shubhattin Comments - Answer Overflow

shubhattin

Explore posts from servers

•Created by shubhattin on 3/17/2025 in #help

How to trigger refresh/update of session if user info changed

finally got it working

endpoints: {
      approve_user: createAuthEndpoint(
        '/user_info/approve_user',
        {
          method: 'POST',
          body: z.object({
            userId: z.string()
          })
        },
        async (ctx) => {
          const updatedUser = await ctx.context.internalAdapter.updateUser(
            ctx.body.userId,
            {
              is_approved: true
            },
            ctx
          );

          // invalidating cache
          const { sessions } = await auth.api.listUserSessions({
            body: {
              userId: ctx.body.userId
            },
            headers: {
              Cookie: ctx.request?.headers.get('Cookie') || ''
            }
          });
          await Promise.allSettled(
            sessions.map(async (session, i) => {
              const data = await redis.get<typeof auth.$Infer.Session>(session.token);
              await redis.set(session.token, JSON.stringify({ ...data, user: updatedUser }));
            })
          );

          return ctx.json({
            user: updatedUser
          });
        }
      )
    }

endpoints: {
      approve_user: createAuthEndpoint(
        '/user_info/approve_user',
        {
          method: 'POST',
          body: z.object({
            userId: z.string()
          })
        },
        async (ctx) => {
          const updatedUser = await ctx.context.internalAdapter.updateUser(
            ctx.body.userId,
            {
              is_approved: true
            },
            ctx
          );

          // invalidating cache
          const { sessions } = await auth.api.listUserSessions({
            body: {
              userId: ctx.body.userId
            },
            headers: {
              Cookie: ctx.request?.headers.get('Cookie') || ''
            }
          });
          await Promise.allSettled(
            sessions.map(async (session, i) => {
              const data = await redis.get<typeof auth.$Infer.Session>(session.token);
              await redis.set(session.token, JSON.stringify({ ...data, user: updatedUser }));
            })
          );

          return ctx.json({
            user: updatedUser
          });
        }
      )
    }

22 replies

BABetter Auth

•Created by shubhattin on 3/17/2025 in #help

How to trigger refresh/update of session if user info changed

Looks the authClient.admin.setRole is also not updating the cache. In that case I will write the login to do this myself. I need this functionality as currently I have invalidate their sessions (forcing logout). I want to find a better way to do this.

22 replies

BABetter Auth

•Created by shubhattin on 3/17/2025 in #help

How to trigger refresh/update of session if user info changed

Seeing it from here. https://github.com/better-auth/better-auth/blob/6b5c48b092b8760cb26701a30469fdce0d25c726/packages/better-auth/src/plugins/admin/admin.ts#L254 Should this work

 endpoints: {
      approve_user: createAuthEndpoint(
        '/approve_user',
        {
          method: 'GET'
        },
        async (ctx) => {
          const updatedUser = await ctx.context.internalAdapter.updateUser(
            ctx.body.userId,
            {
              is_approved: true
            },
            ctx
          );
          return ctx.json({
            user: updatedUser
          });
        }
      )
    }

 endpoints: {
      approve_user: createAuthEndpoint(
        '/approve_user',
        {
          method: 'GET'
        },
        async (ctx) => {
          const updatedUser = await ctx.context.internalAdapter.updateUser(
            ctx.body.userId,
            {
              is_approved: true
            },
            ctx
          );
          return ctx.json({
            user: updatedUser
          });
        }
      )
    }

Will test this out and update you

22 replies

BABetter Auth

•Created by shubhattin on 3/17/2025 in #help

How to trigger refresh/update of session if user info changed

What about this

endpoints: {
      approve_user: createAuthEndpoint(
        '/user_infp_plugin/approve_user',
        {
          method: 'GET'
        },
        async (ctx) => {
          // Make changes to the database and secodary storage
        }
      )
    }

endpoints: {
      approve_user: createAuthEndpoint(
        '/user_infp_plugin/approve_user',
        {
          method: 'GET'
        },
        async (ctx) => {
          // Make changes to the database and secodary storage
        }
      )
    }

