@lobehub/lobehub 2.0.0-next.355 → 2.0.0-next.357

package/docs/self-hosting/environment-variables/basic.zh-CN.mdx

@@ -16,6 +16,19 @@ LobeChat 在部署时提供了一些额外的配置项，你可以使用环境
 
 ## 通用变量
 
+### `KEY_VAULTS_SECRET`
+
+- 类型：必选（服务端数据库模式）
+- 描述：用于加密用户存储在数据库中的敏感信息（如 API Key、baseURL 等），防止数据库泄露时关键信息被暴露
+- 默认值：-
+- 示例：`Kix2wcUONd4CX51E/ZPAd36BqM4wzJgKjPtz2sGztqQ=`
+
+<Callout type={'warning'}>
+  此密钥用于加密敏感数据，一旦设置后请勿更改，否则已加密的数据将无法解密。
+</Callout>
+
+<GenerateSecret envName="KEY_VAULTS_SECRET" />
+
 ### `API_KEY_SELECT_MODE`
 
 - 类型：可选

package/docs/self-hosting/environment-variables/redis.mdx

@@ -0,0 +1,68 @@
+---
+title: Configure Redis Cache Service
+description: Learn how to configure Redis cache service to optimize performance and session management.
+tags:
+  - Redis
+  - Cache
+  - Session Storage
+  - Environment Variables
+---
+
+# Configure Redis Cache Service
+
+LobeChat uses Redis as a high-performance cache and session storage service. Configuring Redis can optimize authentication session management, file proxy caching, and more.
+
+## Core Environment Variables
+
+### `REDIS_URL`
+
+- Type: Optional
+- Description: Redis server connection URL
+- Default: -
+- Example: `redis://localhost:6379`
+
+Supported URL formats:
+
+- Standard: `redis://localhost:6379`
+- With authentication: `redis://username:password@localhost:6379`
+- With database: `redis://localhost:6379/0`
+
+### `REDIS_PREFIX`
+
+- Type: Optional
+- Description: Prefix for Redis keys, used to isolate data in a shared Redis instance
+- Default: `lobechat`
+- Example: `my-lobechat`
+
+### `REDIS_TLS`
+
+- Type: Optional
+- Description: Whether to enable TLS/SSL encrypted connection
+- Default: `false`
+- Example: `true`
+
+<Callout type={'tip'}>
+  Redis services from cloud providers usually require TLS enabled to ensure secure data
+  transmission.
+</Callout>
+
+### `REDIS_PASSWORD`
+
+- Type: Optional
+- Description: Redis authentication password
+- Default: -
+- Example: `your-password`
+
+### `REDIS_USERNAME`
+
+- Type: Optional
+- Description: Redis authentication username (Redis 6.0+ ACL authentication)
+- Default: -
+- Example: `default`
+
+### `REDIS_DATABASE`
+
+- Type: Optional
+- Description: Redis database index (0-15)
+- Default: `0`
+- Example: `1`

