A feature-rich web application starter template built with Astro, Svelte, TailwindCSS, Better Auth, Drizzle ORM.
- Astro - Fast, modern web framework
- Svelte - UI component library used for component hydration
- TailwindCSS - Utility-first CSS framework v4
- With Typography plugin for elegant content styling
- Shadcn UI - UI component library
- Better Auth - Authentication system
- Drizzle ORM - TypeScript ORM
- Resend - Modern email API for sending emails
- Hono - Lightweight, ultrafast web framework for API endpoints
- Server-side Rendering with Astro's Cloudflare adapter
- Type Safety with TypeScript
- User Authentication flow with Better Auth
- Database Integration with Drizzle ORM and Cloudflare D1
- Modern UI with TailwindCSS v4
- Email Functionality with Resend API and templating using React Email
- Development Tools: Prettier for code formatting
- API Layer: Built with Hono for efficient request handling
- Internationalization: Type-safe i18n with consistent naming conventions and locale-aware URLs
pnpm install
cp .dev.vars.example .dev.vars # For local development secrets
pnpm run dev- Copy
.dev.vars.exampleto.dev.varsand add secrets likeBETTER_AUTH_SECRETandRESEND_API_KEYfor local development. - Create a KV namespace for sessions using
pnpm wrangler kv namespace create "SESSION"and add the binding towrangler.jsonc. - Update
wrangler.jsoncwith your project name, D1 database details, and variables likeBETTER_AUTH_BASE_URLandSEND_EMAIL_FROM. - Update project name in
package.json - Update database schema.
- Create a D1 database in Cloudflare and add its
binding,database_name, anddatabase_idtowrangler.jsonc. - Run
pnpm db:init:localto initialize the local database. - Run
pnpm db:init:prodto initialize the production database. - Regenerate migrations using
pnpm db:generate. - Set
BETTER_AUTH_SECRETsecret usingpnpm wrangler secret put BETTER_AUTH_SECRETfor production. - Set
RESEND_API_KEYsecret usingpnpm wrangler secret put RESEND_API_KEYfor production. - Require email verification on sign up.
| Command | Action |
|---|---|
pnpm install |
Installs dependencies |
pnpm dev |
Starts local dev server with DB setup |
pnpm build |
Build your production site with DB setup |
pnpm astro |
Run Astro CLI commands |
pnpm db:generate |
Generate Drizzle migrations |
pnpm d1:migrate:local |
Apply migrations locally |
pnpm d1:migrate:prod |
Apply migrations to production |
pnpm d1:studio:local |
Run Drizzle Studio for local development |
pnpm preview-email |
Start email template preview server |
This project comes with a script that can help you bootstrap a new project. The script uses Claude Code to rename the project, update the README, and update the project name in the code.
To use the script, run node scripts/bootstrap.js <project-name>.
Important
The script assumes you have a working installation of Claude Code.
if you don't have or rather use another tool, you can run the script with the --prompt-only flag to get the prompt and apply it manually in your favorite AI tooling.
This template uses Better Auth for authentication. And supports these features out of the box:
- Sign Up: Users can create an account with name, email, and password
- Sign In: Users can log in with their email and password
- Protected Routes: The dashboard is protected and requires authentication
- Sign Out: Users can log out from their account
- Email Verification: Users can verify their email address
- Password Reset: Users can reset their password
- Account Deletion: Users can delete their account
Important
By default, email verification is not required to sign in. You may want to change this behavior in src/lib/auth.ts.
You must set the BETTER_AUTH_SECRET secret in your production environment (e.g., Cloudflare Pages). If this variable is not set, Better Auth will throw an error.
For local development, you can add this variable to the .dev.vars file (copied from .dev.vars.example).
