UNPKG

datacops-cms

Version:

A modern, extensible CMS built with Next.js and Prisma.

github.com/TryDataCops/DataCops-CMS

TryDataCops/DataCops-CMS

61 lines (57 loc) 1.93 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
import NextAuth, { NextAuthOptions, Session } from "next-auth" import CredentialsProvider from "next-auth/providers/credentials" import { PrismaAdapter } from "@auth/prisma-adapter" import { PrismaClient } from "@prisma/client" import bcrypt from "bcryptjs" import type { JWT } from "next-auth/jwt" const prisma = new PrismaClient() const authOptions: NextAuthOptions = { adapter: PrismaAdapter(prisma), session: { strategy: "jwt" }, providers: [ CredentialsProvider({ name: "Credentials", credentials: { email: { label: "Email", type: "email" }, password: { label: "Password", type: "password" }, }, async authorize(credentials) { if (!credentials?.email || !credentials?.password) return null const user = await prisma.user.findUnique({ where: { email: credentials.email } }) if (!user) return null const valid = await bcrypt.compare(credentials.password, user.password) if (!valid) return null return { id: user.id, email: user.email, name: user.name, role: user.role, // <--- this is fine, not affecting AdapterUser type avatar: user.avatar || "", // Ensure avatar is always a string } } }) ], callbacks: { async session({ session, token }: { session: Session; token: JWT }) { if (session.user) { session.user.id = token.sub as string session.user.role = (token.role as "SUPERADMIN" | "ADMIN" | "USER") || "USER" } return session }, async jwt({ token, user }) { if (user) { // @ts-expect-error custom field, not typed on base JWT token.role = user.role } return token } }, pages: { signIn: "/login", } } const handler = NextAuth(authOptions) export { handler as GET, handler as POST }