v0.7.5 - Authentication & Session Tracking

Features

Authentication System

• Add single-user authentication system using Better Auth
• First-run setup flow for admin account creation
• Pre-configured admin support via environment variables (ADMIN_EMAIL, ADMIN_PASSWORD)
• Password reset via ADMIN_PASSWORD_RESET=true flag
• Multiple authentication methods:
  • Email/password
  • Passkeys (WebAuthn)
  • OAuth (GitHub, Google, Discord)

Auth Infrastructure

• Better Auth integration with secure session management
• Auth middleware for protected API routes
• Auth tables in database (user, session, account, verification, passkey)
• Auth context and hooks for React
• Login, Register, and Setup pages
• Account settings with passkey management
• Environment variable validation for auth configuration

Session Management

• Session status tracking for UI state during async operations
• Set session status to "busy"/"idle" during prompt, shell, and refresh operations
• Clean up console.error usage in refresh message handler

Configuration

• AUTH_SECRET support for production deployments
• Docker entrypoint auto-generates AUTH_SECRET for development
• OAuth provider configuration (GitHub, Google, Discord)
• Passkey/WebAuthn configuration (RP ID, name, origin)

Documentation

• Authentication setup guide in README
• Auth configuration examples for all methods
• CHANGELOG update for v0.7.5

Updates

• Updated pnpm from 9.15.0 to 10.28.1
• Version bump to 0.7.5

Breaking Changes

None - This is a feature release with backward-compatible additions.

Migration

For existing instances without authentication, you'll be prompted to set up an admin account on first launch. For production, add AUTH_SECRET to your environment configuration.