create-kyro 0.3.0 → 0.4.0

package/dist/index.js

@@ -64,58 +64,6 @@ async function promptUser() {
           }
         ]
       },
-      {
-        type: "select",
-        name: "styling",
-        message: "Styling:",
-        hint: " ",
-        choices: [
-          {
-            title: "Tailwind CSS",
-            description: "Utility-first CSS framework, excellent DX",
-            value: "tailwind"
-          },
-          {
-            title: "CSS Modules",
-            description: "Scoped CSS, no extra dependencies",
-            value: "cssmodules"
-          },
-          {
-            title: "Styled Components",
-            description: "CSS-in-JS with tagged template literals",
-            value: "styled"
-          },
-          {
-            title: "None",
-            description: "Bring your own styling solution",
-            value: "none"
-          }
-        ]
-      },
-      {
-        type: "toggle",
-        name: "auth",
-        message: "Add authentication (JWT)?",
-        initial: true,
-        active: "Yes",
-        inactive: "No"
-      },
-      {
-        type: "toggle",
-        name: "versioning",
-        message: "Add versioning/drafts?",
-        initial: true,
-        active: "Yes",
-        inactive: "No"
-      },
-      {
-        type: "toggle",
-        name: "admin",
-        message: "Include admin dashboard?",
-        initial: true,
-        active: "Yes",
-        inactive: "No"
-      },
       {
         type: "select",
         name: "template",
@@ -205,44 +153,25 @@ ${cyan("?")} ${bold(msg)}`);
 };
 
