+	`user_agent` text,
+	`created_at` integer NOT NULL,
+	`updated_at` integer NOT NULL,
+	FOREIGN KEY (`user_id`) REFERENCES `users`(`id`) ON UPDATE no action ON DELETE cascade
+);
+--> statement-breakpoint
+CREATE UNIQUE INDEX `sessions_token_unique` ON `sessions` (`token`);--> statement-breakpoint
+CREATE TABLE `users` (
+	`id` text PRIMARY KEY NOT NULL,
+	`name` text NOT NULL,
+	`email` text NOT NULL,
+	`email_verified` integer DEFAULT false NOT NULL,
+	`image` text,
+	`created_at` integer NOT NULL,
+	`updated_at` integer NOT NULL
+);
+--> statement-breakpoint
+CREATE UNIQUE INDEX `users_email_unique` ON `users` (`email`);--> statement-breakpoint
+CREATE TABLE `verifications` (
+	`id` text PRIMARY KEY NOT NULL,
+	`identifier` text NOT NULL,
+	`value` text NOT NULL,
+	`expires_at` integer NOT NULL,
+	`created_at` integer NOT NULL,
+	`updated_at` integer NOT NULL
+);

package/template/backend/src/database/migrations/meta/0000_snapshot.json

@@ -1,18 +1,221 @@
 {
   "version": "6",
   "dialect": "sqlite",
-  "id": "2570ada9-1704-45ba-b294-429e89874a79",
+  "id": "28ff26ce-b417-459e-b30f-4ec14ab62876",
   "prevId": "00000000-0000-0000-0000-000000000000",
   "tables": {
+    "accounts": {
+      "name": "accounts",
+      "columns": {
+        "id": {
+          "name": "id",
+          "type": "text",
+          "primaryKey": true,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "user_id": {
+          "name": "user_id",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "account_id": {
+          "name": "account_id",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "provider_id": {
+          "name": "provider_id",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "id_token": {
+          "name": "id_token",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": false,
+          "autoincrement": false
+        },
+        "access_token": {
+          "name": "access_token",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": false,
+          "autoincrement": false
+        },
+        "access_token_expires_at": {
+          "name": "access_token_expires_at",
+          "type": "integer",
+          "primaryKey": false,
+          "notNull": false,
+          "autoincrement": false
+        },
+        "refresh_token": {
+          "name": "refresh_token",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": false,
+          "autoincrement": false
+        },
+        "refresh_token_expires_at": {
+          "name": "refresh_token_expires_at",
+          "type": "integer",
+          "primaryKey": false,
+          "notNull": false,
+          "autoincrement": false
+        },
+        "scope": {
+          "name": "scope",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": false,
+          "autoincrement": false
+        },
+        "password": {
+          "name": "password",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": false,
+          "autoincrement": false
+        },
+        "created_at": {
+          "name": "created_at",
+          "type": "integer",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "updated_at": {
+          "name": "updated_at",
+          "type": "integer",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        }
+      },
+      "indexes": {},
+      "foreignKeys": {
+        "accounts_user_id_users_id_fk": {
+          "name": "accounts_user_id_users_id_fk",
+          "tableFrom": "accounts",
+          "tableTo": "users",
+          "columnsFrom": [
+            "user_id"
+          ],
+          "columnsTo": [
+            "id"
+          ],
+          "onDelete": "cascade",
+          "onUpdate": "no action"
+        }
+      },
+      "compositePrimaryKeys": {},
+      "uniqueConstraints": {},
+      "checkConstraints": {}
+    },
+    "sessions": {
+      "name": "sessions",
+      "columns": {
+        "id": {
+          "name": "id",
+          "type": "text",
+          "primaryKey": true,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "user_id": {
+          "name": "user_id",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "token": {
+          "name": "token",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "expires_at": {
+          "name": "expires_at",
+          "type": "integer",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "ip_address": {
+          "name": "ip_address",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": false,
+          "autoincrement": false
+        },
+        "user_agent": {
+          "name": "user_agent",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": false,
+          "autoincrement": false
+        },
+        "created_at": {
+          "name": "created_at",
