sourcebot/packages/web/src/auth.ts

import 'next-auth/jwt';
import NextAuth, { User as AuthJsUser, DefaultSession } from "next-auth"
import GitHub from "next-auth/providers/github"
import { PrismaAdapter } from "@auth/prisma-adapter"
import { prisma } from "@/prisma";
import type { Provider } from "next-auth/providers"
import { AUTH_GITHUB_CLIENT_ID, AUTH_GITHUB_CLIENT_SECRET, AUTH_SECRET } from "./lib/environment";
import { User } from '@sourcebot/db';

declare module 'next-auth' {
    interface Session {
        user: {
            id: string;
        } & DefaultSession['user'];
    }
}

declare module 'next-auth/jwt' {
    interface JWT {
      userId: string
    }
  }

const providers: Provider[] = [
    GitHub({
        clientId: AUTH_GITHUB_CLIENT_ID,
        clientSecret: AUTH_GITHUB_CLIENT_SECRET,
    }),
];

// @see: https://authjs.dev/guides/pages/signin
export const providerMap = providers
    .map((provider) => {
        if (typeof provider === "function") {
            const providerData = provider()
            return { id: providerData.id, name: providerData.name }
        } else {
            return { id: provider.id, name: provider.name }
        }
    })
    .filter((provider) => provider.id !== "credentials");

const onCreateUser = async ({ user }: { user: AuthJsUser }) => {
    if (!user.id) {
        throw new Error("User ID is required.");
    }

    const orgName = (() => {
        if (user.name) {
            return `${user.name}'s Org`;
        } else {
            return `Default Org`;
        }
    })();

    await prisma.$transaction((async (tx) => {
        const org = await tx.org.create({
            data: {
                name: orgName,
                members: {
                    create: {
                        role: "OWNER",
                        user: {
                            connect: {
                                id: user.id,
                            }
                        }
                    }
                }
            }
        });

        await tx.user.update({
            where: {
                id: user.id,
            },
            data: {
                activeOrgId: org.id,
            }
        });
    }));
}

export const { handlers, signIn, signOut, auth } = NextAuth({
    secret: AUTH_SECRET,
    adapter: PrismaAdapter(prisma),
    session: {
        strategy: "jwt",
    },
    events: {
        createUser: onCreateUser,
    },
    callbacks: {
        async jwt({ token, user: _user }) {
            const user = _user as User | undefined;
            // @note: `user` will be available on signUp or signIn triggers.
            // Cache the userId in the JWT for later use.
            if (user) {
                token.userId = user.id;
            }
            return token;
        },
        async session({ session, token }) {
            // @WARNING: Anything stored in the session will be sent over
            // to the client.
            session.user = {
                ...session.user,
                // Propogate the userId to the session.
                id: token.userId,
            }
            return session;
        }
    },
    providers: providers,
    pages: {
        signIn: "/login"
    }
});
Organization switching & active org management (#173) 2025-01-21 22:50:16 +00:00			`import 'next-auth/jwt';`
			`import NextAuth, { User as AuthJsUser, DefaultSession } from "next-auth"`
Authentication (#164) 2025-01-16 23:24:13 +00:00			`import GitHub from "next-auth/providers/github"`
			`import { PrismaAdapter } from "@auth/prisma-adapter"`
			`import { prisma } from "@/prisma";`
			`import type { Provider } from "next-auth/providers"`
			`import { AUTH_GITHUB_CLIENT_ID, AUTH_GITHUB_CLIENT_SECRET, AUTH_SECRET } from "./lib/environment";`
Organization switching & active org management (#173) 2025-01-21 22:50:16 +00:00			`import { User } from '@sourcebot/db';`

			`declare module 'next-auth' {`
			`interface Session {`
			`user: {`
			`id: string;`
			`} & DefaultSession['user'];`
			`}`
			`}`

			`declare module 'next-auth/jwt' {`
			`interface JWT {`
			`userId: string`
			`}`
			`}`
Authentication (#164) 2025-01-16 23:24:13 +00:00
			`const providers: Provider[] = [`
			`GitHub({`
			`clientId: AUTH_GITHUB_CLIENT_ID,`
			`clientSecret: AUTH_GITHUB_CLIENT_SECRET,`
			`}),`
			`];`

			`// @see: https://authjs.dev/guides/pages/signin`
			`export const providerMap = providers`
			`.map((provider) => {`
			`if (typeof provider === "function") {`
			`const providerData = provider()`
			`return { id: providerData.id, name: providerData.name }`
			`} else {`
			`return { id: provider.id, name: provider.name }`
			`}`
			`})`
			`.filter((provider) => provider.id !== "credentials");`

Organization switching & active org management (#173) 2025-01-21 22:50:16 +00:00			`const onCreateUser = async ({ user }: { user: AuthJsUser }) => {`
			`if (!user.id) {`
			`throw new Error("User ID is required.");`
			`}`

			`const orgName = (() => {`
			`if (user.name) {`
			return `${user.name}'s Org`;
			`} else {`
			return `Default Org`;
			`}`
			`})();`

			`await prisma.$transaction((async (tx) => {`
			`const org = await tx.org.create({`
			`data: {`
			`name: orgName,`
			`members: {`
			`create: {`
			`role: "OWNER",`
			`user: {`
			`connect: {`
			`id: user.id,`
			`}`
			`}`
			`}`
			`}`
			`}`
			`});`

			`await tx.user.update({`
			`where: {`
			`id: user.id,`
			`},`
			`data: {`
			`activeOrgId: org.id,`
			`}`
			`});`
			`}));`
			`}`
Authentication (#164) 2025-01-16 23:24:13 +00:00
			`export const { handlers, signIn, signOut, auth } = NextAuth({`
			`secret: AUTH_SECRET,`
			`adapter: PrismaAdapter(prisma),`
			`session: {`
			`strategy: "jwt",`
			`},`
Organization switching & active org management (#173) 2025-01-21 22:50:16 +00:00			`events: {`
			`createUser: onCreateUser,`
			`},`
			`callbacks: {`
			`async jwt({ token, user: _user }) {`
			`const user = _user as User \| undefined;`
			// @note: `user` will be available on signUp or signIn triggers.
			`// Cache the userId in the JWT for later use.`
			`if (user) {`
			`token.userId = user.id;`
			`}`
			`return token;`
			`},`
			`async session({ session, token }) {`
			`// @WARNING: Anything stored in the session will be sent over`
			`// to the client.`
			`session.user = {`
			`...session.user,`
			`// Propogate the userId to the session.`
			`id: token.userId,`
			`}`
			`return session;`
			`}`
			`},`
Authentication (#164) 2025-01-16 23:24:13 +00:00			`providers: providers,`
			`pages: {`
			`signIn: "/login"`
			`}`
Organization switching & active org management (#173) 2025-01-21 22:50:16 +00:00			`});`