create-rudder-app 0.3.0 → 0.4.0

package/dist/templates.js

@@ -1,51 +1,61 @@
-import { execSync } from 'node:child_process';
-/** Detect which package manager invoked the installer.
- *  1. Check npm_config_user_agent (set by pnpm/npm/yarn/bun create commands)
- *  2. Fall back to checking which binaries are available on PATH
- */
-export function detectPackageManager() {
-    const ua = process.env['npm_config_user_agent'] ?? '';
-    if (ua.startsWith('bun'))
-        return 'bun';
-    if (ua.startsWith('yarn'))
-        return 'yarn';
-    if (ua.startsWith('pnpm'))
-        return 'pnpm';
-    if (ua.startsWith('npm'))
-        return 'npm';
-    // Fallback: check which binaries exist on PATH (preference: pnpm > bun > yarn > npm)
-    for (const pm of ['pnpm', 'bun', 'yarn']) {
-        try {
-            execSync(`${pm} --version`, { stdio: 'ignore' });
-            return pm;
-        }
-        catch { /* not found */ }
-    }
-    return 'npm';
-}
-/** `<pm> exec <bin>` equivalent per package manager. */
-export function pmExec(pm, bin) {
-    if (pm === 'bun')
-        return `bunx ${bin}`;
-    if (pm === 'yarn')
-        return `yarn dlx ${bin}`;
-    if (pm === 'npm')
-        return `npx ${bin}`;
-    return `pnpm exec ${bin}`;
-}
-/** `<pm> run <script>` equivalent (yarn/bun allow omitting "run"). */
-export function pmRun(pm, script) {
-    if (pm === 'npm')
-        return `npm run ${script}`;
-    return `${pm} ${script}`;
-}
-/** `<pm> install` command. */
-export function pmInstall(pm) {
-    return `${pm} install`;
-}
-function pageExt(fw) {
-    return fw === 'vue' ? '.vue' : '.tsx';
-}
+import { detectPackageManager, pmExec, pmInstall, pmRun, pageExt } from './templates/package-managers.js';
+import { indexCss } from './templates/css/index.js';
+import { prismaConfig } from './templates/prisma/config.js';
+import { prismaBase } from './templates/prisma/base.js';
+import { prismaAuth } from './templates/prisma/auth.js';
+import { prismaNotification } from './templates/prisma/notification.js';
+import { prismaPassport } from './templates/prisma/passport.js';
+import { configApp } from './templates/configs/app.js';
+import { configServer } from './templates/configs/server.js';
+import { configLog } from './templates/configs/log.js';
+import { configHash } from './templates/configs/hash.js';
+import { configDatabase } from './templates/configs/database.js';
+import { configQueue } from './templates/configs/queue.js';
+import { configMail } from './templates/configs/mail.js';
+import { configCache } from './templates/configs/cache.js';
+import { configStorage } from './templates/configs/storage.js';
+import { configAuth } from './templates/configs/auth.js';
+import { configIndex } from './templates/configs/index.js';
+import { configSession } from './templates/configs/session.js';
+import { configAi } from './templates/configs/ai.js';
+import { configSync } from './templates/configs/sync.js';
+import { configPassport } from './templates/configs/passport.js';
+import { configLocalization } from './templates/configs/localization.js';
+import { configTelescope } from './templates/configs/telescope.js';
+import { configSanctum } from './templates/configs/sanctum.js';
+import { configSocialite } from './templates/configs/socialite.js';
+import { configPulse } from './templates/configs/pulse.js';
+import { configHorizon } from './templates/configs/horizon.js';
+import { configCrypt } from './templates/configs/crypt.js';
+import { configCashier } from './templates/configs/cashier.js';
+import { configPennant } from './templates/configs/pennant.js';
+import { dotenv, dotenvExample, envDts, gitignore, pnpmWorkspace } from './templates/env.js';
+import { serverTs } from './templates/server.js';
+import { bootstrapApp } from './templates/bootstrap/app.js';
+import { bootstrapProviders } from './templates/bootstrap/providers.js';
+import { userModel } from './templates/app/user-model.js';
+import { appServiceProvider } from './templates/app/service-provider.js';
+import { mcpEchoServer } from './templates/app/mcp-echo-server.js';
+import { mcpEchoTool } from './templates/app/mcp-echo-tool.js';
+import { authController } from './templates/app/auth-controller.js';
+import { routesApi } from './templates/routes/api.js';
+import { routesWeb, welcomeExt } from './templates/routes/web.js';
+import { routesConsole } from './templates/routes/console.js';
+import { pagesRootConfig, pagesIndexConfig, pagesIndexData, pagesIndexPage } from './templates/pages/index.js';
+import { welcomeView } from './templates/views/welcome.js';
+import { pagesErrorConfig, pagesErrorPage } from './templates/pages/error.js';
+import { aiChatPageConfig, aiChatPage } from './templates/pages/ai-chat.js';
+import { demoPageConfig, demoPage } from './templates/pages/demo.js';
+import { demosIndexView } from './templates/demos/index-view.js';
+import { demosContactView } from './templates/demos/contact.js';
+import { demosWsView } from './templates/demos/ws.js';
+import { demosLiveView } from './templates/demos/live.js';
+import { bkSocketSource } from './templates/demos/bk-socket.js';
+import { availableDemos } from './templates/demos/registry.js';
+import { packageJson } from './templates/package-json.js';
+import { tsconfigJson } from './templates/tsconfig.js';
+import { viteConfig } from './templates/vite.js';
+export { detectPackageManager, pmExec, pmInstall, pmRun };
 export function getTemplates(ctx) {
     const files = {};
     files['package.json'] = packageJson(ctx);
@@ -73,25 +83,22 @@ export function getTemplates(ctx) {
     files['src/index.css'] = indexCss(ctx);
     files['bootstrap/app.ts'] = bootstrapApp(ctx);
     files['bootstrap/providers.ts'] = bootstrapProviders(ctx);
-    // Config files — always generated
+    // Config files — always generated (Tier A silent install + framework defaults)
     files['config/app.ts'] = configApp();
     files['config/server.ts'] = configServer();
     files['config/log.ts'] = configLog();
+    files['config/session.ts'] = configSession();
+    files['config/hash.ts'] = configHash();
+    files['config/cache.ts'] = configCache();
     // Config files — conditional on selected packages
     if (ctx.orm)
         files['config/database.ts'] = configDatabase(ctx);
     if (ctx.packages.auth)
         files['config/auth.ts'] = configAuth(ctx);
-    if (ctx.packages.auth)
-        files['config/session.ts'] = configSession();
-    if (ctx.packages.auth)
-        files['config/hash.ts'] = configHash();
     if (ctx.packages.queue)
         files['config/queue.ts'] = configQueue();
     if (ctx.packages.mail)
         files['config/mail.ts'] = configMail();
-    if (ctx.packages.cache)
-        files['config/cache.ts'] = configCache();
     if (ctx.packages.storage)
         files['config/storage.ts'] = configStorage();
     if (ctx.packages.ai)
@@ -100,10 +107,24 @@ export function getTemplates(ctx) {
         files['config/sync.ts'] = configSync(ctx);
     if (ctx.packages.passport)
         files['config/passport.ts'] = configPassport();
+    if (ctx.packages.sanctum)
+        files['config/sanctum.ts'] = configSanctum();
+    if (ctx.packages.socialite)
+        files['config/socialite.ts'] = configSocialite();
     if (ctx.packages.localization)
         files['config/localization.ts'] = configLocalization();
+    if (ctx.packages.cashierPaddle)
+        files['config/cashier.ts'] = configCashier();
+    if (ctx.packages.pennant)
+        files['config/pennant.ts'] = configPennant();
     if (ctx.packages.telescope)
         files['config/telescope.ts'] = configTelescope();
+    if (ctx.packages.pulse)
+        files['config/pulse.ts'] = configPulse();
+    if (ctx.packages.horizon)
+        files['config/horizon.ts'] = configHorizon();
+    if (ctx.packages.crypt)
+        files['config/crypt.ts'] = configCrypt();
     files['config/index.ts'] = configIndex(ctx);
     files['env.d.ts'] = envDts();
     if (ctx.packages.auth && ctx.orm)
@@ -146,3740 +167,39 @@ export function getTemplates(ctx) {
         files[`pages/${fw}-demo/+config.ts`] = demoPageConfig(fw);
         files[`pages/${fw}-demo/+Page${dext}`] = demoPage(fw, ctx);
     }
-    // Demos — react primary only; ws/live require their respective packages.
-    if (shouldScaffoldDemos(ctx)) {
+    // Demos — react primary only; per-demo opt-in via ctx.demos (see registry.ts).
+    if (shouldScaffoldAnyDemo(ctx)) {
         files['app/Views/Demos/Index.tsx'] = demosIndexView(ctx);
-        files['app/Views/Demos/Contact.tsx'] = demosContactView(ctx);
-        if (ctx.packages.broadcast) {
+        if (shouldScaffoldDemo(ctx, 'contact'))
+            files['app/Views/Demos/Contact.tsx'] = demosContactView(ctx);
+        if (shouldScaffoldDemo(ctx, 'ws')) {
             files['app/Views/Demos/Ws.tsx'] = demosWsView();
             files['src/BKSocket.ts'] = bkSocketSource();
         }
-        if (ctx.packages.sync) {
+        if (shouldScaffoldDemo(ctx, 'live')) {
             files['app/Views/Demos/Live.tsx'] = demosLiveView();
         }
     }
     return files;
 }
-/** Demos are React-primary only for v1 — vue/solid variants aren't written yet. */
-function shouldScaffoldDemos(ctx) {
-    return ctx.packages.demos && ctx.primary === 'react';
-}
-// ─── package.json ──────────────────────────────────────────
-function packageJson(ctx) {
-    const { frameworks, tailwind, shadcn, db } = ctx;
-    const hasReact = frameworks.includes('react');
-    const hasVue = frameworks.includes('vue');
-    const hasSolid = frameworks.includes('solid');
-    const dbDeps = {
-        sqlite: { 'better-sqlite3': '^12.0.0' },
-        postgresql: {},
-        mysql: {},
-    };
-    const dbDevDeps = {
-        sqlite: { '@types/better-sqlite3': '^7.6.0' },
-        postgresql: {},
-        mysql: {},
-    };
-    const frameworkDeps = {};
-    const frameworkDevDeps = {};
-    if (hasReact) {
-        frameworkDeps['react'] = '^19.0.0';
-        frameworkDeps['react-dom'] = '^19.0.0';
-        frameworkDeps['vike-react'] = '^0.6.20';
-        frameworkDevDeps['@vitejs/plugin-react'] = '^4.3.4';
-        frameworkDevDeps['@types/react'] = '^19.0.0';
-        frameworkDevDeps['@types/react-dom'] = '^19.0.0';
-    }
-    if (hasVue) {
-        frameworkDeps['vue'] = '^3.5.0';
-        frameworkDeps['vike-vue'] = 'latest';
-        frameworkDevDeps['@vitejs/plugin-vue'] = '^5.2.0';
-    }
-    if (hasSolid) {
-        frameworkDeps['solid-js'] = '^1.9.0';
-        frameworkDeps['vike-solid'] = 'latest';
-    }
-    const tailwindDeps = tailwind ? {
-        'tailwindcss': '^4.2.1',
-        '@tailwindcss/vite': '^4.2.1',
-    } : {};
-    const tailwindDevDeps = tailwind ? {
-        'tw-animate-css': '^1.4.0',
-    } : {};
-    const shadcnDeps = shadcn ? {
-        'class-variance-authority': '^0.7.1',
-        'clsx': '^2.1.1',
-        'tailwind-merge': '^3.5.0',
-        'lucide-react': '^0.575.0',
-    } : {};
-    const shadcnDevDeps = shadcn ? {
-        'shadcn': 'latest',
-    } : {};
-    // Base framework deps (always included)
-    const deps = {
-        '@rudderjs/console': 'latest',
-        '@rudderjs/vite': 'latest',
-        '@rudderjs/contracts': 'latest',
-        '@rudderjs/core': 'latest',
-        '@rudderjs/log': 'latest',
-        '@rudderjs/middleware': 'latest',
-        '@rudderjs/router': 'latest',
-        '@rudderjs/server-hono': 'latest',
-        '@rudderjs/support': 'latest',
-        '@rudderjs/view': 'latest',
-        '@vikejs/hono': '^0.2.0',
-        'dotenv': '^16.4.0',
-        'reflect-metadata': '^0.2.2',
-        'vike': '^0.4.257',
-        'zod': '^4.0.0',
-        ...frameworkDeps,
-        ...tailwindDeps,
-        ...shadcnDeps,
-        ...dbDeps[db],
-    };
-    // ORM deps
-    if (ctx.orm === 'prisma') {
-        deps['@rudderjs/orm'] = 'latest';
-        deps['@rudderjs/orm-prisma'] = 'latest';
-        deps['@prisma/client'] = '^7.0.0';
-    }
-    else if (ctx.orm === 'drizzle') {
-        deps['@rudderjs/orm'] = 'latest';
-        deps['@rudderjs/orm-drizzle'] = 'latest';
-    }
-    // Optional package deps
-    if (ctx.packages.auth) {
-        deps['@rudderjs/auth'] = 'latest';
-        deps['@rudderjs/session'] = 'latest';
-        deps['@rudderjs/hash'] = 'latest';
-    }
-    if (ctx.packages.cache)
-        deps['@rudderjs/cache'] = 'latest';
-    if (ctx.packages.queue)
-        deps['@rudderjs/queue'] = 'latest';
-    if (ctx.packages.storage)
-        deps['@rudderjs/storage'] = 'latest';
-    if (ctx.packages.mail)
-        deps['@rudderjs/mail'] = 'latest';
-    if (ctx.packages.notifications)
-        deps['@rudderjs/notification'] = 'latest';
-    if (ctx.packages.scheduler)
-        deps['@rudderjs/schedule'] = 'latest';
-    if (ctx.packages.broadcast)
-        deps['@rudderjs/broadcast'] = 'latest';
-    if (ctx.packages.sync)
-        deps['@rudderjs/sync'] = 'latest';
-    if (shouldScaffoldDemos(ctx) && ctx.packages.sync)
-        deps['y-websocket'] = '^2.0.0';
-    if (ctx.packages.ai)
-        deps['@rudderjs/ai'] = 'latest';
-    if (ctx.packages.mcp)
-        deps['@rudderjs/mcp'] = 'latest';
-    if (ctx.packages.passport)
-        deps['@rudderjs/passport'] = 'latest';
-    if (ctx.packages.localization)
-        deps['@rudderjs/localization'] = 'latest';
-    if (ctx.packages.telescope)
-        deps['@rudderjs/telescope'] = 'latest';
-    const devDeps = {
-        '@rudderjs/cli': 'latest',
-        '@types/node': '^20.0.0',
-        'tsx': '^4.21.0',
-        'typescript': '^5.4.0',
-        'vite': '^7.1.0',
-        ...frameworkDevDeps,
-        ...tailwindDevDeps,
-        ...shadcnDevDeps,
-        ...dbDevDeps[db],
-    };
-    if (ctx.orm === 'prisma')
-        devDeps['prisma'] = '^7.0.0';
-    if (ctx.packages.boost)
-        devDeps['@rudderjs/boost'] = 'latest';
-    const builtDeps = ['esbuild'];
-    if (ctx.orm === 'prisma') {
-        builtDeps.push('@prisma/engines', 'prisma');
-    }
-    if (db === 'sqlite')
-        builtDeps.unshift('better-sqlite3');
-    const pmField = {};
-    if (ctx.pm === 'pnpm') {
-        pmField['pnpm'] = { onlyBuiltDependencies: builtDeps };
-    }
-    else if (ctx.pm === 'bun') {
-        pmField['trustedDependencies'] = builtDeps;
-    }
-    // npm and yarn allow all lifecycle scripts by default — no extra field needed
-    return JSON.stringify({
-        name: ctx.name,
-        version: '0.0.1',
-        private: true,
-        type: 'module',
-        scripts: {
-            dev: 'vike dev',
-            'dev:clean': 'pids=$(lsof -ti :24678 -ti :3000 2>/dev/null); if [ -n "$pids" ]; then kill -9 $pids; fi; vike dev',
-            build: 'vike build',
-            start: 'node ./dist/server/index.mjs',
-            preview: 'node ./dist/server/index.mjs',
-            typecheck: 'tsc --noEmit',
-            rudder: 'tsx node_modules/@rudderjs/cli/dist/index.js',