+          "type": "integer",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "updated_at": {
+          "name": "updated_at",
+          "type": "integer",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        }
+      },
+      "indexes": {
+        "sessions_token_unique": {
+          "name": "sessions_token_unique",
+          "columns": [
+            "token"
+          ],
+          "isUnique": true
+        }
+      },
+      "foreignKeys": {
+        "sessions_user_id_users_id_fk": {
+          "name": "sessions_user_id_users_id_fk",
+          "tableFrom": "sessions",
+          "tableTo": "users",
+          "columnsFrom": [
+            "user_id"
+          ],
+          "columnsTo": [
+            "id"
+          ],
+          "onDelete": "cascade",
+          "onUpdate": "no action"
+        }
+      },
+      "compositePrimaryKeys": {},
+      "uniqueConstraints": {},
+      "checkConstraints": {}
+    },
     "users": {
       "name": "users",
       "columns": {
         "id": {
           "name": "id",
-          "type": "integer",
+          "type": "text",
           "primaryKey": true,
           "notNull": true,
-          "autoincrement": true
+          "autoincrement": false
         },
         "name": {
           "name": "name",
@@ -21,15 +224,97 @@
           "notNull": true,
           "autoincrement": false
         },
-        "createdAt": {
-          "name": "createdAt",
+        "email": {
+          "name": "email",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "email_verified": {
+          "name": "email_verified",
+          "type": "integer",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false,
+          "default": false
+        },
+        "image": {
+          "name": "image",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": false,
+          "autoincrement": false
+        },
+        "created_at": {
+          "name": "created_at",
+          "type": "integer",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "updated_at": {
+          "name": "updated_at",
+          "type": "integer",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        }
+      },
+      "indexes": {
+        "users_email_unique": {
+          "name": "users_email_unique",
+          "columns": [
+            "email"
+          ],
+          "isUnique": true
+        }
+      },
+      "foreignKeys": {},
+      "compositePrimaryKeys": {},
+      "uniqueConstraints": {},
+      "checkConstraints": {}
+    },
+    "verifications": {
+      "name": "verifications",
+      "columns": {
+        "id": {
+          "name": "id",
+          "type": "text",
+          "primaryKey": true,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "identifier": {
+          "name": "identifier",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "value": {
+          "name": "value",
+          "type": "text",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "expires_at": {
+          "name": "expires_at",
+          "type": "integer",
+          "primaryKey": false,
+          "notNull": true,
+          "autoincrement": false
+        },
+        "created_at": {
+          "name": "created_at",
           "type": "integer",
           "primaryKey": false,
           "notNull": true,
           "autoincrement": false
         },
-        "updatedAt": {
-          "name": "updatedAt",
+        "updated_at": {
+          "name": "updated_at",
           "type": "integer",
           "primaryKey": false,
           "notNull": true,

package/template/backend/src/database/migrations/meta/_journal.json

@@ -5,8 +5,8 @@
     {
       "idx": 0,
       "version": "6",
-      "when": 1751572351628,
-      "tag": "0000_white_bishop",
+      "when": 1756502742132,
+      "tag": "0000_violet_enchantress",
       "breakpoints": true
     }
   ]

package/template/backend/src/database/schema/accounts.ts

@@ -0,0 +1,20 @@
+import { sqliteTable } from 'drizzle-orm/sqlite-core'
+
+import { users } from './users'
+
+// https://www.better-auth.com/docs/concepts/database#account
+export const accounts = sqliteTable('accounts', t => ({
+  id: t.text().primaryKey(),
+  userId: t.text().notNull().references(() => users.id, { onDelete: 'cascade' }),
+  accountId: t.text().notNull(),
+  providerId: t.text().notNull(),
+  idToken: t.text(),
+  accessToken: t.text(),
+  accessTokenExpiresAt: t.integer({ mode: 'timestamp' }),
+  refreshToken: t.text(),
+  refreshTokenExpiresAt: t.integer({ mode: 'timestamp' }),
+  scope: t.text(),
+  password: t.text(),
+  createdAt: t.integer({ mode: 'timestamp' }).notNull().$defaultFn(() => new Date()),
+  updatedAt: t.integer({ mode: 'timestamp' }).notNull().$defaultFn(() => new Date()).$onUpdate(() => new Date()),
+}))

