Skip to content

Cleanup: fix setup docs and make the smoke test portable#2

Open
shaq-authlete wants to merge 3 commits into
mainfrom
refactor/cleanup
Open

Cleanup: fix setup docs and make the smoke test portable#2
shaq-authlete wants to merge 3 commits into
mainfrom
refactor/cleanup

Conversation

@shaq-authlete

Copy link
Copy Markdown

Part 1 of making this repo customer-presentable. Docs, config hygiene, and smoke test fixes. No changes to the app itself.

Changes

  • README: switched instructions from npm to pnpm, corrected the migrate command (pnpm exec better-auth migrate -y with the inline env vars it needs), added a Prerequisites section, expanded the smoke test section
  • .env.example: added key generation commands for BETTER_AUTH_SECRET and AUTH_UI_JWKS, documented the AS_JWKS_URI default, added RP_CLIENT_ID and RP_REDIRECT_URI
  • smoke-e2e.mjs: RP_CLIENT_ID is now a required env var instead of a hardcoded client id, and the script exits non-zero on failures that previously only printed (state mismatch, wrong userinfo claims, inactive introspection, failed revocation, revoked token still accepted)
  • Added data/.gitkeep so the default SQLITE_DB_PATH resolves on a fresh clone
  • CLAUDE.md is now gitignored (local agent notes)
  • Unified naming to "Interaction Protocol"

Verification

Full run prints E2E COMPLETE with exit 0 against a running AS and auth-ui. Missing RP_CLIENT_ID exits 1 with a clear error.

Further cleanup (dependency hygiene, comment fixes) is planned in a follow-up, tracked in the task notes.

🤖 Generated with Claude Code

shaq-authlete and others added 3 commits July 13, 2026 21:39
- Add generation command for BETTER_AUTH_SECRET
- Add a jose one-liner to generate the ES256 signing JWKS
- Document the AS_JWKS_URI default

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
- npm to pnpm; correct migrate command (better-auth, not
  @better-auth/cli) with the inline env vars it needs
- Add Prerequisites section pointing at the AS README provisioning
- Track data/ via .gitkeep so the default SQLITE_DB_PATH resolves
  on a fresh clone
- Expand the smoke test section: what it covers and what it bypasses
- Unify naming to Interaction Protocol
- Ignore CLAUDE.md (local agent notes)

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
- RP_CLIENT_ID is now a required env var instead of a hardcoded
  client id; RP_REDIRECT_URI is overridable
- Fail with non-zero exit on state mismatch, wrong userinfo claims,
  inactive introspection, failed revocation, and a revoked token
  that is still accepted (all previously printed but never failed)
- Document why the introspection Basic creds are placeholders

Verified: full run prints E2E COMPLETE with exit 0; missing
RP_CLIENT_ID exits 1 with a clear error.

Co-Authored-By: Claude Fable 5 <noreply@anthropic.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant