create-authhero 0.28.0 → 0.30.0

package/README.md

@@ -87,7 +87,7 @@ my-auth-project/
 cd my-auth-project
 npm install
 npm run migrate
-ADMIN_EMAIL=admin@example.com ADMIN_PASSWORD=yourpassword npm run seed
+npm run seed
 npm run dev
 ```
 
@@ -158,7 +158,7 @@ my-auth-project/
 cd my-auth-project
 npm install
 npm run migrate
-ADMIN_EMAIL=admin@example.com ADMIN_PASSWORD=yourpassword npm run seed
+npm run seed
 npm run dev
 ```
 

package/dist/aws-sst/README.md

@@ -33,9 +33,8 @@ A serverless AuthHero deployment using [SST](https://sst.dev) with AWS Lambda an
    After the dev server starts, seed your database:
 
    ```bash
-   # Set your admin credentials
-   export ADMIN_EMAIL=admin@example.com
-   export ADMIN_PASSWORD=your-secure-password
+   # Optionally set admin credentials (defaults to admin/admin)
+   export ADMIN_USERNAME=admin
 
    npm run seed
    ```
@@ -76,8 +75,8 @@ Set these in SST or AWS Systems Manager:
 |----------|-------------|
 | `TABLE_NAME` | DynamoDB table name (auto-set by SST) |
 | `WIDGET_URL` | URL to widget assets (auto-set by SST) |
-| `ADMIN_EMAIL` | Admin user email (required for initial seeding) |
-| `ADMIN_PASSWORD` | Admin user password (required for initial seeding) |
+| `ADMIN_USERNAME` | Admin username (defaults to "admin") |
+| `ADMIN_PASSWORD` | Admin user password (defaults to "admin") |
 
 ## Widget Assets
 

package/dist/aws-sst/copy-assets.js

@@ -1,10 +1,11 @@
 #!/usr/bin/env node
 
 /**
- * Copy AuthHero widget assets for Lambda deployment
+ * Copy AuthHero assets to dist directory
  *
- * This script copies widget assets from node_modules to dist/assets
- * so they can be uploaded to S3 and served via CloudFront.
+ * This script copies static assets from the authhero package to the dist directory
+ * so they can be served as static files. Most deployment targets do not support
+ * serving files directly from node_modules.
  */
 
 import fs from "fs";
@@ -14,11 +15,25 @@ import { fileURLToPath } from "url";
 const __filename = fileURLToPath(import.meta.url);
 const __dirname = path.dirname(__filename);
 
+const sourceDir = path.join(
+  __dirname,
+  "node_modules",
+  "authhero",
+  "dist",
+  "assets",
+);
+const targetDir = path.join(__dirname, "dist", "assets");
+
+/**
+ * Recursively copy directory contents
+ */
 function copyDirectory(src, dest) {
+  // Create destination directory if it doesn't exist
   if (!fs.existsSync(dest)) {
     fs.mkdirSync(dest, { recursive: true });
   }
 
+  // Read source directory
   const entries = fs.readdirSync(src, { withFileTypes: true });
 
   for (const entry of entries) {
@@ -33,29 +48,44 @@ function copyDirectory(src, dest) {
   }
 }
 
-// Source and destination paths
-const authHeroAssets = path.join(__dirname, "node_modules/authhero/dist/assets");
-const widgetSource = path.join(
-  __dirname,
-  "node_modules/@authhero/widget/dist/authhero-widget"
-);
-const targetDir = path.join(__dirname, "dist/assets");
-const widgetTarget = path.join(targetDir, "u/widget");
-
-// Copy authhero assets
-if (fs.existsSync(authHeroAssets)) {
+try {
   console.log("📦 Copying AuthHero assets...");
-  copyDirectory(authHeroAssets, targetDir);
-} else {
-  console.log("⚠️  AuthHero assets not found at:", authHeroAssets);
-}
 
-// Copy widget from @authhero/widget package
-if (fs.existsSync(widgetSource)) {
-  console.log("📦 Copying widget assets...");
-  copyDirectory(widgetSource, widgetTarget);
-} else {
-  console.log("⚠️  Widget assets not found at:", widgetSource);
-}
+  if (!fs.existsSync(sourceDir)) {
+    console.error(`❌ Source directory not found: ${sourceDir}`);
+    console.error("Make sure the authhero package is installed.");
+    process.exit(1);
+  }
+
+  // Clean target directory to remove stale files from previous builds
+  if (fs.existsSync(targetDir)) {
+    fs.rmSync(targetDir, { recursive: true });
+    console.log("🧹 Cleaned old assets");
+  }
+
+  copyDirectory(sourceDir, targetDir);
 