 // src/generators/packagejson.ts
-function generatePackageJson(answers, projectDir) {
+function generatePackageJson(answers) {
   const deps = {
+    "astro": "^6.3.1",
     "@kyro-cms/core": "latest",
-    astro: "^5.4.0"
+    "@kyro-cms/admin": "latest"
   };
   const devDeps = {
-    typescript: "^5.7.3"
+    "typescript": "^5.7.3"
   };
-  if (answers.styling === "tailwind") {
-    deps["@astrojs/react"] = "^4.2.0";
-    deps["react"] = "^19.0.0";
-    deps["react-dom"] = "^19.0.0";
-    deps["tailwindcss"] = "^4.0.0";
-    deps["@tailwindcss/vite"] = "^4.0.0";
-    devDeps["@types/react"] = "^19.0.0";
-    devDeps["@types/react-dom"] = "^19.0.0";
-  }
   if (answers.database === "postgres") {
     deps["pg"] = "^8.13.1";
-    deps["@types/pg"] = "^8.11.0";
   } else if (answers.database === "mysql") {
     deps["mysql2"] = "^3.12.0";
-  } else if (answers.database === "mongodb") {
-    deps["mongodb"] = "^6.12.0";
-  }
-  if (answers.admin) {
-    deps["@kyro-cms/admin"] = "latest";
-    deps["@astrojs/node"] = "^9.5.5";
-    deps["lucide-react"] = "^0.475.0";
   }
   const scripts = {
-    dev: "astro dev",
-    build: "astro build",
-    preview: "astro preview"
+    "dev": "astro dev",
+    "build": "astro build",
+    "preview": "astro preview"
   };
-  if (answers.auth) {
-    scripts["db:bootstrap"] = "kyro auth bootstrap";
-  }
   if (answers.database === "sqlite") {
     scripts["db:generate"] = "kyro generate";
     scripts["db:push"] = "kyro push";
@@ -265,58 +194,49 @@ function formatPackageJson(pkg) {
 // src/generators/config.ts
 function generateKyroConfig(answers) {
   const imports = ["import { defineConfig } from '@kyro-cms/core';"];
-  const adapterLines = [];
   if (answers.database === "sqlite") {
     imports.push("import { createLocalAdapter } from '@kyro-cms/core';");
-    adapterLines.push(`  adapter: createLocalAdapter({ path: './data.db' }),`);
   } else if (answers.database === "postgres") {
     imports.push("import { createDrizzleAdapter } from '@kyro-cms/core';");
-    adapterLines.push(`  adapter: createDrizzleAdapter({`);
-    adapterLines.push(`    connectionString: process.env.DATABASE_URL,`);
-    adapterLines.push(`  }),`);
   } else if (answers.database === "mysql") {
     imports.push("import { createDrizzleAdapter } from '@kyro-cms/core';");
+  } else if (answers.database === "mongodb") {
+    imports.push("import { createMongoDBAdapter } from '@kyro-cms/core';");
+  }
+  const adapterLines = [];
+  if (answers.database === "sqlite") {
+    adapterLines.push(`  adapter: createLocalAdapter({ path: './data.db' }),`);
+  } else if (answers.database === "postgres" || answers.database === "mysql") {
     adapterLines.push(`  adapter: createDrizzleAdapter({`);
     adapterLines.push(`    connectionString: process.env.DATABASE_URL,`);
     adapterLines.push(`  }),`);
   } else if (answers.database === "mongodb") {
-    imports.push("import { createMongoDBAdapter } from '@kyro-cms/core';");
     adapterLines.push(`  adapter: createMongoDBAdapter({`);
     adapterLines.push(`    connectionString: process.env.MONGODB_URI,`);
     adapterLines.push(`  }),`);
   }
-  const apiConfig = [
-    "    rest: true,",
-    "    graphql: true,",
-    "    trpc: true,",
-    "    websocket: true,"
-  ];
-  const features = [];
-  if (answers.auth) {
-    features.push("  auth: true,");
-  }
-  if (answers.versioning) {
-    features.push("  versioning: true,");
-  }
   let templateCollections = "";
   let templateGlobals = "";
   switch (answers.template) {
     case "minimal":
-      templateCollections = "import { minimalCollections } from '@kyro-cms/core';";
+      templateCollections = "import { minimalCollections } from '@kyro-cms/core/templates';";
+      templateGlobals = "import { coreSettingsGlobals } from '@kyro-cms/core/templates';";
       break;
     case "blog":
-      templateCollections = "import { blogCollections } from '@kyro-cms/core';";
+      templateCollections = "import { blogCollections } from '@kyro-cms/core/templates';";
+      templateGlobals = "import { allSettingsGlobals } from '@kyro-cms/core/templates';";
       break;
     case "ecommerce":
-      templateCollections = "import { ecommerceCollections } from '@kyro-cms/core';";
+      templateCollections = "import { ecommerceCollections } from '@kyro-cms/core/templates';";
+      templateGlobals = "import { allSettingsGlobals, ecommerceSettingsGlobals } from '@kyro-cms/core/templates';";
       break;
     case "kitchen-sink":
-      templateCollections = `import { minimalCollections, blogCollections, ecommerceCollections, kitchenSinkCollections } from '@kyro-cms/core';`;
+      templateCollections = `import { minimalCollections, blogCollections, ecommerceCollections, kitchenSinkCollections } from '@kyro-cms/core/templates';`;
+      templateGlobals = "import { allSettingsGlobals, ecommerceSettingsGlobals } from '@kyro-cms/core/templates';";
       break;
   }
-  if (templateCollections) {
-    imports.push(templateCollections);
-  }
+  if (templateCollections) imports.push(templateCollections);
+  if (templateGlobals) imports.push(templateGlobals);
   let collectionsConfig = "";
   if (answers.template === "minimal") {
     collectionsConfig = `  collections: Object.values(minimalCollections),`;
@@ -332,89 +252,43 @@ function generateKyroConfig(answers) {
     ...Object.values(kitchenSinkCollections),
   ],`;
   }
-  const config = `${imports.join("\n")}
+  let globalsConfig = "";
+  if (answers.template === "minimal") {
+    globalsConfig = `  globals: coreSettingsGlobals,`;
+  } else if (answers.template === "blog" || answers.template === "ecommerce") {
+    globalsConfig = answers.template === "ecommerce" ? `  globals: [...allSettingsGlobals, ...ecommerceSettingsGlobals],` : `  globals: allSettingsGlobals,`;
+  } else if (answers.template === "kitchen-sink") {
+    globalsConfig = `  globals: [...allSettingsGlobals, ...ecommerceSettingsGlobals],`;
+  }
+  return `${imports.join("\n")}
 
 export default defineConfig({
   name: '${answers.projectName}',
-  prefix: '/api',${adapterLines.length > 0 ? "\n" + adapterLines.join("\n") : ""}
-${collectionsConfig ? collectionsConfig : ""}${features.length > 0 ? "\n" + features.join("\n") : ""}
-
-  api: {
-${apiConfig.join("\n")}
-  },
+  prefix: '/api',
+${adapterLines.join("\n")}
+${collectionsConfig}
+${globalsConfig}
+  auth: true,
 });`;
-  return config;
 }
 
