@vishwanathb/vishwa-auth 0.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Vishwanath B
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,36 @@
+# vishwa-auth
+
+**Better-auth scaffold for Next.js** - `npm i vishwa-auth` and get complete auth setup.
+
+## Quick Start
+
+```bash
+npm i vishwa-auth better-auth @prisma/client prisma
+cp .env.example .env.local
+npx prisma generate && npx prisma db push
+npm run dev
+```
+
+See [SETUP.md](./SETUP.md) for detailed instructions.
+
+## What's Installed
+
+| File | Purpose |
+|------|---------|
+| `lib/auth.ts` | better-auth server config |
+| `lib/auth-client.ts` | React client hooks |
+| `app/api/auth/[...all]/route.ts` | Auth API handler |
+| `app/(auth)/*` | Login, Register pages |
+| `app/dashboard/*` | Protected page example |
+| `middleware.ts` | Route protection |
+| `prisma/schema.prisma` | Database models |
+
+## Skip Postinstall
+
+```bash
+VISHWA_AUTH_SKIP_POSTINSTALL=true npm i vishwa-auth
+```
+
+## License
+
+MIT

package/bin/vishwa-auth.js

@@ -0,0 +1,102 @@
+#!/usr/bin/env node
+
+/**
+ * vishwa-auth CLI
+ * 
+ * Commands:
+ *   init - Initialize auth files in current project
+ */
+
+import { Command } from 'commander';
+import fs from 'fs-extra';
+import path from 'path';
+import { fileURLToPath } from 'url';
+import chalk from 'chalk';
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+
+const program = new Command();
+
+program
+    .name('vishwa-auth')
+    .description('Production-ready authentication scaffold for Next.js')
+    .version('0.1.0');
+
+program
+    .command('init')
+    .description('Initialize vishwa-auth in current project')
+    .option('-f, --force', 'Overwrite existing files without backup')
+    .option('--dry-run', 'Show what would be copied without making changes')
+    .option('-v, --verbose', 'Show detailed output')
+    .action(async (options) => {
+        console.log('\n' + chalk.bold.magenta('🔐 vishwa-auth - Initializing authentication...'));
+        console.log(chalk.gray('─'.repeat(50)));
+
+        const templatesDir = path.resolve(__dirname, '..', 'templates');
+        const hostDir = process.cwd();
+
+        if (!await fs.pathExists(templatesDir)) {
+            console.log(chalk.red('Error: Templates directory not found.'));
+            process.exit(1);
+        }
+
+        const result = { created: 0, backed: 0, errors: 0 };
+
+        async function copyFile(src, dest) {
+            try {
+                const exists = await fs.pathExists(dest);
+                if (exists && !options.force) {
+                    const backupPath = `${dest}.vishwa-auth.bak`;
+                    if (!options.dryRun) {
+                        await fs.copy(dest, backupPath);
+                        await fs.copy(src, dest);
+                    }
+                    result.backed++;
+                    if (options.verbose) console.log(chalk.yellow(`  ⚠ ${path.relative(hostDir, dest)} (backed up)`));
+                } else {
+                    if (!options.dryRun) {
+                        await fs.ensureDir(path.dirname(dest));
+                        await fs.copy(src, dest);
+                    }
+                    result.created++;
+                    if (options.verbose) console.log(chalk.green(`  ✓ ${path.relative(hostDir, dest)}`));
+                }
+            } catch (error) {
+                result.errors++;
+                if (options.verbose) console.log(chalk.red(`  ✗ ${path.relative(hostDir, dest)}: ${error}`));
+            }
+        }
+
+        async function copyDir(src, dest) {
+            const entries = await fs.readdir(src, { withFileTypes: true });
+            for (const entry of entries) {
+                const srcPath = path.join(src, entry.name);
+                const destPath = path.join(dest, entry.name);
+                if (entry.isDirectory()) {
+                    await copyDir(srcPath, destPath);
+                } else {
+                    await copyFile(srcPath, destPath);
+                }
+            }
+        }
+
+        if (options.dryRun) console.log(chalk.cyan('Dry run mode - no files will be modified\n'));
+
+        await copyDir(templatesDir, hostDir);
+
+        console.log(chalk.gray('─'.repeat(50)));
+        console.log(chalk.green(`✓ Created: ${result.created} files`));
+        if (result.backed > 0) console.log(chalk.yellow(`⚠ Backed up: ${result.backed} files`));
+        if (result.errors > 0) console.log(chalk.red(`✗ Errors: ${result.errors}`));
+
+        if (!options.dryRun) {
+            console.log(chalk.bold('\n📝 Next steps:'));
+            console.log('  1. cp .env.example .env.local');
+            console.log('  2. npx prisma generate');
+            console.log('  3. npx prisma migrate dev');
+            console.log('  4. npm run dev');
+        }
+    });
+
+program.parse();

