* 🐛 fix(email): use || instead of ?? to handle empty string from Dockerfile
Dockerfile sets empty string defaults for email env vars (SMTP_FROM,
SMTP_HOST, etc). The ?? operator doesn't treat empty strings as nullish,
causing email sending to fail with "Mail Account:" being empty.
Fixes#11757
* ✨ feat(workflow): add Claude migration support workflow
Add automated support for migration feedback issues (#11757, #11707):
- Auto-respond to new comments on migration issues
- Check for sensitive information leaks and warn users
- Read latest docs before responding
- Validate required information from issue description
- Match issues against documented FAQ solutions
* 🐛 fix(auth): add APP_URL trailing slash check
Detect and warn when APP_URL ends with a trailing slash, which causes
double slashes in redirect URLs (e.g., https://example.com//).
* ✨ feat(workflow): add Claude migration support workflow
Add automated support for migration feedback issues (#11757, #11707):
- Auto-respond to new comments on migration issues
- Check for sensitive information leaks and warn users
- Read latest docs before responding
- Validate required information from issue description
- Match issues against documented FAQ solutions
- Minimize resolved/success feedback comments
* 📝 docs: add browser cache clearing guide and improve migration workflow
- Add troubleshooting section for clearing browser site data after migration
- Exclude maintainers (tjx666, arvinxx) from auto-reply workflow
- Add references to auth.mdx and checkDeprecatedAuth.js in workflow
* 📝 docs: add migration internals technical documentation
- Explain users table vs accounts table relationship
- Document simple vs full migration principles
- Add troubleshooting guide with SQL examples
- Link from migration guides to new doc
* 🔧 chore: add clerk to betterauth migration scripts
* 🔧 chore: support node-postgres driver for migration scripts
* 🔥 chore: remove unnecessary chore scripts
* ♻️ refactor: reorganize migration scripts directory structure
* 📝 docs: add example column to email service configuration table
* 📝 docs: rename auth/better-auth to auth/providers
* 📝 docs: enhance email service configuration with detailed guides
* 📝 docs: add Clerk to Better Auth migration guide
- Add migration documentation (EN & CN) with step-by-step instructions
- Add dry-run environment variable for safe testing
- Enhance script output with success/failure emojis
- Add placeholder files for migration data directories
- Update .gitignore to exclude migration data files
* ✨ feat(auth): add set password option for social-only users
- Add isSocialOnly state to detect users without password
- Show Alert with "set password" link when magic link is disabled
- Update migration docs to clarify Magic Link vs non-Magic Link scenarios
- Add profile page password management info to docs
* ♻️ refactor: improve migration safety and sign-in link styling
- Add production mode confirmation prompt requiring "yes" input
- Use createStaticStyles for setPassword link styling with theme token
* 📝 docs: clarify migration script requirements and remove invalid links
* 📝 docs: add clerk migration guide link to legacy auth docs
* ♻️ refactor: enforce strict validation for clerk external accounts
* 📝 docs: add step to disable new user registration before migration
* 🐛 fix: handle missing .env file in migration scripts
* 📝 docs(self-hosting): add OAuth token exchange troubleshooting for Docker reverse proxy
Add troubleshooting section for OAuth authentication failures when using Docker deployment behind reverse proxy. The issue occurs when MIDDLEWARE_REWRITE_THROUGH_LOCAL=1 (default) rewrites OAuth token exchange URLs to localhost.
Fixes#10166
* ✨ feat(model-bank): add grok-4 model support
Add Grok 4 model to lobehub models with the following capabilities:
- Function call, reasoning, search, and vision support
- 256K context window
- Search implementation via params
- Add JWKS_KEY env variable with fallback to OIDC_JWKS_KEY
- Add signInternalJWT() and validateInternalJWT() in internalJwt.ts
- Use short-lived JWT (3s) with purpose claim to authenticate lambda → async calls
- Remove KEY_VAULTS_SECRET from Authorization header transmission
- Update OIDC provider to use JWKS_KEY from authEnv
- Update documentation for JWKS_KEY and desktop sync
* ✨ feat: add INTERNAL_APP_URL for server-to-server calls
Add INTERNAL_APP_URL environment variable to bypass CDN/proxy for internal operations like embedding and file chunking. Falls back to APP_URL if not set.
Co-authored-by: factory-droid[bot] <138933559+factory-droid[bot]@users.noreply.github.com>
* 📝 docs: add INTERNAL_APP_URL documentation
Add documentation for INTERNAL_APP_URL environment variable in:
- docker-compose .env.example
- Docker Compose deployment guide (English and Chinese)
Explains how to bypass CDN/proxy for server-to-server operations.
Co-authored-by: factory-droid[bot] <138933559+factory-droid[bot]@users.noreply.github.com>
* ✅ test: add tests for INTERNAL_APP_URL feature
Add comprehensive test coverage for INTERNAL_APP_URL:
- Test fallback behavior to APP_URL when INTERNAL_APP_URL is not set
- Test explicit INTERNAL_APP_URL configuration
- Test localhost bypass for CDN/proxy
- Test createAsyncServerClient using INTERNAL_APP_URL
- Test authentication headers in async calls
Co-authored-by: factory-droid[bot] <138933559+factory-droid[bot]@users.noreply.github.com>
---------
Co-authored-by: factory-droid[bot] <138933559+factory-droid[bot]@users.noreply.github.com>
* ✨ feat(config): add assetPrefix to nextConfig for environment variable support
* ✨ feat(docs): add NEXT_PUBLIC_ASSET_PREFIX environment variable for CDN support