 // src/generators/astro.ts
 function generateAstroConfig(answers) {
-  const integrations = [];
-  const vitePlugins = [];
-  const vitePluginsLength = vitePlugins.length;
-  if (answers.styling === "tailwind") {
-    integrations.push("  react(),");
-    vitePlugins.push("    tailwindcss(),");
-  }
-  const adapter = answers.admin ? `
-  adapter: node({
-    mode: 'standalone'
-  }),` : "";
-  const nativeExternals = `
-    ssr: {
-      external: [
-        'better-sqlite3',
-        'sharp',
-        'ssh2',
-        'cpu-features',
-        'ssh2-sftp-client',
-        'ioredis',
-        'nodemailer',
-        'jsonwebtoken',
-        '@mapbox/node-pre-gyp',
-        'mock-aws-s3',
-        'aws-sdk',
-        'nock',
-      ],
-    },
-    optimizeDeps: {
-      exclude: [
-        'better-sqlite3',
-        'sharp',
-        'ssh2',
-        'cpu-features',
-        'ssh2-sftp-client',
-        'ioredis',
-        'nodemailer',
-        'jsonwebtoken',
-        '@mapbox/node-pre-gyp',
-        'mock-aws-s3',
-        'aws-sdk',
-        'nock',
-      ],
-    },`;
-  const config = `import { defineConfig } from 'astro/config';
-import node from '@astrojs/node';
-${answers.styling === "tailwind" ? "import react from '@astrojs/react';\nimport tailwindcss from '@tailwindcss/vite';" : ""}
+  return `import { defineConfig } from 'astro/config';
+import kyro from '@kyro-cms/core';
+import { kyroAdmin } from '@kyro-cms/admin';
 
 export default defineConfig({
-  output: 'server',${adapter}
-
+  output: 'server',
   integrations: [
-${integrations.join("\n")}
-  ],${vitePluginsLength > 0 ? `
-  vite: {
-    plugins: [
-${vitePlugins.join("\n")}
-    ],${nativeExternals}
-  },` : `
-  vite: {${nativeExternals}
-  },`}
+    kyro({ adminPath: '/admin', apiPath: '/api' }),
+    kyroAdmin({ basePath: '/admin', apiPath: '/api' }),
+  ],
   server: {
     port: 4321,
     host: true,
   },
 });`;
-  return config;
 }
 
 // src/generators/files.ts
@@ -464,74 +338,26 @@ npm run dev
 
 Visit [http://localhost:4321/admin](http://localhost:4321/admin) to access the admin.
 
-${answers.auth ? `## Creating Your Admin User
-
-Before logging into the admin, you need to create an admin user. Run:
-
-\`\`\`bash
-npm run db:bootstrap
-\`\`\`
-
-Or set environment variables to auto-bootstrap on startup:
-
-\`\`\`bash
-# .env
-KYRO_ADMIN_EMAIL=admin@example.com
-KYRO_ADMIN_PASSWORD=SecurePass123!
-\`\`\`
-
-Then restart the dev server.
-` : ""}
+The first user to register will automatically be granted super admin privileges.
 
 ## Documentation
 
-Visit [https://kyro.cms](https://kyro.cms) for full documentation.
+Visit [https://kyro.dev](https://kyro.dev) for full documentation.
 `;
   writeFileSync(join(projectDir, "README.md"), readme);
   const envExample = `# Kyro CMS Configuration
+# Copy this file to .env and fill in your values
 
-${answers.database === "sqlite" ? "# SQLite (local) - no additional config needed" : answers.database === "postgres" || answers.database === "mysql" ? "# Database connection (PostgreSQL/MySQL)\nDATABASE_URL=postgresql://user:password@localhost:5432/kyro_cms\nDATABASE_SSL=false" : "# MongoDB connection\nMONGODB_URI=mongodb://localhost:27017/kyro_cms"}
-
-${answers.auth ? `# Authentication (uses SQLite at ./data/auth.db - no Redis needed)
-JWT_SECRET=change-this-to-a-random-32-character-string
-JWT_EXPIRES_IN=24h
-
-# Registration control (set to false to disable public registration after first user)
-KYRO_ALLOW_REGISTRATION=true
+${answers.database === "sqlite" ? "# SQLite (local) - no additional config needed" : answers.database === "postgres" || answers.database === "mysql" ? "# Database connection (PostgreSQL/MySQL)\nDATABASE_URL=postgresql://user:password@localhost:5432/kyro_cms" : "# MongoDB connection\nMONGODB_URI=mongodb://localhost:27017/kyro_cms"}
 