-            ...(ctx.orm ? {
-                migrate: 'tsx node_modules/@rudderjs/cli/dist/index.js migrate',
-                'migrate:fresh': 'tsx node_modules/@rudderjs/cli/dist/index.js migrate:fresh',
-                'migrate:status': 'tsx node_modules/@rudderjs/cli/dist/index.js migrate:status',
-                'db:seed': 'tsx node_modules/@rudderjs/cli/dist/index.js db:seed',
-            } : {}),
-        },
-        ...pmField,
-        dependencies: deps,
-        devDependencies: devDeps,
-    }, null, 2) + '\n';
-}
-// ─── tsconfig.json ─────────────────────────────────────────
-function tsconfigJson(ctx) {
-    const hasReact = ctx.frameworks.includes('react');
-    const hasSolid = ctx.frameworks.includes('solid');
-    const compilerOptions = {
-        target: 'ES2022',
-        module: 'ESNext',
-        moduleResolution: 'bundler',
-        lib: ['ES2022', 'DOM', 'DOM.Iterable'],
-        strict: true,
-        exactOptionalPropertyTypes: true,
-        noUncheckedIndexedAccess: true,
-        experimentalDecorators: true,
-        emitDecoratorMetadata: true,
-        skipLibCheck: true,
-        noEmit: true,
-        baseUrl: '.',
-        paths: { '@/*': ['./src/*'], 'App/*': ['./app/*'] },
-        allowImportingTsExtensions: true,
-    };
-    if (hasReact) {
-        compilerOptions['jsx'] = 'react-jsx';
-    }
-    else if (hasSolid) {
-        compilerOptions['jsx'] = 'preserve';
-        compilerOptions['jsxImportSource'] = 'solid-js';
-    }
-    // Vue only — no jsx field needed
-    return JSON.stringify({
-        compilerOptions,
-        include: ['src/**/*', 'pages/**/*', 'app/**/*', 'bootstrap/**/*', 'routes/**/*', 'config/**/*', '*.ts', '*.tsx'],
-    }, null, 2) + '\n';
-}
-// ─── vite.config.ts ────────────────────────────────────────
-function viteConfig(ctx) {
-    const { frameworks, primary, tailwind } = ctx;
-    const hasReact = frameworks.includes('react');
-    const hasVue = frameworks.includes('vue');
-    const hasSolid = frameworks.includes('solid');
-    const hasReactSolidConflict = hasReact && hasSolid;
-    const imports = [
-        `import { defineConfig } from 'vite'`,
-        `import rudderjs from '@rudderjs/vite'`,
-    ];
-    if (tailwind)
-        imports.push(`import tailwindcss from '@tailwindcss/vite'`);
-    if (hasReact)
-        imports.push(`import react from '@vitejs/plugin-react'`);
-    if (hasVue)
-        imports.push(`import vue from '@vitejs/plugin-vue'`);
-    if (hasSolid)
-        imports.push(`import solid from 'vike-solid/vite'`);
-    const plugins = ['rudderjs()'];
-    if (tailwind)
-        plugins.push('tailwindcss()');
-    if (hasReact) {
-        if (hasReactSolidConflict) {
-            if (primary === 'react') {
-                plugins.push(`react({ exclude: ['**/pages/solid-demo/**'] })`);
-            }
-            else {
-                plugins.push(`react({ include: ['**/pages/react-demo/**'] })`);
-            }
-        }
-        else {
-            plugins.push('react()');
-        }
-    }
-    if (hasVue) {
-        plugins.push('vue()');
-    }
-    if (hasSolid) {
-        if (hasReactSolidConflict) {
-            if (primary === 'solid') {
-                plugins.push(`solid({ exclude: ['**/pages/react-demo/**'] })`);
-            }
-            else {
-                plugins.push(`solid({ include: ['**/pages/solid-demo/**'] })`);
-            }
-        }
-        else {
-            plugins.push('solid()');
-        }
-    }
-    const pluginsStr = plugins.map(p => `    ${p},`).join('\n');
-    return `${imports.join('\n')}
-
-export default defineConfig({
-  plugins: [
-${pluginsStr}
-  ],
-})
-`;
-}
-// ─── +server.ts ───────────────────────────────────────────
-function serverTs() {
-    return `import type { Server } from 'vike/types'
-import app from './bootstrap/app.js'
-
-export default {
-  fetch: app.fetch,
-} satisfies Server
-`;
-}
-// ─── prisma.config.ts ──────────────────────────────────────
-function prismaConfig(ctx) {
-    const dbUrl = ctx.db === 'sqlite'
-        ? "process.env['DATABASE_URL'] ?? 'file:./dev.db'"
-        : "process.env['DATABASE_URL']!";
-    return `import { defineConfig } from 'prisma/config'
-
-export default defineConfig({
-  schema: 'prisma/schema',
-  datasource: {
-    url: ${dbUrl},
-  },
-})
-`;
-}
-// ─── .env ──────────────────────────────────────────────────
-function dotenv(ctx) {
-    const lines = [
-        `APP_NAME=${ctx.name}`,
-        'APP_ENV=development',
-        'APP_DEBUG=true',
-        'APP_URL=http://localhost:3000',
-        '',
-        'PORT=3000',
-    ];
-    if (ctx.orm) {
-        lines.push('');
-        if (ctx.db === 'sqlite')
-            lines.push('DATABASE_URL="file:./dev.db"');
-        else if (ctx.db === 'postgresql')
-            lines.push('DATABASE_URL="postgresql://user:password@localhost:5432/mydb"');
-        else
-            lines.push('DATABASE_URL="mysql://user:password@localhost:3306/mydb"');
-    }
-    if (ctx.packages.auth) {
-        lines.push('');
-        lines.push(`AUTH_SECRET=${ctx.authSecret}`);
-    }
-    if (ctx.packages.ai) {
-        lines.push('');
-        lines.push('AI_MODEL=anthropic/claude-sonnet-4-5');
-        lines.push('ANTHROPIC_API_KEY=');
-        lines.push('# OPENAI_API_KEY=');
-        lines.push('# GOOGLE_AI_API_KEY=');
-        lines.push('# OLLAMA_BASE_URL=http://localhost:11434');
-    }
-    return lines.join('\n') + '\n';
-}
-// ─── .env.example ──────────────────────────────────────────
-function dotenvExample(ctx) {
-    const lines = [
-        `APP_NAME=${ctx.name}`,
-        'APP_ENV=development',
-        'APP_DEBUG=false',
-        'APP_URL=http://localhost:3000',
-        '',
-        'PORT=3000',
-    ];
-    if (ctx.orm) {
-        lines.push('');
-        if (ctx.db === 'sqlite')
-            lines.push('DATABASE_URL="file:./dev.db"');
-        else if (ctx.db === 'postgresql')
-            lines.push('DATABASE_URL="postgresql://user:password@localhost:5432/mydb"');
-        else
-            lines.push('DATABASE_URL="mysql://user:password@localhost:3306/mydb"');
-    }
-    if (ctx.packages.auth) {
-        lines.push('');
-        lines.push('AUTH_SECRET=please-set-a-real-32-char-secret-here');
-    }
-    if (ctx.packages.ai) {
-        lines.push('');
-        lines.push('AI_MODEL=anthropic/claude-sonnet-4-5');
-        lines.push('ANTHROPIC_API_KEY=');
-        lines.push('# OPENAI_API_KEY=');
-        lines.push('# GOOGLE_AI_API_KEY=');
-        lines.push('# OLLAMA_BASE_URL=http://localhost:11434');
-    }
-    return lines.join('\n') + '\n';
-}
-// ─── .gitignore ────────────────────────────────────────────
-function gitignore() {
-    return `node_modules/
-dist/
-.env
-*.db
-*.db-journal
-prisma/generated/
-bootstrap/cache/
-`;
-}
-function pnpmWorkspace() {
-    return `# Standalone project — prevents pnpm from merging with a parent workspace\npackages: []\n`;
-}
-// ─── prisma/schema/*.prisma ─────────────────────────────────
-function prismaBase(ctx) {
-    const provider = ctx.db === 'sqlite' ? 'sqlite'
-        : ctx.db === 'postgresql' ? 'postgresql'
-            : 'mysql';
-    return `generator client {
-  provider = "prisma-client-js"
-}
-
-datasource db {
-  provider = "${provider}"
-}
-`;
-}
-function prismaAuth() {
-    return `model User {
-  id            String    @id @default(cuid())
-  name          String
-  email         String    @unique
-  password      String?
-  emailVerified Boolean   @default(false)
-  image         String?
-  role          String    @default("user")
-  rememberToken String?
-  createdAt     DateTime  @default(now())
-  updatedAt     DateTime  @updatedAt
-}
-
-model PasswordResetToken {
-  email     String   @id
-  token     String
-  createdAt DateTime @default(now())
-}
-`;
-}
-function prismaNotification() {
-    return `model Notification {
-  id              String   @id @default(cuid())
-  notifiable_id   String
-  notifiable_type String
-  type            String
-  data            String
-  read_at         String?
-  created_at      String
-  updated_at      String
-
-  @@index([notifiable_type, notifiable_id])
-}
-`;
-}
-function prismaPassport() {
-    return `model OAuthClient {
-  id            String   @id @default(cuid())
-  name          String
-  secret        String?
-  redirectUris  String   @default("[]")
-  grantTypes    String   @default("[\\"authorization_code\\"]")
-  scopes        String   @default("[]")
-  confidential  Boolean  @default(true)
-  revoked       Boolean  @default(false)
-  createdAt     DateTime @default(now())
-  updatedAt     DateTime @updatedAt
-
-  @@map("oauth_clients")
-}
-
-model OAuthAccessToken {
-  id        String    @id @default(cuid())
-  userId    String?
-  clientId  String
-  name      String?
-  scopes    String    @default("[]")
-  revoked   Boolean   @default(false)
-  expiresAt DateTime
-  createdAt DateTime  @default(now())
-
-  @@index([userId])
-  @@map("oauth_access_tokens")
-}
-
-model OAuthRefreshToken {
-  id            String   @id @default(cuid())
-  accessTokenId String   @unique
-  revoked       Boolean  @default(false)
-  expiresAt     DateTime
-
-  @@map("oauth_refresh_tokens")
-}
-
-model OAuthAuthCode {
-  id                  String   @id @default(cuid())
-  userId              String
-  clientId            String
-  scopes              String   @default("[]")
-  revoked             Boolean  @default(false)
-  expiresAt           DateTime
-  codeChallenge       String?
-  codeChallengeMethod String?
-
-  @@map("oauth_auth_codes")
-}
-
-model OAuthDeviceCode {
-  id           String    @id @default(cuid())
-  clientId     String
-  userCode     String    @unique
-  deviceCode   String    @unique
-  scopes       String    @default("[]")
-  userId       String?
-  approved     Boolean?
-  expiresAt    DateTime
-  lastPolledAt DateTime?
-  createdAt    DateTime  @default(now())
-
-  @@map("oauth_device_codes")
-}
-`;
-}
-// ─── src/index.css ─────────────────────────────────────────
-function indexCss(ctx) {
-    if (!ctx.tailwind) {
-        return indexCssPlain();
-    }
-    if (!ctx.shadcn) {
-        return `@import "tailwindcss";
-@import "tw-animate-css";
-
-${semanticRulesApply()}`;
-    }
-    return `@import "tailwindcss";
-@import "tw-animate-css";
-@import "shadcn/tailwind.css";
-
-@custom-variant dark (&:is(.dark *));
-
-@theme inline {
-    --radius-sm: calc(var(--radius) - 4px);
-    --radius-md: calc(var(--radius) - 2px);
-    --radius-lg: var(--radius);
-    --radius-xl: calc(var(--radius) + 4px);
-    --radius-2xl: calc(var(--radius) + 8px);
-    --radius-3xl: calc(var(--radius) + 12px);
-    --radius-4xl: calc(var(--radius) + 16px);
-    --color-background: var(--background);
-    --color-foreground: var(--foreground);
-    --color-card: var(--card);
-    --color-card-foreground: var(--card-foreground);
-    --color-popover: var(--popover);
-    --color-popover-foreground: var(--popover-foreground);
-    --color-primary: var(--primary);
-    --color-primary-foreground: var(--primary-foreground);
-    --color-secondary: var(--secondary);
-    --color-secondary-foreground: var(--secondary-foreground);
-    --color-muted: var(--muted);
-    --color-muted-foreground: var(--muted-foreground);
-    --color-accent: var(--accent);
-    --color-accent-foreground: var(--accent-foreground);
-    --color-destructive: var(--destructive);
-    --color-border: var(--border);
-    --color-input: var(--input);
-    --color-ring: var(--ring);
-    --color-chart-1: var(--chart-1);
-    --color-chart-2: var(--chart-2);
-    --color-chart-3: var(--chart-3);
-    --color-chart-4: var(--chart-4);
-    --color-chart-5: var(--chart-5);
-    --color-sidebar: var(--sidebar);
-    --color-sidebar-foreground: var(--sidebar-foreground);
-    --color-sidebar-primary: var(--sidebar-primary);
-    --color-sidebar-primary-foreground: var(--sidebar-primary-foreground);
-    --color-sidebar-accent: var(--sidebar-accent);
-    --color-sidebar-accent-foreground: var(--sidebar-accent-foreground);
-    --color-sidebar-border: var(--sidebar-border);
-    --color-sidebar-ring: var(--sidebar-ring);
-}
-
-:root {
-    --radius: 0.625rem;
-    --background: oklch(1 0 0);
-    --foreground: oklch(0.145 0 0);
-    --card: oklch(1 0 0);
-    --card-foreground: oklch(0.145 0 0);
-    --popover: oklch(1 0 0);
-    --popover-foreground: oklch(0.145 0 0);
-    --primary: oklch(0.205 0 0);
-    --primary-foreground: oklch(0.985 0 0);
-    --secondary: oklch(0.97 0 0);
-    --secondary-foreground: oklch(0.205 0 0);
-    --muted: oklch(0.97 0 0);
-    --muted-foreground: oklch(0.556 0 0);
-    --accent: oklch(0.97 0 0);
-    --accent-foreground: oklch(0.205 0 0);
-    --destructive: oklch(0.577 0.245 27.325);
-    --border: oklch(0.922 0 0);
-    --input: oklch(0.922 0 0);
-    --ring: oklch(0.708 0 0);
-    --chart-1: oklch(0.646 0.222 41.116);
-    --chart-2: oklch(0.6 0.118 184.704);
-    --chart-3: oklch(0.398 0.07 227.392);
-    --chart-4: oklch(0.828 0.189 84.429);
-    --chart-5: oklch(0.769 0.188 70.08);
-    --sidebar: oklch(0.985 0 0);
-    --sidebar-foreground: oklch(0.145 0 0);
-    --sidebar-primary: oklch(0.205 0 0);
-    --sidebar-primary-foreground: oklch(0.985 0 0);
-    --sidebar-accent: oklch(0.97 0 0);
-    --sidebar-accent-foreground: oklch(0.205 0 0);
-    --sidebar-border: oklch(0.922 0 0);
-    --sidebar-ring: oklch(0.708 0 0);
-}
-
-.dark {
-    --background: oklch(0.145 0 0);
-    --foreground: oklch(0.985 0 0);
-    --card: oklch(0.205 0 0);
-    --card-foreground: oklch(0.985 0 0);
-    --popover: oklch(0.205 0 0);
-    --popover-foreground: oklch(0.985 0 0);
-    --primary: oklch(0.922 0 0);
-    --primary-foreground: oklch(0.205 0 0);
-    --secondary: oklch(0.269 0 0);
-    --secondary-foreground: oklch(0.985 0 0);
-    --muted: oklch(0.269 0 0);
-    --muted-foreground: oklch(0.708 0 0);
-    --accent: oklch(0.269 0 0);
-    --accent-foreground: oklch(0.985 0 0);
-    --destructive: oklch(0.704 0.191 22.216);
-    --border: oklch(1 0 0 / 10%);
-    --input: oklch(1 0 0 / 15%);
-    --ring: oklch(0.556 0 0);
-    --chart-1: oklch(0.488 0.243 264.376);
-    --chart-2: oklch(0.696 0.17 162.48);
-    --chart-3: oklch(0.769 0.188 70.08);
-    --chart-4: oklch(0.627 0.265 303.9);
-    --chart-5: oklch(0.645 0.246 16.439);
-    --sidebar: oklch(0.205 0 0);
-    --sidebar-foreground: oklch(0.985 0 0);
-    --sidebar-primary: oklch(0.488 0.243 264.376);
-    --sidebar-primary-foreground: oklch(0.985 0 0);
-    --sidebar-accent: oklch(0.269 0 0);
-    --sidebar-accent-foreground: oklch(0.985 0 0);
-    --sidebar-border: oklch(1 0 0 / 10%);
-    --sidebar-ring: oklch(0.556 0 0);
-}
-
-@layer base {
-  * {
-    @apply border-border outline-ring/50;
-    }
-  body {
-    @apply bg-background text-foreground;
-    }
-}
-
-${semanticRulesApply()}`;
-}
-function semanticRulesApply() {