package/package.json

@@ -0,0 +1,61 @@
+{
+  "name": "@vishwanathb/vishwa-auth",
+  "version": "0.1.0",
+  "description": "Production-ready better-auth scaffold for Next.js (App Router, TypeScript). Auto-installs complete auth setup.",
+  "author": "Vishwanath B",
+  "license": "MIT",
+  "type": "module",
+  "files": [
+    "templates",
+    "bin",
+    "scripts"
+  ],
+  "bin": {
+    "vishwa-auth": "./bin/vishwa-auth.js"
+  },
+  "scripts": {
+    "postinstall": "node scripts/setup.js",
+    "format": "prettier --write ."
+  },
+  "dependencies": {
+    "chalk": "^5.4.1",
+    "commander": "^13.1.0",
+    "fs-extra": "^11.3.0"
+  },
+  "devDependencies": {
+    "@types/fs-extra": "^11.0.4",
+    "@types/node": "^22.13.4",
+    "prettier": "^3.5.1",
+    "typescript": "^5.7.3"
+  },
+  "peerDependencies": {
+    "better-auth": ">=1.0.0",
+    "@prisma/client": ">=5.0.0",
+    "next": ">=14.0.0",
+    "react": ">=18.0.0",
+    "react-dom": ">=18.0.0"
+  },
+  "peerDependenciesMeta": {
+    "@prisma/client": {
+      "optional": true
+    }
+  },
+  "engines": {
+    "node": ">=20.0.0"
+  },
+  "keywords": [
+    "nextjs",
+    "auth",
+    "authentication",
+    "better-auth",
+    "prisma",
+    "scaffold",
+    "typescript",
+    "app-router"
+  ],
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/vishwanathb/vishwa-auth.git"
+  },
+  "homepage": "https://github.com/vishwanathb/vishwa-auth#readme"
+}

package/scripts/setup.js

@@ -0,0 +1,105 @@
+#!/usr/bin/env node
+
+/**
+ * vishwa-auth - Postinstall Setup Script
+ * 
+ * Runs automatically after npm install to scaffold auth files into host project.
+ */
+
+import fs from 'fs-extra';
+import path from 'path';
+import { fileURLToPath } from 'url';
+
+const __filename = fileURLToPath(import.meta.url);
+const __dirname = path.dirname(__filename);
+
+// Skip if env variable is set
+if (process.env.VISHWA_AUTH_SKIP_POSTINSTALL === 'true') {
+    console.log('vishwa-auth: Skipping postinstall');
+    process.exit(0);
+}
+
+// Find the host project root (go up from node_modules/vishwa-auth/scripts)
+function findHostRoot() {
+    let current = __dirname;
+    for (let i = 0; i < 10; i++) {
+        const parent = path.dirname(current);
+        const parentName = path.basename(parent);
+        if (parentName === 'node_modules') {
+            // Found node_modules, host root is one level up
+            return path.dirname(parent);
+        }
+        current = parent;
+    }
+    return null;
+}
+
+const hostDir = findHostRoot();
+
+// Skip if we can't find the host or if it's the package itself
+if (!hostDir) {
+    process.exit(0);
+}
+
+const hostPackageJson = path.join(hostDir, 'package.json');
+if (!fs.existsSync(hostPackageJson)) {
+    process.exit(0);
+}
+
+try {
+    const pkg = JSON.parse(fs.readFileSync(hostPackageJson, 'utf-8'));
+    if (pkg.name === 'vishwa-auth') {
+        process.exit(0);
+    }
+} catch {
+    process.exit(0);
+}
+
+async function setup() {
+    console.log('\n🔐 vishwa-auth - Setting up authentication...\n');
+
+    const templatesDir = path.resolve(__dirname, '..', 'templates');
+
+    if (!fs.existsSync(templatesDir)) {
+        console.log('Templates not found. Run: npx vishwa-auth init');
+        process.exit(1);
+    }
+
+    let created = 0, backed = 0;
+
+    async function copyFile(src, dest) {
+        const exists = await fs.pathExists(dest);
+        if (exists) {
+            await fs.copy(dest, `${dest}.vishwa-auth.bak`);
+            backed++;
+        }
+        await fs.ensureDir(path.dirname(dest));
+        await fs.copy(src, dest);
+        created++;
+    }
+
+    async function copyDir(src, dest) {
+        const entries = await fs.readdir(src, { withFileTypes: true });
+        for (const entry of entries) {
+            const srcPath = path.join(src, entry.name);
+            const destPath = path.join(dest, entry.name);
+            if (entry.isDirectory()) {
+                await copyDir(srcPath, destPath);
+            } else {
+                await copyFile(srcPath, destPath);
+            }
+        }
+    }
+
+    await copyDir(templatesDir, hostDir);
+
+    console.log(`✓ Created ${created} files`);
+    if (backed > 0) console.log(`⚠ Backed up ${backed} existing files`);
+    console.log('\n📝 Next steps:');
+    console.log('  1. npm install better-auth @prisma/client prisma');
+    console.log('  2. Copy .env.example to .env.local');
+    console.log('  3. npx prisma generate && npx prisma db push');
+    console.log('  4. npm run dev\n');
+}
+
+setup().catch(console.error);