You can generate a secure secret using OpenSSL:
openssl rand -base64 32Copy the generated string. Then, add it as a secret named BETTER_AUTH_SECRET using wrangler CLI for your production environment:
pnpm wrangler secret put BETTER_AUTH_SECRETAlso configure BETTER_AUTH_BASE_URL in your wrangler.jsonc file under the vars section for production.
This template uses Resend for email functionality.
During development, emails are sent via SMTP to Ethereal if RESEND_API_KEY is not set in .dev.vars.
To set up Resend for production, create an account and set the RESEND_API_KEY secret using wrangler CLI:
pnpm wrangler secret put RESEND_API_KEYFor local development, add RESEND_API_KEY to your .dev.vars file if you want to use Resend.
The sender email address (SEND_EMAIL_FROM) should be configured in your wrangler.jsonc file under the vars section for production.
The Astro Sessions API allows you to easily store user data between requests. This can be used for things like user data and preferences, shopping carts, and authentication credentials. Unlike cookie storage, there are no size limits on the data, and it can be restored on different devices.
Before using sessions, you need to create a KV namespace to store the data and configure a KV binding in your Wrangler config file.
pnpm wrangler kv namespace create "SESSION" # default nameAdd the returned ID to wrangler.jsonc:
This template uses Drizzle ORM with Cloudflare D1 for a modern, type-safe, serverless SQL database.
- The schema is defined using Drizzle's sqliteTable helpers for tables.
- The Drizzle config (
drizzle.config.ts) uses the local D1 database specified in.wrangler/state/v3/d1for Drizzle Kit commands likedb:generate. It does not require separate Cloudflare credentials for local development.
The database schema includes:
- Users
- Sessions
- Accounts
- Verification tokens
To create a D1 database for your project:
# Initialize the local database for development
pnpm db:init:local
# Create a D1 database in Cloudflare for production
pnpm db:init:prod
# After creating the database, you'll receive output with the database_id
# Add this to your wrangler.jsonc as shown in the example belowExample wrangler.jsonc configuration:
"d1_databases": [
{
"binding": "DB", // Must match preview_database_id
"database_name": "your-project-name",
"database_id": "your-d1-database-id", // The ID from the create command
"migrations_dir": "./drizzle/migrations",
"preview_database_id": "DB" // Required for Pages local development
}
]- Run
pnpm db:generateto generate migrations from your schema. - Run
pnpm d1:migrate:localto apply them locally. - Run
pnpm d1:migrate:prodto apply them to production.
See the checklist above for more details.
Note: You need to manually apply the migrations to your production database after every schema change.
You can use the Drizzle Studio to view and edit your local database data.
pnpm d1:studio:localHere's an example of how to query the database using Drizzle ORM:
import {createDrizzle} from "@/db";
const db = createDrizzle(d1); // You can obtain and instance of D1Database from the context using the DB binding.
const userData = await db.select().from(user).where(eq(user.id, userId));
// Create a new user
const newUser = await db
.insert(user)
.values({
name: "John Doe",
email: "[email protected]"
// Other user fields
})
.returning();
// Join example: Fetch user with their active sessions
const userWithSessions = await db
.select({
id: user.id,
name: user.name,
sessionId: session.id
})
.from(user)
.leftJoin(session, eq(session.userId, user.id))
.where(eq(user.id, userId));The application includes built-in email functionality using Resend (if RESEND_API_KEY is set via wrangler secrets or .dev.vars) with fallback to SMTP/Ethereal for development.
For production, configure the following:
- Set the
RESEND_API_KEYsecret usingpnpm wrangler secret put RESEND_API_KEY. - Set the
SEND_EMAIL_FROMvariable inwrangler.jsoncundervars.
For local development:
- Add
RESEND_API_KEYto your.dev.varsfile. If omitted, the app will fall back to using Ethereal via SMTP. - The
SEND_EMAIL_FROMvariable fromwrangler.jsoncwill be used if available duringwrangler dev.