-    return `/* ─── Scaffolded view classes ────────────────────────────────
-   Semantic classes shared by app/Views/Welcome and vendored
-   @rudderjs/auth views. The --no-tailwind variant of this
-   scaffolder emits equivalent hand-authored CSS under the
-   same selectors. */
-
-.page {
-  @apply min-h-svh bg-gradient-to-b from-white to-zinc-50 text-zinc-900 dark:from-zinc-950 dark:to-black dark:text-zinc-100;
-}
-.page-nav {
-  @apply mx-auto flex max-w-6xl items-center justify-between px-6 py-5;
-}
-.page-footer {
-  @apply border-t border-zinc-200 dark:border-zinc-900;
-}
-.footer-inner {
-  @apply mx-auto flex max-w-6xl flex-col items-center gap-3 px-6 py-6 text-xs text-zinc-500 sm:flex-row sm:justify-between;
-}
-.footer-links {
-  @apply flex gap-4;
-}
-.footer-link {
-  @apply transition-colors hover:text-zinc-900 dark:hover:text-zinc-100;
-}
-
-.brand {
-  @apply flex items-center gap-2 text-sm font-semibold tracking-tight;
-}
-.brand-dot {
-  @apply inline-block h-2 w-2 rounded-full bg-emerald-500;
-}
-.nav-right {
-  @apply flex items-center gap-4 text-sm;
-}
-.nav-badge {
-  @apply text-zinc-500 dark:text-zinc-400;
-}
-.nav-badge strong {
-  @apply font-medium text-zinc-900 dark:text-zinc-100;
-}
-.nav-button {
-  @apply rounded-md border border-zinc-200 px-3 py-1.5 text-xs font-medium text-zinc-700 transition-colors hover:bg-zinc-100 dark:border-zinc-800 dark:text-zinc-300 dark:hover:bg-zinc-900;
-}
-.nav-link {
-  @apply text-zinc-500 transition-colors hover:text-zinc-900 dark:text-zinc-400 dark:hover:text-zinc-100;
-}
-
-.hero {
-  @apply mx-auto max-w-3xl px-6 pb-12 pt-20 text-center;
-}
-.hero-title {
-  @apply text-5xl font-bold tracking-tight sm:text-6xl;
-}
-.hero-lead {
-  @apply mt-6 text-lg text-zinc-600 dark:text-zinc-400;
-}
-.hero-meta {
-  @apply mt-8 flex items-center justify-center gap-3 text-xs text-zinc-500;
-}
-.inline-code {
-  @apply rounded bg-zinc-100 px-1.5 py-0.5 text-sm dark:bg-zinc-900;
-}
-
-.feature-section {
-  @apply mx-auto max-w-6xl px-6 pb-20;
-}
-.feature-grid {
-  @apply grid gap-4 md:grid-cols-2 lg:grid-cols-3;
-}
-.feature-card {
-  @apply rounded-xl border border-zinc-200 bg-white p-6 transition-colors hover:border-zinc-900 dark:border-zinc-800 dark:bg-zinc-950 dark:hover:border-zinc-100;
-}
-.feature-title {
-  @apply font-semibold;
-}
-.feature-desc {
-  @apply mt-2 text-sm text-zinc-600 dark:text-zinc-400;
-}
-.feature-card:hover .feature-desc {
-  @apply text-zinc-900 dark:text-zinc-100;
-}
-
-/* Auth forms + error page (reused selectors) */
-.auth-wrap {
-  @apply flex min-h-svh items-center justify-center p-4;
-}
-.auth-card {
-  @apply w-full max-w-sm space-y-6;
-}
-.auth-head {
-  @apply text-center;
-}
-.heading-lg {
-  @apply text-2xl font-bold;
-}
-.muted {
-  @apply text-sm text-zinc-500 dark:text-zinc-400;
-}
-.form-card {
-  @apply space-y-4 rounded-lg border border-zinc-200 p-6 shadow-sm dark:border-zinc-800;
-}
-.form-error {
-  @apply rounded-md bg-red-50 px-3 py-2 text-sm text-red-600 dark:bg-red-950 dark:text-red-400;
-}
-.form-success {
-  @apply rounded-md bg-green-50 px-3 py-2 text-sm text-green-600 dark:bg-green-950 dark:text-green-400;
-}
-.form-label {
-  @apply block text-sm font-medium mb-1;
-}
-.form-input {
-  @apply w-full rounded-md border border-zinc-200 px-3 py-2 text-sm outline-none focus:ring-2 focus:ring-zinc-900 dark:border-zinc-800 dark:bg-zinc-950 dark:focus:ring-zinc-100;
-}
-.form-submit {
-  @apply w-full rounded-md bg-zinc-900 px-4 py-2 text-sm font-medium text-white transition-opacity hover:opacity-90 disabled:opacity-50 dark:bg-zinc-100 dark:text-zinc-900;
-}
-.form-link-row {
-  @apply flex items-center justify-between text-sm text-zinc-500 dark:text-zinc-400;
-}
-.auth-link {
-  @apply underline transition-colors hover:text-zinc-900 dark:hover:text-zinc-100;
-}
-
-.error-wrap {
-  @apply flex min-h-svh flex-col items-center justify-center gap-4 p-4;
-}
-.error-link {
-  @apply mt-4 text-sm underline transition-colors hover:text-zinc-900 dark:hover:text-zinc-100;
-}
-.empty-state {
-  @apply py-8 text-center text-sm text-zinc-500 dark:text-zinc-400;
-}
-
-.form-inline {
-  @apply flex w-full max-w-md gap-2;
-}
-
-/* AI chat */
-.chat-wrap {
-  @apply flex min-h-svh flex-col items-center p-4;
-}
-.chat-column {
-  @apply flex w-full max-w-2xl flex-1 flex-col;
-}
-.chat-header {
-  @apply mb-4 flex items-center justify-between;
-}
-.chat-log {
-  @apply flex-1 space-y-3 overflow-y-auto rounded-lg border border-zinc-200 p-4 dark:border-zinc-800;
-  max-height: calc(100svh - 180px);
-}
-.chat-row {
-  @apply flex;
-}
-.chat-row.is-user {
-  @apply justify-end;
-}
-.chat-row.is-assistant {
-  @apply justify-start;
-}
-.chat-bubble {
-  @apply max-w-[80%] rounded-lg px-3 py-2 text-sm;
-}
-.chat-bubble.is-user {
-  @apply bg-zinc-900 text-zinc-50 dark:bg-zinc-100 dark:text-zinc-900;
-}
-.chat-bubble.is-assistant {
-  @apply bg-zinc-100 text-zinc-900 dark:bg-zinc-900 dark:text-zinc-100;
-}
-.chat-input {
-  @apply mt-3;
-}
-`;
-}
-function indexCssPlain() {
-    return `:root {
-  --bg-start: #ffffff;
-  --bg-end: #fafafa;
-  --fg: #18181b;
-  --fg-muted: #52525b;
-  --fg-strong: #09090b;
-  --border: #e4e4e7;
-  --surface: #ffffff;
-  --surface-muted: #f4f4f5;
-  --accent: #10b981;
-  --danger-bg: #fef2f2;
-  --danger-fg: #dc2626;
-  --success-bg: #f0fdf4;
-  --success-fg: #16a34a;
-}
-@media (prefers-color-scheme: dark) {
-  :root {
-    --bg-start: #09090b;
-    --bg-end: #000000;
-    --fg: #fafafa;
-    --fg-muted: #a1a1aa;
-    --fg-strong: #ffffff;
-    --border: #27272a;
-    --surface: #09090b;
-    --surface-muted: #18181b;
-    --danger-bg: #450a0a;
-    --danger-fg: #f87171;
-    --success-bg: #052e16;
-    --success-fg: #4ade80;
-  }
-}
-
-*, *::before, *::after { box-sizing: border-box; }
-html, body { margin: 0; padding: 0; }
-body {
-  background: linear-gradient(to bottom, var(--bg-start), var(--bg-end));
-  color: var(--fg);
-  font-family: -apple-system, BlinkMacSystemFont, "Segoe UI", system-ui, sans-serif;
-  min-height: 100vh;
-  -webkit-font-smoothing: antialiased;
-}
-a { color: inherit; }
-
-/* Layout */
-.page { min-height: 100svh; }
-.page-nav {
-  max-width: 72rem;
-  margin: 0 auto;
-  padding: 1.25rem 1.5rem;
-  display: flex;
-  align-items: center;
-  justify-content: space-between;
-}
-.page-footer {
-  border-top: 1px solid var(--border);
-}
-.footer-inner {
-  max-width: 72rem;
-  margin: 0 auto;
-  padding: 1.5rem;
-  display: flex;
-  flex-direction: column;
-  align-items: center;
-  gap: 0.75rem;
-  font-size: 0.75rem;
-  color: var(--fg-muted);
-}
-@media (min-width: 640px) {
-  .footer-inner { flex-direction: row; justify-content: space-between; }
-}
-.footer-links { display: flex; gap: 1rem; }
-.footer-link {
-  text-decoration: none;
-  transition: color 150ms;
-}
-.footer-link:hover { color: var(--fg-strong); }
-
-/* Welcome */
-.brand {
-  display: flex;
-  align-items: center;
-  gap: 0.5rem;
-  font-size: 0.875rem;
-  font-weight: 600;
-  letter-spacing: -0.01em;
-}
-.brand-dot {
-  display: inline-block;
-  width: 0.5rem;
-  height: 0.5rem;
-  border-radius: 9999px;
-  background: var(--accent);
-}
-.nav-right {
-  display: flex;
-  align-items: center;
-  gap: 1rem;
-  font-size: 0.875rem;
-}
-.nav-badge { color: var(--fg-muted); }
-.nav-badge strong { color: var(--fg-strong); font-weight: 500; }
-.nav-button {
-  display: inline-block;
-  border: 1px solid var(--border);
-  border-radius: 0.375rem;
-  padding: 0.375rem 0.75rem;
-  font-size: 0.75rem;
-  font-weight: 500;
-  color: var(--fg);
-  background: transparent;
-  cursor: pointer;
-  text-decoration: none;
-  transition: background-color 150ms;
-}
-.nav-button:hover { background: var(--surface-muted); }
-.nav-link {
-  color: var(--fg-muted);
-  text-decoration: none;
-  transition: color 150ms;
-}
-.nav-link:hover { color: var(--fg-strong); }
-
-.hero {
-  max-width: 48rem;
-  margin: 0 auto;
-  padding: 5rem 1.5rem 3rem;
-  text-align: center;
-}
-.hero-title {
-  font-size: 3rem;
-  font-weight: 700;
-  letter-spacing: -0.02em;
-  margin: 0;
-}
-@media (min-width: 640px) {
-  .hero-title { font-size: 3.75rem; }
-}
-.hero-lead {
-  margin: 1.5rem 0 0;
-  font-size: 1.125rem;
-  color: var(--fg-muted);
-  line-height: 1.6;
-}
-.hero-meta {
-  margin-top: 2rem;
-  display: flex;
-  align-items: center;
-  justify-content: center;
-  gap: 0.75rem;
-  font-size: 0.75rem;
-  color: var(--fg-muted);
-}
-.inline-code {
-  background: var(--surface-muted);
-  padding: 0.125rem 0.375rem;
-  border-radius: 0.25rem;
-  font-size: 0.875rem;
-  font-family: ui-monospace, SFMono-Regular, Menlo, monospace;
-}
-
-.feature-section {
-  max-width: 72rem;
-  margin: 0 auto;
-  padding: 0 1.5rem 5rem;
-}
-.feature-grid {
-  display: grid;
-  gap: 1rem;
-}
-@media (min-width: 768px) { .feature-grid { grid-template-columns: repeat(2, 1fr); } }
-@media (min-width: 1024px) { .feature-grid { grid-template-columns: repeat(3, 1fr); } }
-.feature-card {
-  display: block;
-  border: 1px solid var(--border);
-  background: var(--surface);
-  border-radius: 0.75rem;
-  padding: 1.5rem;
-  text-decoration: none;
-  color: inherit;
-  transition: border-color 150ms, color 150ms;
-}
-.feature-card:hover { border-color: var(--fg-strong); }
-.feature-title { font-weight: 600; margin: 0; }
-.feature-desc {
-  margin: 0.5rem 0 0;
-  font-size: 0.875rem;
-  color: var(--fg-muted);
-}
-.feature-card:hover .feature-desc { color: var(--fg-strong); }
-
-/* Auth forms + error page */
-.auth-wrap {
-  display: flex;
-  min-height: 100svh;
-  align-items: center;
-  justify-content: center;
-  padding: 1rem;
-}
-.auth-card {
-  width: 100%;
-  max-width: 24rem;
-  display: flex;
-  flex-direction: column;
-  gap: 1.5rem;
-}
-.auth-head { text-align: center; }
-.heading-lg { font-size: 1.5rem; font-weight: 700; margin: 0; }
-.muted { font-size: 0.875rem; color: var(--fg-muted); margin: 0; }
-.auth-head .muted { margin-top: 0.25rem; }
-
-.form-card {
-  display: flex;
-  flex-direction: column;
-  gap: 1rem;
-  border: 1px solid var(--border);
-  border-radius: 0.5rem;
-  padding: 1.5rem;
-  background: var(--surface);
-  box-shadow: 0 1px 2px rgba(0, 0, 0, 0.05);
-}
-.form-error {
-  background: var(--danger-bg);
-  color: var(--danger-fg);
-  font-size: 0.875rem;
-  padding: 0.5rem 0.75rem;
-  border-radius: 0.375rem;
-  margin: 0;
-}
-.form-success {
-  background: var(--success-bg);
-  color: var(--success-fg);
-  font-size: 0.875rem;
-  padding: 0.5rem 0.75rem;
-  border-radius: 0.375rem;
-  margin: 0;
-}
-.form-label {
-  display: block;
-  font-size: 0.875rem;
-  font-weight: 500;
-  margin-bottom: 0.25rem;
-}
-.form-input {
-  display: block;
-  width: 100%;
-  border: 1px solid var(--border);
-  border-radius: 0.375rem;
-  padding: 0.5rem 0.75rem;
-  font-size: 0.875rem;
-  background: var(--surface);
-  color: var(--fg);
-  outline: none;
-  transition: box-shadow 150ms, border-color 150ms;
-}
-.form-input:focus {
-  border-color: var(--fg-strong);
-  box-shadow: 0 0 0 2px var(--fg-strong);
-}
-.form-submit {
-  width: 100%;
-  background: var(--fg-strong);
-  color: var(--bg-start);
-  border: 0;
-  border-radius: 0.375rem;
-  padding: 0.625rem 1rem;
-  font-size: 0.875rem;
-  font-weight: 500;
-  cursor: pointer;
-  transition: opacity 150ms;
-}
-.form-submit:hover { opacity: 0.9; }
-.form-submit:disabled { opacity: 0.5; cursor: not-allowed; }
-.form-link-row {
-  display: flex;
-  align-items: center;
-  justify-content: space-between;
-  font-size: 0.875rem;
-  color: var(--fg-muted);
-}
-.auth-link {
-  text-decoration: underline;
-  transition: color 150ms;
-}
-.auth-link:hover { color: var(--fg-strong); }
-
-.error-wrap {
-  display: flex;
-  min-height: 100svh;
-  flex-direction: column;
-  align-items: center;
-  justify-content: center;
-  gap: 1rem;
-  padding: 1rem;
-  text-align: center;
-}
-.error-link {
-  margin-top: 1rem;
-  font-size: 0.875rem;
-  text-decoration: underline;
-  transition: color 150ms;
-}
-.error-link:hover { color: var(--fg-strong); }
-.empty-state {
-  padding: 2rem 0;
-  text-align: center;
-  font-size: 0.875rem;
-  color: var(--fg-muted);
-}
-
-.form-inline {
-  display: flex;
-  width: 100%;
-  max-width: 28rem;
-  gap: 0.5rem;
-}
-
-/* AI chat */
-.chat-wrap {
-  display: flex;
-  min-height: 100svh;
-  flex-direction: column;
-  align-items: center;
-  padding: 1rem;
-}
-.chat-column {
-  display: flex;
-  width: 100%;
-  max-width: 42rem;
-  flex: 1;
-  flex-direction: column;
-}
-.chat-header {
-  display: flex;
-  align-items: center;
-  justify-content: space-between;
-  margin-bottom: 1rem;
-}
-.chat-log {
-  flex: 1;
-  display: flex;
-  flex-direction: column;
-  gap: 0.75rem;
-  overflow-y: auto;
-  border: 1px solid var(--border);
-  border-radius: 0.5rem;
-  padding: 1rem;
-  background: var(--surface);
-  max-height: calc(100svh - 180px);
-}
-.chat-row { display: flex; }
-.chat-row.is-user { justify-content: flex-end; }
-.chat-row.is-assistant { justify-content: flex-start; }
-.chat-bubble {
-  max-width: 80%;
-  border-radius: 0.5rem;
-  padding: 0.5rem 0.75rem;
-  font-size: 0.875rem;
-}
-.chat-bubble.is-user {
-  background: var(--fg-strong);
-  color: var(--bg-start);
-}
-.chat-bubble.is-assistant {
-  background: var(--surface-muted);
-  color: var(--fg);
-}
-.chat-input {
-  margin-top: 0.75rem;
-}
-`;
-}
-// ─── bootstrap/app.ts ──────────────────────────────────────
-function bootstrapApp(ctx) {
-    const imports = [
-        "import 'reflect-metadata'",
-        "import 'dotenv/config'",
-        "import { Application } from '@rudderjs/core'",
-        "import { hono } from '@rudderjs/server-hono'",
-        "import { RateLimit } from '@rudderjs/middleware'",
-        "import configs from '../config/index.ts'",
-        "import providers from './providers.ts'",
-    ];
-    void ctx;
-    // Note (middleware groups):
-    //   - m.use(...) runs on every request regardless of route group
-    //   - m.web(...) / m.api(...) run only on routes loaded via withRouting({ web }) / { api }
-    //   - sessionMiddleware + AuthMiddleware are auto-installed on the web group
-    //     by @rudderjs/session and @rudderjs/auth — no manual wiring needed
-    return `${imports.join('\n')}
-
-export default Application.configure({
-  server:    hono(configs.server),
-  config:    configs,
-  providers,
-})
-  .withRouting({
-    web:      () => import('../routes/web.ts'),
-    api:      () => import('../routes/api.ts'),
-    commands: () => import('../routes/console.ts'),
-  })
-  .withMiddleware((m) => {
-    // Per-group — separate rate-limit budgets for web pages and api calls
-    m.web(RateLimit.perMinute(120))
-    m.api(RateLimit.perMinute(60))
-
-    // sessionMiddleware + AuthMiddleware are auto-installed on the web group
-    // by @rudderjs/session and @rudderjs/auth. Api routes are stateless by
-    // default — opt into bearer auth with RequireBearer() from @rudderjs/passport.