package/template/backend/src/database/schema/index.ts

@@ -1 +1,4 @@
+export * from './accounts'
+export * from './sessions'
 export * from './users'
+export * from './verifications'

package/template/backend/src/database/schema/sessions.ts

@@ -0,0 +1,15 @@
+import { sqliteTable } from 'drizzle-orm/sqlite-core'
+
+import { users } from './users'
+
+// https://www.better-auth.com/docs/concepts/database#session
+export const sessions = sqliteTable('sessions', t => ({
+  id: t.text().primaryKey(),
+  userId: t.text().notNull().references(() => users.id, { onDelete: 'cascade' }),
+  token: t.text().notNull().unique(),
+  expiresAt: t.integer({ mode: 'timestamp' }).notNull(),
+  ipAddress: t.text(),
+  userAgent: t.text(),
+  createdAt: t.integer({ mode: 'timestamp' }).notNull().$defaultFn(() => new Date()),
+  updatedAt: t.integer({ mode: 'timestamp' }).notNull().$defaultFn(() => new Date()).$onUpdate(() => new Date()),
+}))

package/template/backend/src/database/schema/users.ts

@@ -1,8 +1,12 @@
 import { sqliteTable } from 'drizzle-orm/sqlite-core'
 
+// https://www.better-auth.com/docs/concepts/database#user
 export const users = sqliteTable('users', t => ({
-  id: t.integer().primaryKey({ autoIncrement: true }),
+  id: t.text().primaryKey(),
   name: t.text().notNull(),
-  createdAt: t.integer({ mode: 'timestamp_ms' }).notNull().$defaultFn(() => new Date()),
-  updatedAt: t.integer({ mode: 'timestamp_ms' }).notNull().$defaultFn(() => new Date()).$onUpdate(() => new Date()),
+  email: t.text().notNull().unique(),
+  emailVerified: t.integer({ mode: 'boolean' }).notNull().default(false),
+  image: t.text(),
+  createdAt: t.integer({ mode: 'timestamp' }).notNull().$defaultFn(() => new Date()),
+  updatedAt: t.integer({ mode: 'timestamp' }).notNull().$defaultFn(() => new Date()).$onUpdate(() => new Date()),
 }))

package/template/backend/src/database/schema/verifications.ts

@@ -0,0 +1,11 @@
+import { sqliteTable } from 'drizzle-orm/sqlite-core'
+
+// https://www.better-auth.com/docs/concepts/database#verification
+export const verifications = sqliteTable('verifications', t => ({
+  id: t.text().primaryKey(),
+  identifier: t.text().notNull(),
+  value: t.text().notNull(),
+  expiresAt: t.integer({ mode: 'timestamp' }).notNull(),
+  createdAt: t.integer({ mode: 'timestamp' }).notNull().$defaultFn(() => new Date()),
+  updatedAt: t.integer({ mode: 'timestamp' }).notNull().$defaultFn(() => new Date()).$onUpdate(() => new Date()),
+}))

package/template/backend/{env.d.ts → src/env.d.ts}

@@ -1,4 +1,6 @@
 interface ImportMetaEnv {
+  readonly BETTER_AUTH_SECRET: string
+  readonly BETTER_AUTH_URL: string
   readonly DATABASE_URL: string
   readonly LOG_LEVEL: string
   readonly NODE_ENV: string

package/template/backend/src/{server.ts → main.ts}

@@ -1,30 +1,20 @@
 import process from 'node:process'
 
