auth-astro-cloudflare-d1

/** * > **caution** * > `auth-astro` is currently experimental. Be aware of breaking changes between versions. * * * Astro Auth is the unofficial Astro integration for Auth.js. * It provides a simple way to add authentication to your Astro site in a few lines of code. * * ## Installation * * `auth-astro` requires building your site in `server` mode with a platform adaper like `@astrojs/node`. * ```js * // astro.config.mjs * export default defineConfig({ * output: "server", * adapter: node({ * mode: 'standalone' * }) * }); * ``` * * ```bash npm2yarn2pnpm * npm install @auth/core @auth/astro * ``` */ import { Auth } from '@auth/core' import type { AuthAction, Session } from '@auth/core/types' import type { APIContext } from 'astro' import { parseString } from 'set-cookie-parser' import authConfig from 'auth:config' const actions: AuthAction[] = [ 'providers', 'session', 'csrf', 'signin', 'signout', 'callback', 'verify-request', 'error', ] function AstroAuthHandler(prefix: string, options = authConfig) { return async ({ cookies, request, locals }: APIContext) => { const url = new URL(request.url) const action = url.pathname.slice(prefix.length + 1).split('/')[0] as AuthAction if (!actions.includes(action) || !url.pathname.startsWith(prefix + '/')) return // Apply hook if exists let finalConfig = options if (options.hook) { finalConfig = await options.hook(options, { request, locals }) } const res = await Auth(request, finalConfig) if (['callback', 'signin', 'signout'].includes(action)) { // Properly handle multiple Set-Cookie headers (they can't be concatenated in one) const getSetCookie = res.headers.getSetCookie() if (getSetCookie.length > 0) { getSetCookie.forEach((cookie) => { const { name, value, ...options } = parseString(cookie) // Astro's typings are more explicit than @types/set-cookie-parser for sameSite cookies.set(name, value, options as Parameters<(typeof cookies)['set']>[2]) }) res.headers.delete('Set-Cookie') } } return res } } /** * Creates a set of Astro endpoints for authentication. * * @example * ```ts * export const { GET, POST } = AstroAuth({ * providers: [ * GitHub({ * clientId: process.env.GITHUB_ID!, * clientSecret: process.env.GITHUB_SECRET!, * }), * ], * debug: false, * }) * ``` * @param config The configuration for authentication providers and other options. * @returns An object with `GET` and `POST` methods that can be exported in an Astro endpoint. */ export function AstroAuth(options = authConfig) { // @ts-ignore const { AUTH_SECRET, AUTH_TRUST_HOST, VERCEL, NODE_ENV } = import.meta.env options.secret ??= AUTH_SECRET options.trustHost ??= !!(AUTH_TRUST_HOST ?? VERCEL ?? NODE_ENV !== 'production') const { prefix = '/api/auth', ...authOptions } = options const handler = AstroAuthHandler(prefix, authOptions) return { async GET(context: APIContext) { return await handler(context) }, async POST(context: APIContext) { return await handler(context) }, } } /** * Fetches the current session. * @param req The request object. * @returns The current session, or `null` if there is no session. */ export async function getSession( context: APIContext, options = authConfig ): Promise<Session | null> { // @ts-ignore options.secret ??= import.meta.env.AUTH_SECRET options.trustHost ??= true // Apply hook if exists let finalConfig = options if (options.hook) { finalConfig = await options.hook(options, { request: context.request, locals: context.locals }) } const url = new URL(`${finalConfig.prefix}/session`, context.request.url) const response = await Auth(new Request(url, { headers: context.request.headers }), finalConfig) const { status = 200 } = response const data = await response.json() if (!data || !Object.keys(data).length) return null if (status === 200) return data throw new Error(data.message) }