-  })
-  .create()
-`;
-}
-// ─── bootstrap/providers.ts ────────────────────────────────
-function bootstrapProviders(ctx) {
-    const imports = [
-        "import type { Application, ServiceProvider } from '@rudderjs/core'",
-        "import { defaultProviders, eventsProvider } from '@rudderjs/core'",
-        "import { AppServiceProvider } from '../app/Providers/AppServiceProvider.js'",
-    ];
-    const providers = [
-        '...(await defaultProviders()),',
-        'eventsProvider({}),',
-        'AppServiceProvider,',
-    ];
-    return `${imports.join('\n')}
-
-// All framework providers are auto-discovered from package.json metadata.
-// Run \`pnpm rudder providers:discover\` after installing or removing packages.
-//
-// To skip a specific framework provider:
-//   ...(await defaultProviders({ skip: ['@rudderjs/horizon'] })),
-//
-// To turn off auto-discovery entirely, replace \`...(await defaultProviders())\`
-// with explicit class imports — see the framework docs.
-export default [
-  ${providers.join('\n  ')}
-] satisfies (new (app: Application) => ServiceProvider)[]
-`;
-}
-// ─── config files ──────────────────────────────────────────
-function configApp() {
-    return `import { Env } from '@rudderjs/support'
-
-export default {
-  name:  Env.get('APP_NAME',  'RudderJS'),
-  env:   Env.get('APP_ENV',   'development'),
-  debug: Env.getBool('APP_DEBUG', false),
-  url:   Env.get('APP_URL', 'http://localhost:3000'),
-}
-`;
-}
-function configServer() {
-    return `import { Env } from '@rudderjs/support'
-
-export default {
-  port:       Env.getNumber('PORT', 3000),
-  trustProxy: Env.getBool('TRUST_PROXY', false),
-  cors: {
-    origin:  Env.get('CORS_ORIGIN',  '*'),
-    methods: Env.get('CORS_METHODS', 'GET,POST,PUT,PATCH,DELETE,OPTIONS'),
-    headers: Env.get('CORS_HEADERS', 'Content-Type,Authorization'),
-  },
-}
-`;
-}
-function configLog() {
-    return `import { Env } from '@rudderjs/support'
-import type { LogConfig } from '@rudderjs/log'
-
-export default {
-  default: Env.get('LOG_CHANNEL', 'console'),
-
-  channels: {
-    stack: {
-      driver:           'stack',
-      channels:         ['console', 'daily'],
-      ignoreExceptions: false,
-    },
-
-    console: {
-      driver: 'console',
-      level:  Env.get('LOG_LEVEL', 'debug') as 'debug',
-    },
-
-    single: {
-      driver: 'single',
-      path:   'storage/logs/rudderjs.log',
-      level:  Env.get('LOG_LEVEL', 'debug') as 'debug',
-    },
-
-    daily: {
-      driver: 'daily',
-      path:   'storage/logs/rudderjs.log',
-      days:   14,
-      level:  Env.get('LOG_LEVEL', 'debug') as 'debug',
-    },
-
-    null: {
-      driver: 'null',
-    },
-  },
-} satisfies LogConfig
-`;
-}
-function configHash() {
-    return `import { Env } from '@rudderjs/support'
-import type { HashConfig } from '@rudderjs/hash'
-
-export default {
-  driver: Env.get('HASH_DRIVER', 'bcrypt') as 'bcrypt' | 'argon2',
-  bcrypt: { rounds: 12 },
-  argon2: { memory: 65536, time: 3, threads: 4 },
-} satisfies HashConfig
-`;
-}
-function configDatabase(ctx) {
-    const defaultConn = ctx.db;
-    const connections = {
-        sqlite: `    sqlite: {
-      driver: 'sqlite' as const,
-      url:    Env.get('DATABASE_URL', 'file:./dev.db'),
-    },`,
-        postgresql: `    postgresql: {
-      driver: 'postgresql' as const,
-      url:    Env.get('DATABASE_URL', ''),
-    },`,
-        mysql: `    mysql: {
-      driver: 'mysql' as const,
-      url:    Env.get('DATABASE_URL', ''),
-    },`,
-    };
-    return `import { Env } from '@rudderjs/support'
-
-export default {
-  default: Env.get('DB_CONNECTION', '${defaultConn}'),
-
-  connections: {
-${connections[ctx.db]}
-  },
-}
-`;
-}
-function configQueue() {
-    return `import { Env, isWebContainer } from '@rudderjs/support'
-import type { QueueConfig } from '@rudderjs/queue'
-
-// In WebContainer, BullMQ (Redis over raw TCP) doesn't work — fall back to
-// the in-process \`sync\` driver.
-const defaultConnection = isWebContainer() ? 'sync' : Env.get('QUEUE_CONNECTION', 'sync')
-
-export default {
-  default: defaultConnection,
-
-  connections: {
-    sync: {
-      driver: 'sync',
-    },
-
-    inngest: {
-      driver:     'inngest',
-      appId:      Env.get('INNGEST_APP_ID',      'my-app'),
-      eventKey:   Env.get('INNGEST_EVENT_KEY',   ''),
-      signingKey: Env.get('INNGEST_SIGNING_KEY',  ''),
-      jobs: [],
-    },
-  },
-} satisfies QueueConfig
-`;
-}
-function configMail() {
-    return `import { Env, isWebContainer } from '@rudderjs/support'
-
-// In WebContainer, raw SMTP (TCP) doesn't work — fall back to the log driver
-// (writes the rendered email to stdout instead of sending).
-const defaultMailer = isWebContainer() ? 'log' : Env.get('MAIL_MAILER', 'log')
-
-export default {
-  default: defaultMailer,
-
-  from: {
-    address: Env.get('MAIL_FROM_ADDRESS', 'hello@example.com'),
-    name:    Env.get('MAIL_FROM_NAME',    'RudderJS'),
-  },
-
-  mailers: {
-    log: {
-      driver: 'log',
-    },
-
-    smtp: {
-      driver:     'smtp',
-      host:       Env.get('MAIL_HOST',     'localhost'),
-      port:       Env.getNumber('MAIL_PORT', 587),
-      username:   Env.get('MAIL_USERNAME', ''),
-      password:   Env.get('MAIL_PASSWORD', ''),
-      encryption: Env.get('MAIL_ENCRYPTION', 'tls'),
-    },
-  },
-}
-`;
-}
-function configCache() {
-    return `import { Env, isWebContainer } from '@rudderjs/support'
-import type { CacheConfig } from '@rudderjs/cache'
-
-// In WebContainer, native Redis (raw TCP) doesn't work — fall back to memory.
-const defaultStore = isWebContainer() ? 'memory' : Env.get('CACHE_STORE', 'memory')
-
-export default {
-  default: defaultStore,
-
-  stores: {
-    memory: {
-      driver: 'memory',
-    },
-
-    redis: {
-      driver:   'redis',
-      url:      Env.get('REDIS_URL', ''),
-      host:     Env.get('REDIS_HOST', '127.0.0.1'),
-      port:     Env.getNumber('REDIS_PORT', 6379),
-      password: Env.get('REDIS_PASSWORD', ''),
-      prefix:   Env.get('CACHE_PREFIX', 'rudderjs:'),
-    },
-  },
-} satisfies CacheConfig
-`;
-}
-function configStorage() {
-    return `import path from 'node:path'
-import { Env } from '@rudderjs/support'
-import type { StorageConfig } from '@rudderjs/storage'
-
-export default {
-  default: Env.get('FILESYSTEM_DISK', 'local'),
-
-  disks: {
-    local: {
-      driver:  'local',
-      root:    path.resolve(process.cwd(), 'storage/app'),
-      baseUrl: '/api/files',
-    },
-
-    public: {
-      driver:  'local',
-      root:    path.resolve(process.cwd(), 'storage/app/public'),
-      baseUrl: Env.get('APP_URL', 'http://localhost:3000') + '/storage',
-    },
-
-    s3: {
-      driver:          's3',
-      bucket:          Env.get('AWS_BUCKET', ''),
-      region:          Env.get('AWS_DEFAULT_REGION', 'us-east-1'),
-      accessKeyId:     Env.get('AWS_ACCESS_KEY_ID', ''),
-      secretAccessKey: Env.get('AWS_SECRET_ACCESS_KEY', ''),
-      endpoint:        Env.get('AWS_ENDPOINT', ''),
-      baseUrl:         Env.get('AWS_URL', ''),
-    },
-  },
-} satisfies StorageConfig
-`;
-}
-function configAuth(_ctx) {
-    return `import type { AuthConfig } from '@rudderjs/auth'
-import { User } from '../app/Models/User.js'
-
-export default {
-  defaults: { guard: 'web' },
-  guards: {
-    web: { driver: 'session', provider: 'users' },
-  },
-  providers: {
-    users: { driver: 'eloquent', model: User },
-  },
-} satisfies AuthConfig
-`;
-}
-function configIndex(ctx) {
-    const imports = [
-        "import app      from './app.js'",
-        "import server   from './server.js'",
-        "import log      from './log.js'",
-    ];
-    const keys = ['app', 'server', 'log'];
-    if (ctx.orm) {
-        imports.push("import database from './database.js'");
-        keys.push('database');
-    }
-    if (ctx.packages.auth) {
-        imports.push("import auth     from './auth.js'");
-        imports.push("import session  from './session.js'");
-        imports.push("import hash     from './hash.js'");
-        keys.push('auth', 'session', 'hash');
-    }
-    if (ctx.packages.queue) {
-        imports.push("import queue    from './queue.js'");
-        keys.push('queue');
-    }
-    if (ctx.packages.mail) {
-        imports.push("import mail     from './mail.js'");
-        keys.push('mail');
-    }
-    if (ctx.packages.cache) {
-        imports.push("import cache    from './cache.js'");
-        keys.push('cache');
-    }
-    if (ctx.packages.storage) {
-        imports.push("import storage  from './storage.js'");
-        keys.push('storage');
-    }
-    if (ctx.packages.ai) {
-        imports.push("import ai       from './ai.js'");
-        keys.push('ai');
-    }
-    if (ctx.packages.sync) {
-        imports.push("import sync     from './sync.js'");
-        keys.push('sync');
-    }
-    if (ctx.packages.passport) {
-        imports.push("import passport from './passport.js'");
-        keys.push('passport');
-    }
-    if (ctx.packages.localization) {
-        imports.push("import localization from './localization.js'");
-        keys.push('localization');
-    }
-    if (ctx.packages.telescope) {
-        imports.push("import telescope from './telescope.js'");
-        keys.push('telescope');
-    }
-    return `${imports.join('\n')}
-
-const configs = { ${keys.join(', ')} }
-
-export type Configs = typeof configs
-
-export default configs
-`;
-}
-function envDts() {
-    return `import type { Configs } from './config/index.js'
-
-declare module '@rudderjs/core' {
-  interface AppConfig extends Configs {}
-}
-`;
-}
-function configSession() {
-    return `import { Env, isWebContainer } from '@rudderjs/support'
-import type { SessionConfig } from '@rudderjs/session'
-
-// In WebContainer, raw Redis (TCP) doesn't work — pin the session driver to
-// \`cookie\` so sessions survive without a Redis backend.
-const defaultDriver = isWebContainer()
-  ? 'cookie'
-  : (Env.get('SESSION_DRIVER', 'cookie') as 'cookie' | 'redis')
-
-export default {
-  driver:   defaultDriver,
-  lifetime: 120,
-  secret:   Env.get('SESSION_SECRET', 'change-me-in-production'),
-  cookie: {
-    name:     'rudderjs_session',
-    secure:   Env.getBool('SESSION_SECURE', false),
-    httpOnly: true,
-    sameSite: 'lax' as const,
-    path:     '/',
-  },
-  redis: { prefix: 'session:', url: Env.get('REDIS_URL', '') },
-} satisfies SessionConfig
-`;
-}
-function configAi() {
-    return `import { Env } from '@rudderjs/support'
-import type { AiConfig } from '@rudderjs/ai'
-
-export default {
-  default: Env.get('AI_MODEL', 'anthropic/claude-sonnet-4-5'),
-
-  providers: {
-    anthropic: {
-      driver: 'anthropic',
-      apiKey: Env.get('ANTHROPIC_API_KEY', ''),
-    },
-
-    openai: {
-      driver: 'openai',
-      apiKey: Env.get('OPENAI_API_KEY', ''),
-    },
-
-    google: {
-      driver: 'google',
-      apiKey: Env.get('GOOGLE_AI_API_KEY', ''),
-    },
-
-    ollama: {
-      driver:  'ollama',
-      baseUrl: Env.get('OLLAMA_BASE_URL', 'http://localhost:11434'),
-    },
-  },
-} satisfies AiConfig
-`;
-}
-function configSync(ctx) {
-    const persistenceImport = ctx.orm === 'prisma' ? "\nimport { syncPrisma } from '@rudderjs/sync'" : '';
-    const persistenceLine = ctx.orm === 'prisma'
-        ? '\n  // Server-side persistence — Y.Docs survive server restarts\n  persistence: syncPrisma(),\n'
-        : '';
-    return `import { Env } from '@rudderjs/support'${persistenceImport}
-import type { SyncConfig } from '@rudderjs/sync'
-
-export default {
-  path: Env.get('SYNC_PATH', '/ws-sync'),
-${persistenceLine}
-  // Client-side providers
-  providers: ['websocket', 'indexeddb'],
-} satisfies SyncConfig
-`;
-}
-function configPassport() {
-    return `import type { PassportConfig } from '@rudderjs/passport'
-
-export default {
-  // Keys loaded from filesystem — run \`pnpm rudder passport:keys\` to generate
-  keyPath: 'storage',
-
-  // Token lifetimes
-  tokensExpireIn:               15 * 24 * 60 * 60 * 1000,          // 15 days
-  refreshTokensExpireIn:        30 * 24 * 60 * 60 * 1000,          // 30 days
-  personalAccessTokensExpireIn: 6 * 30 * 24 * 60 * 60 * 1000,      // ~6 months
-
-  // Available OAuth scopes
-  scopes: {
-    read:  'Read access to your data',
-    write: 'Modify your data',
-    admin: 'Full administrative access',
-  },
-} satisfies PassportConfig
-`;
-}
-function configLocalization() {
-    return `import { resolve } from 'node:path'
-import { Env } from '@rudderjs/support'
-import type { LocalizationConfig } from '@rudderjs/localization'
-
-export default {
-  locale:   Env.get('APP_LOCALE',          'en'),
-  fallback: Env.get('APP_FALLBACK_LOCALE', 'en'),
-  path:     resolve(process.cwd(), 'lang'),
-} satisfies LocalizationConfig
-`;
-}
-function configTelescope() {
-    return `import type { TelescopeConfig } from '@rudderjs/telescope'
-
-// Debug dashboard mounted at /telescope. 18 collectors record requests, queries,
-// jobs, exceptions, logs, mail, events, cache, schedule, models, commands,
-// broadcasts, live, HTTP client, gate checks, dumps, AI runs, and MCP calls.
-//
-// Storage defaults to in-memory (bounded, no extra deps). Switch to 'sqlite'
-// for persistence across restarts — install better-sqlite3 first:
-//   pnpm add -D better-sqlite3
-//
-// In production, gate access by returning \`false\` from \`auth(req)\` or simply
-// disable by setting \`enabled: false\` via an env var.
-export default {
-  enabled:            true,
-  path:               'telescope',
-  storage:            'memory',
-  maxEntries:         1000,
-  pruneAfterHours:    24,
-  slowQueryThreshold: 100,
-  ignoreRequests:     ['/telescope*', '/health', '/@*'],
-} satisfies TelescopeConfig
-`;
-}
-// ─── app files ─────────────────────────────────────────────
-function userModel() {
-    return `import { Model } from '@rudderjs/orm'
-
-export class User extends Model {
-  // Prisma accessor is the model name lowercased
-  static table = 'user'
-
-  id!:            string
-  name!:          string
-  email!:         string
-  password?:      string | null
-  emailVerified!: boolean
-  role!:          string
-  createdAt!:     Date
-  updatedAt!:     Date
-}
-`;
-}
-function appServiceProvider(ctx) {
-    const imports = ["import { ServiceProvider } from '@rudderjs/core'"];
-    const registerLines = [
-        '// Register your application-level services here:',
-        '// this.app.singleton(MyService, () => new MyService())',
-    ];
-    if (ctx.packages.mcp) {
-        imports.push("import { Mcp } from '@rudderjs/mcp'");
-        imports.push("import { EchoServer } from '../Mcp/EchoServer.js'");
-        registerLines.push('');
-        registerLines.push('// Expose the demo MCP server over HTTP at /mcp/echo');
-        registerLines.push("Mcp.web('/mcp/echo', EchoServer)");
-    }
-    return `${imports.join('\n')}
-
-export class AppServiceProvider extends ServiceProvider {
-  register(): void {
-    ${registerLines.join('\n    ')}
-  }
-
-  boot(): void {
-    console.log(\`[AppServiceProvider] booted — \${this.app.name}\`)
-  }
-}
-`;
-}
-function mcpEchoServer() {
-    return `import { McpServer, Name, Version, Instructions } from '@rudderjs/mcp'
-import { EchoTool } from './EchoTool.js'
-
-@Name('echo-server')
-@Version('1.0.0')
-@Instructions('A demo MCP server that echoes messages back.')