package/templates/.env.example

@@ -0,0 +1,50 @@
+# ==============================================
+# vishwa-auth Environment Variables (better-auth)
+# ==============================================
+# Copy this file to .env.local and fill in your values.
+# NEVER commit .env.local to version control!
+
+# ==============================================
+# Database
+# ==============================================
+# PostgreSQL (production)
+DATABASE_URL="postgresql://user:password@localhost:5432/mydb?schema=public"
+
+# SQLite (local development)
+# DATABASE_URL="file:./dev.db"
+
+# ==============================================
+# Better Auth Configuration
+# ==============================================
+# REQUIRED: Generate a secure random string (at least 32 characters)
+# Run: openssl rand -base64 32
+BETTER_AUTH_SECRET="your-super-secret-key-change-this-in-production"
+
+# Base URL of your application
+BETTER_AUTH_URL="http://localhost:3000"
+
+# ==============================================
+# Email (SMTP) - Optional
+# ==============================================
+# For email verification and password reset
+SMTP_HOST="smtp.example.com"
+SMTP_PORT="587"
+SMTP_USER="your-email@example.com"
+SMTP_PASSWORD="your-email-password"
+SMTP_FROM="noreply@yourapp.com"
+
+# ==============================================
+# OAuth Providers (Optional)
+# ==============================================
+# Google OAuth
+# GOOGLE_CLIENT_ID=""
+# GOOGLE_CLIENT_SECRET=""
+
+# GitHub OAuth
+# GITHUB_CLIENT_ID=""
+# GITHUB_CLIENT_SECRET=""
+
+# ==============================================
+# Application URLs
+# ==============================================
+NEXT_PUBLIC_APP_URL="http://localhost:3000"

package/templates/app/(auth)/login/page.tsx

@@ -0,0 +1,57 @@
+'use client';
+
+import { useState } from 'react';
+import { useRouter } from 'next/navigation';
+import Link from 'next/link';
+import { authClient } from '@/lib/auth-client';
+
+export default function LoginPage() {
+    const router = useRouter();
+    const [email, setEmail] = useState('');
+    const [password, setPassword] = useState('');
+    const [error, setError] = useState('');
+    const [loading, setLoading] = useState(false);
+
+    const handleSubmit = async (e: React.FormEvent) => {
+        e.preventDefault();
+        setLoading(true);
+        setError('');
+
+        const { error } = await authClient.signIn.email({ email, password });
+
+        if (error) {
+            setError(error.message);
+            setLoading(false);
+        } else {
+            router.push('/dashboard');
+            router.refresh();
+        }
+    };
+
+    return (
+        <div className="min-h-screen flex items-center justify-center bg-gray-900">
+            <div className="w-full max-w-md bg-gray-800 rounded-lg p-8">
+                <h1 className="text-2xl font-bold text-white mb-6 text-center">Sign In</h1>
+
+                {error && <p className="text-red-400 mb-4 text-sm">{error}</p>}
+
+                <form onSubmit={handleSubmit} className="space-y-4">
+                    <input type="email" value={email} onChange={(e) => setEmail(e.target.value)} required
+                        className="w-full px-4 py-3 rounded bg-gray-700 text-white border border-gray-600"
+                        placeholder="Email" />
+                    <input type="password" value={password} onChange={(e) => setPassword(e.target.value)} required
+                        className="w-full px-4 py-3 rounded bg-gray-700 text-white border border-gray-600"
+                        placeholder="Password" />
+                    <button type="submit" disabled={loading}
+                        className="w-full py-3 bg-blue-600 text-white rounded hover:bg-blue-700 disabled:opacity-50">
+                        {loading ? 'Signing in...' : 'Sign In'}
+                    </button>
+                </form>
+
+                <p className="mt-4 text-center text-gray-400">
+                    No account? <Link href="/register" className="text-blue-400">Sign up</Link>
+                </p>
+            </div>
+        </div>
+    );
+}