-# Optional: Custom auth database path (default: ./data/auth.db)
-# KYRO_AUTH_DB_PATH=./data/auth.db
+# JWT secret for authentication tokens
+JWT_SECRET=change-this-to-a-random-64-character-string
 
-# Optional: SMTP for emails
-# SMTP_HOST=smtp.example.com
-# SMTP_PORT=587
-# SMTP_SECURE=false
-# SMTP_USER=your-email@example.com
-# SMTP_PASS=your-password
-# SMTP_FROM=noreply@example.com` : ""}
+# Admin credentials (used for first-user bootstrap)
+# KYRO_ADMIN_EMAIL=admin@example.com
+# KYRO_ADMIN_PASSWORD=SecurePass123!
 `;
   writeFileSync(join(projectDir, ".env.example"), envExample);
-  const spec = `# ${answers.projectName}
-
-## Overview
-
-This project uses Kyro CMS - an Astro-native headless CMS.
-
-## Configuration
-
-- **Database**: ${answers.database === "sqlite" ? "SQLite (local-first)" : answers.database}
-- **APIs**: REST, GraphQL, tRPC, WebSocket
-- **Styling**: ${answers.styling}
-- **Auth**: ${answers.auth ? "Enabled" : "Disabled"}
-- **Versioning**: ${answers.versioning ? "Enabled" : "Disabled"}
-- **Admin**: ${answers.admin ? "Included" : "Not included"}
-- **Template**: ${answers.template}
-
-## Collections
-
-${answers.template === "minimal" ? "- Posts" : answers.template === "blog" ? "- Posts\n- Categories\n- Media" : "- Products\n- Categories\n- Customers\n- Orders\n- Coupons"}
-`;
-  writeFileSync(join(projectDir, "SPEC.md"), spec);
   const indexPage = `---
 const title = "${answers.projectName}";
 ---
@@ -540,13 +366,13 @@ const title = "${answers.projectName}";
   <head>
     <meta charset="UTF-8" />
     <meta name="viewport" content="width=device-width, initial-scale=1.0" />
-    <title>${answers.projectName}</title>
+    <title>{title}</title>
   </head>
   <body>
     <main>
-      <h1>Welcome to ${answers.projectName}</h1>
+      <h1>Welcome to {title}</h1>
       <p>Your Kyro CMS is ready.</p>
-      ${answers.admin ? '<p><a href="/admin">Go to Admin Dashboard \u2192</a></p>' : ""}
+      <p><a href="/admin">Go to Admin Dashboard &rarr;</a></p>
     </main>
   </body>
 </html>
@@ -576,428 +402,13 @@ const title = "${answers.projectName}";
 </style>
 `;
   writeFileSync(join(pagesDir, "index.astro"), indexPage);
-  if (answers.admin) {
-    const adminDir = join(pagesDir, "admin");
-    mkdirSync(adminDir, { recursive: true });
-    const adminIndex = `---
-import { Admin } from '@kyro-cms/admin';
-import config from '../../../kyro.config';
----
-<!DOCTYPE html>
-<html lang="en">
-  <head>
-    <meta charset="UTF-8" />
-    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
-    <title>Admin - ${answers.projectName}</title>
-  </head>
-  <body>
-    <Admin client:load config={config} />
-  </body>
-</html>
-`;
-    writeFileSync(join(adminDir, "index.astro"), adminIndex);
-  }
-  if (answers.auth) {
-    const authApiDir = join(pagesDir, "api", "auth");
-    mkdirSync(authApiDir, { recursive: true });
-    writeFileSync(
-      join(authApiDir, "login.ts"),
-      generateLoginEndpoint(answers.database)
-    );
-    writeFileSync(
-      join(authApiDir, "register.ts"),
-      generateRegisterEndpoint(answers.database)
-    );
-    writeFileSync(
-      join(authApiDir, "logout.ts"),
-      generateLogoutEndpoint(answers.database)
-    );
-    writeFileSync(join(authApiDir, "me.ts"), generateMeEndpoint());
-    writeFileSync(
-      join(authApiDir, "users.ts"),
-      generateUsersEndpoint(answers.database)
-    );
-    writeFileSync(join(srcDir, "middleware.ts"), generateMiddleware());
-  }
-}
-function generateLoginEndpoint(database) {
-  return `import type { APIRoute } from "astro";
-import { SQLiteAuthAdapter } from "@kyro-cms/core";
-import jwt from "jsonwebtoken";
-
-const JWT_SECRET = process.env.JWT_SECRET || "change-me-in-production";
-const JWT_EXPIRES_IN = process.env.JWT_EXPIRES_IN || "24h";
-
-async function getAuthApi() {
-  return new SQLiteAuthAdapter({ path: "./data/auth.db" });
-}
-
-export const POST: APIRoute = async ({ request }) => {
-  try {
-    const body = (await request.json()) as {
-      email?: string;
-      password?: string;
-    };
-    const { email, password } = body;
-
-    if (!email || !password) {
-      return new Response(
-        JSON.stringify({ error: "Email and password required" }),
-        { status: 400, headers: { "Content-Type": "application/json" } },
-      );
-    }
-
-    const adapter = await getAuthApi();
-    await adapter.connect();
-
-    const user = await adapter.findUserByEmail(email);
-    if (!user || !user.passwordHash) {
-      await adapter.disconnect();
-      return new Response(JSON.stringify({ error: "Invalid credentials" }), {
-        status: 401,
-        headers: { "Content-Type": "application/json" },