-export class EchoServer extends McpServer {
-  protected tools = [EchoTool]
-}
-`;
-}
-function mcpEchoTool() {
-    return `import { z } from 'zod'
-import { McpTool, McpResponse, Description } from '@rudderjs/mcp'
-import type { McpToolResult } from '@rudderjs/mcp'
-
-@Description('Echoes the given message back to the caller')
-export class EchoTool extends McpTool {
-  schema() {
-    return z.object({
-      message: z.string().describe('The message to echo'),
-    })
-  }
-
-  async handle(input: Record<string, unknown>): Promise<McpToolResult> {
-    return McpResponse.text(\`Echo: \${String(input['message'])}\`)
-  }
-}
-`;
-}
-function authController() {
-    return `import { Middleware } from '@rudderjs/router'
-import { RateLimit } from '@rudderjs/middleware'
-import {
-  BaseAuthController,
-  PasswordBroker,
-  MemoryTokenRepository,
-  EloquentUserProvider,
-  type AuthUserModelLike,
-} from '@rudderjs/auth'
-import { Hash } from '@rudderjs/hash'
-import { User } from '../../Models/User.ts'
-
-// Per-IP + per-path rate limit — sign-in attempts don't exhaust the sign-up
-// or password-reset budget for the same client.
-const authLimit = RateLimit.perMinute(10)
-  .by(req => {
-    const ip = (req as unknown as Record<string, unknown>)['ip'] as string ?? '127.0.0.1'
-    return \`\${ip}:\${req.path}\`
-  })
-  .message('Too many auth attempts. Try again later.')
-
-// Swap MemoryTokenRepository for a persistent one (Prisma/Redis) in production.
-const broker = new PasswordBroker(
-  new MemoryTokenRepository(),
-  new EloquentUserProvider(User as unknown as never, (plain, hashed) => Hash.check(plain, hashed)),
-  { expire: 60, throttle: 60 },
-)
-
 /**
- * Auth POST handlers — Laravel Breeze-style.
- *
- * Extends \`BaseAuthController\` from @rudderjs/auth which provides the five
- * standard endpoints (\`sign-in/email\`, \`sign-up/email\`, \`sign-out\`,
- * \`request-password-reset\`, \`reset-password\`). Override any method to
- * customize behavior — the base uses \`this.userModel\` / \`this.hash\` /
- * \`this.passwordBroker\` for its defaults, so replacing those fields is
- * usually all you need.
- *
- * Registered from \`routes/web.ts\` via \`Route.registerController(AuthController)\`
- * so the handlers inherit SessionMiddleware + AuthMiddleware from the web group.
+ * Demos are React-primary only for v1 — vue/solid variants aren't written yet.
+ * `name` is a demo ID from `templates/demos/registry.ts` (e.g. 'contact', 'ws', 'live').
+ * Returns true when the demo was selected AND its package gates are satisfied.
  */
-@Middleware([authLimit])
-export class AuthController extends BaseAuthController {
-  protected userModel      = User as unknown as AuthUserModelLike
-  protected hash           = Hash
-  protected passwordBroker = broker
-}
-`;
-}
-// ─── routes ────────────────────────────────────────────────
-function routesApi(ctx) {
-    const imports = [
-        "import { router } from '@rudderjs/router'",
-    ];
-    const lines = [];
-    if (ctx.packages.auth || ctx.packages.ai) {
-        imports.push("import { app } from '@rudderjs/core'");
-    }
-    if (ctx.packages.auth) {
-        imports.push("import { Auth, AuthManager, runWithAuth } from '@rudderjs/auth'");
-        imports.push("import { SessionMiddleware } from '@rudderjs/session'");
-    }
-    if (ctx.packages.ai) {
-        imports.push("import { AI } from '@rudderjs/ai'");
-    }
-    lines.push('');
-    lines.push("router.get('/api/health', (_req, res) => res.json({ status: 'ok' }))");
-    if (ctx.packages.auth) {
-        lines.push('');
-        lines.push(`// GET /api/me — returns current user or null (Laravel Sanctum SPA-style).
-// Api routes are stateless by default, so session is opted in per-route.
-// Session-mutating handlers (sign-in, sign-up, sign-out, password reset)
-// live in routes/web.ts so they inherit SessionMiddleware from the web group.
-router.get('/api/me', async (req, res) => {
-  const manager = app().make<AuthManager>('auth.manager')
-  let user: Record<string, unknown> | null = null
-  await runWithAuth(manager, async () => {
-    const authUser = await Auth.user()
-    if (authUser) {
-      user = { id: authUser.getAuthIdentifier() }
-    }
-  })
-  res.json({ user })
-}, [SessionMiddleware()])`);
-    }
-    if (ctx.packages.ai) {
-        lines.push('');
-        lines.push(`// POST /api/ai/chat — simple AI chat endpoint
-router.post('/api/ai/chat', async (req, res) => {
-  const { messages } = req.body as { messages: { role: string; content: string }[] }
-  const lastMessage  = messages.at(-1)?.content ?? ''
-  const response     = await AI.agent('You are a helpful assistant.').prompt(lastMessage)
-  res.json({ message: response.text })
-})`);
-    }
-    if (ctx.packages.passport) {
-        imports.push("import { registerPassportRoutes, RequireBearer, scope } from '@rudderjs/passport'");
-        lines.push('');
-        lines.push(`// ── Passport OAuth 2 routes ──────────────────────────────
-//
-// Registers /oauth/authorize, /oauth/token, /oauth/tokens/:id,
-// /oauth/scopes, /oauth/device/code, /oauth/device/approve.
-//
-// Requires: RSA keys via \`pnpm rudder passport:keys\` and an OAuth client
-// via \`pnpm rudder passport:client <name>\`.
-const passportRouter = {
-  get:    (path: string, handler: any) => router.get(path, handler),
-  post:   (path: string, handler: any) => router.post(path, handler),
-  delete: (path: string, handler: any) => router.delete(path, handler),
-}
-registerPassportRoutes(passportRouter as any)
-
-// Example: protected route requiring a Bearer token with 'read' scope
-router.get('/api/passport/me', async (req, res) => {
-  res.json({
-    user:   req.user ?? null,
-    scopes: (req.raw as any)?.__passport_scopes ?? [],
-  })
-}, [RequireBearer(), scope('read')])`);
-    }
-    if (shouldScaffoldDemos(ctx)) {
-        imports.push(`import { z } from '@rudderjs/core'`);
-        if (ctx.packages.auth)
-            imports.push(`import { CsrfMiddleware } from '@rudderjs/middleware'`);
-        if (ctx.packages.broadcast)
-            imports.push(`import { broadcast, broadcastStats } from '@rudderjs/broadcast'`);
-        lines.push('');
-        lines.push(`// ── Demos ────────────────────────────────────────────────
-// POST /api/contact — Zod validation${ctx.packages.auth ? ' + CSRF' : ''}.
-const contactSchema = z.object({
-  name:    z.string().min(2,  'Name must be at least 2 characters.'),
-  email:   z.string().email('Please enter a valid email address.'),
-  message: z.string().min(10, 'Message must be at least 10 characters.'),
-})
-
-router.post('/api/contact', async (req, res) => {
-  const result = contactSchema.safeParse(req.body)
-  if (!result.success) {
-    const errors = Object.fromEntries(result.error.issues.map(i => [i.path[0], i.message]))
-    return res.status(422).json({ errors })
-  }
-  return res.json({ ok: true, message: \`Thanks \${result.data.name}, your message has been received!\` })
-}${ctx.packages.auth ? ', [CsrfMiddleware()]' : ''})`);
-        if (ctx.packages.broadcast) {
-            lines.push('');
-            lines.push(`// POST /api/ws/broadcast — push a chat message to subscribers of the 'chat' channel.
-router.post('/api/ws/broadcast', async (req, res) => {
-  const { user, text } = req.body as { user: string; text: string }
-  broadcast('chat', 'message', { user, text, ts: Date.now() })
-  res.json({ ok: true })
-})
-
-// GET /api/ws/ping — current connection / channel counts.
-router.get('/api/ws/ping', (_req, res) => res.json(broadcastStats()))`);
-        }
-    }
-    lines.push('');
-    lines.push("// Catch-all: any unmatched /api/* route returns 404");
-    lines.push("router.all('/api/*', (_req, res) => res.status(404).json({ message: 'Route not found.' }))");
-    return imports.join('\n') + '\n' + lines.join('\n') + '\n';
-}
-function routesWeb(ctx) {
-    const hasAuth = ctx.packages.auth;
-    const hasWelcome = ctx.frameworks.length === 1;
-    // ── imports ─────────────────────────────────────────────
-    const imports = [`import { Route } from '@rudderjs/router'`];
-    if (hasWelcome) {
-        imports.push(`import { createRequire } from 'node:module'`);
-        imports.push(`import { view } from '@rudderjs/view'`);
-        imports.push(`import { config } from '@rudderjs/core'`);
-    }
-    if (hasAuth) {
-        imports.push(`import { CsrfMiddleware } from '@rudderjs/middleware'`);
-        imports.push(`import { registerAuthRoutes } from '@rudderjs/auth/routes'`);
-        imports.push(`import { auth } from '@rudderjs/auth'`);
-        imports.push(`import { AuthController } from '../app/Http/Controllers/AuthController.ts'`);
-    }
-    // ── middleware chain shared with auth routes + welcome ─
-    // SessionMiddleware + AuthMiddleware are auto-installed on the web group by
-    // their providers. Only CSRF stays per-route so specific endpoints (webhooks,
-    // server-to-server callbacks) can opt out.
-    const webMwBlock = hasAuth
-        ? `
-// Per-route web middleware — session + auth are auto-applied on the web group.
-const webMw = [CsrfMiddleware()]
-`
-        : '';
-    // ── auth UI wiring ──────────────────────────────────────
-    // GET view pages come from `registerAuthRoutes`; the POST submit handlers
-    // come from `AuthController` (extends @rudderjs/auth's BaseAuthController).
-    // Both live in routes/web.ts so they inherit SessionMiddleware + AuthMiddleware
-    // from the web group. Customize the flow by editing app/Http/Controllers/AuthController.ts.
-    const authBlock = hasAuth
-        ? `
-// GET pages — login/register/forgot-password/reset-password
-// Views live in app/Views/Auth/ (vendored from @rudderjs/auth/views/${ctx.primary}/)
-registerAuthRoutes(Route, { middleware: webMw })
-
-// POST handlers — sign-in/email, sign-up/email, sign-out, password reset.
-// Edit app/Http/Controllers/AuthController.ts to customize.
-Route.registerController(AuthController)
-`
-        : '';
-    // ── welcome page wiring ─────────────────────────────────
-    const welcomeBlock = hasWelcome
-        ? `
-// Read RudderJS version from @rudderjs/core's package.json at boot time.
-const _require = createRequire(import.meta.url)
-const rudderCorePkg = _require('@rudderjs/core/package.json') as { version: string }
-
-// Welcome page — delete this route and app/Views/Welcome.${welcomeExt(ctx.primary)} to replace it.
-Route.get('/', async () => {${hasAuth ? `
-  // Resolve the current user (if signed in) — AuthMiddleware auto-installs on
-  // the web group, so auth() has a populated ALS context here.
-  const current = await auth().user() as Record<string, unknown> | null
-  const user    = current
-    ? { name: String(current['name'] ?? ''), email: String(current['email'] ?? '') }
-    : null` : `
-  // Auth is not installed, so the welcome page never shows a signed-in user.
-  const user = null`}
-  return view('welcome', {
-    appName:       config<string>('app.name', 'RudderJS'),
-    rudderVersion: rudderCorePkg.version,
-    nodeVersion:   process.version.replace(/^v/, ''),
-    env:           config<string>('app.env', 'development'),
-    user,
-    // Laravel's Route::has() — the welcome nav renders Log in / Register links
-    // only when the auth package registered these named routes. Install
-    // @rudderjs/auth + call registerAuthRoutes() and they appear automatically;
-    // uninstall and they vanish. No scaffold-time flag.
-    loginUrl:    Route.getNamedRoute('login')    ?? null,
-    registerUrl: Route.getNamedRoute('register') ?? null,
-  })
-}${hasAuth ? ', webMw' : ''})
-`
-        : '';
-    // ── demos wiring ────────────────────────────────────────
-    // Controllers for /demos and /demos/<name>. Views live under app/Views/Demos/.
-    let demosBlock = '';
-    if (shouldScaffoldDemos(ctx)) {
-        if (!hasWelcome) {
-            // Demo files exist but routesWeb already has `view` imports if hasWelcome.
-            // For multi-framework projects (no welcome) we still need the view import here.
-            imports.push(`import { view } from '@rudderjs/view'`);
-        }
-        const lines = [
-            `// Demos — see app/Views/Demos/`,
-            `Route.get('/demos',         async () => view('demos.index'))`,
-            `Route.get('/demos/contact', async () => view('demos.contact'))`,
-        ];
-        if (ctx.packages.broadcast)
-            lines.push(`Route.get('/demos/ws',      async () => view('demos.ws'))`);
-        if (ctx.packages.sync)
-            lines.push(`Route.get('/demos/live',    async () => view('demos.live'))`);
-        demosBlock = '\n' + lines.join('\n') + '\n';
-    }
-    return `${imports.join('\n')}
-${webMwBlock}${authBlock}${welcomeBlock}${demosBlock}
-// Web routes — HTML redirects, guards, and non-API server responses
-// These run before Vike's file-based page routing
-// Use this file for: redirects, server-side auth guards, download routes, sitemaps, etc.
-`;
-}
-function welcomeExt(fw) {
-    return fw === 'vue' ? 'vue' : 'tsx';
-}
-function routesConsole() {
-    return `import { rudder } from '@rudderjs/console'
-
-rudder.command('inspire', () => {
-  const quotes = [
-    'The best way to predict the future is to create it.',
-    'Build something people want.',
-    'Stay hungry, stay foolish.',
-    'Code is poetry.',
-    'Simplicity is the soul of efficiency.',
-  ]
-  const quote = quotes[Math.floor(Math.random() * quotes.length)]!
-  console.log(\`\\n  "\${quote}"\\n\`)
-}).description('Display an inspiring quote')
-
-rudder.command('db:seed', async () => {
-  // TODO: add your seed data here
-  console.log('No seed data configured. Edit routes/console.ts to add seed logic.')