package/templates/app/(auth)/register/page.tsx

@@ -0,0 +1,61 @@
+'use client';
+
+import { useState } from 'react';
+import { useRouter } from 'next/navigation';
+import Link from 'next/link';
+import { authClient } from '@/lib/auth-client';
+
+export default function RegisterPage() {
+    const router = useRouter();
+    const [name, setName] = useState('');
+    const [email, setEmail] = useState('');
+    const [password, setPassword] = useState('');
+    const [error, setError] = useState('');
+    const [loading, setLoading] = useState(false);
+
+    const handleSubmit = async (e: React.FormEvent) => {
+        e.preventDefault();
+        setLoading(true);
+        setError('');
+
+        const { error } = await authClient.signUp.email({ email, password, name });
+
+        if (error) {
+            setError(error.message);
+            setLoading(false);
+        } else {
+            router.push('/dashboard');
+            router.refresh();
+        }
+    };
+
+    return (
+        <div className="min-h-screen flex items-center justify-center bg-gray-900">
+            <div className="w-full max-w-md bg-gray-800 rounded-lg p-8">
+                <h1 className="text-2xl font-bold text-white mb-6 text-center">Create Account</h1>
+
+                {error && <p className="text-red-400 mb-4 text-sm">{error}</p>}
+
+                <form onSubmit={handleSubmit} className="space-y-4">
+                    <input type="text" value={name} onChange={(e) => setName(e.target.value)}
+                        className="w-full px-4 py-3 rounded bg-gray-700 text-white border border-gray-600"
+                        placeholder="Name" />
+                    <input type="email" value={email} onChange={(e) => setEmail(e.target.value)} required
+                        className="w-full px-4 py-3 rounded bg-gray-700 text-white border border-gray-600"
+                        placeholder="Email" />
+                    <input type="password" value={password} onChange={(e) => setPassword(e.target.value)} required
+                        className="w-full px-4 py-3 rounded bg-gray-700 text-white border border-gray-600"
+                        placeholder="Password (min 8 chars)" />
+                    <button type="submit" disabled={loading}
+                        className="w-full py-3 bg-blue-600 text-white rounded hover:bg-blue-700 disabled:opacity-50">
+                        {loading ? 'Creating...' : 'Create Account'}
+                    </button>
+                </form>
+
+                <p className="mt-4 text-center text-gray-400">
+                    Have an account? <Link href="/login" className="text-blue-400">Sign in</Link>
+                </p>
+            </div>
+        </div>
+    );
+}

package/templates/app/api/auth/[...all]/route.ts

@@ -0,0 +1,4 @@
+import { auth } from '@/lib/auth';
+import { toNextJsHandler } from 'better-auth/next-js';
+
+export const { POST, GET } = toNextJsHandler(auth);

package/templates/app/dashboard/page.tsx

@@ -0,0 +1,32 @@
+'use client';
+
+import { useRouter } from 'next/navigation';
+import { authClient } from '@/lib/auth-client';
+
+export default function DashboardPage() {
+    const { data: session, isPending } = authClient.useSession();
+    const router = useRouter();
+
+    if (isPending) return <div className="min-h-screen flex items-center justify-center bg-gray-900 text-white">Loading...</div>;
+
+    const handleSignOut = async () => {
+        await authClient.signOut();
+        router.push('/login');
+        router.refresh();
+    };
+
+    return (
+        <div className="min-h-screen bg-gray-900">
+            <nav className="bg-gray-800 p-4 flex justify-between items-center">
+                <h1 className="text-xl font-bold text-white">Dashboard</h1>
+                <button onClick={handleSignOut} className="text-gray-400 hover:text-white">Sign out</button>
+            </nav>
+            <main className="p-8">
+                <div className="bg-gray-800 rounded-lg p-6">
+                    <h2 className="text-xl font-bold text-white mb-4">Welcome!</h2>
+                    <p className="text-gray-400">Signed in as: <span className="text-blue-400">{session?.user?.email}</span></p>
+                </div>
+            </main>
+        </div>
+    );
+}

