create-authhero 0.32.0 → 0.34.0

package/dist/create-authhero.js

@@ -1,10 +1,10 @@
 #!/usr/bin/env node
-import { Command as R } from "commander";
-import u from "inquirer";
+import { Command as I } from "commander";
+import g from "inquirer";
 import a from "fs";
 import l from "path";
-import { spawn as I } from "child_process";
-const T = new R(), p = {
+import { spawn as E } from "child_process";
+const D = new I(), i = {
   local: {
     name: "Local (SQLite)",
     description: "Local development setup with SQLite database - great for getting started",
@@ -133,27 +133,27 @@ const T = new R(), p = {
     seedFile: "seed.ts"
   }
 };
-function E(o, e) {
+function N(o, e) {
   a.readdirSync(o).forEach((n) => {
     const t = l.join(o, n), s = l.join(e, n);
-    a.lstatSync(t).isDirectory() ? (a.mkdirSync(s, { recursive: !0 }), E(t, s)) : a.copyFileSync(t, s);
+    a.lstatSync(t).isDirectory() ? (a.mkdirSync(s, { recursive: !0 }), N(t, s)) : a.copyFileSync(t, s);
   });
 }
-function U(o, e = !1, r = "authhero-local") {
+function P(o, e = !1, r = "authhero-local") {
   const n = o ? "control_plane" : "main", t = o ? "Control Plane" : "Main", s = [
     "https://manage.authhero.net/auth-callback",
     "https://local.authhero.net/auth-callback",
     "http://localhost:5173/auth-callback",
     "https://localhost:3000/auth-callback"
-  ], c = e ? [
+  ], d = e ? [
     `https://localhost.emobix.co.uk:8443/test/a/${r}/callback`,
     `https://localhost:8443/test/a/${r}/callback`
-  ] : [], g = [...s, ...c], w = [
+  ] : [], m = [...s, ...d], f = [
     "https://manage.authhero.net",
     "https://local.authhero.net",
     "http://localhost:5173",
     "https://localhost:3000"
-  ], C = e ? ["https://localhost:8443/", "https://localhost.emobix.co.uk:8443/"] : [], y = [...w, ...C], b = e ? `
+  ], v = e ? ["https://localhost:8443/", "https://localhost.emobix.co.uk:8443/"] : [], w = [...f, ...v], b = e ? `
   // Create OpenID Conformance Suite test clients and user
   console.log("Creating conformance test clients and user...");
   
@@ -278,9 +278,9 @@ async function main() {
     adminPassword,
     tenantId: "${n}",
     tenantName: "${t}",
-    isControlPlane: ${o},
-    callbacks: ${JSON.stringify(g)},
-    allowedLogoutUrls: ${JSON.stringify(y)},
+    isControlPlane: ${!!o},
+    callbacks: ${JSON.stringify(m)},
+    allowedLogoutUrls: ${JSON.stringify(w)},
   });
 ${b}
   await db.destroy();
@@ -289,12 +289,21 @@ ${b}
 main().catch(console.error);
 `;
 }
-function O(o) {
+function R(o) {
   return o ? `import { Context } from "hono";
 import { swaggerUI } from "@hono/swagger-ui";
 import { AuthHeroConfig, DataAdapters } from "authhero";
 import { serveStatic } from "@hono/node-server/serve-static";
 import { initMultiTenant } from "@authhero/multi-tenancy";
+import path from "path";
+import { fileURLToPath } from "url";
+
+const __dirname = path.dirname(fileURLToPath(import.meta.url));
+
+const widgetPath = path.resolve(
+  __dirname,
+  "../node_modules/@authhero/widget/dist/authhero-widget",
+);
 