-}).description('Seed the database with sample data')
-`;
-}
-// ─── pages ─────────────────────────────────────────────────
-function pagesRootConfig(ctx) {
-    if (ctx.frameworks.length === 1) {
-        const rendererImport = ctx.primary === 'vue'
-            ? `import vikeVue from 'vike-vue/config'`
-            : ctx.primary === 'solid'
-                ? `import vikeSolid from 'vike-solid/config'`
-                : `import vikeReact from 'vike-react/config'`;
-        const rendererVar = ctx.primary === 'vue' ? 'vikeVue' : ctx.primary === 'solid' ? 'vikeSolid' : 'vikeReact';
-        return `import type { Config } from 'vike/types'
-${rendererImport}
-
-export default {
-  extends: [${rendererVar}],
-} satisfies Config
-`;
-    }
-    // Multi-framework: no renderer in root config — each page picks its own
-    return `import type { Config } from 'vike/types'
-
-export default {} satisfies Config
-`;
-}
-function pagesIndexConfig(ctx) {
-    switch (ctx.primary) {
-        case 'vue':
-            return `import type { Config } from 'vike/types'
-import vikeVue from 'vike-vue/config'
-
-export default {
-  extends: vikeVue,
-} satisfies Config
-`;
-        case 'solid':
-            return `import type { Config } from 'vike/types'
-import vikeSolid from 'vike-solid/config'
-
-export default {
-  extends: vikeSolid,
-} satisfies Config
-`;
-        default: // react
-            return `import type { Config } from 'vike/types'
-import vikeReact from 'vike-react/config'
-
-export default {
-  extends: vikeReact,
-} satisfies Config
-`;
-    }
-}
-function pagesIndexData(ctx) {
-    if (!ctx.packages.auth) {
-        return `export type Data = {
-  message: string
-}
-
-export async function data(): Promise<Data> {
-  return { message: 'Welcome to RudderJS' }
-}
-`;
-    }
-    return `import { app } from '@rudderjs/core'
-import { AuthManager, Auth, runWithAuth } from '@rudderjs/auth'
-
-export type Data = {
-  user: { id: string; name: string; email: string } | null
-}
-
-export async function data(): Promise<Data> {
-  const manager = app().make<AuthManager>('auth.manager')
-  let user: Data['user'] = null
-  await runWithAuth(manager, async () => {
-    const authUser = await Auth.user()
-    if (authUser) {
-      const record = authUser as unknown as Record<string, unknown>
-      user = {
-        id:    String(authUser.getAuthIdentifier()),
-        name:  String(record['name'] ?? ''),
-        email: String(record['email'] ?? ''),
-      }
-    }
-  })
-  return { user }
-}
-`;
-}
-function pagesIndexPage(ctx) {
-    switch (ctx.primary) {
-        case 'vue': return pagesIndexPageVue(ctx);
-        case 'solid': return pagesIndexPageSolid(ctx);
-        default: return pagesIndexPageReact(ctx);
-    }
-}
-function pagesIndexPageReact(ctx) {
-    const cssImport = `import '@/index.css'\n`;
-    const extraLinks = [];
-    if (ctx.packages.ai)
-        extraLinks.push('        <a href="/ai-chat" className="auth-link">AI Chat</a>');
-    const extraLinksStr = extraLinks.length > 0 ? '\n' + extraLinks.join('\n') : '';
-    if (!ctx.packages.auth) {
-        return `${cssImport}import { useData } from 'vike-react/useData'
-import type { Data } from './+data.js'
-
-export default function Page() {
-  const data = useData<Data>()
-
-  return (
-    <div className="error-wrap">
-      <h1 className="heading-lg">${ctx.name}</h1>
-      <p className="muted">Built with RudderJS — Laravel-inspired Node.js framework.</p>
-
-      <div className="footer-links muted">
-        <a href="/api/health" className="auth-link">API Health</a>${extraLinksStr}
-      </div>
-    </div>
-  )
-}
-`;
-    }
-    return `${cssImport}import { useState } from 'react'
-import { useData } from 'vike-react/useData'
-import type { Data } from './+data.js'
-
-export default function Page() {
-  const data         = useData<Data>()
-  const [user, setUser] = useState(data.user)
-
-  async function signOut() {
-    await fetch('/api/auth/sign-out', {
-      method:  'POST',
-      headers: { 'Content-Type': 'application/json' },
-      body:    '{}',
-    })
-    window.location.href = '/'
-  }
-
-  return (
-    <div className="error-wrap">
-      <h1 className="heading-lg">${ctx.name}</h1>
-      <p className="muted">Built with RudderJS — Laravel-inspired Node.js framework.</p>
-
-      {user ? (
-        <>
-          <p className="nav-badge">
-            Signed in as <strong>{user.name}</strong>
-          </p>
-          <div className="footer-links">
-            <button onClick={signOut} className="nav-button">Sign out</button>
-          </div>
-        </>
-      ) : (
-        <div className="footer-links">
-          <a href="/register" className="nav-button">Register</a>
-          <a href="/login" className="nav-button">Login</a>
-        </div>
-      )}
-
-      <div className="footer-links muted">
-        <a href="/api/health" className="auth-link">API Health</a>
-        <a href="/api/me" className="auth-link">Session Info</a>${extraLinksStr}
-      </div>
-    </div>
-  )
-}
-`;
-}
-function pagesIndexPageVue(ctx) {
-    const cssImport = `import '@/index.css'\n`;
-    const extraLinks = [];
-    if (ctx.packages.ai)
-        extraLinks.push('      <a href="/ai-chat" class="auth-link">AI Chat</a>');
-    const extraStr = extraLinks.length > 0 ? '\n' + extraLinks.join('\n') : '';
-    if (!ctx.packages.auth) {
-        return `<script setup lang="ts">
-${cssImport}import { useData } from 'vike-vue/useData'
-import type { Data } from './+data.js'
-
-const data = useData<Data>()
-</script>
-
-<template>
-  <div class="error-wrap">
-    <h1 class="heading-lg">${ctx.name}</h1>
-    <p class="muted">Built with RudderJS — Laravel-inspired Node.js framework.</p>
-
-    <div class="footer-links muted">
-      <a href="/api/health" class="auth-link">API Health</a>${extraStr}
-    </div>
-  </div>
-</template>
-`;
-    }
-    return `<script setup lang="ts">
-${cssImport}import { ref } from 'vue'
-import { useData } from 'vike-vue/useData'
-import type { Data } from './+data.js'
-
-const data = useData<Data>()
-const user = ref(data.user)
-
-async function signOut() {
-  await fetch('/api/auth/sign-out', {
-    method:  'POST',
-    headers: { 'Content-Type': 'application/json' },
-    body:    '{}',
-  })
-  window.location.href = '/'
-}
-</script>
-
-<template>
-  <div class="error-wrap">
-    <h1 class="heading-lg">${ctx.name}</h1>
-    <p class="muted">Built with RudderJS — Laravel-inspired Node.js framework.</p>
-
-    <template v-if="user">
-      <p class="nav-badge">
-        Signed in as <strong>{{ user.name }}</strong>
-      </p>
-      <div class="footer-links">
-        <button @click="signOut" class="nav-button">Sign out</button>
-      </div>
-    </template>
-    <div v-else class="footer-links">
-      <a href="/register" class="nav-button">Register</a>
-      <a href="/login" class="nav-button">Login</a>
-    </div>
-
-    <div class="footer-links muted">
-      <a href="/api/health" class="auth-link">API Health</a>
-      <a href="/api/me" class="auth-link">Session Info</a>${extraStr}
-    </div>
-  </div>
-</template>
-`;
-}
-function pagesIndexPageSolid(ctx) {
-    const cssImport = `import '@/index.css'\n`;
-    const extraLinks = [];
-    if (ctx.packages.ai)
-        extraLinks.push('        <a href="/ai-chat" class="auth-link">AI Chat</a>');
-    const extraStr = extraLinks.length > 0 ? '\n' + extraLinks.join('\n') : '';
-    if (!ctx.packages.auth) {
-        return `${cssImport}import { useData } from 'vike-solid/useData'
-import type { Data } from './+data.js'
-
-export default function Page() {
-  const data = useData<Data>()
-
-  return (
-    <div class="error-wrap">
-      <h1 class="heading-lg">${ctx.name}</h1>
-      <p class="muted">Built with RudderJS — Laravel-inspired Node.js framework.</p>
-
-      <div class="footer-links muted">
-        <a href="/api/health" class="auth-link">API Health</a>${extraStr}
-      </div>
-    </div>
-  )
-}
-`;
-    }
-    return `${cssImport}import { createSignal, Show } from 'solid-js'
-import { useData } from 'vike-solid/useData'
-import type { Data } from './+data.js'
-
-export default function Page() {
-  const data = useData<Data>()
-  const [user, setUser] = createSignal(data.user)
-
-  async function signOut() {
-    await fetch('/api/auth/sign-out', {
-      method:  'POST',
-      headers: { 'Content-Type': 'application/json' },
-      body:    '{}',
-    })
-    window.location.href = '/'
-  }
-
-  return (
-    <div class="error-wrap">
-      <h1 class="heading-lg">${ctx.name}</h1>
-      <p class="muted">Built with RudderJS — Laravel-inspired Node.js framework.</p>
-
-      <Show
-        when={user()}
-        fallback={
-          <div class="footer-links">
-            <a href="/register" class="nav-button">Register</a>
-            <a href="/login" class="nav-button">Login</a>
-          </div>
-        }
-      >
-        <p class="nav-badge">
-          Signed in as <strong>{user()!.name}</strong>
-        </p>
-        <div class="footer-links">
-          <button onClick={signOut} class="nav-button">Sign out</button>
-        </div>
-      </Show>
-
-      <div class="footer-links muted">
-        <a href="/api/health" class="auth-link">API Health</a>
-        <a href="/api/me" class="auth-link">Session Info</a>${extraStr}
-      </div>
-    </div>
-  )
-}
-`;
-}
-// ─── welcome view (controller-returned) ─────────────────────
-function welcomeView(ctx) {
-    switch (ctx.primary) {
-        case 'vue': return welcomeViewVue(ctx);
-        case 'solid': return welcomeViewSolid(ctx);
-        default: return welcomeViewReact(ctx);
-    }
-}
-const WELCOME_FEATURES = `const DEFAULT_DOCS   = 'https://github.com/rudderjs/rudder'
-const DEFAULT_GITHUB = 'https://github.com/rudderjs/rudder'
-
-const features: Feature[] = [
-  {
-    title:       'Controllers & Routing',
-    description: 'Explicit routes in routes/api.ts with middleware, params, named routes, and return types that just work.',
-    href:        \`\${DEFAULT_DOCS}#routing\`,
-  },
-  {
-    title:       'Eloquent ORM',
-    description: 'Laravel-style models on Prisma or Drizzle. Query relationships, scopes, and eager loading without changing mental models.',
-    href:        \`\${DEFAULT_DOCS}#orm\`,
-  },
-  {
-    title:       'Controller Views',
-    description: "The page you're looking at — return view() from a controller, rendered through Vike SSR. Zero adapter, full SPA nav.",
-    href:        \`\${DEFAULT_DOCS}#views\`,
-  },
-  {
-    title:       'Rudder CLI',
-    description: 'Laravel-style make:* generators, schedule, db:seed, and custom commands. Run \\\`pnpm rudder\\\` for the full list.',
-    href:        \`\${DEFAULT_DOCS}#cli\`,
-  },
-  {
-    title:       'Queues & Jobs',
-    description: 'Dispatch background jobs with sync, database, or Redis drivers. Monitor them with @rudderjs/horizon.',
-    href:        \`\${DEFAULT_DOCS}#queue\`,
-  },
-  {
-    title:       'Auth, Guards, Policies',
-    description: 'Session-backed auth, password reset, gates, and RequireAuth / RequireGuest middleware — all through one provider.',
-    href:        \`\${DEFAULT_DOCS}#auth\`,
-  },
-]`;
-function welcomeViewReact(ctx) {
-    const cssImport = `import '@/index.css'\n\n`;
-    return `${cssImport}// URL this view is served at — MUST match the Route.get('/', ...) in routes/web.ts.
-// The scanner reads this constant and writes it into the generated +route.ts,
-// so Vike's client router can SPA-navigate here instead of doing full reloads.
-export const route = '/'
-
-export interface WelcomeProps {
-  appName:       string
-  rudderVersion: string
-  nodeVersion:   string
-  env:           string
-  user:          { name: string; email: string } | null
-  // null when the auth package isn't installed (Laravel's Route::has() idiom).
-  loginUrl:      string | null
-  registerUrl:   string | null
-  signOutUrl?:   string
-  docsUrl?:      string
-  githubUrl?:    string
-}
-
-interface Feature {
-  title:       string
-  description: string
-  href:        string
-}
-
-${WELCOME_FEATURES}
-
-export default function Welcome(props: WelcomeProps) {
-  const signOutUrl  = props.signOutUrl  ?? '/api/auth/sign-out'
-  const docsUrl     = props.docsUrl     ?? DEFAULT_DOCS
-  const githubUrl   = props.githubUrl   ?? DEFAULT_GITHUB
-
-  async function handleSignOut() {
-    await fetch(signOutUrl, {
-      method:  'POST',
-      headers: { 'Content-Type': 'application/json' },
-      body:    '{}',
-    })
-    // Full reload so the server resolves a fresh pageContext (logged-out user).
-    window.location.href = '/'
-  }
-
-  return (
-    <div className="page">
-      <nav className="page-nav">
-        <div className="brand">
-          <span className="brand-dot" />
-          RudderJS
-        </div>
-        <div className="nav-right">
-          {props.loginUrl && (props.user ? (
-            <>
-              <span className="nav-badge">
-                Signed in as <strong>{props.user.name}</strong>
-              </span>
-              <button type="button" onClick={handleSignOut} className="nav-button">
-                Sign out
-              </button>
-            </>
-          ) : (
-            <>
-              <a href={props.loginUrl} className="nav-link">Log in</a>
-              {props.registerUrl && (
-                <a href={props.registerUrl} className="nav-button">Register</a>
-              )}
-            </>
-          ))}
-        </div>
-      </nav>
-
-      <section className="hero">
-        <h1 className="hero-title">{props.appName}</h1>
-        <p className="hero-lead">
-          Laravel&apos;s developer experience, Vike&apos;s performance, Node&apos;s ecosystem.
-          This page is served by a controller, rendered through{' '}
-          <code className="inline-code">view(&apos;welcome&apos;)</code>.
-        </p>
-        <div className="hero-meta">
-          <span>RudderJS v{props.rudderVersion}</span>
-          <span>•</span>
-          <span>Node {props.nodeVersion}</span>
-          <span>•</span>
-          <span>env={props.env}</span>
-        </div>
-      </section>
-
-      <section className="feature-section">
-        <div className="feature-grid">
-          {features.map(f => (
-            <a key={f.title} href={f.href} className="feature-card">
-              <h3 className="feature-title">{f.title}</h3>
-              <p className="feature-desc">{f.description}</p>
-            </a>
-          ))}
-        </div>
-      </section>
-
-      <footer className="page-footer">
-        <div className="footer-inner">
-          <div>Built with RudderJS. Edit <code>app/Views/Welcome.tsx</code> to customize this page.</div>
-          <div className="footer-links">
-            <a href={docsUrl} className="footer-link">Docs</a>
-            <a href={githubUrl} className="footer-link">GitHub</a>
-          </div>
-        </div>
-      </footer>
-    </div>
-  )
-}
-`;
-}
-function welcomeViewVue(ctx) {
-    const cssImport = `import '@/index.css'\n`;
-    // Vue SFC quirk: top-level `export` statements must live in a regular
-    // <script> block, NOT <script setup> (the compiler rejects exports there).
-    // The scanner reads both blocks as plain text, so the route override is
-    // still picked up. Keep this dual-script structure whenever a Vue view
-    // needs `export const route = '/...'`.
-    return `<script lang="ts">
-// URL this view is served at — see the React variant for rationale.
-export const route = '/'
-</script>
-
-<script setup lang="ts">
-${cssImport}
-export interface WelcomeProps {
-  appName:       string
-  rudderVersion: string
-  nodeVersion:   string
-  env:           string
-  user:          { name: string; email: string } | null
-  // null when the auth package isn't installed (Laravel's Route::has() idiom).
-  loginUrl:      string | null
-  registerUrl:   string | null
-  signOutUrl?:   string
-  docsUrl?:      string
-  githubUrl?:    string
-}
-
-const props = defineProps<WelcomeProps>()
-
-interface Feature {
-  title:       string
-  description: string
-  href:        string
-}
-
-${WELCOME_FEATURES}
-
-const signOutUrl  = props.signOutUrl  ?? '/api/auth/sign-out'
-const docsUrl     = props.docsUrl     ?? DEFAULT_DOCS
-const githubUrl   = props.githubUrl   ?? DEFAULT_GITHUB
-
-async function handleSignOut() {
-  await fetch(signOutUrl, {
-    method:  'POST',
-    headers: { 'Content-Type': 'application/json' },
-    body:    '{}',
-  })
-  // Full reload so the server resolves a fresh pageContext (logged-out user).
-  window.location.href = '/'
-}
-</script>
-
-<template>
-  <div class="page">
-    <nav class="page-nav">
-      <div class="brand">
-        <span class="brand-dot"></span>
-        RudderJS
-      </div>
-      <div v-if="props.loginUrl" class="nav-right">
-        <template v-if="props.user">
-          <span class="nav-badge">
-            Signed in as <strong>{{ props.user.name }}</strong>
-          </span>
-          <button type="button" @click="handleSignOut" class="nav-button">
-            Sign out
-          </button>
-        </template>
-        <template v-else>
-          <a :href="props.loginUrl" class="nav-link">Log in</a>
-          <a v-if="props.registerUrl" :href="props.registerUrl" class="nav-button">Register</a>
-        </template>
-      </div>
-    </nav>
-
-    <section class="hero">
-      <h1 class="hero-title">{{ props.appName }}</h1>
-      <p class="hero-lead">
-        Laravel's developer experience, Vike's performance, Node's ecosystem.
-        This page is served by a controller, rendered through
-        <code class="inline-code">view('welcome')</code>.
-      </p>
-      <div class="hero-meta">
-        <span>RudderJS v{{ props.rudderVersion }}</span>
-        <span>•</span>
-        <span>Node {{ props.nodeVersion }}</span>
-        <span>•</span>
-        <span>env={{ props.env }}</span>
-      </div>
-    </section>
-
-    <section class="feature-section">
-      <div class="feature-grid">
-        <a v-for="f in features" :key="f.title" :href="f.href" class="feature-card">
-          <h3 class="feature-title">{{ f.title }}</h3>
-          <p class="feature-desc">{{ f.description }}</p>
-        </a>
-      </div>
-    </section>
-
-    <footer class="page-footer">
-      <div class="footer-inner">
-        <div>Built with RudderJS. Edit <code>app/Views/Welcome.vue</code> to customize this page.</div>
-        <div class="footer-links">
-          <a :href="docsUrl" class="footer-link">Docs</a>
-          <a :href="githubUrl" class="footer-link">GitHub</a>
-        </div>
-      </div>
-    </footer>
-  </div>
-</template>
-`;
-}
-function welcomeViewSolid(ctx) {
-    const cssImport = `import '@/index.css'\n`;
-    return `${cssImport}import { For, Show } from 'solid-js'
-
-// URL this view is served at — see the React variant for rationale.
-export const route = '/'
-
-export interface WelcomeProps {
-  appName:       string
-  rudderVersion: string
-  nodeVersion:   string
-  env:           string
-  user:          { name: string; email: string } | null
-  // null when the auth package isn't installed (Laravel's Route::has() idiom).
-  loginUrl:      string | null
-  registerUrl:   string | null
-  signOutUrl?:   string
-  docsUrl?:      string
-  githubUrl?:    string
-}
-
-interface Feature {
-  title:       string
-  description: string
-  href:        string
-}
-
-${WELCOME_FEATURES}
-
-export default function Welcome(props: WelcomeProps) {
-  const signOutUrl  = () => props.signOutUrl  ?? '/api/auth/sign-out'
-  const docsUrl     = () => props.docsUrl     ?? DEFAULT_DOCS
-  const githubUrl   = () => props.githubUrl   ?? DEFAULT_GITHUB
-
-  async function handleSignOut() {
-    await fetch(signOutUrl(), {
-      method:  'POST',
-      headers: { 'Content-Type': 'application/json' },
-      body:    '{}',
-    })
-    // Full reload so the server resolves a fresh pageContext (logged-out user).