22 replies

BABetter Auth

•Created by shubhattin on 3/17/2025 in #help

How to trigger refresh/update of session if user info changed

This is my simple plugin

import type { BetterAuthPlugin } from 'better-auth';

export const userInfoPlugin = () => {
  return {
    id: 'additional_user_info',
    schema: {
      user: {
        fields: {
          is_approved: {
            type: 'boolean',
            defaultValue: false
          },
          super_admin: {
            type: 'boolean',
            defaultValue: false
          }
        }
      }
    }
  } satisfies BetterAuthPlugin;
};

import type { BetterAuthPlugin } from 'better-auth';

export const userInfoPlugin = () => {
  return {
    id: 'additional_user_info',
    schema: {
      user: {
        fields: {
          is_approved: {
            type: 'boolean',
            defaultValue: false
          },
          super_admin: {
            type: 'boolean',
            defaultValue: false
          }
        }
      }
    }
  } satisfies BetterAuthPlugin;
};

22 replies

BABetter Auth

•Created by shubhattin on 3/17/2025 in #help

How to trigger refresh/update of session if user info changed

I saw this on the docs

const updatedUser = await authClient.admin.setRole({
  userId: "user_id_here",
  role: "admin",
});

const updatedUser = await authClient.admin.setRole({
  userId: "user_id_here",
  role: "admin",
});

Looks like in this example we can can update users role. I need to have this for my own plugin too. I also expect that this updates the secondary storage too.

22 replies

BABetter Auth

•Created by shubhattin on 3/17/2025 in #help

How to trigger refresh/update of session if user info changed

If not then I think that I should listing all the active sessions and update their in the cache as well. Did I get it correctly. This might be the only way forward currently as I can see

22 replies

BABetter Auth

•Created by shubhattin on 3/17/2025 in #help

How to trigger refresh/update of session if user info changed

Can a admin use updateUser and then will the cache be refreshed (redis).

22 replies

BABetter Auth

•Created by shubhattin on 3/17/2025 in #help

How to trigger refresh/update of session if user info changed

I implemented this but this is not updating user info

      const session = await authClient.getSession({
        query: {
          disableCookieCache: true
        }
      });
      console.log(session.data?.session);
      console.log(session.data?.user);

      const session = await authClient.getSession({
        query: {
          disableCookieCache: true
        }
      });
      console.log(session.data?.session);
      console.log(session.data?.user);

Is this because of usage of secondary storage which caches it for 1 day

22 replies

BABetter Auth

•Created by King Louie on 3/16/2025 in #help

Conceptual questions on an auth setup with sveltekit and a separate api sever

In the above example

 ...(!cookie
        ? {
            credentials: 'include'
          }
        : {
            headers: {
              Cookie: cookie
            }
          })

 ...(!cookie
        ? {
            credentials: 'include'
          }
        : {
            headers: {
              Cookie: cookie
            }
          })

actually the !cookie is for the client as js cannot access the cookie, but on server cookie needs to be explicitly sent. The modification is to make it work on sever and client.

27 replies

BABetter Auth

•Created by King Louie on 3/16/2025 in #help

Conceptual questions on an auth setup with sveltekit and a separate api sever

this part does not needs setup (server part of another app). Only the client configuration needs to match (I mean the plugins) Like

import { createAuthClient } from 'better-auth/svelte';
import { PUBLIC_BETTER_AUTH_URL } from '$env/static/public';
import { adminClient } from 'better-auth/client/plugins';

export const authClient = createAuthClient({
  baseURL: PUBLIC_BETTER_AUTH_URL ?? import.meta.env.VITE_SITE_URL ?? 'http://localhost:5173',
  plugins: [
    adminClient(),
  ]
});

export const { useSession, signIn, signOut, signUp } = authClient;

import { createAuthClient } from 'better-auth/svelte';
import { PUBLIC_BETTER_AUTH_URL } from '$env/static/public';
import { adminClient } from 'better-auth/client/plugins';

export const authClient = createAuthClient({
  baseURL: PUBLIC_BETTER_AUTH_URL ?? import.meta.env.VITE_SITE_URL ?? 'http://localhost:5173',
  plugins: [
    adminClient(),
  ]
});

export const { useSession, signIn, signOut, signUp } = authClient;

27 replies

BABetter Auth

•Created by King Louie on 3/16/2025 in #help

Conceptual questions on an auth setup with sveltekit and a separate api sever

If you want to use better auth in another sveltekit frontend you still will need to setup auth-client there.