package/templates/lib/auth-client.ts

@@ -0,0 +1,3 @@
+import { createAuthClient } from 'better-auth/react';
+
+export const authClient = createAuthClient();

package/templates/lib/auth.ts

@@ -0,0 +1,16 @@
+/**
+ * Better Auth Server Configuration
+ */
+
+import { betterAuth } from 'better-auth';
+import { prismaAdapter } from 'better-auth/adapters/prisma';
+import { prisma } from './prisma';
+
+export const auth = betterAuth({
+    database: prismaAdapter(prisma, {
+        provider: 'postgresql', // Change to 'sqlite' for local dev
+    }),
+    emailAndPassword: {
+        enabled: true,
+    },
+});

package/templates/lib/prisma.ts

@@ -0,0 +1,22 @@
+/**
+ * Prisma Client Singleton
+ * 
+ * This file provides a singleton instance of Prisma Client
+ * to prevent multiple instances in development.
+ */
+
+import { PrismaClient } from '@prisma/client';
+
+const globalForPrisma = globalThis as unknown as {
+    prisma: PrismaClient | undefined;
+};
+
+export const prisma = globalForPrisma.prisma ?? new PrismaClient({
+    log: process.env.NODE_ENV === 'development'
+        ? ['query', 'error', 'warn']
+        : ['error'],
+});
+
+if (process.env.NODE_ENV !== 'production') {
+    globalForPrisma.prisma = prisma;
+}

package/templates/middleware.ts

@@ -0,0 +1,27 @@
+import { NextResponse } from 'next/server';
+import type { NextRequest } from 'next/server';
+import { getSessionCookie } from 'better-auth/cookies';
+
+export function middleware(request: NextRequest) {
+    const sessionCookie = getSessionCookie(request);
+    const { pathname } = request.nextUrl;
+
+    const isProtectedRoute = pathname.startsWith('/dashboard');
+    const isAuthRoute = pathname === '/login' || pathname === '/register';
+
+    // Redirect to login if no session on protected routes
+    if (isProtectedRoute && !sessionCookie) {
+        return NextResponse.redirect(new URL('/login', request.url));
+    }
+
+    // Redirect to dashboard if has session on auth routes
+    if (isAuthRoute && sessionCookie) {
+        return NextResponse.redirect(new URL('/dashboard', request.url));
+    }
+
+    return NextResponse.next();
+}
+
+export const config = {
+    matcher: ['/dashboard/:path*', '/login', '/register'],
+};

package/templates/prisma/schema.prisma

@@ -0,0 +1,75 @@
+// This is your Prisma schema file for better-auth
+// Learn more: https://pris.ly/d/prisma-schema
+
+generator client {
+  provider = "prisma-client-js"
+}
+
+datasource db {
+  provider = "postgresql" // Change to "sqlite" for local development
+  url      = env("DATABASE_URL")
+}
+
+// ============================================
+// better-auth required models
+// ============================================
+
+model User {
+  id            String    @id
+  name          String?
+  email         String    @unique
+  emailVerified Boolean   @default(false)
+  image         String?
+  createdAt     DateTime  @default(now())
+  updatedAt     DateTime  @updatedAt
+
+  sessions Session[]
+  accounts Account[]
+}
+
+model Session {
+  id        String   @id
+  userId    String
+  token     String   @unique
+  expiresAt DateTime
+  ipAddress String?
+  userAgent String?
+  createdAt DateTime @default(now())
+  updatedAt DateTime @updatedAt
+
+  user User @relation(fields: [userId], references: [id], onDelete: Cascade)
+
+  @@index([userId])
+}
+
+model Account {
+  id                    String    @id
+  userId                String
+  accountId             String
+  providerId            String
+  accessToken           String?
+  refreshToken          String?
+  accessTokenExpiresAt  DateTime?
+  refreshTokenExpiresAt DateTime?
+  scope                 String?
+  idToken               String?
+  password              String?
+  createdAt             DateTime  @default(now())
+  updatedAt             DateTime  @updatedAt
+
+  user User @relation(fields: [userId], references: [id], onDelete: Cascade)
+
+  @@unique([providerId, accountId])
+  @@index([userId])
+}
+
+model Verification {
+  id         String   @id
+  identifier String
+  value      String
+  expiresAt  DateTime
+  createdAt  DateTime @default(now())
+  updatedAt  DateTime @updatedAt
+
+  @@index([identifier])
+}