-console.log("✅ Assets copied to dist/assets");
+  // Also copy widget files from @authhero/widget package
+  const widgetSourceDir = path.join(
+    __dirname,
+    "node_modules",
+    "@authhero",
+    "widget",
+    "dist",
+    "authhero-widget",
+  );
+  const widgetTargetDir = path.join(targetDir, "u", "widget");
+
+  if (fs.existsSync(widgetSourceDir)) {
+    console.log("📦 Copying widget assets...");
+    copyDirectory(widgetSourceDir, widgetTargetDir);
+  } else {
+    console.warn(`⚠️  Widget directory not found: ${widgetSourceDir}`);
+    console.warn("Widget features may not work. Install @authhero/widget to enable.");
+  }
+
+  console.log(`✅ Assets copied to ${targetDir}`);
+} catch (error) {
+  console.error("❌ Error copying assets:", error.message);
+  process.exit(1);
+}

package/dist/cloudflare/README.md

@@ -43,7 +43,13 @@ This project is designed to be **open-source friendly**. Sensitive Cloudflare ID
 3. Seed the database with an admin user:
 
    ```bash
-   ADMIN_EMAIL=admin@example.com ADMIN_PASSWORD=yourpassword npm run seed
+   npm run seed
+   ```
+
+   This creates an admin user with username `admin` and password `admin`. You can override with:
+
+   ```bash
+   ADMIN_USERNAME=myadmin ADMIN_PASSWORD=mypassword npm run seed
    ```
 
 4. Start the development server:
@@ -81,7 +87,7 @@ The server will be available at `https://localhost:3000`.
 4. Seed the remote database:
 
    ```bash
-   ADMIN_EMAIL=admin@example.com ADMIN_PASSWORD=yourpassword npm run seed:remote
+   npm run seed:remote
    ```
 
 5. Start with remote D1:
@@ -119,7 +125,7 @@ The server will be available at `https://localhost:3000`.
 
 4. Seed the production database:
    ```bash
-   ADMIN_EMAIL=admin@example.com ADMIN_PASSWORD=yourpassword npm run seed:remote
+   npm run seed:remote
    ```
 
 ## Project Structure

package/dist/cloudflare/copy-assets.js

@@ -4,7 +4,7 @@
  * Copy AuthHero assets to dist directory
  *
  * This script copies static assets from the authhero package to the dist directory
- * so they can be served by Wrangler's Assets feature. Wrangler does not support
+ * so they can be served as static files. Most deployment targets do not support
  * serving files directly from node_modules.
  */
 
@@ -57,6 +57,12 @@ try {
     process.exit(1);
   }
 
+  // Clean target directory to remove stale files from previous builds
+  if (fs.existsSync(targetDir)) {
+    fs.rmSync(targetDir, { recursive: true });
+    console.log("🧹 Cleaned old assets");
+  }
+
   copyDirectory(sourceDir, targetDir);
 
   // Also copy widget files from @authhero/widget package

package/dist/cloudflare/seed-helper.js

@@ -8,18 +8,10 @@
 import { spawn } from "child_process";
 import { setTimeout } from "timers/promises";
 
-const adminEmail = process.argv[2] || process.env.ADMIN_EMAIL;
-const adminPassword = process.argv[3] || process.env.ADMIN_PASSWORD;
+const adminUsername = process.argv[2] || process.env.ADMIN_USERNAME || "admin";
+const adminPassword = process.argv[3] || process.env.ADMIN_PASSWORD || "admin";
 const mode = process.argv[4] || "local";
 
-if (!adminEmail || !adminPassword) {
-  console.error("Usage: node seed-helper.js <email> <password> [local|remote]");
-  console.error(
-    "   or: ADMIN_EMAIL=... ADMIN_PASSWORD=... node seed-helper.js",
-  );
-  process.exit(1);
-}
-
 console.log(`Starting seed worker in ${mode} mode...`);
 
 const wranglerArgs = ["dev", "src/seed.ts"];
@@ -44,7 +36,7 @@ worker.stdout?.on("data", (data) => {
   if (urlMatch) {
     workerUrl = urlMatch[0].replace(/\/$/, ""); // Remove trailing slash
   }
-  
+
   // Detect when the worker is ready
   if (output.includes("Ready on") || output.includes("Listening on")) {
     workerReady = true;
@@ -56,8 +48,8 @@ async function waitForWorker(maxAttempts = 30, delayMs = 1000) {
   for (let i = 0; i < maxAttempts; i++) {
     try {
       // Just check if the server responds (even with an error is fine)
-      const response = await fetch(workerUrl, { 
-        signal: AbortSignal.timeout(2000) 
+      const response = await fetch(workerUrl, {
+        signal: AbortSignal.timeout(2000)
       });
       // Any response means the server is up
       return true;
@@ -68,13 +60,13 @@ async function waitForWorker(maxAttempts = 30, delayMs = 1000) {
         return true;
       }
     }
-    
+
     if (workerReady) {
       // Give it a bit more time after wrangler reports ready
       await setTimeout(500);
       return true;
     }
-    
+
     await setTimeout(delayMs);
     if (i > 0 && i % 5 === 0) {
       console.log(`Still waiting for worker... (attempt ${i + 1}/${maxAttempts})`);
@@ -95,7 +87,7 @@ if (!isReady) {
 console.log(`\nMaking seed request to ${workerUrl}...`);
 
