A TanStack Start + better-auth admin starter with Drizzle ORM, tRPC, React Aria.
Report Bug
·
Request Feature
A @tanstack/react-start + better-auth admin starter, with drizzle-orm, tRPC, react-aria-components.
This project is built with the better-auth framework, using its admin and organizations plugins as a starting point for user, organization, team and invitation management. While being fairly complete, it provides basic building blocks that can be customized to fit different needs.
This setup is built for flexibility, allowing you to use it as an admin starter for an app or extend it into a multi-tenancy user management system, depending on your needs.
I've kept this as minimal and unopinionated as possible, relying primarily on the built-in functionalities provided by the following packages:
@tanstack/react-startbetter-authdrizzle-ormtRPC@tanstack/react-formreact-aria-components
Check out kolm-start, for a @tanstack/react-start starter with tRPC, drizzle-orm, better-auth and tailwindcss.
For a version with @radix-ui/themes, check out the radix-themes branch.
Check out the user-management-only branch for a version without the better-auth organization plugin implemented.
npm install npm@latest -g-
Clone the repo, or use the template
git clone https://github.com/jellekuipers/kolm-start-admin.git
-
Change git remote url to avoid accidental pushes to base project
git remote set-url origin github_username/repo_name git remote -v # confirm the changes -
Install NPM packages
npm install
-
Connect to your database in your
.envDATABASE_URL= BETTER_AUTH_URL=
-
Initialize database
npm run db:push
-
(optional in development) Seed the database with an admin user
npm run db:seed
-
(optional in development) Seed the database with fake users
npm run db:seed:dev
-
Start the dev server
npm run dev
In app.config.ts add the following lines:
export default defineConfig({
server: {
preset: "node-server",
+ routeRules: {
+ "/api/**": {
+ cors: true,
+ headers: {
+ "access-control-allow-methods": "GET, POST",
+ "access-control-allow-credentials": "true",
+ },
+ },
+ },
},
vite: {
plugins: [Add the external clients to trustedOrigins in app/lib/auth.ts:
emailDomainName: "kolm.start",
}),
],
+ trustedOrigins: ["http://localhost:3001"],
});To demonstrate role-based authentication, only users with the admin role (not the regular user role) can sign in. If you want to allow regular users to access the dashboard, you’ll need to make the following adjustments:
- In
app/routes/_dashboard.tsxandapp/routes/auth.tsx, check only for an active session instead of enforcing the admin role. - In
app/routes/_dashboard/users.index.tsx, specifically check for the admin role to restrict access to user management. - In
app/routes/_dashboard/index.tsx, modify the statistics display by changing the procedure type inapp/trpc/router/stats.tstoprotectedProcedure, and remove the user count if it shouldn't be visible to non-admins.
In order to send invitation emails, add your email configuration to app/lib/auth.ts. The sendInvitationEmail functionality currently only logs the data that is available for sending invitation emails.
See the open issues for a full list of proposed features (and known issues).
Contributions are what make the open source community such an amazing place to learn, inspire, and create. Any contributions you make are greatly appreciated.
If you have a suggestion that would make this better, please fork the repo and create a pull request. You can also simply open an issue with the tag "enhancement". Don't forget to give the project a star! Thanks again!
- Fork the Project
- Create your Feature Branch (
git checkout -b feature/amazing-feature) - Commit your Changes (
git commit -m 'Add some amazing-feature') - Push to the Branch (
git push origin feature/amazing-feature) - Open a Pull Request