package/docs/self-hosting/environment-variables/redis.zh-CN.mdx

@@ -0,0 +1,67 @@
+---
+title: 配置 Redis 缓存服务
+description: 了解如何配置 Redis 缓存服务以优化性能和会话管理。
+tags:
+  - Redis
+  - 缓存
+  - 会话存储
+  - 环境变量
+---
+
+# 配置 Redis 缓存服务
+
+LobeChat 使用 Redis 作为高性能缓存和会话存储服务。配置 Redis 可以优化认证会话管理、文件代理缓存等功能。
+
+## 核心环境变量
+
+### `REDIS_URL`
+
+- 类型：可选
+- 描述：Redis 服务器的连接 URL
+- 默认值：-
+- 示例：`redis://localhost:6379`
+
+支持的 URL 格式：
+
+- 标准格式：`redis://localhost:6379`
+- 带认证：`redis://username:password@localhost:6379`
+- 带数据库：`redis://localhost:6379/0`
+
+### `REDIS_PREFIX`
+
+- 类型：可选
+- 描述：Redis 键的前缀，用于在共享 Redis 实例中隔离数据
+- 默认值：`lobechat`
+- 示例：`my-lobechat`
+
+### `REDIS_TLS`
+
+- 类型：可选
+- 描述：是否启用 TLS/SSL 加密连接
+- 默认值：`false`
+- 示例：`true`
+
+<Callout type={'tip'}>
+  云服务商提供的 Redis 服务通常需要启用 TLS 以确保数据传输安全。
+</Callout>
+
+### `REDIS_PASSWORD`
+
+- 类型：可选
+- 描述：Redis 认证密码
+- 默认值：-
+- 示例：`your-password`
+
+### `REDIS_USERNAME`
+
+- 类型：可选
+- 描述：Redis 认证用户名（Redis 6.0+ ACL 认证）
+- 默认值：-
+- 示例：`default`
+
+### `REDIS_DATABASE`
+
+- 类型：可选
+- 描述：Redis 数据库索引（0-15）
+- 默认值：`0`
+- 示例：`1`

package/docs/self-hosting/migration/v2/breaking-changes.mdx

@@ -18,18 +18,18 @@ This document outlines the breaking changes introduced in LobeHub 2.0 and provid
 
 The following environment variables have been removed in LobeHub 2.0:
 
-| Environment Variable                | Removal Reason                                                    |
-| ----------------------------------- | ----------------------------------------------------------------- |
-| `ACCESS_CODE`                       | No longer supported, use Better Auth authentication system        |
-| `NEXT_PUBLIC_SERVICE_MODE`          | 2.0 only supports Server DB mode, Client DB (PGlite) removed      |
-| `NEXT_PUBLIC_ENABLE_BETTER_AUTH`    | Automatically detected via `AUTH_SECRET` presence                 |
-| `NEXT_PUBLIC_AUTH_URL` / `AUTH_URL` | Automatically detected from request headers                       |
-| `NEXT_PUBLIC_ENABLE_NEXT_AUTH`      | NextAuth removed                                                  |
-| `NEXT_AUTH_SECRET`                  | NextAuth removed                                                  |
-| `NEXT_AUTH_SSO_PROVIDERS`           | NextAuth removed                                                  |
-| `NEXTAUTH_URL`                      | NextAuth removed                                                  |
-| `NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY` | Clerk removed                                                     |
-| `CLERK_SECRET_KEY`                  | Clerk removed                                                     |
+| Environment Variable                | Removal Reason                                               |
+| ----------------------------------- | ------------------------------------------------------------ |
+| `ACCESS_CODE`                       | No longer supported, use Better Auth authentication system   |
+| `NEXT_PUBLIC_SERVICE_MODE`          | 2.0 only supports Server DB mode, Client DB (PGlite) removed |
+| `NEXT_PUBLIC_ENABLE_BETTER_AUTH`    | Automatically detected via `AUTH_SECRET` presence            |
+| `NEXT_PUBLIC_AUTH_URL` / `AUTH_URL` | Automatically detected from request headers                  |
+| `NEXT_PUBLIC_ENABLE_NEXT_AUTH`      | NextAuth removed                                             |
+| `NEXT_AUTH_SECRET`                  | NextAuth removed                                             |
+| `NEXT_AUTH_SSO_PROVIDERS`           | NextAuth removed                                             |
+| `NEXTAUTH_URL`                      | NextAuth removed                                             |
+| `NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY` | Clerk removed                                                |
+| `CLERK_SECRET_KEY`                  | Clerk removed                                                |
 
 ## New Required Environment Variables
 
@@ -40,15 +40,15 @@ LobeHub 2.0 only supports Better Auth authentication system. The following envir
 