 try {
-  const url = `${workerUrl}/?email=${encodeURIComponent(adminEmail)}&password=${encodeURIComponent(adminPassword)}`;
+  const url = `${workerUrl}/?username=${encodeURIComponent(adminUsername)}&password=${encodeURIComponent(adminPassword)}`;
 
   const response = await fetch(url);
   const result = await response.json();

package/dist/cloudflare/src/index.ts

@@ -20,7 +20,7 @@ export default {
 
     const dialect = new D1Dialect({ database: env.AUTH_DB });
     const db = new Kysely<any>({ dialect });
-    const dataAdapter = createAdapters(db);
+    const dataAdapter = createAdapters(db, { useTransactions: false });
 
     // ────────────────────────────────────────────────────────────────────────
     // OPTIONAL: Cloudflare Analytics Engine for centralized logging

package/dist/create-authhero.js

@@ -1,10 +1,10 @@
 #!/usr/bin/env node
-import { Command as R } from "commander";
+import { Command as U } from "commander";
 import u from "inquirer";
-import a from "fs";
+import s from "fs";
 import l from "path";
-import { spawn as T } from "child_process";
-const E = new R(), p = {
+import { spawn as _ } from "child_process";
+const I = new U(), p = {
   local: {
     name: "Local (SQLite)",
     description: "Local development setup with SQLite database - great for getting started",
@@ -57,9 +57,9 @@ const E = new R(), p = {
         scripts: {
           postinstall: "node copy-assets.js",
           "copy-assets": "node copy-assets.js",
-          dev: "wrangler dev --port 3000 --local-protocol https",
-          "dev:remote": "wrangler dev --port 3000 --local-protocol https --remote --config wrangler.local.toml",
-          deploy: "wrangler deploy --config wrangler.local.toml",
+          dev: "node copy-assets.js && wrangler dev --port 3000 --local-protocol https",
+          "dev:remote": "node copy-assets.js && wrangler dev --port 3000 --local-protocol https --remote --config wrangler.local.toml",
+          deploy: "node copy-assets.js && wrangler deploy --config wrangler.local.toml",
           "db:migrate:local": "wrangler d1 migrations apply AUTH_DB --local",
           "db:migrate:remote": "wrangler d1 migrations apply AUTH_DB --remote --config wrangler.local.toml",
           migrate: "wrangler d1 migrations apply AUTH_DB --local",
@@ -133,14 +133,14 @@ const E = new R(), p = {
     seedFile: "seed.ts"
   }
 };
-function P(o, e) {
-  a.readdirSync(o).forEach((n) => {
-    const t = l.join(o, n), s = l.join(e, n);
-    a.lstatSync(t).isDirectory() ? (a.mkdirSync(s, { recursive: !0 }), P(t, s)) : a.copyFileSync(t, s);
+function E(o, e) {
+  s.readdirSync(o).forEach((n) => {
+    const t = l.join(o, n), a = l.join(e, n);
+    s.lstatSync(t).isDirectory() ? (s.mkdirSync(a, { recursive: !0 }), E(t, a)) : s.copyFileSync(t, a);
   });
 }
-function O(o, e = !1, r = "authhero-local") {
-  const n = o ? "control_plane" : "main", t = o ? "Control Plane" : "Main", s = [
+function j(o, e = !1, r = "authhero-local") {
+  const n = o ? "control_plane" : "main", t = o ? "Control Plane" : "Main", a = [
     "https://manage.authhero.net/auth-callback",
     "https://local.authhero.net/auth-callback",
     "http://localhost:5173/auth-callback",
@@ -148,12 +148,12 @@ function O(o, e = !1, r = "authhero-local") {
   ], c = e ? [
     `https://localhost.emobix.co.uk:8443/test/a/${r}/callback`,
     `https://localhost:8443/test/a/${r}/callback`
-  ] : [], g = [...s, ...c], w = [
+  ] : [], g = [...a, ...c], w = [
     "https://manage.authhero.net",
     "https://local.authhero.net",
     "http://localhost:5173",
     "https://localhost:3000"
-  ], A = e ? ["https://localhost:8443/", "https://localhost.emobix.co.uk:8443/"] : [], y = [...w, ...A], k = e ? `
+  ], C = e ? ["https://localhost:8443/", "https://localhost.emobix.co.uk:8443/"] : [], y = [...w, ...C], b = e ? `
   // Create OpenID Conformance Suite test clients and user
   console.log("Creating conformance test clients and user...");
   