 // Control plane configuration
 const CONTROL_PLANE_TENANT_ID = "control_plane";
@@ -304,6 +313,10 @@ export default function createApp(config: AuthHeroConfig & { dataAdapter: DataAd
   // Initialize multi-tenant AuthHero - syncs resource servers, roles, and connections by default
   const { app } = initMultiTenant({
     ...config,
+    widgetHandler: serveStatic({
+      root: widgetPath,
+      rewriteRequestPath: (p) => p.replace("/u/widget", ""),
+    }),
     controlPlane: {
       tenantId: CONTROL_PLANE_TENANT_ID,
       clientId: CONTROL_PLANE_CLIENT_ID,
@@ -328,23 +341,7 @@ export default function createApp(config: AuthHeroConfig & { dataAdapter: DataAd
         controlPlaneTenant: CONTROL_PLANE_TENANT_ID,
       });
     })
-    .get("/docs", swaggerUI({ url: "/api/v2/spec" }))
-    // Serve widget assets from @authhero/widget package
-    .get(
-      "/u/widget/*",
-      serveStatic({
-        root: "./node_modules/@authhero/widget/dist/authhero-widget",
-        rewriteRequestPath: (path) => path.replace("/u/widget", ""),
-      }),
-    )
-    // Serve static assets (CSS, JS) from authhero package
-    .get(
-      "/u/*",
-      serveStatic({
-        root: "./node_modules/authhero/dist/assets/u",
-        rewriteRequestPath: (path) => path.replace("/u", ""),
-      }),
-    );
+    .get("/docs", swaggerUI({ url: "/api/v2/spec" }));
 
   return app;
 }
@@ -352,9 +349,24 @@ export default function createApp(config: AuthHeroConfig & { dataAdapter: DataAd
 import { AuthHeroConfig, init } from "authhero";
 import { swaggerUI } from "@hono/swagger-ui";
 import { serveStatic } from "@hono/node-server/serve-static";
+import path from "path";
+import { fileURLToPath } from "url";
+
+const __dirname = path.dirname(fileURLToPath(import.meta.url));
+
+const widgetPath = path.resolve(
+  __dirname,
+  "../node_modules/@authhero/widget/dist/authhero-widget",
+);
 
 export default function createApp(config: AuthHeroConfig) {
-  const { app } = init(config);
+  const { app } = init({
+    ...config,
+    widgetHandler: serveStatic({
+      root: widgetPath,
+      rewriteRequestPath: (p) => p.replace("/u/widget", ""),
+    }),
+  });
 
   app
     .onError((err, ctx) => {
@@ -371,29 +383,13 @@ export default function createApp(config: AuthHeroConfig) {
         status: "running",
       });
     })
-    .get("/docs", swaggerUI({ url: "/api/v2/spec" }))
-    // Serve widget assets from @authhero/widget package
-    .get(
-      "/u/widget/*",
-      serveStatic({
-        root: "./node_modules/@authhero/widget/dist/authhero-widget",
-        rewriteRequestPath: (path) => path.replace("/u/widget", ""),
-      }),
-    )
-    // Serve static assets (CSS, JS) from authhero package
-    .get(
-      "/u/*",
-      serveStatic({
-        root: "./node_modules/authhero/dist/assets/u",
-        rewriteRequestPath: (path) => path.replace("/u", ""),
-      }),
-    );
+    .get("/docs", swaggerUI({ url: "/api/v2/spec" }));
 
   return app;
 }
 `;
 }
-function j(o) {
+function O(o) {
   return `import { D1Dialect } from "kysely-d1";
 import { Kysely } from "kysely";
 import createAdapters from "@authhero/kysely-adapter";
@@ -422,7 +418,7 @@ export default {
         issuer,
         tenantId: "${o ? "control_plane" : "main"}",
         tenantName: "${o ? "Control Plane" : "Main"}",
-        isControlPlane: ${o},
+        isControlPlane: ${!!o},
       });
 
       return new Response(
@@ -453,7 +449,7 @@ export default {
 };
 `;
 }
-function L(o) {
+function U(o) {
   return o ? `import { Context } from "hono";
 import { swaggerUI } from "@hono/swagger-ui";
 import { AuthHeroConfig, DataAdapters } from "authhero";
@@ -533,7 +529,7 @@ export default function createApp(config: AuthHeroConfig) {
 }
 `;
 }
-function $(o) {
+function L(o) {
   return o ? `import { Context } from "hono";
 import { swaggerUI } from "@hono/swagger-ui";
 import { AuthHeroConfig, DataAdapters } from "authhero";
@@ -639,7 +635,7 @@ export default function createApp(config: AppConfig) {
 }
 `;
 }
-function M(o) {
+function j(o) {
   return `import { DynamoDBClient } from "@aws-sdk/client-dynamodb";
 import { DynamoDBDocumentClient } from "@aws-sdk/lib-dynamodb";
 import createAdapters from "@authhero/aws";
@@ -670,7 +666,7 @@ async function main() {
     adminPassword,
     tenantId: "${o ? "control_plane" : "main"}",
     tenantName: "${o ? "Control Plane" : "Main"}",
-    isControlPlane: ${o},
+    isControlPlane: ${!!o},
   });
 