 ## New Optional Environment Variables
 
-| Environment Variable               | Description                                                      |
-| ---------------------------------- | ---------------------------------------------------------------- |
-| `AUTH_SSO_PROVIDERS`               | Comma-separated list of enabled SSO providers                    |
-| `INTERNAL_JWT_EXPIRATION`          | Internal JWT token expiration time (default: `30s`)              |
-| `NEXT_PUBLIC_AUTH_EMAIL_VERIFICATION` | Set to `1` to require email verification                      |
-| `SMTP_HOST`                        | SMTP server hostname for email features                          |
-| `SMTP_PORT`                        | SMTP server port                                                 |
-| `SMTP_USER`                        | SMTP authentication username                                     |
-| `SMTP_PASS`                        | SMTP authentication password                                     |
+| Environment Variable      | Description                                         |
+| ------------------------- | --------------------------------------------------- |
+| `AUTH_SSO_PROVIDERS`      | Comma-separated list of enabled SSO providers       |
+| `INTERNAL_JWT_EXPIRATION` | Internal JWT token expiration time (default: `30s`) |
+| `AUTH_EMAIL_VERIFICATION` | Set to `1` to require email verification            |
+| `SMTP_HOST`               | SMTP server hostname for email features             |
+| `SMTP_PORT`               | SMTP server port                                    |
+| `SMTP_USER`               | SMTP authentication username                        |
+| `SMTP_PASS`               | SMTP authentication password                        |
 
 For detailed configuration, see [Authentication Environment Variables](/docs/self-hosting/environment-variables/auth).
 
@@ -60,11 +60,11 @@ LobeHub 2.0 only supports Better Auth authentication system. NextAuth and Clerk
 
 ### Migrating from NextAuth
 
-Detailed migration guide coming soon.
+See the [NextAuth Migration Guide](/docs/self-hosting/advanced/auth/nextauth-to-betterauth).
 
 ### Migrating from Clerk
 
-Detailed migration guide coming soon.
+See the [Clerk Migration Guide](/docs/self-hosting/advanced/auth/clerk-to-betterauth).
 
 ## Database Mode Changes
 

package/docs/self-hosting/migration/v2/breaking-changes.zh-CN.mdx

@@ -16,18 +16,18 @@ tags:
 
 以下环境变量在 LobeHub 2.0 中已被移除：
 
-| 环境变量                             | 移除原因                                                 |
-| ----------------------------------- | ------------------------------------------------------- |
-| `ACCESS_CODE`                       | 不再支持，请使用 Better Auth 认证系统                      |
-| `NEXT_PUBLIC_SERVICE_MODE`          | 2.0 仅支持 Server DB 模式，不再支持 Client DB (PGlite)    |
-| `NEXT_PUBLIC_ENABLE_BETTER_AUTH`    | 通过 `AUTH_SECRET` 是否存在自动检测                       |
-| `NEXT_PUBLIC_AUTH_URL` / `AUTH_URL` | 从请求头中自动检测                                        |
-| `NEXT_PUBLIC_ENABLE_NEXT_AUTH`      | NextAuth 已移除                                          |
-| `NEXT_AUTH_SECRET`                  | NextAuth 已移除                                          |
-| `NEXT_AUTH_SSO_PROVIDERS`           | NextAuth 已移除                                          |
-| `NEXTAUTH_URL`                      | NextAuth 已移除                                          |
-| `NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY` | Clerk 已移除                                             |
-| `CLERK_SECRET_KEY`                  | Clerk 已移除                                             |
+| 环境变量                                | 移除原因                                         |
+| ----------------------------------- | -------------------------------------------- |
+| `ACCESS_CODE`                       | 不再支持，请使用 Better Auth 认证系统                    |
+| `NEXT_PUBLIC_SERVICE_MODE`          | 2.0 仅支持 Server DB 模式，不再支持 Client DB (PGlite) |
+| `NEXT_PUBLIC_ENABLE_BETTER_AUTH`    | 通过 `AUTH_SECRET` 是否存在自动检测                    |
+| `NEXT_PUBLIC_AUTH_URL` / `AUTH_URL` | 从请求头中自动检测                                    |
+| `NEXT_PUBLIC_ENABLE_NEXT_AUTH`      | NextAuth 已移除                                 |
+| `NEXT_AUTH_SECRET`                  | NextAuth 已移除                                 |
+| `NEXT_AUTH_SSO_PROVIDERS`           | NextAuth 已移除                                 |
+| `NEXTAUTH_URL`                      | NextAuth 已移除                                 |
+| `NEXT_PUBLIC_CLERK_PUBLISHABLE_KEY` | Clerk 已移除                                    |
+| `CLERK_SECRET_KEY`                  | Clerk 已移除                                    |
 
