Theo's Typesafe Cult•2y ago

Next Auth does not fire callback and set session hook?

I added a Credentials provider in additional to my Discord provider (which worked fine), if I try to sign up I get a success value but the session does not update Currently my nextauth file looks like this

export const authOptions: NextAuthOptions = {
  session: {
    strategy: 'jwt',
  },
  secret: 'super-secret',
  jwt: {
    maxAge: 15 * 24 * 30 * 60, // 15 days
  },
  pages: {
    signIn: '/',
    newUser: '/sign-up',
  },
  // Include user.id on session
  callbacks: {
    session({ session, user }) {
      if (session.user) {
        session.user.id = user.id
      }
      return session
    },
    jwt: async ({ token, user }) => {
      if (user) {
        token.id = user.id
        token.email = user.email
      }

      return token
    },
  },
  adapter: PrismaAdapter(prisma),
  providers: [
    Credentials({
      name: 'Credentials',
      credentials: {
        email: { label: 'Email', type: 'text', placeholder: 'jsmith' },
        password: { label: 'Password', type: 'password' },
      },
      async authorize(credentials, req) {
        const creds = await loginSchema.parseAsync(credentials)
        const user = await prisma.user.findUnique({
          where: {
            email: creds.email,
          },
        })

        if (!user) {
          throw new Error('User not found')
        }

        const isValidPassword = await verify(
          creds.password,
          user.password as string
        )

        if (!isValidPassword) {
          throw new Error('Invalid password')
        }

        return {
          id: user.id,
          email: user.email,
        }
      },
    }),
  ],
}

export default NextAuth(authOptions)

export const authOptions: NextAuthOptions = {
  session: {
    strategy: 'jwt',
  },
  secret: 'super-secret',
  jwt: {
    maxAge: 15 * 24 * 30 * 60, // 15 days
  },
  pages: {
    signIn: '/',
    newUser: '/sign-up',
  },
  // Include user.id on session
  callbacks: {
    session({ session, user }) {
      if (session.user) {
        session.user.id = user.id
      }
      return session
    },
    jwt: async ({ token, user }) => {
      if (user) {
        token.id = user.id
        token.email = user.email
      }

      return token
    },
  },
  adapter: PrismaAdapter(prisma),
  providers: [
    Credentials({
      name: 'Credentials',
      credentials: {
        email: { label: 'Email', type: 'text', placeholder: 'jsmith' },
        password: { label: 'Password', type: 'password' },
      },
      async authorize(credentials, req) {
        const creds = await loginSchema.parseAsync(credentials)
        const user = await prisma.user.findUnique({
          where: {
            email: creds.email,
          },
        })

        if (!user) {
          throw new Error('User not found')
        }

        const isValidPassword = await verify(
          creds.password,
          user.password as string
        )

        if (!isValidPassword) {
          throw new Error('Invalid password')
        }

        return {
          id: user.id,
          email: user.email,
        }
      },
    }),
  ],
}

export default NextAuth(authOptions)

This part in my frontend does not properly update after the signup process

export default function Login() {
  const router = useRouter()
  const { status } = useSession()

export default function Login() {
  const router = useRouter()
  const { status } = useSession()

status keeps being unauthorized. Not sure what I may be missing here.

29 Replies

rocawear•2y ago

Hello, I have like this:

callbacks: {
    jwt: async ({ token, user }) => {
      if (user) {
        token.id = user.id;
        token.email = user.email;
      }

      return token;
    },
    session({ session, token }) {
      if (token && session.user) {
        session.user.id = token.id as string;
      }

      return session;
    },
  }

callbacks: {
    jwt: async ({ token, user }) => {
      if (user) {
        token.id = user.id;
        token.email = user.email;
      }

      return token;
    },
    session({ session, token }) {
      if (token && session.user) {
        session.user.id = token.id as string;
      }

      return session;
    },
  }

utdevOP•2y ago

@rocawear thats the only difference on your side?

rocawear•2y ago

I think yes

utdevOP•2y ago

Buut that the same right?

