New accounts follow the same SSR auth pattern as the sample app, including cookie-based sessions for protected routes and clean redirects into the workspace.
Email and password validation in the UI.
Signup redirects into the dashboard when a session is created.
Email-confirmation flows stay supported without extra changes.