 ## 新增的必需环境变量
 
@@ -38,15 +38,15 @@ LobeHub 2.0 仅支持 Better Auth 认证系统。以下环境变量现在是必
 
 ## 新增的可选环境变量
 
-| 环境变量                               | 说明                                    |
-| ------------------------------------- | -------------------------------------- |
-| `AUTH_SSO_PROVIDERS`                  | 启用的 SSO 提供商列表，以逗号分隔          |
-| `INTERNAL_JWT_EXPIRATION`             | 内部 JWT 令牌过期时间（默认：`30s`）       |
-| `NEXT_PUBLIC_AUTH_EMAIL_VERIFICATION` | 设置为 `1` 以要求邮箱验证                 |
-| `SMTP_HOST`                           | 邮件功能的 SMTP 服务器主机名              |
-| `SMTP_PORT`                           | SMTP 服务器端口                          |
-| `SMTP_USER`                           | SMTP 认证用户名                          |
-| `SMTP_PASS`                           | SMTP 认证密码                            |
+| 环境变量                      | 说明                      |
+| ------------------------- | ----------------------- |
+| `AUTH_SSO_PROVIDERS`      | 启用的 SSO 提供商列表，以逗号分隔     |
+| `INTERNAL_JWT_EXPIRATION` | 内部 JWT 令牌过期时间（默认：`30s`） |
+| `AUTH_EMAIL_VERIFICATION` | 设置为 `1` 以要求邮箱验证         |
+| `SMTP_HOST`               | 邮件功能的 SMTP 服务器主机名       |
+| `SMTP_PORT`               | SMTP 服务器端口              |
+| `SMTP_USER`               | SMTP 认证用户名              |
+| `SMTP_PASS`               | SMTP 认证密码               |
 
 详细配置请参阅[身份验证环境变量](/docs/self-hosting/environment-variables/auth)。
 
@@ -58,11 +58,11 @@ LobeHub 2.0 仅支持 Better Auth 认证系统，不再支持 NextAuth 和 Clerk
 
 ### 从 NextAuth 迁移
 
-详细迁移指南即将推出。
+请参阅 [NextAuth 迁移指南](/zh/docs/self-hosting/advanced/auth/nextauth-to-betterauth)。
 
 ### 从 Clerk 迁移
 
-详细迁移指南即将推出。
+请参阅 [Clerk 迁移指南](/zh/docs/self-hosting/advanced/auth/clerk-to-betterauth)。
 
 ## 数据库模式变更
 

package/docs/self-hosting/server-database/docker-compose.mdx

@@ -562,9 +562,9 @@ Next, modify the configuration files to achieve domain release.
    # - 'APP_URL=http://localhost:3210'
    - 'APP_URL=https://lobe.example.com'
 
-   - 'NEXT_AUTH_SSO_PROVIDERS=casdoor'
+   - 'AUTH_SSO_PROVIDERS=casdoor'
    - 'KEY_VAULTS_SECRET=Kix2wcUONd4CX51E/ZPAd36BqM4wzJgKjPtz2sGztqQ='
-   - 'NEXT_AUTH_SECRET=NX2kaPE923dt6BL2U8e9oSre5RfoT7hg'
+   - 'AUTH_SECRET=NX2kaPE923dt6BL2U8e9oSre5RfoT7hg'
    # - 'AUTH_URL=http://localhost:${LOBE_PORT}/api/auth'
    - 'AUTH_URL=https://lobe.example.com/api/auth'
 