-import { onError } from '@orpc/server'
-import { RPCHandler } from '@orpc/server/fetch'
-import { CORSPlugin } from '@orpc/server/plugins'
-
-import { cors, hostname, port } from './config/server'
+import { createBetterAuth } from './auth'
+import { rpcHandler } from './core'
 import { db } from './database'
-import { logger } from './logger'
-import { router } from './router'
-
-const rpcHandler = new RPCHandler(router, {
-  plugins: [new CORSPlugin(cors)],
-  interceptors: [
-    onError((error) => {
-      logger.error(error)
-    }),
-  ],
-})
+import { logger } from './utils/logger'
+
+const auth = createBetterAuth({ db, logger })
 
 const server = Bun.serve({
-  hostname,
-  port,
+  hostname: import.meta.env.HOST ?? '0.0.0.0',
+  port: import.meta.env.PORT ?? 4000,
   async fetch(request) {
     const { matched, response } = await rpcHandler.handle(request, {
       prefix: '/rpc',
       context: {
+        auth,
         db,
         logger,
       },
@@ -43,6 +33,8 @@ const server = Bun.serve({
 
 logger.info(`Listening on ${server.url}`)
 
+// Graceful Shutdown
+
 async function gracefulShutdown() {
   logger.info('Gracefully shutting down...')
   await server.stop()

package/template/backend/src/utils/headers.ts

@@ -0,0 +1,7 @@
+function copyHeaders(source: Headers, destination?: Headers) {
+  source.forEach((value, key) => {
+    destination?.append(key, value)
+  })
+}
+
+export { copyHeaders }

package/template/backend/src/{logger.ts → utils/logger.ts}

@@ -1,9 +1,7 @@
 import pino from 'pino'
 
-import { level } from './config/logger'
-
 export const logger = pino({
-  level,
+  level: import.meta.env.LOG_LEVEL ?? 'info',
   base: {},
 })
 

package/template/frontend/package.json

@@ -9,26 +9,25 @@
     "preview": "vite preview --open"
   },
   "dependencies": {
-    "@kevinmarrec/vue-i18n": "^1.0.0",
-    "@orpc/client": "^1.8.5",
+    "@kevinmarrec/vue-i18n": "^1.1.0",
+    "@orpc/client": "^1.8.9",
     "@orpc/tanstack-query": "1.6.4",
-    "@tanstack/vue-query": "^5.85.5",
-    "@unhead/vue": "^2.0.14",
-    "@vueuse/core": "^13.8.0",
-    "unocss": "^66.4.2",
-    "vue": "^3.5.20"
+    "@tanstack/vue-query": "^5.89.0",
+    "@unhead/vue": "^2.0.17",
+    "unocss": "^66.5.1",
+    "vue": "^3.5.21"
   },
   "devDependencies": {
-    "@kevinmarrec/unocss-config": "^1.0.0",
-    "@kevinmarrec/vite-plugin-dark-mode": "^1.0.0",
+    "@kevinmarrec/unocss-config": "^1.3.0",
+    "@kevinmarrec/vite-plugin-dark-mode": "^1.1.0",
     "@modyfi/vite-plugin-yaml": "^1.1.1",
-    "@unhead/addons": "^2.0.14",
-    "@unocss/vite": "^66.4.2",
+    "@unhead/addons": "^2.0.17",
+    "@unocss/vite": "^66.5.1",
     "@vitejs/plugin-vue": "^6.0.1",
     "beasties": "^0.3.5",
     "rollup-plugin-visualizer": "^6.0.3",
-    "vite": "^7.1.3",
-    "vite-plugin-vue-devtools": "^8.0.1",
+    "vite": "^7.1.6",
+    "vite-plugin-vue-devtools": "^8.0.2",
     "vite-ssg": "^28.1.0",
     "vite-tsconfig-paths": "^5.1.4"
   }

package/template/frontend/src/App.vue

@@ -1,25 +1,111 @@
 <script setup lang="ts">
-import { useHead, useI18n } from '@frontend/composables'
-import { useWelcome } from '@frontend/queries'
+import { useAuth, useHead, useI18n } from '@frontend/composables'
+import { ref } from 'vue'
 
 const { t } = useI18n()
-
 useHead({
   title: () => t('title'),
 })
 
-const { data: message } = useWelcome('world')
+const { user, signUp, signIn, signOut } = useAuth()
+
+const email = ref('')
+const password = ref('')
 </script>
 