-      });
-    }
-
-    const valid = await adapter.verifyPassword(password, user.passwordHash);
-    if (!valid) {
-      await adapter.disconnect();
-      return new Response(JSON.stringify({ error: "Invalid credentials" }), {
-        status: 401,
-        headers: { "Content-Type": "application/json" },
-      });
-    }
-
-    const session = await adapter.createSession(user.id, {
-      ipAddress: request.headers.get("x-forwarded-for") || "unknown",
-      userAgent: request.headers.get("user-agent") || "",
-    });
-
-    const token = jwt.sign(
-      {
-        sub: user.id,
-        email: user.email,
-        role: user.role,
-        tenantId: user.tenantId,
-      },
-      JWT_SECRET,
-      { expiresIn: JWT_EXPIRES_IN as jwt.SignOptions["expiresIn"] },
-    );
-
-    await adapter.disconnect();
-
-    const { passwordHash, ...safeUser } = user;
-
-    return new Response(
-      JSON.stringify({
-        success: true,
-        user: safeUser,
-        token,
-        refreshToken: session.refreshToken,
-      }),
-      {
-        status: 200,
-        headers: { "Content-Type": "application/json" },
-      },
-    );
-  } catch (error) {
-    console.error("Login error:", error);
-    return new Response(JSON.stringify({ error: "Login failed" }), {
-      status: 500,
-      headers: { "Content-Type": "application/json" },
-    });
-  }
-};
-`;
-}
-function generateRegisterEndpoint(database) {
-  return `import type { APIRoute } from "astro";
-import { SQLiteAuthAdapter } from "@kyro-cms/core";
-import jwt from "jsonwebtoken";
-
-const JWT_SECRET = process.env.JWT_SECRET || "change-me-in-production";
-const JWT_EXPIRES_IN = process.env.JWT_EXPIRES_IN || "24h";
-const ALLOW_REGISTRATION = process.env.KYRO_ALLOW_REGISTRATION !== "false";
-
-async function getAuthApi() {
-  return new SQLiteAuthAdapter({ path: "./data/auth.db" });
-}
-
-export const POST: APIRoute = async ({ request }) => {
-  try {
-    const body = (await request.json()) as {
-      email?: string;
-      password?: string;
-      confirmPassword?: string;
-    };
-    const { email, password, confirmPassword } = body;
-
-    if (!email || !password) {
-      return new Response(
-        JSON.stringify({ error: "Email and password required" }),
-        { status: 400, headers: { "Content-Type": "application/json" } },
-      );
-    }
-
-    if (password !== confirmPassword) {
-      return new Response(
-        JSON.stringify({ error: "Passwords do not match" }),
-        { status: 400, headers: { "Content-Type": "application/json" } },
-      );
-    }
-
-    if (password.length < 8) {
-      return new Response(
-        JSON.stringify({ error: "Password must be at least 8 characters" }),
-        { status: 400, headers: { "Content-Type": "application/json" } },
-      );
-    }
-
-    const adapter = await getAuthApi();
-    try {
-      await adapter.connect();
-    } catch {
-      return new Response(
-        JSON.stringify({ error: "Unable to connect to auth storage." }),
-        { status: 500, headers: { "Content-Type": "application/json" } },
-      );
-    }
-
-    const existingUser = await adapter.findUserByEmail(email);
-    if (existingUser) {
-      await adapter.disconnect();
-      return new Response(
-        JSON.stringify({ error: "Email already registered" }),
-        { status: 409, headers: { "Content-Type": "application/json" } },
-      );
-    }
-
-    const isFirstUser = !(await adapter.hasAnyUsers());
-
-    if (!isFirstUser && !ALLOW_REGISTRATION) {
-      await adapter.disconnect();
-      return new Response(
-        JSON.stringify({ error: "Registration is disabled" }),
-        { status: 403, headers: { "Content-Type": "application/json" } },
-      );
-    }
-
-    const passwordHash = await adapter.hashPassword(password);
-    const user = await adapter.createUser({
-      email,
-      passwordHash,
-      role: isFirstUser ? "super_admin" : "editor",
-    });
-
-    if (isFirstUser) {
-      await adapter.updateUser(user.id, { emailVerified: true });
-    }
-
-    const session = await adapter.createSession(user.id, {
-      ipAddress: request.headers.get("x-forwarded-for") || "unknown",
-      userAgent: request.headers.get("user-agent") || "",
-    });
-
-    const token = jwt.sign(
-      {
-        sub: user.id,
-        email: user.email,
-        role: user.role,
-        tenantId: user.tenantId,
-      },
-      JWT_SECRET,
-      { expiresIn: JWT_EXPIRES_IN as jwt.SignOptions["expiresIn"] },
-    );
-
-    await adapter.disconnect();
-
-    const { passwordHash: _, ...safeUser } = user;
-
-    return new Response(
-      JSON.stringify({
-        success: true,
-        isFirstUser,