@@ -837,9 +837,9 @@ services:
       # - 'APP_URL=http://localhost:3210'
       - 'APP_URL=https://lobe.example.com'
 
-      - 'NEXT_AUTH_SSO_PROVIDERS=casdoor'
+      - 'AUTH_SSO_PROVIDERS=casdoor'
       - 'KEY_VAULTS_SECRET=Kix2wcUONd4CX51E/ZPAd36BqM4wzJgKjPtz2sGztqQ='
-      - 'NEXT_AUTH_SECRET=NX2kaPE923dt6BL2U8e9oSre5RfoT7hg'
+      - 'AUTH_SECRET=NX2kaPE923dt6BL2U8e9oSre5RfoT7hg'
       # - 'AUTH_URL=http://localhost:${LOBE_PORT}/api/auth'
       - 'AUTH_URL=https://lobe.example.com/api/auth'
 

package/docs/self-hosting/server-database/docker-compose.zh-CN.mdx

@@ -538,9 +538,9 @@ docker compose up -d
    # - 'APP_URL=http://localhost:3210'
    - 'APP_URL=https://lobe.example.com'
 
-   - 'NEXT_AUTH_SSO_PROVIDERS=casdoor'
+   - 'AUTH_SSO_PROVIDERS=casdoor'
    - 'KEY_VAULTS_SECRET=Kix2wcUONd4CX51E/ZPAd36BqM4wzJgKjPtz2sGztqQ='
-   - 'NEXT_AUTH_SECRET=NX2kaPE923dt6BL2U8e9oSre5RfoT7hg'
+   - 'AUTH_SECRET=NX2kaPE923dt6BL2U8e9oSre5RfoT7hg'
    # - 'AUTH_URL=http://localhost:${LOBE_PORT}/api/auth'
    - 'AUTH_URL=https://lobe.example.com/api/auth'
 
@@ -812,9 +812,9 @@ services:
       # - 'APP_URL=http://localhost:3210'
       - 'APP_URL=https://lobe.example.com'
 
-      - 'NEXT_AUTH_SSO_PROVIDERS=casdoor'
+      - 'AUTH_SSO_PROVIDERS=casdoor'
       - 'KEY_VAULTS_SECRET=Kix2wcUONd4CX51E/ZPAd36BqM4wzJgKjPtz2sGztqQ='
-      - 'NEXT_AUTH_SECRET=NX2kaPE923dt6BL2U8e9oSre5RfoT7hg'
+      - 'AUTH_SECRET=NX2kaPE923dt6BL2U8e9oSre5RfoT7hg'
       # - 'AUTH_URL=http://localhost:${LOBE_PORT}/api/auth'
       - 'AUTH_URL=https://lobe.example.com/api/auth'
 