   console.log("✅ Database seeded successfully!");
@@ -679,20 +675,22 @@ async function main() {
 main().catch(console.error);
 `;
 }
-function H(o, e) {
+function $(o, e) {
   const r = l.join(o, "src");
   a.writeFileSync(
     l.join(r, "app.ts"),
-    $(e)
+    L(e)
   ), a.writeFileSync(
     l.join(r, "seed.ts"),
-    M(e)
+    j(e)
   );
 }
-function D(o) {
-  console.log("\\n" + "─".repeat(50)), console.log("🔐 AuthHero deployed to AWS!"), console.log("📚 Check SST output for your API URL"), console.log("🌐 Portal available at https://local.authhero.net"), console.log(o ? "🏢 Multi-tenant mode enabled with control_plane tenant" : "🏠 Single-tenant mode with 'main' tenant"), console.log("─".repeat(50) + "\\n");
+function k() {
+  console.log("\\n" + "─".repeat(50)), console.log("🔐 AuthHero deployed to AWS!"), console.log("📚 Check SST output for your API URL"), console.log(
+    "🚀 Open your server URL /setup to complete initial setup"
+  ), console.log("🌐 Portal available at https://local.authhero.net"), console.log("─".repeat(50) + "\\n");
 }
-function F(o) {
+function H(o) {
   const e = l.join(o, ".github", "workflows");
   a.mkdirSync(e, { recursive: !0 });
   const r = `name: Unit tests
@@ -783,7 +781,7 @@ jobs:
 `;
   a.writeFileSync(l.join(e, "unit-tests.yml"), r), a.writeFileSync(l.join(e, "deploy-dev.yml"), n), a.writeFileSync(l.join(e, "release.yml"), t), console.log("\\n📦 GitHub CI workflows created!");
 }
-function W(o) {
+function M(o) {
   const e = {
     branches: ["main"],
     plugins: [
@@ -808,7 +806,7 @@ function W(o) {
 }
 function A(o, e) {
   return new Promise((r, n) => {
-    const t = I(o, [], {
+    const t = E(o, [], {
       cwd: e,
       shell: !0,
       stdio: "inherit"
@@ -818,43 +816,34 @@ function A(o, e) {
     }), t.on("error", n);
   });
 }
-function _(o, e, r) {
-  return new Promise((n, t) => {
-    const s = I(o, [], {
-      cwd: e,
-      shell: !0,
-      stdio: "inherit",
-      env: { ...process.env, ...r }
-    });
-    s.on("close", (c) => {
-      c === 0 ? n() : t(new Error(`Command failed with exit code ${c}`));
-    }), s.on("error", t);
-  });
-}
-function q(o, e) {
+function F(o, e) {
   const r = l.join(o, "src");
   a.writeFileSync(
     l.join(r, "app.ts"),
-    L(e)
+    U(e)
   ), a.writeFileSync(
     l.join(r, "seed.ts"),
-    j(e)
+    O(e)
   );
 }
-function x(o) {
+function x() {
   console.log(`
-` + "─".repeat(50)), console.log("🔐 AuthHero server running at https://localhost:3000"), console.log("📚 API documentation available at https://localhost:3000/docs"), console.log("🌐 Portal available at https://local.authhero.net"), console.log(o ? "🏢 Multi-tenant mode enabled with control_plane tenant" : "🏠 Single-tenant mode with 'main' tenant"), console.log("─".repeat(50) + `
+` + "─".repeat(50)), console.log("🔐 AuthHero server running at https://localhost:3000"), console.log("📚 API documentation available at https://localhost:3000/docs"), console.log(
+    "🚀 Open https://localhost:3000/setup to complete initial setup"
+  ), console.log("🌐 Portal available at https://local.authhero.net"), console.log("─".repeat(50) + `
 `);
 }
-function N(o) {
+function _() {
   console.log(`
-` + "─".repeat(50)), console.log("✅ Self-signed certificates generated with openssl"), console.log("⚠️  You may need to trust the certificate in your browser"), console.log("🔐 AuthHero server running at https://localhost:3000"), console.log("📚 API documentation available at https://localhost:3000/docs"), console.log("🌐 Portal available at https://local.authhero.net"), console.log(o ? "🏢 Multi-tenant mode enabled with control_plane tenant" : "🏠 Single-tenant mode with 'main' tenant"), console.log("─".repeat(50) + `
+` + "─".repeat(50)), console.log("✅ Self-signed certificates generated with openssl"), console.log("⚠️  You may need to trust the certificate in your browser"), console.log("🔐 AuthHero server running at https://localhost:3000"), console.log("📚 API documentation available at https://localhost:3000/docs"), console.log(