-        user: safeUser,
-        token,
-        refreshToken: session.refreshToken,
-      }),
-      {
-        status: 201,
-        headers: { "Content-Type": "application/json" },
-      },
-    );
-  } catch (error) {
-    console.error("Registration error:", error);
-    return new Response(JSON.stringify({ error: "Registration failed" }), {
-      status: 500,
-      headers: { "Content-Type": "application/json" },
-    });
-  }
-};
-`;
-}
-function generateLogoutEndpoint(database) {
-  return `import type { APIRoute } from "astro";
-import { SQLiteAuthAdapter } from "@kyro-cms/core";
-
-async function getAuthApi() {
-  return new SQLiteAuthAdapter({ path: "./data/auth.db" });
-}
-
-export const POST: APIRoute = async ({ request }) => {
-  try {
-    const authHeader = request.headers.get("authorization");
-    const token = authHeader?.startsWith("Bearer ")
-      ? authHeader.slice(7)
-      : null;
-
-    if (token) {
-      const adapter = await getAuthApi();
-      await adapter.connect();
-      await adapter.deleteSession(token);
-      await adapter.disconnect();
-    }
-
-    return new Response(
-      JSON.stringify({ success: true }),
-      { status: 200, headers: { "Content-Type": "application/json" } },
-    );
-  } catch {
-    return new Response(
-      JSON.stringify({ success: true }),
-      { status: 200, headers: { "Content-Type": "application/json" } },
-    );
-  }
-};
-`;
-}
-function generateMeEndpoint() {
-  return `import type { APIRoute } from "astro";
-import jwt from "jsonwebtoken";
-
-const JWT_SECRET = process.env.JWT_SECRET || "change-me-in-production";
-
-export const GET: APIRoute = async ({ request }) => {
-  const authHeader = request.headers.get("authorization");
-  const token = authHeader?.startsWith("Bearer ")
-    ? authHeader.slice(7)
-    : null;
-
-  if (!token) {
-    return new Response(
-      JSON.stringify({ error: "Not authenticated" }),
-      { status: 401, headers: { "Content-Type": "application/json" } },
-    );
-  }
-
-  try {
-    const payload = jwt.verify(token, JWT_SECRET) as jwt.JwtPayload;
-    return new Response(
-      JSON.stringify({
-        id: payload.sub,
-        email: payload.email,
-        role: payload.role,
-      }),
-      { status: 200, headers: { "Content-Type": "application/json" } },
-    );
-  } catch {
-    return new Response(
-      JSON.stringify({ error: "Invalid token" }),
-      { status: 401, headers: { "Content-Type": "application/json" } },
-    );
-  }
-};
-`;
-}
-function generateUsersEndpoint(database) {
-  return `import type { APIRoute } from "astro";
-import { SQLiteAuthAdapter } from "@kyro-cms/core";
-
-async function getAuthApi() {
-  return new SQLiteAuthAdapter({ path: "./data/auth.db" });
-}
-
-export const GET: APIRoute = async () => {
-  try {
-    const adapter = await getAuthApi();
-    await adapter.connect();
-
-    const hasUsers = await adapter.hasAnyUsers();
-
-    await adapter.disconnect();
-
-    return new Response(JSON.stringify({ hasUsers }), {
-      status: 200,
-      headers: { "Content-Type": "application/json" },
-    });
-  } catch {
-    return new Response(JSON.stringify({ hasUsers: false }), {
-      status: 200,
-      headers: { "Content-Type": "application/json" },
-    });
-  }
-};
-`;
-}
-function generateMiddleware() {
-  return `import type { MiddlewareHandler } from "astro";
-import jwt from "jsonwebtoken";
-
-const JWT_SECRET = process.env.JWT_SECRET || "change-me-in-production";
-
-const PUBLIC_PATHS = [
-  "/api/auth/login",
-  "/api/auth/logout",
-  "/api/auth/register",
-  "/api/auth/me",
-  "/api/auth/users",
-  "/api/health",
-  "/favicon.svg",
-];
-
-const PUBLIC_PREFIXES = ["/api/auth/", "/admin"];
-
-export const onRequest: MiddlewareHandler = async ({ request, url }, next) => {
-  const pathname = new URL(url).pathname;
-
-  if (PUBLIC_PATHS.includes(pathname) || PUBLIC_PATHS.includes(pathname.replace(/\\/$/, ""))) {
-    return next();
-  }
-
-  for (const prefix of PUBLIC_PREFIXES) {
-    if (pathname.startsWith(prefix)) {
-      return next();
-    }
-  }
-
-  const authHeader = request.headers.get("authorization");
-  const token = authHeader?.startsWith("Bearer ") ? authHeader.slice(7) : null;
-
-  if (!token) {
-    return new Response(
-      JSON.stringify({ error: "Authentication required" }),
-      { status: 401, headers: { "Content-Type": "application/json" } },
-    );
-  }
-
-  try {
-    jwt.verify(token, JWT_SECRET) as jwt.JwtPayload;
-    return next();
-  } catch {
-    return new Response(
-      JSON.stringify({ error: "Invalid or expired token" }),
-      { status: 401, headers: { "Content-Type": "application/json" } },
-    );
-  }
-};
-`;
 }
 
