forked from nizzyabi/nizzy-starter
-
Notifications
You must be signed in to change notification settings - Fork 0
/
auth.ts
80 lines (65 loc) · 2.03 KB
/
auth.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
import NextAuth from "next-auth"
import { PrismaAdapter } from "@auth/prisma-adapter"
import { UserRole } from "@prisma/client"
import { getUserById } from "@/data/user"
import { db } from "@/lib/db"
import authConfig from "@/auth.config"
// auth
export const{
handlers: { GET, POST },
auth, // This auth thing helps us get user info such as for display certain content for them and specific data
signIn,
signOut,
} = NextAuth ({
// if there is an error, redirect to this page
pages: {
signIn: '/login',
error: '/error',
},
// events to get emailverfiied if the user used Oauth
events: {
async linkAccount({ user }) {
await db.user.update({
where: { id: user.id },
data: { emailVerified: new Date()}
})
}
},
// Callbacks allow us to customuzie the auth process such as who has access to what, get ID, and block users.
callbacks: {
// sign in
async signIn({ user, account}) {
// Allow OAuth without verification
if(account?.provider !== "credentials") return true;
// get exisiting user & restrict signin if they have not verified their email
const exisitingUser = await getUserById(user.id ?? '');
if(!exisitingUser?.emailVerified) return false;
return true;
},
// token & session
async session({ session, token }) {
// if they have an id (sub) and user has been created, return it
if (token.sub && session.user) {
session.user.id = token.sub;
}
// if they have a role and user has been created, return it
if(token.role && session.user) {
session.user.role = token.role as UserRole;
}
return session
},
// jwt
async jwt ({ token }) {
// fetch user
if(!token.sub) return token;
const exisitingUser = await getUserById(token.sub);
if(!exisitingUser) return token;
token.role = exisitingUser.role;
return token;
},
// session userId
},
adapter: PrismaAdapter(db),
session: { strategy: "jwt" },
...authConfig,
})