-    window.location.href = '/'
-  }
-
-  return (
-    <div class="page">
-      <nav class="page-nav">
-        <div class="brand">
-          <span class="brand-dot" />
-          RudderJS
-        </div>
-        <Show when={props.loginUrl}>
-          {(loginUrl) => (
-            <div class="nav-right">
-              <Show
-                when={props.user}
-                fallback={
-                  <>
-                    <a href={loginUrl()} class="nav-link">Log in</a>
-                    <Show when={props.registerUrl}>
-                      {(registerUrl) => (
-                        <a href={registerUrl()} class="nav-button">Register</a>
-                      )}
-                    </Show>
-                  </>
-                }
-              >
-                {(user) => (
-                  <>
-                    <span class="nav-badge">
-                      Signed in as <strong>{user().name}</strong>
-                    </span>
-                    <button type="button" onClick={handleSignOut} class="nav-button">
-                      Sign out
-                    </button>
-                  </>
-                )}
-              </Show>
-            </div>
-          )}
-        </Show>
-      </nav>
-
-      <section class="hero">
-        <h1 class="hero-title">{props.appName}</h1>
-        <p class="hero-lead">
-          Laravel's developer experience, Vike's performance, Node's ecosystem.
-          This page is served by a controller, rendered through{' '}
-          <code class="inline-code">view('welcome')</code>.
-        </p>
-        <div class="hero-meta">
-          <span>RudderJS v{props.rudderVersion}</span>
-          <span>•</span>
-          <span>Node {props.nodeVersion}</span>
-          <span>•</span>
-          <span>env={props.env}</span>
-        </div>
-      </section>
-
-      <section class="feature-section">
-        <div class="feature-grid">
-          <For each={features}>
-            {(f) => (
-              <a href={f.href} class="feature-card">
-                <h3 class="feature-title">{f.title}</h3>
-                <p class="feature-desc">{f.description}</p>
-              </a>
-            )}
-          </For>
-        </div>
-      </section>
-
-      <footer class="page-footer">
-        <div class="footer-inner">
-          <div>Built with RudderJS. Edit <code>app/Views/Welcome.tsx</code> to customize this page.</div>
-          <div class="footer-links">
-            <a href={docsUrl()} class="footer-link">Docs</a>
-            <a href={githubUrl()} class="footer-link">GitHub</a>
-          </div>
-        </div>
-      </footer>
-    </div>
-  )
-}
-`;
-}
-function pagesErrorConfig(ctx) {
-    switch (ctx.primary) {
-        case 'vue':
-            return `import type { Config } from 'vike/types'
-import vikeVue from 'vike-vue/config'
-
-export default {
-  extends: vikeVue,
-} satisfies Config
-`;
-        case 'solid':
-            return `import type { Config } from 'vike/types'
-import vikeSolid from 'vike-solid/config'
-
-export default {
-  extends: vikeSolid,
-} satisfies Config
-`;
-        default:
-            return `import type { Config } from 'vike/types'
-import vikeReact from 'vike-react/config'
-
-export default {
-  extends: vikeReact,
-} satisfies Config
-`;
-    }
-}
-function pagesErrorPage(ctx) {
-    switch (ctx.primary) {
-        case 'vue': return pagesErrorPageVue(ctx);
-        case 'solid': return pagesErrorPageSolid(ctx);
-        default: return pagesErrorPageReact(ctx);
-    }
-}
-function pagesErrorPageReact(ctx) {
-    const cssImport = `import '@/index.css'\n`;
-    return `${cssImport}import { usePageContext } from 'vike-react/usePageContext'
-
-export default function Page() {
-  const { is404, abortReason, abortStatusCode } = usePageContext() as {
-    is404: boolean
-    abortStatusCode?: number
-    abortReason?: string
-  }
-
-  if (is404) {
-    return (
-      <div className="error-wrap">
-        <h1 className="heading-lg">404 — Page Not Found</h1>
-        <p className="muted">This page could not be found.</p>
-        <a href="/" className="error-link">Go home</a>
-      </div>
-    )
-  }
-
-  if (abortStatusCode === 401) {
-    return (
-      <div className="error-wrap">
-        <h1 className="heading-lg">401 — Unauthorized</h1>
-        <p className="muted">{abortReason ?? 'You must be logged in to view this page.'}</p>
-        <a href="/" className="error-link">Go home</a>
-      </div>
-    )
-  }
-
-  return (
-    <div className="error-wrap">
-      <h1 className="heading-lg">Something went wrong</h1>
-      <p className="muted">{abortReason ?? 'An unexpected error occurred.'}</p>
-      <a href="/" className="error-link">Go home</a>
-    </div>
-  )
-}
-`;
-}
-function pagesErrorPageVue(ctx) {
-    const cssImport = `import '@/index.css'\n`;
-    return `<script setup lang="ts">
-${cssImport}import { usePageContext } from 'vike-vue/usePageContext'
-
-const pageContext = usePageContext() as {
-  is404: boolean
-  abortStatusCode?: number
-  abortReason?: string
-}
-</script>
-
-<template>
-  <div v-if="pageContext.is404" class="error-wrap">
-    <h1 class="heading-lg">404 — Page Not Found</h1>
-    <p class="muted">This page could not be found.</p>
-    <a href="/" class="error-link">Go home</a>
-  </div>
-  <div v-else-if="pageContext.abortStatusCode === 401" class="error-wrap">
-    <h1 class="heading-lg">401 — Unauthorized</h1>
-    <p class="muted">{{ pageContext.abortReason ?? 'You must be logged in to view this page.' }}</p>
-    <a href="/" class="error-link">Go home</a>
-  </div>
-  <div v-else class="error-wrap">
-    <h1 class="heading-lg">Something went wrong</h1>
-    <p class="muted">{{ pageContext.abortReason ?? 'An unexpected error occurred.' }}</p>
-    <a href="/" class="error-link">Go home</a>
-  </div>
-</template>
-`;
-}
-function pagesErrorPageSolid(ctx) {
-    const cssImport = `import '@/index.css'\n`;
-    return `${cssImport}import { Switch, Match } from 'solid-js'
-import { usePageContext } from 'vike-solid/usePageContext'
-
-export default function Page() {
-  const pageContext = usePageContext() as {
-    is404: boolean
-    abortStatusCode?: number
-    abortReason?: string
-  }
-
-  return (
-    <Switch>
-      <Match when={pageContext.is404}>
-        <div class="error-wrap">
-          <h1 class="heading-lg">404 — Page Not Found</h1>
-          <p class="muted">This page could not be found.</p>
-          <a href="/" class="error-link">Go home</a>
-        </div>
-      </Match>
-      <Match when={pageContext.abortStatusCode === 401}>
-        <div class="error-wrap">
-          <h1 class="heading-lg">401 — Unauthorized</h1>
-          <p class="muted">{pageContext.abortReason ?? 'You must be logged in to view this page.'}</p>
-          <a href="/" class="error-link">Go home</a>
-        </div>
-      </Match>
-      <Match when={true}>
-        <div class="error-wrap">
-          <h1 class="heading-lg">Something went wrong</h1>
-          <p class="muted">{pageContext.abortReason ?? 'An unexpected error occurred.'}</p>
-          <a href="/" class="error-link">Go home</a>
-        </div>
-      </Match>
-    </Switch>
-  )
-}
-`;
-}
-// ─── AI chat page ─────────────────────────────────────────
-function aiChatPageConfig(ctx) {
-    switch (ctx.primary) {
-        case 'vue':
-            return `import type { Config } from 'vike/types'
-import vikeVue from 'vike-vue/config'
-
-export default {
-  extends: vikeVue,
-} satisfies Config
-`;
-        case 'solid':
-            return `import type { Config } from 'vike/types'
-import vikeSolid from 'vike-solid/config'
-
-export default {
-  extends: vikeSolid,
-} satisfies Config
-`;
-        default:
-            return `import type { Config } from 'vike/types'
-import vikeReact from 'vike-react/config'
-
-export default {
-  extends: vikeReact,
-} satisfies Config
-`;
-    }
-}
-function aiChatPage(ctx) {
-    switch (ctx.primary) {
-        case 'vue': return aiChatPageVue(ctx);
-        case 'solid': return aiChatPageSolid(ctx);
-        default: return aiChatPageReact(ctx);
-    }
-}
-function aiChatPageReact(ctx) {
-    const cssImport = `import '@/index.css'\n`;
-    return `${cssImport}import { useState, useRef, useEffect } from 'react'
-
-interface Message {
-  role: 'user' | 'assistant'
-  content: string
-}
-
-export default function Page() {
-  const [messages, setMessages] = useState<Message[]>([])
-  const [input, setInput]       = useState('')
-  const [loading, setLoading]   = useState(false)
-  const scrollRef = useRef<HTMLDivElement>(null)
-
-  useEffect(() => {
-    scrollRef.current?.scrollTo(0, scrollRef.current.scrollHeight)
-  }, [messages])
-
-  async function send(e: React.FormEvent) {
-    e.preventDefault()
-    if (!input.trim() || loading) return
-
-    const userMsg: Message = { role: 'user', content: input }
-    setMessages(prev => [...prev, userMsg])
-    setInput('')
-    setLoading(true)
-
-    try {
-      const res = await fetch('/api/ai/chat', {
-        method:  'POST',
-        headers: { 'Content-Type': 'application/json' },
-        body:    JSON.stringify({ messages: [...messages, userMsg] }),
-      })
-      const json = await res.json() as { message: string }
-      setMessages(prev => [...prev, { role: 'assistant', content: json.message }])
-    } catch {
-      setMessages(prev => [...prev, { role: 'assistant', content: 'Something went wrong. Check your AI_PROVIDER and API key in .env.' }])
-    } finally {
-      setLoading(false)
-    }
-  }
-
-  return (
-    <div className="chat-wrap">
-      <div className="chat-column">
-        <div className="chat-header">
-          <h1 className="heading-lg">AI Chat</h1>
-          <a href="/" className="auth-link muted">← Home</a>
-        </div>
-
-        <div ref={scrollRef} className="chat-log">
-          {messages.length === 0 && (
-            <p className="empty-state">Send a message to start chatting.</p>
-          )}
-          {messages.map((msg, i) => (
-            <div key={i} className={\`chat-row \${msg.role === 'user' ? 'is-user' : 'is-assistant'}\`}>
-              <div className={\`chat-bubble \${msg.role === 'user' ? 'is-user' : 'is-assistant'}\`}>
-                {msg.content}
-              </div>
-            </div>
-          ))}
-          {loading && (
-            <div className="chat-row is-assistant">
-              <div className="chat-bubble is-assistant muted">Thinking...</div>
-            </div>
-          )}
-        </div>
-
-        <form onSubmit={send} className="form-inline chat-input">
-          <input
-            value={input}
-            onChange={e => setInput(e.target.value)}
-            placeholder="Type a message..."
-            disabled={loading}
-            className="form-input"
-          />
-          <button type="submit" disabled={loading} className="form-submit">
-            Send
-          </button>
-        </form>
-      </div>
-    </div>
-  )
-}
-`;
-}
-function aiChatPageVue(ctx) {
-    const cssImport = `import '@/index.css'\n`;
-    return `<script setup lang="ts">
-${cssImport}import { ref, nextTick } from 'vue'
-
-interface Message {
-  role: 'user' | 'assistant'
-  content: string
-}
-
-const messages  = ref<Message[]>([])
-const input     = ref('')
-const loading   = ref(false)
-const scrollEl  = ref<HTMLDivElement>()
-
-async function send(e: Event) {
-  e.preventDefault()
-  if (!input.value.trim() || loading.value) return
-
-  const userMsg: Message = { role: 'user', content: input.value }
-  messages.value.push(userMsg)
-  input.value = ''
-  loading.value = true
-
-  try {
-    const res = await fetch('/api/ai/chat', {
-      method:  'POST',
-      headers: { 'Content-Type': 'application/json' },
-      body:    JSON.stringify({ messages: messages.value }),
-    })
-    const json = await res.json() as { message: string }
-    messages.value.push({ role: 'assistant', content: json.message })
-  } catch {
-    messages.value.push({ role: 'assistant', content: 'Something went wrong. Check your AI_PROVIDER and API key in .env.' })
-  } finally {
-    loading.value = false
-    await nextTick()
-    scrollEl.value?.scrollTo(0, scrollEl.value.scrollHeight)
-  }
-}
-</script>
-
-<template>
-  <div class="chat-wrap">
-    <div class="chat-column">
-      <div class="chat-header">
-        <h1 class="heading-lg">AI Chat</h1>
-        <a href="/" class="auth-link muted">← Home</a>
-      </div>
-
-      <div ref="scrollEl" class="chat-log">
-        <p v-if="messages.length === 0" class="empty-state">Send a message to start chatting.</p>
-        <div v-for="(msg, i) in messages" :key="i" :class="['chat-row', msg.role === 'user' ? 'is-user' : 'is-assistant']">
-          <div :class="['chat-bubble', msg.role === 'user' ? 'is-user' : 'is-assistant']">
-            {{ msg.content }}
-          </div>
-        </div>
-        <div v-if="loading" class="chat-row is-assistant">
-          <div class="chat-bubble is-assistant muted">Thinking...</div>
-        </div>
-      </div>
-
-      <form @submit="send" class="form-inline chat-input">
-        <input v-model="input" placeholder="Type a message..." :disabled="loading" class="form-input" />
-        <button type="submit" :disabled="loading" class="form-submit">Send</button>
-      </form>
-    </div>
-  </div>
-</template>
-`;
-}
-function aiChatPageSolid(ctx) {
-    const cssImport = `import '@/index.css'\n`;
-    return `${cssImport}import { createSignal, For, Show, onCleanup } from 'solid-js'
-
-interface Message {
-  role: 'user' | 'assistant'
-  content: string
-}
-
-export default function Page() {
-  const [messages, setMessages] = createSignal<Message[]>([])
-  const [input, setInput]       = createSignal('')
-  const [loading, setLoading]   = createSignal(false)
-  let scrollEl: HTMLDivElement | undefined
-
-  function scrollToBottom() {
-    setTimeout(() => scrollEl?.scrollTo(0, scrollEl.scrollHeight), 0)
-  }
-
-  async function send(e: Event) {
-    e.preventDefault()
-    if (!input().trim() || loading()) return
-
-    const userMsg: Message = { role: 'user', content: input() }
-    setMessages(prev => [...prev, userMsg])
-    setInput('')
-    setLoading(true)
-    scrollToBottom()
-
-    try {
-      const res = await fetch('/api/ai/chat', {
-        method:  'POST',
-        headers: { 'Content-Type': 'application/json' },
-        body:    JSON.stringify({ messages: [...messages()] }),
-      })
-      const json = await res.json() as { message: string }
-      setMessages(prev => [...prev, { role: 'assistant', content: json.message }])
-    } catch {
-      setMessages(prev => [...prev, { role: 'assistant', content: 'Something went wrong. Check your AI_PROVIDER and API key in .env.' }])
-    } finally {
-      setLoading(false)
-      scrollToBottom()
-    }
-  }
-
-  return (
-    <div class="chat-wrap">
-      <div class="chat-column">
-        <div class="chat-header">
-          <h1 class="heading-lg">AI Chat</h1>
-          <a href="/" class="auth-link muted">← Home</a>
-        </div>
-
-        <div ref={scrollEl} class="chat-log">
-          <Show when={messages().length === 0}>
-            <p class="empty-state">Send a message to start chatting.</p>
-          </Show>
-          <For each={messages()}>
-            {(msg) => (
-              <div class={\`chat-row \${msg.role === 'user' ? 'is-user' : 'is-assistant'}\`}>
-                <div class={\`chat-bubble \${msg.role === 'user' ? 'is-user' : 'is-assistant'}\`}>
-                  {msg.content}
-                </div>
-              </div>
-            )}
-          </For>
-          <Show when={loading()}>
-            <div class="chat-row is-assistant">
-              <div class="chat-bubble is-assistant muted">Thinking...</div>
-            </div>
-          </Show>
-        </div>
-
-        <form onSubmit={send} class="form-inline chat-input">
-          <input
-            value={input()}
-            onInput={e => setInput(e.currentTarget.value)}
-            placeholder="Type a message..."
-            disabled={loading()}
-            class="form-input"
-          />
-          <button type="submit" disabled={loading()} class="form-submit">
-            Send
-          </button>
-        </form>
-      </div>
-    </div>
-  )
-}
-`;
-}
-// ─── Demo pages (secondary frameworks) ─────────────────────
-function demoPageConfig(fw) {
-    switch (fw) {
-        case 'vue':
-            return `import type { Config } from 'vike/types'
-import vikeVue from 'vike-vue/config'
-
-export default {
-  extends: vikeVue,
-} satisfies Config
-`;
-        case 'solid':
-            return `import type { Config } from 'vike/types'
-import vikeSolid from 'vike-solid/config'
-
-export default {
-  extends: vikeSolid,
-} satisfies Config
-`;
-        default: // react
-            return `import type { Config } from 'vike/types'
-import vikeReact from 'vike-react/config'
-
-export default {
-  extends: vikeReact,
-} satisfies Config
-`;
-    }
-}
-function demoPage(fw, ctx) {
-    const { primary } = ctx;
-    switch (fw) {
-        case 'react':
-            return `export default function Page() {
-  return (
-    <div className="error-wrap">
-      <h1 className="heading-lg">Hello from React</h1>
-      <p className="muted">React demo page — running alongside ${primary}.</p>
-      <a href="/" className="auth-link muted">← Back to home</a>
-    </div>
-  )
-}
-`;
-        case 'vue':
-            return `<script setup lang="ts">
-import '@/index.css'
-</script>
-
-<template>
-  <div class="error-wrap">
-    <h1 class="heading-lg">Hello from Vue</h1>
-    <p class="muted">Vue demo page — running alongside ${primary}.</p>
-    <a href="/" class="auth-link muted">← Back to home</a>
-  </div>
-</template>
-`;
-        case 'solid':
-            return `import '@/index.css'
-
-export default function Page() {
-  return (
-    <div class="error-wrap">
-      <h1 class="heading-lg">Hello from Solid</h1>
-      <p class="muted">Solid demo page — running alongside ${primary}.</p>
-      <a href="/" class="auth-link muted">← Back to home</a>
-    </div>
-  )
-}
-`;
-    }
-}
-// ─── Demos ─────────────────────────────────────────────────
-function demosIndexView(ctx) {
-    const cards = [
-        {
-            title: 'Contact form',
-            desc: 'CSRF-protected form with Zod validation. Demonstrates getCsrfToken() and FormRequest-style error handling.',
-            href: '/demos/contact',
-            pkgs: '@rudderjs/middleware · @rudderjs/core',
-            show: true,
-        },
-        {
-            title: 'WebSocket chat',
-            desc: 'Real-time chat + presence using @rudderjs/broadcast — multi-channel pub/sub over a single WebSocket connection.',
-            href: '/demos/ws',
-            pkgs: '@rudderjs/broadcast',
-            show: ctx.packages.broadcast,
-        },
-        {
-            title: 'Collaborative editor',
-            desc: 'Yjs CRDT live document with awareness cursors. Open in two tabs to see real-time sync over @rudderjs/sync.',
-            href: '/demos/live',
-            pkgs: '@rudderjs/sync',
-            show: ctx.packages.sync,
-        },
-    ].filter(c => c.show);
-    const cardsJsx = cards.map(c => `        <a key="${c.href}" href="${c.href}" className="feature-card">
-          <h3 className="feature-title">${c.title}</h3>
-          <p className="feature-desc">${c.desc}</p>
-          <p className="feature-desc" style={{ fontSize: '0.7rem', opacity: 0.7 }}>${c.pkgs}</p>
-        </a>`).join('\n');
-    return `import '@/index.css'
-
-// Override the id-derived URL ('/demos/index') so SPA nav matches the controller ('/demos').