+    "🚀 Open https://localhost:3000/setup to complete initial setup"
+  ), console.log("🌐 Portal available at https://local.authhero.net"), console.log("─".repeat(50) + `
 `);
 }
-T.version("1.0.0").description("Create a new AuthHero project").argument("[project-name]", "name of the project").option("-t, --template <type>", "template type: local or cloudflare").option("-e, --email <email>", "admin email address").option("-p, --password <password>", "admin password (min 8 characters)").option(
+D.version("1.0.0").description("Create a new AuthHero project").argument("[project-name]", "name of the project").option("-t, --template <type>", "template type: local or cloudflare").option(
   "--package-manager <pm>",
   "package manager to use: npm, yarn, pnpm, or bun"
-).option("--multi-tenant", "enable multi-tenant mode").option("--skip-install", "skip installing dependencies").option("--skip-migrate", "skip running database migrations").option("--skip-seed", "skip seeding the database").option("--skip-start", "skip starting the development server").option("--github-ci", "include GitHub CI workflows with semantic versioning").option("--conformance", "add OpenID conformance suite test clients").option(
+).option("--multi-tenant", "enable multi-tenant mode").option("--skip-install", "skip installing dependencies").option("--skip-migrate", "skip running database migrations").option("--skip-start", "skip starting the development server").option("--github-ci", "include GitHub CI workflows with semantic versioning").option("--conformance", "add OpenID conformance suite test clients").option(
   "--conformance-alias <alias>",
   "alias for conformance suite (default: authhero-local)"
 ).option(
@@ -866,103 +855,93 @@ T.version("1.0.0").description("Create a new AuthHero project").argument("[proje
 🔐 Welcome to AuthHero!
 `);
   let n = o;
-  n || (r ? (n = "auth-server", console.log(`Using default project name: ${n}`)) : n = (await u.prompt([
+  n || (r ? (n = "auth-server", console.log(`Using default project name: ${n}`)) : n = (await g.prompt([
     {
       type: "input",
       name: "projectName",
       message: "Project name:",
       default: "auth-server",
-      validate: (d) => d !== "" || "Project name cannot be empty"
+      validate: (p) => p !== "" || "Project name cannot be empty"
     }
   ])).projectName);
   const t = l.join(process.cwd(), n);
   a.existsSync(t) && (console.error(`❌ Project "${n}" already exists.`), process.exit(1));
   let s;
-  e.template ? (["local", "cloudflare", "aws-sst"].includes(e.template) || (console.error(`❌ Invalid template: ${e.template}`), console.error("Valid options: local, cloudflare, aws-sst"), process.exit(1)), s = e.template, console.log(`Using template: ${p[s].name}`)) : s = (await u.prompt([
+  e.template ? (["local", "cloudflare", "aws-sst"].includes(e.template) || (console.error(`❌ Invalid template: ${e.template}`), console.error("Valid options: local, cloudflare, aws-sst"), process.exit(1)), s = e.template, console.log(`Using template: ${i[s].name}`)) : s = (await g.prompt([
     {
       type: "list",
       name: "setupType",
       message: "Select your setup type:",
       choices: [
         {
-          name: `${p.local.name}
-     ${p.local.description}`,
+          name: `${i.local.name}
+     ${i.local.description}`,
           value: "local",
-          short: p.local.name
+          short: i.local.name
         },
         {
-          name: `${p.cloudflare.name}
-     ${p.cloudflare.description}`,
+          name: `${i.cloudflare.name}
+     ${i.cloudflare.description}`,
           value: "cloudflare",
-          short: p.cloudflare.name
+          short: i.cloudflare.name
         },
         {
-          name: `${p["aws-sst"].name}
