Spaces:
Running
Running
import NextAuth, { type DefaultSession } from 'next-auth'; | |
import GitHub from 'next-auth/providers/github'; | |
import Google from 'next-auth/providers/google'; | |
import { dbFindOrCreateUser } from './lib/db/functions'; | |
import { redirect } from 'next/navigation'; | |
declare module 'next-auth' { | |
interface Session { | |
user: { | |
/** The user's id. */ | |
id: string; | |
} & DefaultSession['user']; | |
} | |
} | |
const restrictedPath = ['/project']; | |
export const { | |
handlers: { GET, POST }, | |
auth, | |
} = NextAuth({ | |
providers: [ | |
GitHub, | |
Google({ | |
clientId: process.env.GOOGLE_CLIENT_ID!, | |
clientSecret: process.env.GOOGLE_SECRET!, | |
}), | |
], | |
callbacks: { | |
async signIn({ profile, user }) { | |
if (!profile) { | |
return false; | |
} | |
const { email, name, picture } = profile; | |
if (!email || !name) { | |
return false; | |
} | |
const dbUser = await dbFindOrCreateUser(email, name, picture); | |
if (dbUser) { | |
user.id = dbUser.id; | |
return true; | |
} | |
return false; | |
}, | |
async jwt({ token, profile, user }) { | |
if (profile) { | |
token.id = profile.id || profile.sub; | |
token.image = profile.avatar_url || profile.picture; | |
} | |
return token; | |
}, | |
async session({ session, token }) { | |
// TODO: this is temporary between we switch DB and make migration | |
// so also UI might still have session, DB might already have cleaned up | |
const email = session?.user?.email; | |
const name = session?.user?.name; | |
const avatar = session?.user?.image; | |
if (email && name) { | |
const dbUser = await dbFindOrCreateUser(email, name, avatar); | |
// put db user id into session | |
session.user.id = dbUser.id; | |
} | |
return session; | |
}, | |
authorized({ request, auth }) { | |
const isAdmin = !!auth?.user?.email?.endsWith('landing.ai'); | |
return restrictedPath.find(path => | |
request.nextUrl.pathname.startsWith(path), | |
) | |
? isAdmin | |
: true; | |
}, | |
}, | |
pages: { | |
signIn: '/sign-in', // overrides the next-auth default signin page https://authjs.dev/guides/basics/pages | |
}, | |
}); | |
export async function sessionUser() { | |
const session = await auth(); | |
const email = session?.user.email; | |
return { | |
email, | |
isAdmin: !!email?.endsWith('landing.ai'), | |
id: session?.user.id ?? null, | |
user: session?.user ?? null, | |
}; | |
} | |