rocawear•2y ago

https://discord.com/channels/966627436387266600/1044140853041582142 here More talk about it On your example on session you are using user instead of token atleast what I noticed

utdevOP•2y ago

oh you are calling a callback url in your repo I do this

  const onSubmit = useCallback(
    async (data: SignUp) => {
      const result = await mutateAsync(data)
      console.log('result', result)
      console.log('status', status)
      if (result.status === 201) {
        router.push('/')
      }
    },
    [mutateAsync, router]
  )

  const onSubmit = useCallback(
    async (data: SignUp) => {
      const result = await mutateAsync(data)
      console.log('result', result)
      console.log('status', status)
      if (result.status === 201) {
        router.push('/')
      }
    },
    [mutateAsync, router]
  )

you do this

  const onSubmit: SubmitHandler<ILogin> = async (data) => {
    await signIn("credentials", { ...data, callbackUrl: "/dashboard" });
  };

  const onSubmit: SubmitHandler<ILogin> = async (data) => {
    await signIn("credentials", { ...data, callbackUrl: "/dashboard" });
  };

oh wait that the login sry I can try to use the token 1min nah same issue Added some logs inside my callback

  callbacks: {
    jwt: async ({ token, user }) => {
      console.log('inside jwt callback')
      if (user) {
        token.id = user.id
        token.email = user.email
      }
      return token
    },
    session({ session, user }) {
      console.log('inside session callback')
      if (session.user) {
        session.user.id = user.id
      }
      return session
    },
  },

  callbacks: {
    jwt: async ({ token, user }) => {
      console.log('inside jwt callback')
      if (user) {
        token.id = user.id
        token.email = user.email
      }
      return token
    },
    session({ session, user }) {
      console.log('inside session callback')
      if (session.user) {
        session.user.id = user.id
      }
      return session
    },
  },

Seems like both are not logged 🤔 after running the signup

rocawear•2y ago

You are not using signIn?

utdevOP•2y ago

I am using signup

rocawear•2y ago

https://next-auth.js.org/getting-started/client#signin

Client API | NextAuth.js

The NextAuth.js client library makes it easy to interact with sessions from React applications.

utdevOP•2y ago

Like this:

export default function Login() {
  const router = useRouter()
  const { status } = useSession()

  const { register, handleSubmit } = useForm<SignUp>({
    resolver: zodResolver(signUpSchema),
  })
  const { mutateAsync } = trpc.auth.register.useMutation()

  const onSubmit = async (data: SignUp) => {
    const result = await mutateAsync(data)
    console.log('result', result)
    console.log('status', status)
    if (result.status === 201) {
      router.push('/')
    }
  }

  useEffect(() => {
    console.log('status', status)
    if (status === AuthStates.UNAUTHENTICATED) router.push('/login')
    else if (status === AuthStates.AUTHENTICATED) router.push('/dashboard')
  }, [status])

  return (
    <AuthLayout>
      <form
        className="flex items-center justify-center h-auto w-full"
        onSubmit={handleSubmit(onSubmit)}
      >
        <div className="card w-96 bg-base-100 shadow-xl">
          <div className="card-body">
            <h2 className="card-title">Create an account!</h2>
            <input
              type="email"
              placeholder="Type your email..."
              className="input input-bordered w-full max-w-xs"
              {...register('email')}
            />
            <input
              type="password"
              placeholder="Type your password..."
              className="input input-bordered w-full max-w-xs my-2"
              {...register('password')}
            />
            <div className="card-actions items-center justify-between">
              <Link href="/" className="link">
                Go to login
              </Link>
              <button className="btn btn-secondary" type="submit">
                Sign Up
              </button>
            </div>
          </div>
        </div>
      </form>
    </AuthLayout>
  )
}

export default function Login() {
  const router = useRouter()
  const { status } = useSession()

  const { register, handleSubmit } = useForm<SignUp>({
    resolver: zodResolver(signUpSchema),
  })
  const { mutateAsync } = trpc.auth.register.useMutation()

  const onSubmit = async (data: SignUp) => {
    const result = await mutateAsync(data)
    console.log('result', result)
    console.log('status', status)
    if (result.status === 201) {
      router.push('/')
    }
  }

  useEffect(() => {
    console.log('status', status)
    if (status === AuthStates.UNAUTHENTICATED) router.push('/login')
    else if (status === AuthStates.AUTHENTICATED) router.push('/dashboard')
  }, [status])

  return (
    <AuthLayout>
      <form
        className="flex items-center justify-center h-auto w-full"
        onSubmit={handleSubmit(onSubmit)}
      >
        <div className="card w-96 bg-base-100 shadow-xl">
          <div className="card-body">
            <h2 className="card-title">Create an account!</h2>
            <input
              type="email"
              placeholder="Type your email..."
              className="input input-bordered w-full max-w-xs"
              {...register('email')}
            />
            <input
              type="password"
              placeholder="Type your password..."
              className="input input-bordered w-full max-w-xs my-2"
              {...register('password')}
            />
            <div className="card-actions items-center justify-between">
              <Link href="/" className="link">
                Go to login
              </Link>
              <button className="btn btn-secondary" type="submit">
                Sign Up
              </button>
            </div>
          </div>
        </div>
      </form>
    </AuthLayout>
  )
}