-     ${p["aws-sst"].description}`,
+          name: `${i["aws-sst"].name}
+     ${i["aws-sst"].description}`,
           value: "aws-sst",
-          short: p["aws-sst"].name
+          short: i["aws-sst"].name
         }
       ]
     }
   ])).setupType;
-  let c;
-  e.multiTenant !== void 0 ? (c = e.multiTenant, console.log(`Multi-tenant mode: ${c ? "enabled" : "disabled"}`)) : r ? c = !1 : c = (await u.prompt([
-    {
-      type: "confirm",
-      name: "multiTenant",
-      message: `Would you like to enable multi-tenant mode?
-     (Allows managing multiple tenants from a control plane)`,
-      default: !1
-    }
-  ])).multiTenant;
-  const g = e.conformance || !1, w = e.conformanceAlias || "authhero-local";
-  g && console.log(
-    `OpenID Conformance Suite: enabled (alias: ${w})`
+  const d = e.multiTenant, m = e.conformance || !1, f = e.conformanceAlias || "authhero-local";
+  m && console.log(
+    `OpenID Conformance Suite: enabled (alias: ${f})`
   );
-  const C = e.workspace || !1;
-  C && console.log("Workspace mode: enabled (using workspace:* dependencies)");
-  const y = p[s];
+  const v = e.workspace || !1;
+  v && console.log("Workspace mode: enabled (using workspace:* dependencies)");
+  const w = i[s];
   a.mkdirSync(t, { recursive: !0 }), a.writeFileSync(
     l.join(t, "package.json"),
     JSON.stringify(
-      y.packageJson(n, c, g, C),
+      w.packageJson(n, d, m, v),
       null,
       2
     )
   );
-  const b = y.templateDir, k = l.join(
+  const b = w.templateDir, S = l.join(
     import.meta.url.replace("file://", "").replace("/create-authhero.js", ""),
     b
   );
-  if (a.existsSync(k) ? E(k, t) : (console.error(`❌ Template directory not found: ${k}`), process.exit(1)), s === "cloudflare" && q(t, c), s === "cloudflare") {
-    const i = l.join(t, "wrangler.toml"), d = l.join(t, "wrangler.local.toml");
-    a.existsSync(i) && a.copyFileSync(i, d);
-    const m = l.join(t, ".dev.vars.example"), f = l.join(t, ".dev.vars");
-    a.existsSync(m) && a.copyFileSync(m, f), console.log(
+  if (a.existsSync(S) ? N(S, t) : (console.error(`❌ Template directory not found: ${S}`), process.exit(1)), s === "cloudflare" && F(t, d), s === "cloudflare") {
+    const c = l.join(t, "wrangler.toml"), p = l.join(t, "wrangler.local.toml");
+    a.existsSync(c) && a.copyFileSync(c, p);
+    const u = l.join(t, ".dev.vars.example"), h = l.join(t, ".dev.vars");
+    a.existsSync(u) && a.copyFileSync(u, h), console.log(
       "📁 Created wrangler.local.toml and .dev.vars for local development"
     );
   }
-  let S = !1;
-  if (s === "cloudflare" && (e.githubCi !== void 0 ? (S = e.githubCi, S && console.log("Including GitHub CI workflows with semantic versioning")) : r || (S = (await u.prompt([
+  let C = !1;
+  if (s === "cloudflare" && (e.githubCi !== void 0 ? (C = e.githubCi, C && console.log("Including GitHub CI workflows with semantic versioning")) : r || (C = (await g.prompt([
     {
       type: "confirm",
       name: "includeGithubCi",
       message: "Would you like to include GitHub CI with semantic versioning?",
       default: !1
     }
-  ])).includeGithubCi), S && (F(t), W(t))), s === "local") {
-    const i = U(
-      c,
-      g,
-      w
+  ])).includeGithubCi), C && (H(t), M(t))), s === "local") {
+    const c = P(
+      d,
+      m,
+      f
     );
-    a.writeFileSync(l.join(t, "src/seed.ts"), i);
-    const d = O(c);
-    a.writeFileSync(l.join(t, "src/app.ts"), d);
+    a.writeFileSync(l.join(t, "src/seed.ts"), c);
+    const p = R(d);
+    a.writeFileSync(l.join(t, "src/app.ts"), p);
   }
-  if (s === "aws-sst" && H(t, c), g) {
-    const i = {
-      alias: w,
+  if (s === "aws-sst" && $(t, d), m) {
+    const c = {
+      alias: f,
       description: "AuthHero Conformance Test",
       server: {
         discoveryUrl: "http://host.docker.internal:3000/.well-known/openid-configuration"