27 replies

BABetter Auth

•Created by King Louie on 3/16/2025 in #help

Conceptual questions on an auth setup with sveltekit and a separate api sever

I have a example from another codebase which depends upon the auth server here.

import { PUBLIC_BETTER_AUTH_URL } from '$env/static/public';
import ky from 'ky';

export type user_verfied_info_type = {
  langugaes: {
    lang_id: number;
    lang_name: string;
  }[];
};

export const AUTH_INFO_URL = `${PUBLIC_BETTER_AUTH_URL}/api/ext`;
export const PROJECT_ID = 1; // as defined in tsc_user database

export const get_user_project_info = async (user_id: string, cookie?: string | null) => {
  const data = await ky
    .get<user_verfied_info_type>(`${AUTH_INFO_URL}/user_info_project`, {
      searchParams: {
        user_id: user_id,
        project_id: PROJECT_ID
      },
      ...(!cookie
        ? {
            credentials: 'include'
          }
        : {
            headers: {
              Cookie: cookie
            }
          })
    })
    .json();
  return data;
};

import { PUBLIC_BETTER_AUTH_URL } from '$env/static/public';
import ky from 'ky';

export type user_verfied_info_type = {
  langugaes: {
    lang_id: number;
    lang_name: string;
  }[];
};

export const AUTH_INFO_URL = `${PUBLIC_BETTER_AUTH_URL}/api/ext`;
export const PROJECT_ID = 1; // as defined in tsc_user database

export const get_user_project_info = async (user_id: string, cookie?: string | null) => {
  const data = await ky
    .get<user_verfied_info_type>(`${AUTH_INFO_URL}/user_info_project`, {
      searchParams: {
        user_id: user_id,
        project_id: PROJECT_ID
      },
      ...(!cookie
        ? {
            credentials: 'include'
          }
        : {
            headers: {
              Cookie: cookie
            }
          })
    })
    .json();
  return data;
};

27 replies

BABetter Auth

•Created by King Louie on 3/16/2025 in #help

Conceptual questions on an auth setup with sveltekit and a separate api sever

You can refer the codebase I linked https://github.com/shubhattin/tsc-users

27 replies

BABetter Auth

•Created by King Louie on 3/16/2025 in #help

Conceptual questions on an auth setup with sveltekit and a separate api sever

like for /login page

import { redirect } from '@sveltejs/kit';
import type { PageServerLoad } from './$types';

export const load: PageServerLoad = async ({ parent }) => {
  const { user_info } = await parent();
  if (user_info) redirect(307, '/');
};

import { redirect } from '@sveltejs/kit';
import type { PageServerLoad } from './$types';

export const load: PageServerLoad = async ({ parent }) => {
  const { user_info } = await parent();
  if (user_info) redirect(307, '/');
};

27 replies

BABetter Auth

•Created by King Louie on 3/16/2025 in #help

Conceptual questions on an auth setup with sveltekit and a separate api sever

and then you can access this in child +server and +page files

27 replies

BABetter Auth

•Created by King Louie on 3/16/2025 in #help

Conceptual questions on an auth setup with sveltekit and a separate api sever

Something like this

import { auth } from '~/lib/auth';
import type { LayoutServerLoad } from './$types'; // Adjust the path based on your project structure

export const load: LayoutServerLoad = async ({ locals, request }) => {
  const session = await auth.api.getSession({
    headers: request.headers
  });
  return {
    user_info: session?.user // This can be undefined if the user is not authenticated
  };
};

import { auth } from '~/lib/auth';
import type { LayoutServerLoad } from './$types'; // Adjust the path based on your project structure

export const load: LayoutServerLoad = async ({ locals, request }) => {
  const session = await auth.api.getSession({
    headers: request.headers
  });
  return {
    user_info: session?.user // This can be undefined if the user is not authenticated
  };
};

27 replies

BABetter Auth

•Created by King Louie on 3/16/2025 in #help

Conceptual questions on an auth setup with sveltekit and a separate api sever

Yes on required routes if you need to pass the session info as props to component or for redirecting purpose you have to do that

27 replies

BABetter Auth

•Created by King Louie on 3/16/2025 in #help

Conceptual questions on an auth setup with sveltekit and a separate api sever

Not sure about this, It should be needed I think (based on the examples from the docs). I have not implemented jwt based auth so I don't think I can help much here. You have implement and play around with it.

27 replies

BABetter Auth

•Created by King Louie on 3/16/2025 in #help

Conceptual questions on an auth setup with sveltekit and a separate api sever

Actually previously I was using JWT based auth (self implemented), But then I recently moved to session based auth using better auth.

27 replies

Gaming

Programming