 <template>
   <div class="grid h-full place-items-center">
     <div class="flex flex-col gap-4 items-center">
-      <h1 class="text-4xl font-bold">
-        {{ t('body.message') }}
-      </h1>
-      <h2 class="text-2xl text-gray-500">
-        {{ message }}
-      </h2>
+      <!-- Login Form (when user is not logged in) -->
+      <div v-if="!user" class="mx-auto max-w-md w-full">
+        <div class="p-8 rounded-lg bg-white shadow-lg dark:bg-gray-800">
+          <h2 class="text-2xl text-gray-900 font-bold mb-6 text-center dark:text-white">
+            Welcome Back
+          </h2>
+
+          <form class="space-y-4" @submit.prevent>
+            <div>
+              <label for="email" class="text-sm text-gray-700 font-medium mb-2 block dark:text-gray-300">
+                Email
+              </label>
+              <input
+                id="email"
+                v-model="email"
+                type="email"
+                class="px-3 py-2 border border-gray-300 rounded-md w-full shadow-sm dark:text-white focus:outline-none dark:border-gray-600 focus:border-blue-500 dark:bg-gray-700 focus:ring-2 focus:ring-blue-500"
+                placeholder="Enter your email"
+                required
+              >
+            </div>
+
+            <div>
+              <label for="password" class="text-sm text-gray-700 font-medium mb-2 block dark:text-gray-300">
+                Password
+              </label>
+              <input
+                id="password"
+                v-model="password"
+                type="password"
+                class="px-3 py-2 border border-gray-300 rounded-md w-full shadow-sm dark:text-white focus:outline-none dark:border-gray-600 focus:border-blue-500 dark:bg-gray-700 focus:ring-2 focus:ring-blue-500"
+                placeholder="Enter your password"
+                required
+              >
+            </div>
+
+            <div v-if="signIn.error" class="text-sm text-red-600 dark:text-red-400">
+              {{ signIn.error }}
+            </div>
+
+            <div class="flex space-x-3">
+              <button
+                :disabled="signIn.isPending.value"
+                class="text-white font-medium px-4 py-2 rounded-md bg-blue-600 flex-1 transition-colors duration-200 disabled:bg-blue-400 hover:bg-blue-700"
+                @click="signIn.mutate({ email, password })"
+              >
+                <span v-if="signIn.isPending.value">Signing In...</span>
+                <span v-else>Sign In</span>
+              </button>
+
+              <button
+                :disabled="signUp.isPending.value"
+                class="text-white font-medium px-4 py-2 rounded-md bg-green-600 flex-1 transition-colors duration-200 disabled:bg-green-400 hover:bg-green-700"
+                @click="signUp.mutate({ email, password, name: 'User' })"
+              >
+                <span v-if="signUp.isPending.value">Signing Up...</span>
+                <span v-else>Sign Up</span>
+              </button>
+            </div>
+          </form>
+        </div>
+      </div>
+
+      <!-- User Dashboard (when user is logged in) -->
+      <div v-else class="mx-auto max-w-md w-full">
+        <div class="p-8 text-center rounded-lg bg-white shadow-lg dark:bg-gray-800">
+          <div class="mb-6">
+            <div class="mx-auto mb-4 rounded-full flex h-20 w-20 items-center justify-center from-blue-500 to-purple-600 bg-gradient-to-r">
+              <span class="text-2xl text-white font-bold">
+                {{ user.name?.charAt(0).toUpperCase() || 'U' }}
+              </span>
+            </div>
+            <h2 class="text-2xl text-gray-900 font-bold dark:text-white">
+              Welcome, {{ user.name || 'User' }}!
+            </h2>
+            <p class="text-gray-600 mt-2 dark:text-gray-400">
+              {{ user.email }}
+            </p>
+          </div>
+
+          <button
+            :disabled="signOut.isPending.value"
+            class="text-white font-medium px-4 py-2 rounded-md bg-red-600 w-full transition-colors duration-200 disabled:bg-red-400 hover:bg-red-700"
+            @click="signOut.mutate({})"
+          >
+            <span v-if="signOut.isPending.value">Signing Out...</span>
+            <span v-else>Sign Out</span>
+          </button>
+        </div>
+      </div>
     </div>
   </div>
 </template>