@@ -981,30 +960,30 @@ T.version("1.0.0").description("Create a new AuthHero project").argument("[proje
     };
     a.writeFileSync(
       l.join(t, "conformance-config.json"),
-      JSON.stringify(i, null, 2)
+      JSON.stringify(c, null, 2)
     ), console.log(
       "📝 Created conformance-config.json for OpenID Conformance Suite"
     );
   }
-  const P = c ? "multi-tenant" : "single-tenant";
+  const T = d ? "multi-tenant" : "single-tenant";
   console.log(
     `
-✅ Project "${n}" has been created with ${y.name} (${P}) setup!
+✅ Project "${n}" has been created with ${w.name} (${T}) setup!
 `
   );
-  let v;
-  if (e.skipInstall ? v = !1 : r ? v = !0 : v = (await u.prompt([
+  let y;
+  if (e.skipInstall ? y = !1 : r ? y = !0 : y = (await g.prompt([
     {
       type: "confirm",
       name: "shouldInstall",
       message: "Would you like to install dependencies now?",
       default: !0
     }
-  ])).shouldInstall, v) {
-    let i;
+  ])).shouldInstall, y) {
+    let c;
     e.packageManager ? (["npm", "yarn", "pnpm", "bun"].includes(e.packageManager) || (console.error(
       `❌ Invalid package manager: ${e.packageManager}`
-    ), console.error("Valid options: npm, yarn, pnpm, bun"), process.exit(1)), i = e.packageManager) : r ? i = "pnpm" : i = (await u.prompt([
+    ), console.error("Valid options: npm, yarn, pnpm, bun"), process.exit(1)), c = e.packageManager) : r ? c = "pnpm" : c = (await g.prompt([
       {
         type: "list",
         name: "packageManager",
@@ -1018,94 +997,65 @@ T.version("1.0.0").description("Create a new AuthHero project").argument("[proje
         default: "pnpm"
       }
     ])).packageManager, console.log(`
-📦 Installing dependencies with ${i}...
+📦 Installing dependencies with ${c}...
 `);
     try {
-      const d = i === "pnpm" ? "pnpm install --ignore-workspace" : `${i} install`;
-      if (await A(d, t), s === "local" && (console.log(`
+      const p = c === "pnpm" ? "pnpm install --ignore-workspace" : `${c} install`;
+      if (await A(p, t), s === "local" && (console.log(`
 🔧 Building native modules...
 `), await A("npm rebuild better-sqlite3", t)), console.log(`
 ✅ Dependencies installed successfully!
-`), s === "local" || s === "cloudflare") {
-        let f;
-        if (e.skipMigrate && e.skipSeed ? f = !1 : r ? f = !e.skipMigrate || !e.skipSeed : f = (await u.prompt([
+`), (s === "local" || s === "cloudflare") && !e.skipMigrate) {
+        let h;
+        r ? h = !0 : h = (await g.prompt([
           {
             type: "confirm",
-            name: "shouldSetup",
-            message: "Would you like to run migrations and seed the database?",
+            name: "shouldMigrate",
+            message: "Would you like to run database migrations?",
             default: !0
           }
-        ])).shouldSetup, f) {
-          let h;
-          e.email && e.password ? (h = {
-            username: e.email,
-            password: e.password
-          }, console.log(`Using admin username: ${e.email}`)) : h = await u.prompt([
-            {
-              type: "input",
-              name: "username",
-              message: "Admin username:",
-              default: "admin"
-            },
-            {
-              type: "password",
-              name: "password",
-              message: "Admin password:",
-              mask: "*",
-              default: "admin"
-            }
-          ]), e.skipMigrate || (console.log(`
+        ])).shouldMigrate, h && (console.log(`
 🔄 Running migrations...
-`), await A(`${i} run migrate`, t)), e.skipSeed || (console.log(`
-🌱 Seeding database...
-`), s === "local" ? await _(
-            `${i} run seed`,
-            t,
-            {
-              ADMIN_USERNAME: h.username,
-              ADMIN_PASSWORD: h.password
-            }
-          ) : await _(
-            `${i} run seed:local`,