@@ -263,14 +263,8 @@ import createAdapters from "@authhero/kysely-adapter";
 import { seed } from "authhero";
 
 async function main() {
-  const adminEmail = process.argv[2] || process.env.ADMIN_EMAIL;
-  const adminPassword = process.argv[3] || process.env.ADMIN_PASSWORD;
-
-  if (!adminEmail || !adminPassword) {
-    console.error("Usage: npm run seed <email> <password>");
-    console.error("   or: ADMIN_EMAIL=... ADMIN_PASSWORD=... npm run seed");
-    process.exit(1);
-  }
+  const adminUsername = process.argv[2] || process.env.ADMIN_USERNAME || "admin";
+  const adminPassword = process.argv[3] || process.env.ADMIN_PASSWORD || "admin";
 
   const dialect = new SqliteDialect({
     database: new Database("db.sqlite"),
@@ -280,7 +274,7 @@ async function main() {
   const adapters = createAdapters(db);
 
   await seed(adapters, {
-    adminEmail,
+    adminUsername,
     adminPassword,
     tenantId: "${n}",
     tenantName: "${t}",
@@ -288,14 +282,14 @@ async function main() {
     callbacks: ${JSON.stringify(g)},
     allowedLogoutUrls: ${JSON.stringify(y)},
   });
-${k}
+${b}
   await db.destroy();
 }
 
 main().catch(console.error);
 `;
 }
-function j(o) {
+function L(o) {
   return o ? `import { Context } from "hono";
 import { swaggerUI } from "@hono/swagger-ui";
 import { AuthHeroConfig, DataAdapters } from "authhero";
@@ -399,7 +393,7 @@ export default function createApp(config: AuthHeroConfig) {
 }
 `;
 }
-function U(o) {
+function R(o) {
   return `import { D1Dialect } from "kysely-d1";
 import { Kysely } from "kysely";
 import createAdapters from "@authhero/kysely-adapter";
@@ -412,31 +406,18 @@ interface Env {
 export default {
   async fetch(request: Request, env: Env): Promise<Response> {
     const url = new URL(request.url);
-    const adminEmail = url.searchParams.get("email");
-    const adminPassword = url.searchParams.get("password");
+    const adminUsername = url.searchParams.get("username") || "admin";
+    const adminPassword = url.searchParams.get("password") || "admin";
     // Compute issuer from the request URL (for Management API identifier)
     const issuer = \`\${url.protocol}//\${url.host}/\`;
 
-    if (!adminEmail || !adminPassword) {
-      return new Response(
-        JSON.stringify({
-          error: "Missing email or password query parameters",
-          usage: "/?email=admin@example.com&password=yourpassword",
-        }),
-        {
-          status: 400,
-          headers: { "Content-Type": "application/json" },
-        },
-      );
-    }
-
     try {
       const dialect = new D1Dialect({ database: env.AUTH_DB });
       const db = new Kysely<any>({ dialect });
-      const adapters = createAdapters(db);
+      const adapters = createAdapters(db, { useTransactions: false });
 
       const result = await seed(adapters, {
-        adminEmail,
+        adminUsername,
         adminPassword,
         issuer,
         tenantId: "${o ? "control_plane" : "main"}",
@@ -472,7 +453,7 @@ export default {
 };
 `;
 }
-function M(o) {
+function O(o) {
   return o ? `import { Context } from "hono";
 import { swaggerUI } from "@hono/swagger-ui";
 import { AuthHeroConfig, DataAdapters } from "authhero";
@@ -658,23 +639,17 @@ export default function createApp(config: AppConfig) {
 }
 `;
 }
-function H(o) {
+function M(o) {
   return `import { DynamoDBClient } from "@aws-sdk/client-dynamodb";
 import { DynamoDBDocumentClient } from "@aws-sdk/lib-dynamodb";
 import createAdapters from "@authhero/aws";
 import { seed } from "authhero";
 
 async function main() {
-  const adminEmail = process.argv[2] || process.env.ADMIN_EMAIL;
-  const adminPassword = process.argv[3] || process.env.ADMIN_PASSWORD;
+  const adminUsername = process.argv[2] || process.env.ADMIN_USERNAME || "admin";
+  const adminPassword = process.argv[3] || process.env.ADMIN_PASSWORD || "admin";
   const tableName = process.argv[4] || process.env.TABLE_NAME;
 