rocawear•2y ago

Yeah I think you should use signIn method Or add what signIn does by yourself

utdevOP•2y ago

So I would call register then sign in? Current register logic

  register: t.procedure.input(signUpSchema).mutation(async ({ input, ctx }) => {
    const { email, password } = input
    const exists = await ctx.prisma.user.findUnique({
      where: {
        email,
      },
    })

    if (exists) {
      throw new TRPCError({
        code: 'CONFLICT',
        message: 'User already exists.',
      })
    }

    const hashedPassword = await hash(password)

    const result = await ctx.prisma.user.create({
      data: {
        email,
        password: hashedPassword,
      },
    })

    console.log('result', result)

    return {
      status: 201,
      message: 'Account created successfully',
      result: result.email,
    }
  }),

  register: t.procedure.input(signUpSchema).mutation(async ({ input, ctx }) => {
    const { email, password } = input
    const exists = await ctx.prisma.user.findUnique({
      where: {
        email,
      },
    })

    if (exists) {
      throw new TRPCError({
        code: 'CONFLICT',
        message: 'User already exists.',
      })
    }

    const hashedPassword = await hash(password)

    const result = await ctx.prisma.user.create({
      data: {
        email,
        password: hashedPassword,
      },
    })

    console.log('result', result)

    return {
      status: 201,
      message: 'Account created successfully',
      result: result.email,
    }
  }),

rocawear•2y ago

utdevOP•2y ago

So I guess I have to do this

  const onSubmit = async (data: SignUp) => {
    const result = await mutateAsync(data)
    if (result.status === 201) {
      // call sign in from next-auth
      signIn('credentials', {
        email: data.email,
        password: data.password,
        callbackUrl: '/',
      })
    }
  }

  const onSubmit = async (data: SignUp) => {
    const result = await mutateAsync(data)
    if (result.status === 201) {
      // call sign in from next-auth
      signIn('credentials', {
        email: data.email,
        password: data.password,
        callbackUrl: '/',
      })
    }
  }

But not quite sure what to add to callbackUrl in this case

rocawear•2y ago

Its where it redirects after login You dont need to mutate

utdevOP•2y ago

dang got an error, http://localhost:3000/api/auth/error?error=pchstr%20must%20contain%20a%20%24%20as%20first%20char does it create the user by default?

rocawear•2y ago

signIn is method that handles login for you You are login not registering

utdevOP•2y ago

yeah but to login I need to first create a user I want the signup logic first before the sign in right

rocawear•2y ago

Yes,create user normally but when login use signin

utdevOP•2y ago

yeah, I am doing the signup right now 😄 for login I am going to use signin

rocawear•2y ago

Look my repo as example how I did register

Forsto•2y ago

are you sure that credentials work with Prisma adapter, because in my code it didnt work with prisma

rocawear•2y ago

Yes

rocawear•2y ago

https://github.com/ruhap/t3-credentials/blob/main/src/components/form/RegisterForm.tsx https://github.com/ruhap/t3-credentials/blob/main/src/server/trpc/router/auth.ts

GitHub

t3-credentials/RegisterForm.tsx at main · ruhap/t3-credentials

t3 stack with next-auth credential provider. Contribute to ruhap/t3-credentials development by creating an account on GitHub.

GitHub

t3-credentials/auth.ts at main · ruhap/t3-credentials

t3 stack with next-auth credential provider. Contribute to ruhap/t3-credentials development by creating an account on GitHub.

utdevOP•2y ago

@rocawear if you register in your repo does it automatically update your user status?

rocawear•2y ago

Why would it? You are creating account,not login It creates new user and redirects to login where I login with credentials

utdevOP•2y ago

ah ok, that is what I meant with first creating the user then running the signin method earlier

rocawear•2y ago

Ok sorry,on mobile maybe I missed something

utdevOP•2y ago

ok let me try to run them seperatly give me 2 minutes 😄 signIn returns http://localhost:3000/api/auth/error?error=pchstr%20must%20contain%20a%20%24%20as%20first%20char dang

Gaming

Programming

Next Auth does not fire callback and set session hook?