-export const route = '/demos'
-
-export default function DemosIndex() {
-  return (
-    <div className="page">
-      <nav className="page-nav">
-        <div className="brand">
-          <span className="brand-dot" />
-          RudderJS
-        </div>
-        <div className="nav-right">
-          <a href="/" className="nav-link">Home</a>
-        </div>
-      </nav>
-
-      <section className="hero">
-        <h1 className="hero-title">Demos</h1>
-        <p className="hero-lead">
-          Small, focused examples of what the framework can do. Each one is a single
-          controller returning <code className="inline-code">view('demos.&lt;name&gt;')</code>.
-        </p>
-      </section>
-
-      <section className="feature-section">
-        <div className="feature-grid">
-${cardsJsx}
-        </div>
-      </section>
-    </div>
-  )
-}
-`;
-}
-function demosContactView(ctx) {
-    // CSRF is only enforced when @rudderjs/auth is installed (CsrfMiddleware
-    // wraps the /api/contact route in routes/api.ts). Without auth, the
-    // unprotected form just succeeds.
-    const sendsCsrf = ctx.packages.auth ? 'true' : 'false';
-    return `import '@/index.css'
-import { useState } from 'react'
-import { getCsrfToken } from '@rudderjs/middleware'
-
-interface FormFields { name: string; email: string; message: string }
-interface FormErrors { name?: string; email?: string; message?: string }
-
-export default function ContactDemo() {
-  const [fields, setFields] = useState<FormFields>({ name: '', email: '', message: '' })
-  const [errors, setErrors] = useState<FormErrors>({})
-  const [status, setStatus] = useState<'idle' | 'loading' | 'success' | 'error'>('idle')
-  const [message, setMessage] = useState('')
-
-  function setField(key: keyof FormFields, value: string) {
-    setFields(f => ({ ...f, [key]: value }))
-    if (errors[key]) setErrors(e => ({ ...e, [key]: undefined }))
-  }
-
-  async function submit(e: React.FormEvent) {
-    e.preventDefault()
-    setStatus('loading')
-    setErrors({})
-
-    const headers: Record<string, string> = { 'Content-Type': 'application/json' }
-    if (${sendsCsrf}) headers['X-CSRF-Token'] = getCsrfToken()
-
-    const res  = await fetch('/api/contact', {
-      method:  'POST',
-      headers,
-      body:    JSON.stringify(fields),
-    })
-    const data = await res.json() as { ok?: boolean; message?: string; errors?: FormErrors }
-
-    if (res.ok) {
-      setStatus('success')
-      setMessage(data.message ?? 'Thanks!')
-      setFields({ name: '', email: '', message: '' })
-    } else if (res.status === 422) {
-      setStatus('error')
-      setErrors(data.errors ?? {})
-    } else {
-      setStatus('error')
-      setMessage(\`\${res.status} — \${data.message ?? 'Request failed.'}\`)
-    }
-  }
-
-  return (
-    <div className="page">
-      <nav className="page-nav">
-        <div className="brand">
-          <span className="brand-dot" />
-          RudderJS
-        </div>
-        <div className="nav-right">
-          <a href="/demos" className="nav-link">← Demos</a>
-        </div>
-      </nav>
-
-      <section className="hero">
-        <h1 className="hero-title">Contact</h1>
-        <p className="hero-lead">
-          POSTs to <code className="inline-code">/api/contact</code>${ctx.packages.auth
-        ? ' with an X-CSRF-Token header.'
-        : '. Add @rudderjs/auth to require CSRF.'}{' '}
-          Server-side validated with Zod.
-        </p>
-      </section>
-
-      <section className="feature-section" style={{ maxWidth: '32rem', margin: '0 auto' }}>
-        <form onSubmit={submit} className="form-card">
-          <div>
-            <label className="form-label" htmlFor="name">Name</label>
-            <input id="name" className="form-input" value={fields.name}
-              onChange={e => setField('name', e.target.value)} />
-            {errors.name && <p className="form-error">{errors.name}</p>}
-          </div>
-          <div>
-            <label className="form-label" htmlFor="email">Email</label>
-            <input id="email" type="email" className="form-input" value={fields.email}
-              onChange={e => setField('email', e.target.value)} />
-            {errors.email && <p className="form-error">{errors.email}</p>}
-          </div>
-          <div>
-            <label className="form-label" htmlFor="message">Message</label>
-            <textarea id="message" rows={4} className="form-input" value={fields.message}
-              onChange={e => setField('message', e.target.value)} />
-            {errors.message && <p className="form-error">{errors.message}</p>}
-          </div>
-          <button type="submit" className="form-submit" disabled={status === 'loading'}>
-            {status === 'loading' ? 'Sending…' : 'Send message'}
-          </button>
-          {status === 'success' && <p className="form-success">{message}</p>}
-          {status === 'error' && message && <p className="form-error">{message}</p>}
-        </form>
-      </section>
-    </div>
-  )
-}
-`;
-}
-function demosWsView() {
-    return `import '@/index.css'
-import { useEffect, useRef, useState } from 'react'
-import { BKSocket } from '@/BKSocket'
-
-type Message = { user: string; text: string; ts: number }
-type Member  = { id: string; name: string }
-
-function getWsUrl() {
-  if (typeof window === 'undefined') return ''
-  return \`ws://\${window.location.host}/ws\`
-}
-
-export default function WsDemo() {
-  const [me, setMe]               = useState('')
-  const socketRef                 = useRef<BKSocket | null>(null)
-  const [connected, setConnected] = useState(false)
-  const [messages,  setMessages]  = useState<Message[]>([])
-  const [members,   setMembers]   = useState<Member[]>([])
-  const [input,     setInput]     = useState('')
-
-  useEffect(() => { setMe(\`User-\${Math.floor(Math.random() * 1000)}\`) }, [])
-
-  useEffect(() => {
-    if (!me) return
-    const socket = new BKSocket(getWsUrl())
-    socketRef.current = socket
-
-    const chat = socket.channel('chat')
-    chat.on('message', d => setMessages(prev => [...prev, d as Message]))
-
-    const room = socket.presence('lobby', 'demo-token')
-    room.on('presence.members', d => {
-      setMembers(d as Member[])
-      setConnected(true)
-    })
-    room.on('presence.joined', d => {
-      const u = d as Member
-      setMembers(prev => [...prev.filter(m => m.id !== u.id), u])
-    })
-    room.on('presence.left', d => {
-      const id = (d as { id: string }).id
-      setMembers(prev => prev.filter(m => m.id !== id))
-    })
-
-    return () => { socket.close() }
-  }, [me])
-
-  async function send() {
-    if (!input.trim()) return
-    await fetch('/api/ws/broadcast', {
-      method:  'POST',
-      headers: { 'Content-Type': 'application/json' },
-      body:    JSON.stringify({ user: me, text: input.trim() }),
-    })
-    setInput('')
-  }
-
-  return (
-    <div className="page">
-      <nav className="page-nav">
-        <div className="brand">
-          <span className="brand-dot" />
-          RudderJS
-        </div>
-        <div className="nav-right">
-          <a href="/demos" className="nav-link">← Demos</a>
-        </div>
-      </nav>
-
-      <section className="hero">
-        <h1 className="hero-title">WebSocket chat</h1>
-        <p className="hero-lead">
-          Pub/sub + presence over a single WebSocket. Connected as <strong>{me}</strong>.{' '}
-          {connected ? '🟢 connected' : '⚪ connecting…'}
-        </p>
-      </section>
-
-      <section className="feature-section" style={{ maxWidth: '40rem', margin: '0 auto' }}>
-        <p className="form-label">Members ({members.length})</p>
-        <ul style={{ display: 'flex', gap: '0.5rem', flexWrap: 'wrap', marginBottom: '1rem' }}>
-          {members.map(m => (
-            <li key={m.id} className="inline-code">{m.name}</li>
-          ))}
-        </ul>
-
-        <div style={{ minHeight: '12rem', marginBottom: '1rem' }}>
-          {messages.map((m, i) => (
-            <p key={i} style={{ margin: '0.25rem 0' }}>
-              <strong>{m.user}:</strong> {m.text}
-            </p>
-          ))}
-        </div>
-
-        <form onSubmit={e => { e.preventDefault(); void send() }} style={{ display: 'flex', gap: '0.5rem' }}>
-          <input className="form-input" value={input}
-            onChange={e => setInput(e.target.value)} placeholder="Say something…" />
-          <button type="submit" className="form-submit" style={{ width: 'auto' }}>Send</button>
-        </form>
-      </section>
-    </div>
-  )
-}
-`;
-}
-function demosLiveView() {
-    return `import '@/index.css'
-import { useEffect, useRef, useState } from 'react'
-import * as Y from 'yjs'
-import { WebsocketProvider } from 'y-websocket'
-
-function getWsUrl() {
-  if (typeof window === 'undefined') return ''
-  return \`ws://\${window.location.host}/ws-sync\`
-}
-
-export default function LiveDemo() {
-  const [connected, setConnected] = useState(false)
-  const [text,      setText]      = useState('')
-  const [users,     setUsers]     = useState<{ name: string; color: string }[]>([])
-  const [myName]                  = useState(() => \`User-\${Math.floor(Math.random() * 1000)}\`)
-  const [myColor]                 = useState(() => \`hsl(\${Math.floor(Math.random() * 360)}, 70%, 50%)\`)
-
-  const docRef      = useRef<Y.Doc | null>(null)
-  const provRef     = useRef<WebsocketProvider | null>(null)
-  const textareaRef = useRef<HTMLTextAreaElement>(null)
-
-  useEffect(() => {
-    const doc      = new Y.Doc()
-    const ytext    = doc.getText('content')
-    const provider = new WebsocketProvider(getWsUrl(), 'live-demo', doc)
-
-    docRef.current  = doc
-    provRef.current = provider
-
-    ytext.observe(() => setText(ytext.toString()))
-    provider.on('status', ({ status }: { status: string }) => setConnected(status === 'connected'))
-    provider.awareness.setLocalStateField('user', { name: myName, color: myColor })
-
-    const syncUsers = () => {
-      const states = [...provider.awareness.getStates().values()] as { user?: { name: string; color: string } }[]
-      setUsers(states.map(s => s.user).filter((u): u is { name: string; color: string } => Boolean(u)))
-    }
-    provider.awareness.on('change', syncUsers)
-    syncUsers()
-
-    return () => { provider.destroy(); doc.destroy() }
-  }, [myName, myColor])
-
-  function onChange(e: React.ChangeEvent<HTMLTextAreaElement>) {
-    const ytext = docRef.current?.getText('content')
-    if (!ytext) return
-    docRef.current?.transact(() => {
-      ytext.delete(0, ytext.length)
-      ytext.insert(0, e.target.value)
-    })
-  }
-
-  return (
-    <div className="page">
-      <nav className="page-nav">
-        <div className="brand">
-          <span className="brand-dot" />
-          RudderJS
-        </div>
-        <div className="nav-right">
-          <a href="/demos" className="nav-link">← Demos</a>
-        </div>
-      </nav>
-
-      <section className="hero">
-        <h1 className="hero-title">Collaborative editor</h1>
-        <p className="hero-lead">
-          Yjs CRDT over @rudderjs/sync. Open this page in two tabs to see real-time updates.{' '}
-          {connected ? '🟢 connected' : '⚪ connecting…'}
-        </p>
-      </section>
-
-      <section className="feature-section" style={{ maxWidth: '40rem', margin: '0 auto' }}>
-        <p className="form-label">Active users:</p>
-        <ul style={{ display: 'flex', gap: '0.5rem', flexWrap: 'wrap', marginBottom: '1rem' }}>
-          {users.map((u, i) => (
-            <li key={i} className="inline-code" style={{ borderLeft: \`3px solid \${u.color}\`, paddingLeft: '0.5rem' }}>
-              {u.name}
-            </li>
-          ))}
-        </ul>
-        <textarea
-          ref={textareaRef}
-          className="form-input"
-          rows={10}
-          value={text}
-          onChange={onChange}
-          placeholder="Start typing…"
-        />
-      </section>
-    </div>
-  )
-}
-`;
-}
-function bkSocketSource() {
-    return `// BKSocket — RudderJS WebSocket client
-//
-// Multiplexes channels and presence rooms over a single WebSocket connection.
-// Mirrors the API expected by @rudderjs/broadcast on the server.
-
-type Listener = (data: unknown) => void
-
-class Channel {
-  private listeners = new Map<string, Set<Listener>>()
-
-  constructor(
-    private readonly socket: BKSocket,
-    public readonly name: string,
-  ) {}
-
-  on(event: string, fn: Listener): this {
-    if (!this.listeners.has(event)) this.listeners.set(event, new Set())
-    this.listeners.get(event)!.add(fn)
-    return this
-  }
-
-  off(event: string, fn: Listener): this {
-    this.listeners.get(event)?.delete(fn)
-    return this
-  }
-
-  /** @internal — invoked by BKSocket on incoming messages */
-  receive(event: string, data: unknown) {
-    this.listeners.get(event)?.forEach(fn => fn(data))
-  }
-
-  /** @internal — invoked by BKSocket to (re)subscribe after connect */
-  subscribe() {
-    this.socket.send({ type: 'subscribe', channel: this.name })
-  }
-}
-
-class Presence extends Channel {
-  constructor(socket: BKSocket, name: string, private readonly token: string) {
-    super(socket, name)
-  }
-
-  override subscribe() {
-    this.socket.send({ type: 'presence.join', channel: this.name, token: this.token })
-  }
-}
-
-export class BKSocket {
-  private ws?: WebSocket
-  private readonly channels = new Map<string, Channel>()
-  private reconnectTimer?: ReturnType<typeof setTimeout>
-
-  constructor(private readonly url: string) {
-    this.connect()
-  }
-
-  channel(name: string): Channel {
-    let ch = this.channels.get(name)
-    if (!ch) { ch = new Channel(this, name); this.channels.set(name, ch); ch.subscribe() }
-    return ch
-  }
-
-  presence(name: string, token: string): Channel {
-    let ch = this.channels.get(name)
-    if (!ch) { ch = new Presence(this, name, token); this.channels.set(name, ch); ch.subscribe() }
-    return ch
-  }
-
-  send(payload: Record<string, unknown>) {
-    if (this.ws?.readyState === WebSocket.OPEN) this.ws.send(JSON.stringify(payload))
-  }
-
-  close() {
-    if (this.reconnectTimer) clearTimeout(this.reconnectTimer)
-    this.ws?.close()
-  }
-
-  private connect() {
-    this.ws = new WebSocket(this.url)
-    this.ws.onopen = () => this.channels.forEach(ch => ch.subscribe())
-    this.ws.onmessage = (e) => {
-      try {
-        const msg = JSON.parse(e.data as string) as { channel?: string; event?: string; data?: unknown }
-        if (msg.channel && msg.event) this.channels.get(msg.channel)?.receive(msg.event, msg.data)
-      } catch { /* ignore non-JSON frames */ }
-    }
-    this.ws.onclose = () => {
-      this.reconnectTimer = setTimeout(() => this.connect(), 1500)
-    }
-  }
-}
-`;
+export function shouldScaffoldDemo(ctx, name) {
+    if (ctx.primary !== 'react')
+        return false;
+    if (!ctx.demos.includes(name))
+        return false;
+    // Defense-in-depth: even if a stale demo id slipped through (e.g. user kept it
+    // checked while unticking the underlying package), filter by registry rules.
+    const allowed = availableDemos(ctx.orm, ctx.packages).map(d => d.value);
+    return allowed.includes(name);
+}
+export function shouldScaffoldAnyDemo(ctx) {
+    if (ctx.primary !== 'react')
+        return false;
+    return ctx.demos.some(name => shouldScaffoldDemo(ctx, name));
 }
 //# sourceMappingURL=templates.js.map