-  if (!adminEmail || !adminPassword) {
-    console.error("Usage: npm run seed <email> <password>");
-    console.error("   or: ADMIN_EMAIL=... ADMIN_PASSWORD=... npm run seed");
-    process.exit(1);
-  }
-
   if (!tableName) {
     console.error("TABLE_NAME environment variable is required");
     console.error("Run 'sst dev' first to get the table name from outputs");
@@ -691,7 +666,7 @@ async function main() {
   const adapters = createAdapters(docClient, { tableName });
 
   await seed(adapters, {
-    adminEmail,
+    adminUsername,
     adminPassword,
     tenantId: "${o ? "control_plane" : "main"}",
     tenantName: "${o ? "Control Plane" : "Main"}",
@@ -704,22 +679,22 @@ async function main() {
 main().catch(console.error);
 `;
 }
-function F(o, e) {
+function H(o, e) {
   const r = l.join(o, "src");
-  a.writeFileSync(
+  s.writeFileSync(
     l.join(r, "app.ts"),
     $(e)
-  ), a.writeFileSync(
+  ), s.writeFileSync(
     l.join(r, "seed.ts"),
-    H(e)
+    M(e)
   );
 }
-function I(o) {
+function x(o) {
   console.log("\\n" + "─".repeat(50)), console.log("🔐 AuthHero deployed to AWS!"), console.log("📚 Check SST output for your API URL"), console.log("🌐 Portal available at https://local.authhero.net"), console.log(o ? "🏢 Multi-tenant mode enabled with control_plane tenant" : "🏠 Single-tenant mode with 'main' tenant"), console.log("─".repeat(50) + "\\n");
 }
-function W(o) {
+function F(o) {
   const e = l.join(o, ".github", "workflows");
-  a.mkdirSync(e, { recursive: !0 });
+  s.mkdirSync(e, { recursive: !0 });
   const r = `name: Unit tests
 