package/template/frontend/src/composables/auth.ts

@@ -0,0 +1,31 @@
+import { orpc } from '@frontend/lib/orpc'
+import { useMutation, useQuery, useQueryClient } from '@tanstack/vue-query'
+
+export function useAuth() {
+  const qc = useQueryClient()
+
+  const { data: user } = useQuery(orpc.auth.getCurrentUser.queryOptions({
+    retry: false,
+  }))
+
+  const signUp = useMutation(orpc.auth.signUp.mutationOptions({
+    onSuccess: () => qc.invalidateQueries({ queryKey: orpc.auth.getCurrentUser.queryKey() }),
+  }))
+
+  const signIn = useMutation(orpc.auth.signIn.mutationOptions({
+    onSuccess: () => qc.invalidateQueries({ queryKey: orpc.auth.getCurrentUser.queryKey() }),
+  }))
+
+  const signOut = useMutation(orpc.auth.signOut.mutationOptions({
+    onSuccess: () => {
+      qc.setQueryData<null>(orpc.auth.getCurrentUser.queryKey(), null)
+    },
+  }))
+
+  return {
+    user,
+    signUp,
+    signIn,
+    signOut,
+  }
+}

package/template/frontend/src/composables/index.ts

@@ -1,2 +1,3 @@
+export { useAuth } from './auth'
 export { useI18n } from '@kevinmarrec/vue-i18n'
 export { useHead } from '@unhead/vue'

package/template/frontend/src/lib/orpc.ts

@@ -1,10 +1,15 @@
-import type { Router, RouterClient } from '@backend/router'
+import type { Router, RouterClient } from '@backend/core/router'
 import { createORPCClient } from '@orpc/client'
 import { RPCLink } from '@orpc/client/fetch'
 import { createTanstackQueryUtils } from '@orpc/tanstack-query'
 
 const link = new RPCLink({
   url: import.meta.env.VITE_API_URL,
+  fetch: (request, init) =>
+    globalThis.fetch(request, {
+      ...init,
+      credentials: 'include',
+    }),
 })
 
 const client: RouterClient<Router> = createORPCClient(link)

package/template/knip.config.ts

@@ -12,7 +12,7 @@ export default {
     },
     'backend': {
       drizzle: {
-        config: ['src/config/drizzle.ts'],
+        config: 'src/database/drizzle.config.ts',
       },
       ignoreDependencies: ['pino-pretty'],
     },

package/template/package.json

@@ -2,7 +2,7 @@
   "name": "app",
   "type": "module",
   "private": true,
-  "packageManager": "bun@1.2.21",
+  "packageManager": "bun@1.2.22",
   "engines": {
     "node": "lts/*"
   },
@@ -21,15 +21,15 @@
     "lint:inspect": "bunx @eslint/config-inspector"
   },
   "devDependencies": {
-    "@kevinmarrec/eslint-config": "^1.0.0",
-    "@kevinmarrec/stylelint-config": "^1.0.0",
-    "@kevinmarrec/tsconfig": "^1.0.0",
+    "@kevinmarrec/eslint-config": "^1.4.0",
+    "@kevinmarrec/stylelint-config": "^1.2.0",
+    "@kevinmarrec/tsconfig": "^1.1.0",
     "concurrently": "^9.2.1",
-    "eslint": "^9.34.0",
-    "knip": "^5.63.0",
-    "stylelint": "^16.23.1",
-    "taze": "^19.3.0",
+    "eslint": "^9.36.0",
+    "knip": "^5.63.1",
+    "stylelint": "^16.24.0",
+    "taze": "^19.7.0",
     "typescript": "~5.9.2",
-    "vue-tsc": "^3.0.6"
+    "vue-tsc": "^3.0.7"
   }
 }