package/e2e/CLAUDE.md

@@ -298,12 +298,11 @@ HEADLESS=false pnpm exec cucumber-js --config cucumber.config.js --tags "@smoke"
 运行测试需要以下环境变量：
 
 ```bash
-BASE_URL=http://localhost:3010   # 测试服务器地址
-DATABASE_URL=postgresql://...    # 数据库连接
-DATABASE_DRIVER=node             # 数据库驱动
-KEY_VAULTS_SECRET=...            # 密钥
-BETTER_AUTH_SECRET=...           # Auth 密钥
-NEXT_PUBLIC_ENABLE_BETTER_AUTH=1 # 启用 Better Auth
+BASE_URL=http://localhost:3010 # 测试服务器地址
+DATABASE_URL=postgresql://...  # 数据库连接
+DATABASE_DRIVER=node           # 数据库驱动
+KEY_VAULTS_SECRET=...          # 密钥
+AUTH_SECRET=...                # Auth 密钥
 
 # 可选：S3 相关（如果测试涉及文件上传）
 S3_ACCESS_KEY_ID=e2e-mock-access-key

package/e2e/docs/local-setup.md

@@ -98,8 +98,7 @@ DATABASE_URL=postgresql://postgres:postgres@localhost:5433/postgres \
 DATABASE_URL=postgresql://postgres:postgres@localhost:5433/postgres \
   DATABASE_DRIVER=node \
   KEY_VAULTS_SECRET=LA7n9k3JdEcbSgml2sxfw+4TV1AzaaFU5+R176aQz4s= \
-  BETTER_AUTH_SECRET=e2e-test-secret-key-for-better-auth-32chars! \
-  NEXT_PUBLIC_ENABLE_BETTER_AUTH=1 \
+  AUTH_SECRET=e2e-test-secret-key-for-better-auth-32chars! \
   SKIP_LINT=1 \
   bun run build
 ```
@@ -112,8 +111,7 @@ DATABASE_URL=postgresql://postgres:postgres@localhost:5433/postgres \
 DATABASE_URL=postgresql://postgres:postgres@localhost:5433/postgres \
   DATABASE_DRIVER=node \
   KEY_VAULTS_SECRET=LA7n9k3JdEcbSgml2sxfw+4TV1AzaaFU5+R176aQz4s= \
-  BETTER_AUTH_SECRET=e2e-test-secret-key-for-better-auth-32chars! \
-  NEXT_PUBLIC_ENABLE_BETTER_AUTH=1 \
+  AUTH_SECRET=e2e-test-secret-key-for-better-auth-32chars! \
   NEXT_PUBLIC_AUTH_EMAIL_VERIFICATION=0 \
   S3_ACCESS_KEY_ID=e2e-mock-access-key \
   S3_SECRET_ACCESS_KEY=e2e-mock-secret-key \
@@ -126,14 +124,13 @@ DATABASE_URL=postgresql://postgres:postgres@localhost:5433/postgres \
 
 ### 服务器启动环境变量
 
-| 变量                                  | 值                                                       | 说明             |
-| ------------------------------------- | -------------------------------------------------------- | ---------------- |
-| `DATABASE_URL`                        | `postgresql://postgres:postgres@localhost:5433/postgres` | 数据库连接       |
-| `DATABASE_DRIVER`                     | `node`                                                   | 数据库驱动       |
-| `KEY_VAULTS_SECRET`                   | `LA7n9k3JdEcbSgml2sxfw+4TV1AzaaFU5+R176aQz4s=`           | 密钥保险库密钥   |
-| `BETTER_AUTH_SECRET`                  | `e2e-test-secret-key-for-better-auth-32chars!`           | 认证密钥         |
-| `NEXT_PUBLIC_ENABLE_BETTER_AUTH`      | `1`                                                      | 启用 Better Auth |
-| `NEXT_PUBLIC_AUTH_EMAIL_VERIFICATION` | `0`                                                      | 禁用邮箱验证     |
+| 变量                                  | 值                                                       | 说明           |
+| ------------------------------------- | -------------------------------------------------------- | -------------- |
+| `DATABASE_URL`                        | `postgresql://postgres:postgres@localhost:5433/postgres` | 数据库连接     |
+| `DATABASE_DRIVER`                     | `node`                                                   | 数据库驱动     |
+| `KEY_VAULTS_SECRET`                   | `LA7n9k3JdEcbSgml2sxfw+4TV1AzaaFU5+R176aQz4s=`           | 密钥保险库密钥 |
+| `AUTH_SECRET`                         | `e2e-test-secret-key-for-better-auth-32chars!`           | 认证密钥       |
+| `NEXT_PUBLIC_AUTH_EMAIL_VERIFICATION` | `0`                                                      | 禁用邮箱验证   |
 