 on: push
@@ -806,9 +781,9 @@ jobs:
           apiToken: \${{ secrets.PROD_CLOUDFLARE_API_TOKEN }}
           command: deploy --env production
 `;
-  a.writeFileSync(l.join(e, "unit-tests.yml"), r), a.writeFileSync(l.join(e, "deploy-dev.yml"), n), a.writeFileSync(l.join(e, "release.yml"), t), console.log("\\n📦 GitHub CI workflows created!");
+  s.writeFileSync(l.join(e, "unit-tests.yml"), r), s.writeFileSync(l.join(e, "deploy-dev.yml"), n), s.writeFileSync(l.join(e, "release.yml"), t), console.log("\\n📦 GitHub CI workflows created!");
 }
-function q(o) {
+function W(o) {
   const e = {
     branches: ["main"],
     plugins: [
@@ -817,11 +792,11 @@ function q(o) {
       "@semantic-release/github"
     ]
   };
-  a.writeFileSync(
+  s.writeFileSync(
     l.join(o, ".releaserc.json"),
     JSON.stringify(e, null, 2)
   );
-  const r = l.join(o, "package.json"), n = JSON.parse(a.readFileSync(r, "utf-8"));
+  const r = l.join(o, "package.json"), n = JSON.parse(s.readFileSync(r, "utf-8"));
   n.devDependencies = {
     ...n.devDependencies,
     "semantic-release": "^24.0.0"
@@ -829,54 +804,54 @@ function q(o) {
     ...n.scripts,
     test: 'echo "No tests yet"',
     "type-check": "tsc --noEmit"
-  }, a.writeFileSync(r, JSON.stringify(n, null, 2));
+  }, s.writeFileSync(r, JSON.stringify(n, null, 2));
 }
-function b(o, e) {
+function S(o, e) {
   return new Promise((r, n) => {
-    const t = T(o, [], {
+    const t = _(o, [], {
       cwd: e,
       shell: !0,
       stdio: "inherit"
     });
-    t.on("close", (s) => {
-      s === 0 ? r() : n(new Error(`Command failed with exit code ${s}`));
+    t.on("close", (a) => {
+      a === 0 ? r() : n(new Error(`Command failed with exit code ${a}`));
     }), t.on("error", n);
   });
 }
-function D(o, e, r) {
+function N(o, e, r) {
   return new Promise((n, t) => {
-    const s = T(o, [], {
+    const a = _(o, [], {
       cwd: e,
       shell: !0,
       stdio: "inherit",
       env: { ...process.env, ...r }
     });
-    s.on("close", (c) => {
+    a.on("close", (c) => {
       c === 0 ? n() : t(new Error(`Command failed with exit code ${c}`));
-    }), s.on("error", t);
+    }), a.on("error", t);
   });
 }
-function B(o, e) {
+function q(o, e) {
   const r = l.join(o, "src");
-  a.writeFileSync(
+  s.writeFileSync(
     l.join(r, "app.ts"),
-    M(e)
-  ), a.writeFileSync(
+    O(e)
+  ), s.writeFileSync(
     l.join(r, "seed.ts"),
-    U(e)
+    R(e)
   );
 }
-function _(o) {
+function D(o) {
   console.log(`
 ` + "─".repeat(50)), console.log("🔐 AuthHero server running at https://localhost:3000"), console.log("📚 API documentation available at https://localhost:3000/docs"), console.log("🌐 Portal available at https://local.authhero.net"), console.log(o ? "🏢 Multi-tenant mode enabled with control_plane tenant" : "🏠 Single-tenant mode with 'main' tenant"), console.log("─".repeat(50) + `
 `);
 }
-function N(o) {
+function T(o) {
   console.log(`
 ` + "─".repeat(50)), console.log("✅ Self-signed certificates generated with openssl"), console.log("⚠️  You may need to trust the certificate in your browser"), console.log("🔐 AuthHero server running at https://localhost:3000"), console.log("📚 API documentation available at https://localhost:3000/docs"), console.log("🌐 Portal available at https://local.authhero.net"), console.log(o ? "🏢 Multi-tenant mode enabled with control_plane tenant" : "🏠 Single-tenant mode with 'main' tenant"), console.log("─".repeat(50) + `
 `);
 }
-E.version("1.0.0").description("Create a new AuthHero project").argument("[project-name]", "name of the project").option("-t, --template <type>", "template type: local or cloudflare").option("-e, --email <email>", "admin email address").option("-p, --password <password>", "admin password (min 8 characters)").option(
+I.version("1.0.0").description("Create a new AuthHero project").argument("[project-name]", "name of the project").option("-t, --template <type>", "template type: local or cloudflare").option("-e, --email <email>", "admin email address").option("-p, --password <password>", "admin password (min 8 characters)").option(
   "--package-manager <pm>",
   "package manager to use: npm, yarn, pnpm, or bun"
 ).option("--multi-tenant", "enable multi-tenant mode").option("--skip-install", "skip installing dependencies").option("--skip-migrate", "skip running database migrations").option("--skip-seed", "skip seeding the database").option("--skip-start", "skip starting the development server").option("--github-ci", "include GitHub CI workflows with semantic versioning").option("--conformance", "add OpenID conformance suite test clients").option(
@@ -898,9 +873,9 @@ E.version("1.0.0").description("Create a new AuthHero project").argument("[proje
     }
   ])).projectName);
   const t = l.join(process.cwd(), n);
-  a.existsSync(t) && (console.error(`❌ Project "${n}" already exists.`), process.exit(1));
-  let s;
-  e.template ? (["local", "cloudflare", "aws-sst"].includes(e.template) || (console.error(`❌ Invalid template: ${e.template}`), console.error("Valid options: local, cloudflare, aws-sst"), process.exit(1)), s = e.template, console.log(`Using template: ${p[s].name}`)) : s = (await u.prompt([
