Features
Authentication System
- Add single-user authentication system using Better Auth
- First-run setup flow for admin account creation
- Pre-configured admin support via environment variables (
ADMIN_EMAIL,ADMIN_PASSWORD) - Password reset via
ADMIN_PASSWORD_RESET=trueflag - Multiple authentication methods:
- Email/password
- Passkeys (WebAuthn)
- OAuth (GitHub, Google, Discord)
Auth Infrastructure
- Better Auth integration with secure session management
- Auth middleware for protected API routes
- Auth tables in database (user, session, account, verification, passkey)
- Auth context and hooks for React
- Login, Register, and Setup pages
- Account settings with passkey management
- Environment variable validation for auth configuration
Session Management
- Session status tracking for UI state during async operations
- Set session status to "busy"/"idle" during prompt, shell, and refresh operations
- Clean up console.error usage in refresh message handler
Configuration
- AUTH_SECRET support for production deployments
- Docker entrypoint auto-generates AUTH_SECRET for development
- OAuth provider configuration (GitHub, Google, Discord)
- Passkey/WebAuthn configuration (RP ID, name, origin)
Documentation
- Authentication setup guide in README
- Auth configuration examples for all methods
- CHANGELOG update for v0.7.5
Updates
- Updated pnpm from 9.15.0 to 10.28.1
- Version bump to 0.7.5
Breaking Changes
None - This is a feature release with backward-compatible additions.
Migration
For existing instances without authentication, you'll be prompted to set up an admin account on first launch. For production, add AUTH_SECRET to your environment configuration.