 ### S3 Mock 变量（必需）
 

package/e2e/scripts/setup.ts

@@ -31,26 +31,22 @@ const CONFIG = {
   defaultPort: 3006,
   dockerImage: 'paradedb/paradedb:latest',
   projectRoot: resolve(__dirname, '../..'),
-  
 
-// S3 Mock (required even if not testing file uploads)
-s3Mock: {
+  // S3 Mock (required even if not testing file uploads)
+  s3Mock: {
     accessKeyId: 'e2e-mock-access-key',
     bucket: 'e2e-mock-bucket',
     endpoint: 'https://e2e-mock-s3.localhost',
     secretAccessKey: 'e2e-mock-secret-key',
-  }, 
+  },
 
-  
-  
-// 2 minutes
-// Secrets (for e2e testing only)
-secrets: {
+  // 2 minutes
+  // Secrets (for e2e testing only)
+  secrets: {
     betterAuthSecret: 'e2e-test-secret-key-for-better-auth-32chars!',
     keyVaultsSecret: 'LA7n9k3JdEcbSgml2sxfw+4TV1AzaaFU5+R176aQz4s=',
   },
 
-  
   serverTimeout: 120_000,
 };
 
@@ -263,11 +259,10 @@ async function buildApp(): Promise<void> {
   log('🔨', 'Building application (this may take a few minutes)...');
 
   await execAsync('bun', ['run', 'build'], {
-    BETTER_AUTH_SECRET: CONFIG.secrets.betterAuthSecret,
+    AUTH_SECRET: CONFIG.secrets.betterAuthSecret,
     DATABASE_DRIVER: CONFIG.databaseDriver,
     DATABASE_URL: CONFIG.databaseUrl,
     KEY_VAULTS_SECRET: CONFIG.secrets.keyVaultsSecret,
-    NEXT_PUBLIC_ENABLE_BETTER_AUTH: '1',
     SKIP_LINT: '1',
   });
 
@@ -289,12 +284,11 @@ async function isServerRunning(port: number): Promise<boolean> {
 
 function getServerEnv(port: number): Record<string, string> {
   return {
-    BETTER_AUTH_SECRET: CONFIG.secrets.betterAuthSecret,
+    AUTH_EMAIL_VERIFICATION: '0',
+    AUTH_SECRET: CONFIG.secrets.betterAuthSecret,
     DATABASE_DRIVER: CONFIG.databaseDriver,
     DATABASE_URL: CONFIG.databaseUrl,
     KEY_VAULTS_SECRET: CONFIG.secrets.keyVaultsSecret,
-    NEXT_PUBLIC_AUTH_EMAIL_VERIFICATION: '0',
-    NEXT_PUBLIC_ENABLE_BETTER_AUTH: '1',
     NODE_OPTIONS: '--max-old-space-size=6144',
     PORT: String(port),
     S3_ACCESS_KEY_ID: CONFIG.s3Mock.accessKeyId,

package/e2e/src/support/webServer.ts

@@ -135,13 +135,14 @@ export async function startWebServer(options: WebServerOptions): Promise<void> {
       ...process.env,
       // APP_URL is required for Better Auth to recognize localhost as a trusted origin
       APP_URL: `http://localhost:${port}`,
+
+      // Disable email verification for e2e
+      AUTH_EMAIL_VERIFICATION: '0',
+
       // E2E test secret keys
-      BETTER_AUTH_SECRET: 'e2e-test-secret-key-for-better-auth-32chars!',
+      AUTH_SECRET: 'e2e-test-secret-key-for-better-auth-32chars!',
+
       KEY_VAULTS_SECRET: 'LA7n9k3JdEcbSgml2sxfw+4TV1AzaaFU5+R176aQz4s=',
-      // Disable email verification for e2e
-      NEXT_PUBLIC_AUTH_EMAIL_VERIFICATION: '0',
-      // Enable Better Auth for e2e tests with real authentication
-      NEXT_PUBLIC_ENABLE_BETTER_AUTH: '1',
       NODE_OPTIONS: '--max-old-space-size=6144',
       PORT: String(port),
       // Mock S3 env vars to prevent initialization errors