Email templates are built with React Email for improved type safety, maintainability, and design consistency. Templates are stored in src/components/email/:
WelcomeEmail.tsx- Template for welcome emailsCustomEmail.tsx- Template for custom message emailsBaseLayout.tsx- Reusable email layout componentEmailVerification.tsx- Template for email verificationPasswordReset.tsx- Template for password reset emailsChangeEmailVerification.tsx- Template for email change verificationAccountDeleted.tsx- Template for account deletion confirmation
import {sendEmail} from "@/actions/email";
// Send a welcome email
await sendEmail({
to: "[email protected]",
subject: "Welcome to Astro Starter!",
template: {name: "welcome", params: {name: "John"}}
});
// Send a custom email
await sendEmail({
to: "[email protected]",
subject: "Important Information",
template: {name: "custom", params: {html: "<p>Your custom message here</p>"}}
});Visit /email-demo to try the email functionality. In development, emails are sent to Ethereal (a test SMTP service) and you'll see preview links in the console.
To preview emails locally, run:
pnpm preview-emailThis command starts a local email viewer using the templates from the src/components/email directory.
The API is built using Hono and comes with a hybrid JWT and refresh token authentication system, primarily for mobile applications. The API endpoints are organized in the src/lib/hono/routes directory.
Key features:
- JWT-based authentication
- Route protection using middlewares
- Structured response handling
- Integration with the Drizzle ORM database
API routes include:
- Authentication routes (
/api/auth/*) - User account management
- JWT refresh and token management
sequenceDiagram
participant Client
participant API
participant JWTMiddleware
participant JWKSCache
participant AuthPlugin
participant DB
Client->>API: POST /api/auth/v1/sign-in (with Basic Auth)
API->>AuthPlugin: Validate credentials
AuthPlugin->>DB: Fetch user, verify password
AuthPlugin->>DB: Create session (refresh token)
AuthPlugin->>JWKSCache: Get JWKS for JWT signing
AuthPlugin-->>API: Return access token, refresh token, user info
API-->>Client: Respond with tokens and user
Client->>API: POST /api/auth-tokens/refresh (with refresh token)
API->>AuthPlugin: Verify refresh token
AuthPlugin->>DB: Lookup session
AuthPlugin->>JWKSCache: Get JWKS for JWT signing
AuthPlugin-->>API: Return new access token (and possibly new refresh token)
API-->>Client: Respond with new tokens
Client->>API: GET /api/account/v1/profile (with JWT)
API->>JWTMiddleware: Extract and verify JWT
JWTMiddleware->>JWKSCache: Get JWKS
JWTMiddleware-->>API: Attach user to context
API-->>Client: Respond with user profile
Client->>API: POST /api/auth-tokens/revoke (with refresh token)
API->>AuthPlugin: Revoke refresh token
AuthPlugin->>DB: Delete session
AuthPlugin-->>API: Respond success
API-->>Client: Respond with revocation confirmation
This template is configured to deploy to Cloudflare Pages with D1 Database and KV storage.
For local development, the template uses Wrangler to emulate Cloudflare's environment. Use pnpm dev which runs wrangler dev. Environment variables for local development can be placed in .dev.vars. Secrets like API keys should generally be kept out of version control. The platformProxy option in the Astro config makes this seamless.
To deploy to Cloudflare Workers with static assets:
- Create a new Workers project in the Cloudflare dashboard
- Link it to your GitHub repository
- Configure the build command:
pnpm build - Configure production environment variables and secrets (like
BETTER_AUTH_SECRET,RESEND_API_KEY) in the Pages dashboard settings. - Migrate the production database.
- Deploy!
Note
Cloudflare Pages is not supported for this project.
Attempts to deploy end up in a [ERROR] Error: No such module "node:os". error.
This could be temporary, but as of 2025-05-04, it is not supported.
This project uses TailwindCSS for styling.
The shadcn theme is defined in src/styles.css.
You can generate a new theme using your favorite tool (example) then copy-paste the variables.