Arif
Arif
PostsComments
BABetter Auth
Created by Arif on 4/1/2025 in #help
Social login Account creation with additional field
and what is the purpose of loginHInt? where can I access it? In the doc, there are no mention about the options we can pass to social provider.
10 replies
BABetter Auth
Created by Arif on 4/1/2025 in #help
Social login Account creation with additional field
AFTER HOOK >>> PATH: /sign-in/social {
  body: { provider: 'google', loginHint: 'EXPERT' },
  query: { type: 'EXPERT' }
}
BEFORE HOOK >>> PATH: /callback/:id {
  body: undefined,
  query: {
    state: 'wu8MmzyH4e9u3Wl3KMB4b2fvBs7EIveM',
    code: '4/0AQSTgQEaxH81lpQjTXZf6hfYK3KCy6n5w3xsoCkcJ4q7cCy9lNaRV7QndCwZjgWvuCkmVQ',
    scope: 'email profile https://www.googleapis.com/auth/userinfo.email openid https://www.googleapis.com/auth/userinfo.profile',
    authuser: '0',
    prompt: 'none'
  }
}
AFTER HOOK >>> PATH: /callback/:id {
  body: undefined,
  query: {
    state: 'wu8MmzyH4e9u3Wl3KMB4b2fvBs7EIveM',
    code: '4/0AQSTgQEaxH81lpQjTXZf6hfYK3KCy6n5w3xsoCkcJ4q7cCy9lNaRV7QndCwZjgWvuCkmVQ',
    scope: 'email profile https://www.googleapis.com/auth/userinfo.email openid https://www.googleapis.com/auth/userinfo.profile',
    authuser: '0',
    prompt: 'none'
  }
}
AFTER HOOK >>> PATH: /sign-in/social {
  body: { provider: 'google', loginHint: 'EXPERT' },
  query: { type: 'EXPERT' }
}
BEFORE HOOK >>> PATH: /callback/:id {
  body: undefined,
  query: {
    state: 'wu8MmzyH4e9u3Wl3KMB4b2fvBs7EIveM',
    code: '4/0AQSTgQEaxH81lpQjTXZf6hfYK3KCy6n5w3xsoCkcJ4q7cCy9lNaRV7QndCwZjgWvuCkmVQ',
    scope: 'email profile https://www.googleapis.com/auth/userinfo.email openid https://www.googleapis.com/auth/userinfo.profile',
    authuser: '0',
    prompt: 'none'
  }
}
AFTER HOOK >>> PATH: /callback/:id {
  body: undefined,
  query: {
    state: 'wu8MmzyH4e9u3Wl3KMB4b2fvBs7EIveM',
    code: '4/0AQSTgQEaxH81lpQjTXZf6hfYK3KCy6n5w3xsoCkcJ4q7cCy9lNaRV7QndCwZjgWvuCkmVQ',
    scope: 'email profile https://www.googleapis.com/auth/userinfo.email openid https://www.googleapis.com/auth/userinfo.profile',
    authuser: '0',
    prompt: 'none'
  }
}
Please have a look, on the before hook sign-in/social you can see the query I am passing, can I somehow pass that to the next request which is the callback/:id ? Thanks for replying.
10 replies
BABetter Auth
Created by Arif on 4/1/2025 in #help
Social login Account creation with additional field
Sure, Thanks! Some more context: I noticed that the query parameters I passed are available in the before and after hooks of the sign-in/social endpoint (a POST request). However, after successful execution, when the provider redirects to callback/:id (a GET request), the initially passed query parameters are lost. In Passport.js, we can pass additional state, which is retained in the callback URL My main goal is to store some additional data, when creating user account through social provider. How can I achieve it. If you could give some clue that would be helpful.
10 replies
BABetter Auth
Created by Arif on 4/1/2025 in #help
Social login Account creation with additional field
@Ping Please have a look. Is it possible to pass additional info?
10 replies
BABetter Auth
Created by Arif on 4/2/2025 in #help
Dynamically create Role and Permission.
Yeah, can store them on DB but seems too much work. If Better Auth could provide a native api for this that would be awesome. I have another question regarding social login. I'll mention you in the thread, please take a look if you can. Thanks!
11 replies
BABetter Auth
Created by Arif on 4/2/2025 in #help
Dynamically create Role and Permission.
@Ping
11 replies
BABetter Auth
Created by Arif on 4/2/2025 in #help
Dynamically create Role and Permission.
import { createAccessControl } from "better-auth/plugins/access";
import { adminAc, defaultStatements, } from "better-auth/plugins/admin/access";

const statement = {
  ...defaultStatements,
} as const;

const ac = createAccessControl(statement);

const admin = ac.newRole({
  ...adminAc.statements,
})

const roles = {
  admin,
}

export {
  ac,
  roles,
}
import { createAccessControl } from "better-auth/plugins/access";
import { adminAc, defaultStatements, } from "better-auth/plugins/admin/access";

const statement = {
  ...defaultStatements,
} as const;

const ac = createAccessControl(statement);

const admin = ac.newRole({
  ...adminAc.statements,
})

const roles = {
  admin,
}

export {
  ac,
  roles,
}
app.post("/acl/roles", async (req, res) => {
  const { resourceName, actions } = req.body as ACL;

  const newRole = ac.newRole({
    [resourceName]: [...actions],
    ...adminAc.statements
  });

  // @ts-ignore
  roles[resourceName] = newRole;
  res.status(201).json(newRole);
})
app.post("/acl/roles", async (req, res) => {
  const { resourceName, actions } = req.body as ACL;

  const newRole = ac.newRole({
    [resourceName]: [...actions],
    ...adminAc.statements
  });

  // @ts-ignore
  roles[resourceName] = newRole;
  res.status(201).json(newRole);
})
=============== It works, but only as long as the server is up. Once we close the server its gone. Since, it is not being stored anywhere in the database, so I guess currently we cannot dynamically manage creating roles , permissions in Better Auth?
11 replies
BABetter Auth
Created by Arif on 4/2/2025 in #help
Dynamically create Role and Permission.
app.post("/acl/roles", async (req, res) => {
  const { resourceName, actions } = req.body as ACL;

  const newRole = ac.newRole({
    [resourceName]: [...actions], // { resourceName: "category", actions: ["create", "update"] }
    ...userAc.statements
  });

  res.status(201).json(newRole);
})
app.post("/acl/roles", async (req, res) => {
  const { resourceName, actions } = req.body as ACL;

  const newRole = ac.newRole({
    [resourceName]: [...actions], // { resourceName: "category", actions: ["create", "update"] }
    ...userAc.statements
  });

  res.status(201).json(newRole);
})
Tried this way, though it gives a successful response, but I guess, still it is required to pass this newRole to betterAuth configuration, 
 roles: {
            admin,
            user,
            myCustomRole
            [newResource]
          }
 roles: {
            admin,
            user,
            myCustomRole
            [newResource]
          }
Since, better auth requires them on initialization time. So then I tried this way by using roles object and pass it as reference.
11 replies
BABetter Auth
Created by Arif on 4/1/2025 in #help
Social login Account creation with additional field
Note: I have tried database hooks, Query params userType is accessible on path sign-in/social, but not in callback/:id. So, during dbHooks.user.create process, I could not access userType value. In database hooks only info provided by the social provider (for example GoogleProfile info) is present.
10 replies