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@lobehub/lobehub",
-  "version": "2.0.0-next.355",
+  "version": "2.0.0-next.357",
   "description": "LobeHub - an open-source,comprehensive AI Agent framework that supports speech synthesis, multimodal, and extensible Function Call plugin system. Supports one-click free deployment of your private ChatGPT/LLM web application.",
   "keywords": [
     "framework",
@@ -146,7 +146,7 @@
     "@aws-sdk/s3-request-presigner": "~3.932.0",
     "@azure-rest/ai-inference": "1.0.0-beta.5",
     "@azure/core-auth": "^1.10.1",
-    "@better-auth/expo": "1.4.17",
+    "@better-auth/expo": "^1.4.17",
     "@better-auth/passkey": "^1.4.17",
     "@cfworker/json-schema": "^4.1.1",
     "@codesandbox/sandpack-react": "^2.20.0",
@@ -224,7 +224,6 @@
     "@trpc/react-query": "^11.8.1",
     "@trpc/server": "^11.8.1",
     "@upstash/qstash": "^2.8.4",
-    "@upstash/redis": "^1.35.8",
     "@upstash/workflow": "^0.2.23",
     "@vercel/analytics": "^1.6.1",
     "@vercel/edge-config": "^1.4.3",
@@ -238,7 +237,7 @@
     "antd-style": "4.1.0",
     "async-retry": "^1.3.3",
     "bcryptjs": "^3.0.3",
-    "better-auth": "1.4.17",
+    "better-auth": "^1.4.17",
     "better-auth-harmony": "^1.2.5",
     "better-call": "^1.2.0",
     "brotli-wasm": "^3.0.1",
@@ -280,7 +279,6 @@
     "motion": "^12.23.26",
     "nanoid": "^5.1.6",
     "next": "^16.1.1",
-    "next-auth": "5.0.0-beta.30",
     "next-mdx-remote": "^5.0.0",
     "next-themes": "^0.4.6",
     "nextjs-toploader": "^3.9.17",
@@ -401,7 +399,7 @@
     "@types/unist": "^3.0.3",
     "@types/ws": "^8.18.1",
     "@types/xast": "^2.0.4",
-    "@typescript/native-preview": "7.0.0-dev.20251210.1",
+    "@typescript/native-preview": "7.0.0-dev.20260122.4",
     "@vitest/coverage-v8": "^3.2.4",
     "ajv-keywords": "^5.1.0",
     "code-inspector-plugin": "1.3.3",

package/packages/database/src/schemas/nextauth.ts

@@ -1,8 +1,13 @@
 import { boolean, integer, pgTable, primaryKey, text, timestamp } from 'drizzle-orm/pg-core';
-import { AdapterAccount } from 'next-auth/adapters';
 
 import { users } from './user';
 
+/**
+ * NextAuth account type (oauth, email, credentials, etc.)
+ * Previously imported from next-auth/adapters, now defined locally to remove dependency
+ */
+type AccountType = 'credentials' | 'email' | 'oauth' | 'oidc' | 'webauthn';
+
 /**
  * This table stores nextauth accounts. This is used to link users to their sso profiles.
  * @see {@link https://authjs.dev/guides/creating-a-database-adapter#database-session-management | NextAuth Doc}
@@ -19,7 +24,7 @@ export const nextauthAccounts = pgTable(
     scope: text('scope'),
     session_state: text('session_state'),
     token_type: text('token_type'),
-    type: text('type').$type<AdapterAccount>().notNull(),
+    type: text('type').$type<AccountType>().notNull(),
     userId: text('user_id')
       .notNull()
       .references(() => users.id, { onDelete: 'cascade' }),