UNPKG

@proofkit/cli

Version:

Create web application with the ProofKit stack

github.com/proofgeist/proofkit

proofgeist/proofkit

112 lines (99 loc) 3.06 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
/* eslint-disable @typescript-eslint/no-unsafe-call */ /* eslint-disable @typescript-eslint/no-unsafe-member-access */ /* eslint-disable @typescript-eslint/no-unsafe-assignment */ import { env } from "@/config/env"; import { OttoAdapter } from "@proofkit/fmdapi"; import NextAuth, { type DefaultSession } from "next-auth"; import { FilemakerAdapter } from "next-auth-adapter-filemaker"; import { type Provider } from "next-auth/providers"; import Credentials from "next-auth/providers/credentials"; import { z } from "zod/v4"; import { verifyPassword } from "./password"; export const fmAdapter = FilemakerAdapter({ adapter: new OttoAdapter({ auth: { apiKey: env.OTTO_API_KEY }, db: env.FM_DATABASE, server: env.FM_SERVER, }), }); /** * Module augmentation for `next-auth` types. Alldows us to add custom properties to the `session` * object and keep type safety. * * @see https://next-auth.js.org/getting-started/typescript#module-augmentation */ declare module "next-auth" { interface Session extends DefaultSession { user: { id: string; // ...other properties // role: UserRole; } & DefaultSession["user"]; } // interface User { // // ...other properties // // role: UserRole; // } } const signInSchema = z.object({ email: z.string().email(), password: z.string(), }); const providers: Provider[] = [ Credentials({ credentials: { email: { label: "Email", type: "email" }, password: { label: "Password", type: "password" }, }, authorize: async (credentials) => { const parsed = signInSchema.safeParse(credentials); if (!parsed.success) { return null; } const { email, password } = parsed.data; try { // logic to verify if the user exists with the password hash const userResponse = await fmAdapter.typedClients.userWithPasswordHash.findOne({ query: { email: `==${email.replace("@", "\\@")}` }, }); const { passwordHash, ...userData } = userResponse.data.fieldData; const isValid = await verifyPassword(password, passwordHash); if (!isValid) return null; return userData; } catch (error) { console.log("error", error); throw new Error("User not found."); } }, }), ]; export const providerMap = providers .map((provider) => { if (typeof provider === "function") { const providerData = provider(); return { id: providerData.id, name: providerData.name }; } else { return { id: provider.id, name: provider.name }; } }) .filter((provider) => provider.id !== "credentials"); export const { auth, handlers, signIn, signOut } = NextAuth({ pages: { signIn: "/auth/signin", newUser: "/auth/signup", error: "/auth/signin", }, callbacks: { session: ({ session, token }) => ({ ...session, user: { ...session.user, id: token.sub, }, }), }, adapter: fmAdapter.Adapter, session: { strategy: "jwt" }, providers, });