package/template/backend/src/config/database.ts

@@ -1,11 +0,0 @@
-import * as v from 'valibot'
-
-const schema = v.object({
-  url: v.string(),
-})
-
-const config = v.parse(schema, {
-  url: import.meta.env.DATABASE_URL,
-})
-
-export const url = config.url

package/template/backend/src/config/drizzle.ts

@@ -1,10 +0,0 @@
-import { defineConfig } from 'drizzle-kit'
-
-import { url } from './database'
-
-export default defineConfig({
-  dialect: 'sqlite',
-  dbCredentials: { url },
-  schema: './src/database/schema',
-  out: './src/database/migrations',
-})

package/template/backend/src/config/logger.ts

@@ -1,19 +0,0 @@
-import * as v from 'valibot'
-
-const schema = v.object({
-  level: v.optional(v.union([
-    v.literal('trace'),
-    v.literal('debug'),
-    v.literal('info'),
-    v.literal('warn'),
-    v.literal('error'),
-    v.literal('fatal'),
-    v.literal('silent'),
-  ]), 'info'),
-})
-
-const config = v.parse(schema, {
-  level: import.meta.env.LOG_LEVEL,
-})
-
-export const level = config.level

package/template/backend/src/config/server.ts

@@ -1,40 +0,0 @@
-import * as v from 'valibot'
-
-const schema = v.object({
-  cors: v.object({
-    origin: v.optional(
-      v.pipe(
-        v.string(),
-        v.minLength(1),
-        v.transform(value => value.split(',')),
-      ),
-      '*',
-    ),
-  }),
-  hostname: v.optional(
-    v.pipe(
-      v.string(),
-      v.minLength(1),
-    ),
-    'localhost',
-  ),
-  port: v.optional(v.pipe(
-    v.string(),
-    v.transform(value => +value),
-    v.number(),
-    v.minValue(3000),
-    v.maxValue(65535),
-  ), '4000'),
-})
-
-const config = v.parse(schema, {
-  cors: {
-    origin: import.meta.env.ALLOWED_ORIGINS,
-  },
-  hostname: import.meta.env.HOST,
-  port: import.meta.env.PORT,
-})
-
-export const cors = config.cors
-export const hostname = config.hostname
-export const port = config.port

package/template/backend/src/database/migrations/0000_white_bishop.sql

@@ -1,6 +0,0 @@
-CREATE TABLE `users` (
-	`id` integer PRIMARY KEY AUTOINCREMENT NOT NULL,
-	`name` text NOT NULL,
-	`createdAt` integer NOT NULL,
-	`updatedAt` integer NOT NULL
-);

package/template/backend/src/lib/orpc.ts

@@ -1,10 +0,0 @@
-import type { Database } from '@backend/database'
-import type { Logger } from '@backend/logger'
-import { os } from '@orpc/server'
-
-interface Context {
-  db: Database
-  logger: Logger
-}
-
-export const pub = os.$context<Context>()

package/template/backend/src/router/welcome.ts

@@ -1,11 +0,0 @@
-import { users } from '@backend/database/schema'
-import { pub } from '@backend/lib/orpc'
-import * as v from 'valibot'
-
-export const welcome = pub
-  .input(v.string())
-  .output(v.string())
-  .handler(async ({ input, context: { db } }) => {
-    const count = await db.$count(users)
-    return `Hello ${input} (${count})`
-  })

package/template/frontend/src/queries/index.ts

@@ -1 +0,0 @@
-export * from './welcome'

package/template/frontend/src/queries/welcome.ts

@@ -1,10 +0,0 @@
-import { orpc } from '@frontend/lib/orpc'
-import { get } from '@frontend/utils'
-import { useQuery } from '@tanstack/vue-query'
-import { computed, type MaybeRef } from 'vue'
-
-export function useWelcome(text: MaybeRef<string>) {
-  return useQuery(computed(() => orpc.welcome.queryOptions({
-    input: get(text),
-  })))
-}

package/template/frontend/src/utils.ts

@@ -1 +0,0 @@
-export { get } from '@vueuse/core'