 // src/index.ts
 import { writeFileSync as writeFileSync2, mkdirSync as mkdirSync2, existsSync } from "fs";
 import { join as join2 } from "path";
 import { execSync } from "child_process";
-var VERSION = "0.1.1";
+var VERSION = "0.4.0";
 async function main() {
   logger.intro("create-kyro", VERSION);
   const answers = await promptUser();
@@ -1016,7 +427,7 @@ async function main() {
   mkdirSync2(projectDir, { recursive: true });
   logger.success("Project directory created");
   logger.step(2, steps.length, steps[1]);
-  const pkg = generatePackageJson(answers, projectDir);
+  const pkg = generatePackageJson(answers);
   writeFileSync2(
     join2(projectDir, "package.json"),
     formatPackageJson(pkg)
@@ -1059,9 +470,9 @@ async function main() {
   console.log(`    ${logger ? "\x1B[36m" : ""}npm run dev${logger ? "\x1B[0m" : ""}`);
   console.log("");
   console.log("  Visit http://localhost:4321 to see your app.");
-  if (answers.admin) {
-    console.log("  Visit http://localhost:4321/admin for the admin dashboard.");
-  }
+  console.log("  Visit http://localhost:4321/admin for the admin dashboard.");
+  console.log("");
+  console.log("  The first user to register will be the super admin.");
   console.log("");
 }
 main().catch((error) => {