-            t,
-            {
-              ADMIN_USERNAME: h.username,
-              ADMIN_PASSWORD: h.password
-            }
-          ));
-        }
+`), await A(`${c} run migrate`, t));
       }
-      let m;
-      e.skipStart || r ? m = !1 : m = (await u.prompt([
+      let u;
+      e.skipStart || r ? u = !1 : u = (await g.prompt([
         {
           type: "confirm",
           name: "shouldStart",
           message: "Would you like to start the development server?",
           default: !0
         }
-      ])).shouldStart, m && (s === "cloudflare" ? x(c) : s === "aws-sst" ? D(c) : N(c), console.log(`🚀 Starting development server...
-`), await A(`${i} run dev`, t)), r && !m && (console.log(`
+      ])).shouldStart, u && (s === "cloudflare" ? x() : s === "aws-sst" ? k() : _(), console.log(`🚀 Starting development server...
+`), await A(`${c} run dev`, t)), r && !u && (console.log(`
 ✅ Setup complete!`), console.log(`
-To start the development server:`), console.log(`  cd ${n}`), console.log("  npm run dev"), s === "cloudflare" ? x(c) : s === "aws-sst" ? D(c) : N(c));
-    } catch (d) {
+To start the development server:`), console.log(`  cd ${n}`), console.log("  npm run dev"), s === "cloudflare" ? x() : s === "aws-sst" ? k() : _());
+    } catch (p) {
       console.error(`
-❌ An error occurred:`, d), process.exit(1);
+❌ An error occurred:`, p), process.exit(1);
     }
   }
-  v || (console.log("Next steps:"), console.log(`  cd ${n}`), s === "local" ? (console.log("  npm install"), console.log("  npm run migrate"), console.log("  npm run seed  # defaults to admin/admin"), console.log("  npm run dev")) : s === "cloudflare" ? (console.log("  npm install"), console.log(
+  y || (console.log("Next steps:"), console.log(`  cd ${n}`), s === "local" ? (console.log("  npm install"), console.log("  npm run migrate"), console.log("  npm run dev"), console.log(
+    `
+Open https://localhost:3000/setup to complete initial setup`
+  )) : s === "cloudflare" ? (console.log("  npm install"), console.log(
     "  npm run migrate  # or npm run db:migrate:remote for production"
-  ), console.log("  npm run seed  # defaults to admin/admin"), console.log("  npm run dev  # or npm run dev:remote for production")) : s === "aws-sst" && (console.log("  npm install"), console.log("  npm run dev  # Deploys to AWS in development mode"), console.log("  # After deploy, get TABLE_NAME from output, then:"), console.log(
-    "  TABLE_NAME=<your-table> npm run seed  # defaults to admin/admin"
+  ), console.log("  npm run dev  # or npm run dev:remote for production"), console.log(
+    `
+Open https://localhost:3000/setup to complete initial setup`
+  )) : s === "aws-sst" && (console.log("  npm install"), console.log("  npm run dev  # Deploys to AWS in development mode"), console.log(
+    `
+Open your server URL /setup to complete initial setup`
   )), console.log(`
-Server will be available at: https://localhost:3000`), console.log("Portal available at: https://local.authhero.net"), g && (console.log(`
+Server will be available at: https://localhost:3000`), console.log("Portal available at: https://local.authhero.net"), m && (console.log(`
 🧪 OpenID Conformance Suite Testing:`), console.log(
     "  1. Clone and start the conformance suite (if not already running):"
   ), console.log(
     "     git clone https://gitlab.com/openid/conformance-suite.git"
   ), console.log("     cd conformance-suite && mvn clean package"), console.log("     docker-compose up -d"), console.log("  2. Open https://localhost.emobix.co.uk:8443"), console.log(
     "  3. Create a test plan and use conformance-config.json for settings"
-  ), console.log(`  4. Use alias: ${w}`)), console.log(`
+  ), console.log(`  4. Use alias: ${f}`)), console.log(`
 For more information, visit: https://authhero.net/docs
 `));
 });
-T.parse(process.argv);
+D.parse(process.argv);

