Documentation

ho-starter-kit docs

Primary reference for setup, usage, security defaults, and contribution workflow.

What is included
Core capabilities included in every generated project.
TanStack Start app shell with typed routing and SSR
Approval-first auth model (member/admin/super-admin)
Admin tools: user approval, role management, password reset flows
Email logging persisted in DB by default (provider optional)
SQLite + Postgres migration scripts and smoke checks
Route/security E2E coverage and release audit pipeline
Auth model
Approval-first onboarding with role-gated access.
First registered user becomes super-admin and is auto-approved.
Later registrations are member users and require admin approval.
Unapproved users are redirected to /awaiting-approval for protected areas.
Password reset and forced-password-change flows are included.
Email and audit behavior
Outbound emails are logged in DB even when no external provider is configured.

Use EMAIL_PROVIDER=null for local/dev. This keeps flows testable without real delivery. Set EMAIL_PROVIDER=resend, RESEND_API_KEY, and EMAIL_FROM when you want real sends.

SELECT id, "to", subject, status, provider, created_at
FROM email_logs
ORDER BY id DESC
LIMIT 50;