-
Notifications
You must be signed in to change notification settings - Fork 2
Expand file tree
/
Copy pathauth.ts
More file actions
132 lines (119 loc) · 3.99 KB
/
auth.ts
File metadata and controls
132 lines (119 loc) · 3.99 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
// auth.ts or auth.js file in your project root or src directory
import NextAuth from "next-auth";
import Google from "next-auth/providers/google";
import type { User, Account } from "next-auth";
import { setSessionCookie } from "@/lib/auth/auth";
// console.log(process.env.GOOGLE_CLIENT_ID);
const authOptions = {
providers: [
Google({
clientId: process.env.GOOGLE_CLIENT_ID!,
clientSecret: process.env.GOOGLE_CLIENT_SECRET!,
authorization: {
params: {
prompt: "consent",
access_type: "offline",
response_type: "code"
}
}
}),
// e.g., GithubProvider, GoogleProvider, etc.
],
callbacks: {
async signIn({ user, account }: { user: User; account: Account | null }) {
if (account?.provider === "google") {
try {
const baseUrl = process.env.NEXTAUTH_URL || "https://flow-ai-ruddy.vercel.app"
// First try to login
const loginResponse = await fetch(`${baseUrl}/api/auth/google-login`, {
method: "POST",
headers: { "Content-Type": "application/json" },
body: JSON.stringify({
email: user.email,
name: user.name,
provider: "google",
}),
});
// If user doesn't exist, try to signup
if (loginResponse.status === 404) {
const signupResponse = await fetch(`${baseUrl}/api/auth/google-signup`, {
method: "POST",
headers: { "Content-Type": "application/json" },
body: JSON.stringify({
email: user.email,
name: user.name,
provider: "google",
}),
});
const signupData = await signupResponse.json();
if (!signupResponse.ok) {
return false;
}
// Set session cookie for new user
if (signupData.user) {
await setSessionCookie({
id: signupData.user.id,
email: signupData.user.email,
name: signupData.user.name,
role: signupData.user.role,
companyId: signupData.user.companyId,
});
}
// Return the onboarding URL for redirection
return signupData.redirectTo || "/onboarding";
}
const loginData = await loginResponse.json();
if (!loginResponse.ok) {
return false;
}
// Set session cookie for existing user
if (loginData.user) {
await setSessionCookie({
id: loginData.user.id,
email: loginData.user.email,
name: loginData.user.name,
role: loginData.user.role,
companyId: loginData.user.companyId,
});
}
return true;
} catch (error) {
console.error("Error during Google sign-in:", error);
return false;
}
}
return true;
},
async redirect({ url, baseUrl }: { url: string; baseUrl: string }) {
// Allows relative URLs
if (url.startsWith("/")) return `${baseUrl}${url}`
// Allows callback URLs on the same origin
else if (new URL(url).origin === baseUrl) return url
return baseUrl
},
async session({ session, token }: { session: any; token: any }) {
// Add custom session data
if (token) {
session.user.id = token.sub;
session.user.role = token.role;
session.user.companyId = token.companyId;
}
return session;
},
async jwt({ token, user, account }: { token: any; user: any; account: any }) {
// Add custom JWT data
if (user) {
token.sub = user.id;
token.role = user.role;
token.companyId = user.companyId;
}
return token;
}
},
pages: {
signIn: "/auth/login",
},
};
const handler = NextAuth(authOptions);
export { handler as GET, handler as POST };
export const { auth, signIn, signOut } = handler;