package/dist/local/src/app.ts

@@ -3,6 +3,7 @@ import { AuthHeroConfig, init } from "authhero";
 import { swaggerUI } from "@hono/swagger-ui";
 import { serveStatic } from "@hono/node-server/serve-static";
 import path from "path";
+import fs from "fs";
 import { fileURLToPath } from "url";
 
 const __dirname = path.dirname(fileURLToPath(import.meta.url));
@@ -13,9 +14,15 @@ const widgetPath = path.resolve(
   "../node_modules/@authhero/widget/dist/authhero-widget",
 );
 
+const adminDistPath = path.resolve(
+  __dirname,
+  "../node_modules/@authhero/react-admin/dist",
+);
+const adminIndexPath = path.join(adminDistPath, "index.html");
+
 export default function createApp(config: AuthHeroConfig) {
-  // Configure widget handler before init() to serve widget files at /u/widget/*
-  const configWithWidget: AuthHeroConfig = {
+  // Configure widget and admin handlers before init()
+  const configWithHandlers: AuthHeroConfig = {
     ...config,
     widgetHandler: serveStatic({
       root: widgetPath,
@@ -23,7 +30,26 @@ export default function createApp(config: AuthHeroConfig) {
     }),
   };
 
-  const { app } = init(configWithWidget);
+  // Add admin UI handler if the package is installed
+  if (fs.existsSync(adminIndexPath)) {
+    const issuer =
+      process.env.ISSUER || `https://localhost:${process.env.PORT || 3000}/`;
+    const rawHtml = fs.readFileSync(adminIndexPath, "utf-8");
+    const configJson = JSON.stringify({
+      domain: issuer.replace(/\/$/, ""),
+      basePath: "/admin",
+    }).replace(/</g, "\\u003c");
+    configWithHandlers.adminIndexHtml = rawHtml.replace(
+      "</head>",
+      `<script>window.__AUTHHERO_ADMIN_CONFIG__=${configJson};</script>\n</head>`,
+    );
+    configWithHandlers.adminHandler = serveStatic({
+      root: adminDistPath,
+      rewriteRequestPath: (p: string) => p.replace("/admin", ""),
+    });
+  }
+
+  const { app } = init(configWithHandlers);
 
   app
     .get("/", async (ctx: Context) => {

package/dist/local/src/index.ts

@@ -90,6 +90,7 @@ const app = createApp({
     "https://manage.authhero.net",
     "https://local.authhero.net",
     "http://localhost:5173",
+    "https://localhost:5173",
   ],
 });
 

package/package.json

@@ -5,7 +5,7 @@
     "type": "git",
     "url": "https://github.com/markusahlstrand/authhero"
   },
-  "version": "0.32.0",
+  "version": "0.34.0",
   "type": "module",
   "main": "dist/create-authhero.js",
   "bin": {
@@ -29,6 +29,7 @@
   },
   "scripts": {
     "build": "tsc && vite build",
+    "dev": "pnpm build && rm -rf auth-server && node dist/create-authhero.js auth-server --workspace --skip-install --skip-start && pnpm -w install --force --filter auth-server... && pnpm --filter auth-server migrate && pnpm --filter auth-server dev",
     "start": "pnpm build && node dist/create-authhero.js"
   }
 }