cal.pub0.org/pages/api/auth/[...nextauth].tsx

import NextAuth from "next-auth";
import Providers from "next-auth/providers";
import prisma from "../../../lib/prisma";
import { Session, verifyPassword } from "../../../lib/auth";

export default NextAuth({
  session: {
    jwt: true,
  },
  pages: {
    signIn: "/auth/login",
    signOut: "/auth/logout",
    error: "/auth/error", // Error code passed in query string as ?error=
  },
  providers: [
    Providers.Credentials({
      name: "Calendso",
      credentials: {
        email: { label: "Email Address", type: "email", placeholder: "john.doe@example.com" },
        password: { label: "Password", type: "password", placeholder: "Your super secure password" },
      },
      async authorize(credentials) {
        const user = await prisma.user.findUnique({
          where: {
            email: credentials.email,
          },
        });

        if (!user) {
          throw new Error("No user found");
        }
        if (!user.password) {
          throw new Error("Incorrect password");
        }

        const isValid = await verifyPassword(credentials.password, user.password);

        if (!isValid) {
          throw new Error("Incorrect password");
        }

        return {
          id: user.id,
          username: user.username,
          email: user.email,
          name: user.name,
        };
      },
    }),
  ],
  callbacks: {
    async jwt(token, user) {
      if (user) {
        token.id = user.id;
        token.username = user.username;
      }
      return token;
    },
    async session(session, token) {
      const calendsoSession: Session = {
        ...session,
        user: {
          ...session.user,
          id: token.id as number,
          username: token.username as string,
        },
      };
      return calendsoSession;
    },
  },
});
add type-safe `getSession()` (#486) * fix types for auth * implement safer to use `getSession` 2021-08-18 11:52:25 +00:00			`import NextAuth from "next-auth";`
			`import Providers from "next-auth/providers";`
			`import prisma from "../../../lib/prisma";`
fix bad auth commit (#487) 2021-08-18 12:15:22 +00:00			`import { Session, verifyPassword } from "../../../lib/auth";`
Add base admin interface 2021-03-24 15:03:04 +00:00
			`export default NextAuth({`
add type-safe `getSession()` (#486) * fix types for auth * implement safer to use `getSession` 2021-08-18 11:52:25 +00:00			`session: {`
			`jwt: true,`
			`},`
			`pages: {`
			`signIn: "/auth/login",`
			`signOut: "/auth/logout",`
			`error: "/auth/error", // Error code passed in query string as ?error=`
			`},`
			`providers: [`
			`Providers.Credentials({`
			`name: "Calendso",`
			`credentials: {`
			`email: { label: "Email Address", type: "email", placeholder: "john.doe@example.com" },`
			`password: { label: "Password", type: "password", placeholder: "Your super secure password" },`
			`},`
			`async authorize(credentials) {`
Remove image from session, add /api/me, update Avatar component (#493) * Remove image from session, add /api/me, update Avatar component * Fixed Avatar on Desktop * Added emailMd5 to session + load md5 from props on /settings/profile * Explicitly select which fields to expose in /api/me * Abstracted Gravatar, defaults avatar for /api/me, removed session dep from UserDropdown * Delete md5.js :) Co-authored-by: Bailey Pumfleet <pumfleet@hey.com> 2021-08-22 13:16:42 +00:00			`const user = await prisma.user.findUnique({`
add type-safe `getSession()` (#486) * fix types for auth * implement safer to use `getSession` 2021-08-18 11:52:25 +00:00			`where: {`
			`email: credentials.email,`
			`},`
			`});`
Add base admin interface 2021-03-24 15:03:04 +00:00
add type-safe `getSession()` (#486) * fix types for auth * implement safer to use `getSession` 2021-08-18 11:52:25 +00:00			`if (!user) {`
			`throw new Error("No user found");`
			`}`
			`if (!user.password) {`
			`throw new Error("Incorrect password");`
			`}`
Add base admin interface 2021-03-24 15:03:04 +00:00
add type-safe `getSession()` (#486) * fix types for auth * implement safer to use `getSession` 2021-08-18 11:52:25 +00:00			`const isValid = await verifyPassword(credentials.password, user.password);`
Add base admin interface 2021-03-24 15:03:04 +00:00
add type-safe `getSession()` (#486) * fix types for auth * implement safer to use `getSession` 2021-08-18 11:52:25 +00:00			`if (!isValid) {`
			`throw new Error("Incorrect password");`
			`}`
Add base admin interface 2021-03-24 15:03:04 +00:00
add type-safe `getSession()` (#486) * fix types for auth * implement safer to use `getSession` 2021-08-18 11:52:25 +00:00			`return {`
			`id: user.id,`
			`username: user.username,`
			`email: user.email,`
			`name: user.name,`
			`};`
			`},`
			`}),`
			`],`
			`callbacks: {`
			`async jwt(token, user) {`
Remove image from session, add /api/me, update Avatar component (#493) * Remove image from session, add /api/me, update Avatar component * Fixed Avatar on Desktop * Added emailMd5 to session + load md5 from props on /settings/profile * Explicitly select which fields to expose in /api/me * Abstracted Gravatar, defaults avatar for /api/me, removed session dep from UserDropdown * Delete md5.js :) Co-authored-by: Bailey Pumfleet <pumfleet@hey.com> 2021-08-22 13:16:42 +00:00			`if (user) {`
add type-safe `getSession()` (#486) * fix types for auth * implement safer to use `getSession` 2021-08-18 11:52:25 +00:00			`token.id = user.id;`
			`token.username = user.username;`
			`}`
			`return token;`
			`},`
			`async session(session, token) {`
fix bad auth commit (#487) 2021-08-18 12:15:22 +00:00			`const calendsoSession: Session = {`
add type-safe `getSession()` (#486) * fix types for auth * implement safer to use `getSession` 2021-08-18 11:52:25 +00:00			`...session,`
			`user: {`
			`...session.user,`
			`id: token.id as number,`
			`username: token.username as string,`
add links to public pages 2021-05-05 20:01:56 +00:00			`},`
add type-safe `getSession()` (#486) * fix types for auth * implement safer to use `getSession` 2021-08-18 11:52:25 +00:00			`};`
			`return calendsoSession;`
add links to public pages 2021-05-05 20:01:56 +00:00			`},`
add type-safe `getSession()` (#486) * fix types for auth * implement safer to use `getSession` 2021-08-18 11:52:25 +00:00			`},`
add links to public pages 2021-05-05 20:01:56 +00:00			`});`