+  s.existsSync(t) && (console.error(`❌ Project "${n}" already exists.`), process.exit(1));
+  let a;
+  e.template ? (["local", "cloudflare", "aws-sst"].includes(e.template) || (console.error(`❌ Invalid template: ${e.template}`), console.error("Valid options: local, cloudflare, aws-sst"), process.exit(1)), a = e.template, console.log(`Using template: ${p[a].name}`)) : a = (await u.prompt([
     {
       type: "list",
       name: "setupType",
@@ -941,44 +916,44 @@ E.version("1.0.0").description("Create a new AuthHero project").argument("[proje
   g && console.log(
     `OpenID Conformance Suite: enabled (alias: ${w})`
   );
-  const A = e.workspace || !1;
-  A && console.log("Workspace mode: enabled (using workspace:* dependencies)");
-  const y = p[s];
-  a.mkdirSync(t, { recursive: !0 }), a.writeFileSync(
+  const C = e.workspace || !1;
+  C && console.log("Workspace mode: enabled (using workspace:* dependencies)");
+  const y = p[a];
+  s.mkdirSync(t, { recursive: !0 }), s.writeFileSync(
     l.join(t, "package.json"),
-    JSON.stringify(y.packageJson(n, c, g, A), null, 2)
+    JSON.stringify(y.packageJson(n, c, g, C), null, 2)
   );
-  const k = y.templateDir, x = l.join(
+  const b = y.templateDir, k = l.join(
     import.meta.url.replace("file://", "").replace("/create-authhero.js", ""),
-    k
+    b
   );
-  if (a.existsSync(x) ? P(x, t) : (console.error(`❌ Template directory not found: ${x}`), process.exit(1)), s === "cloudflare" && B(t, c), s === "cloudflare") {
+  if (s.existsSync(k) ? E(k, t) : (console.error(`❌ Template directory not found: ${k}`), process.exit(1)), a === "cloudflare" && q(t, c), a === "cloudflare") {
     const i = l.join(t, "wrangler.toml"), d = l.join(t, "wrangler.local.toml");
-    a.existsSync(i) && a.copyFileSync(i, d);
+    s.existsSync(i) && s.copyFileSync(i, d);
     const m = l.join(t, ".dev.vars.example"), f = l.join(t, ".dev.vars");
-    a.existsSync(m) && a.copyFileSync(m, f), console.log(
+    s.existsSync(m) && s.copyFileSync(m, f), console.log(
       "📁 Created wrangler.local.toml and .dev.vars for local development"
     );
   }
-  let C = !1;
-  if (s === "cloudflare" && (e.githubCi !== void 0 ? (C = e.githubCi, C && console.log("Including GitHub CI workflows with semantic versioning")) : r || (C = (await u.prompt([
+  let A = !1;
+  if (a === "cloudflare" && (e.githubCi !== void 0 ? (A = e.githubCi, A && console.log("Including GitHub CI workflows with semantic versioning")) : r || (A = (await u.prompt([
     {
       type: "confirm",
       name: "includeGithubCi",
       message: "Would you like to include GitHub CI with semantic versioning?",
       default: !1
     }
-  ])).includeGithubCi), C && (W(t), q(t))), s === "local") {
-    const i = O(
+  ])).includeGithubCi), A && (F(t), W(t))), a === "local") {
+    const i = j(
       c,
       g,
       w
     );
-    a.writeFileSync(l.join(t, "src/seed.ts"), i);
-    const d = j(c);
-    a.writeFileSync(l.join(t, "src/app.ts"), d);
+    s.writeFileSync(l.join(t, "src/seed.ts"), i);
+    const d = L(c);
+    s.writeFileSync(l.join(t, "src/app.ts"), d);
   }
-  if (s === "aws-sst" && F(t, c), g) {
+  if (a === "aws-sst" && H(t, c), g) {
     const i = {
       alias: w,
       description: "AuthHero Conformance Test",
@@ -997,17 +972,17 @@ E.version("1.0.0").description("Create a new AuthHero project").argument("[proje
         resourceUrl: "http://host.docker.internal:3000/userinfo"
       }
     };
-    a.writeFileSync(
+    s.writeFileSync(
       l.join(t, "conformance-config.json"),
       JSON.stringify(i, null, 2)
     ), console.log(
       "📝 Created conformance-config.json for OpenID Conformance Suite"
     );
   }
-  const L = c ? "multi-tenant" : "single-tenant";
+  const P = c ? "multi-tenant" : "single-tenant";
   console.log(
     `
-✅ Project "${n}" has been created with ${y.name} (${L}) setup!
+✅ Project "${n}" has been created with ${y.name} (${P}) setup!
 `
   );
   let v;
@@ -1040,11 +1015,11 @@ E.version("1.0.0").description("Create a new AuthHero project").argument("[proje
 `);
     try {
       const d = i === "pnpm" ? "pnpm install --ignore-workspace" : `${i} install`;
-      if (await b(d, t), s === "local" && (console.log(`
+      if (await S(d, t), a === "local" && (console.log(`
 🔧 Building native modules...
-`), await b("npm rebuild better-sqlite3", t)), console.log(`
+`), await S("npm rebuild better-sqlite3", t)), console.log(`
 ✅ Dependencies installed successfully!
-`), s === "local" || s === "cloudflare") {
+`), a === "local" || a === "cloudflare") {
         let f;
         if (e.skipMigrate && e.skipSeed ? f = !1 : r ? f = !e.skipMigrate || !e.skipSeed : f = (await u.prompt([
           {
@@ -1055,40 +1030,39 @@ E.version("1.0.0").description("Create a new AuthHero project").argument("[proje
           }
         ])).shouldSetup, f) {
           let h;
-          e.email && e.password ? (/^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(e.email) || (console.error("❌ Invalid email address provided"), process.exit(1)), e.password.length < 8 && (console.error("❌ Password must be at least 8 characters"), process.exit(1)), h = {
+          e.email && e.password ? (h = {
             username: e.email,
             password: e.password
-          }, console.log(`Using admin email: ${e.email}`)) : h = await u.prompt([
+          }, console.log(`Using admin username: ${e.email}`)) : h = await u.prompt([
             {
               type: "input",
               name: "username",
-              message: "Admin email:",
-              default: "admin@example.com",
-              validate: (S) => /^[^\s@]+@[^\s@]+\.[^\s@]+$/.test(S) || "Please enter a valid email address"
+              message: "Admin username:",
+              default: "admin"
             },
             {
               type: "password",
               name: "password",
               message: "Admin password:",
               mask: "*",
-              validate: (S) => S.length < 8 ? "Password must be at least 8 characters" : !0
+              default: "admin"
             }
           ]), e.skipMigrate || (console.log(`
 🔄 Running migrations...
-`), await b(`${i} run migrate`, t)), e.skipSeed || (console.log(`
+`), await S(`${i} run migrate`, t)), e.skipSeed || (console.log(`
 🌱 Seeding database...
-`), s === "local" ? await D(
+`), a === "local" ? await N(
             `${i} run seed`,
             t,
             {
-              ADMIN_EMAIL: h.username,
+              ADMIN_USERNAME: h.username,
               ADMIN_PASSWORD: h.password
             }
-          ) : await D(
+          ) : await N(
             `${i} run seed:local`,
             t,
             {
-              ADMIN_EMAIL: h.username,
+              ADMIN_USERNAME: h.username,
               ADMIN_PASSWORD: h.password
             }
           ));
@@ -1102,23 +1076,23 @@ E.version("1.0.0").description("Create a new AuthHero project").argument("[proje
           message: "Would you like to start the development server?",
           default: !0
         }
-      ])).shouldStart, m && (s === "cloudflare" ? _(c) : s === "aws-sst" ? I(c) : N(c), console.log(`🚀 Starting development server...
-`), await b(`${i} run dev`, t)), r && !m && (console.log(`
+      ])).shouldStart, m && (a === "cloudflare" ? D(c) : a === "aws-sst" ? x(c) : T(c), console.log(`🚀 Starting development server...
+`), await S(`${i} run dev`, t)), r && !m && (console.log(`
 ✅ Setup complete!`), console.log(`
-To start the development server:`), console.log(`  cd ${n}`), console.log("  npm run dev"), s === "cloudflare" ? _(c) : s === "aws-sst" ? I(c) : N(c));
+To start the development server:`), console.log(`  cd ${n}`), console.log("  npm run dev"), a === "cloudflare" ? D(c) : a === "aws-sst" ? x(c) : T(c));
     } catch (d) {
       console.error(`
 ❌ An error occurred:`, d), process.exit(1);
     }
   }
-  v || (console.log("Next steps:"), console.log(`  cd ${n}`), s === "local" ? (console.log("  npm install"), console.log("  npm run migrate"), console.log(
-    "  ADMIN_EMAIL=admin@example.com ADMIN_PASSWORD=yourpassword npm run seed"
-  ), console.log("  npm run dev")) : s === "cloudflare" ? (console.log("  npm install"), console.log(
+  v || (console.log("Next steps:"), console.log(`  cd ${n}`), a === "local" ? (console.log("  npm install"), console.log("  npm run migrate"), console.log(
+    "  npm run seed  # defaults to admin/admin"
+  ), console.log("  npm run dev")) : a === "cloudflare" ? (console.log("  npm install"), console.log(
     "  npm run migrate  # or npm run db:migrate:remote for production"
   ), console.log(
-    "  ADMIN_EMAIL=admin@example.com ADMIN_PASSWORD=yourpassword npm run seed"
-  ), console.log("  npm run dev  # or npm run dev:remote for production")) : s === "aws-sst" && (console.log("  npm install"), console.log("  npm run dev  # Deploys to AWS in development mode"), console.log("  # After deploy, get TABLE_NAME from output, then:"), console.log(
-    "  TABLE_NAME=<your-table> ADMIN_EMAIL=admin@example.com ADMIN_PASSWORD=yourpassword npm run seed"
+    "  npm run seed  # defaults to admin/admin"
+  ), console.log("  npm run dev  # or npm run dev:remote for production")) : a === "aws-sst" && (console.log("  npm install"), console.log("  npm run dev  # Deploys to AWS in development mode"), console.log("  # After deploy, get TABLE_NAME from output, then:"), console.log(
+    "  TABLE_NAME=<your-table> npm run seed  # defaults to admin/admin"
   )), console.log(`
 Server will be available at: https://localhost:3000`), console.log("Portal available at: https://local.authhero.net"), g && (console.log(`
 🧪 OpenID Conformance Suite Testing:`), console.log(
@@ -1131,4 +1105,4 @@ Server will be available at: https://localhost:3000`), console.log("Portal avail
 For more information, visit: https://authhero.net/docs
 `));
 });
-E.parse(process.argv);
+I.parse(process.argv);

package/package.json

@@ -5,7 +5,7 @@
     "type": "git",
     "url": "https://github.com/markusahlstrand/authhero"
   },
-  "version": "0.28.0",
+  "version": "0.30.0",
   "type": "module",
   "main": "dist/create-authhero.js",
   "bin": {