[ { "path": ".dockerignore", "content": "# Files\n/**/*/.env\n/**/*/.env.*\n/**/*/README.md\n/**/*/.git\n/**/*/.github\n/**/*/.gitignore\n/**/*/.dockerignore\n/**/*/.turbo\n/**/*/npm-debug.log\n/**/*/Dockerfile\n\n# Directories\n/**/*/node_modules\n/**/*/test\n/**/*/dist\n\n# Auth.js Dirs\napps/*\ndocs/**\npackages/**\n!packages/next-auth\n!packages/core\n!packages/utils\n!apps/examples/nextjs-docker\n" }, { "path": ".github/CODEOWNERS", "content": "# Learn how to add code owners here:\n# https://help.github.com/en/articles/about-code-owners\n\n* @balazsorban44\n.github @ThangHuuVu @ndom91\n/apps/ @ubbe-xyz @ndom91 @ThangHuuVu\n/docs/ @ubbe-xyz @ndom91\n/packages/ @ThangHuuVu\n/packages/adapter-*/ @ndom91\n/**/*test* @ubbe-xyz\n/**/*type* @ubbe-xyz\n" }, { "path": ".github/DISCUSSION_TEMPLATE/ideas.yml", "content": "body:\n - type: textarea\n attributes:\n label: Goals\n description: Short list of what the feature request aims to address?\n value: |\n 1.\n 2.\n 3.\n validations:\n required: true\n - type: textarea\n attributes:\n label: Non-Goals\n description: Short list of what the feature request _does not_ aim to address?\n value: |\n 1.\n 2.\n 3.\n validations:\n required: false\n - type: textarea\n attributes:\n label: Background\n description: Discuss prior art, why do you think this feature is needed? Are there current alternatives?\n validations:\n required: true\n - type: textarea\n attributes:\n label: Proposal\n description: How should this feature be implemented? Are you interested in contributing?\n validations:\n required: true\n" }, { "path": ".github/DISCUSSION_TEMPLATE/questions.yml", "content": "body:\n - type: textarea\n attributes:\n label: Summary\n description: What do you need help with?\n validations:\n required: true\n - type: textarea\n attributes:\n label: Additional information\n description: Any code snippets, error messages, or dependency details that may be related?\n render: js\n validations:\n required: false\n - type: input\n attributes:\n label: Example\n description: A link to a minimal reproduction is helpful for collaborative debugging!\n validations:\n required: false\n" }, { "path": ".github/ISSUE_TEMPLATE/1_bug_framework.yml", "content": "name: Bug report\ndescription: Report an issue so we can improve\nlabels: [triage, bug]\nbody:\n - type: markdown\n attributes:\n value: |\n **NOTE:** Issues that are potentially security related should be reported to us by following the [Security guidelines](https://next-auth.js.org/security) rather than on GitHub.\n Thanks for taking the time to fill out this issue after reading/searching through the [documentation](https://next-auth.js.org) first!\n Is this your first time contributing? Check out this video: https://www.youtube.com/watch?v=cuoNzXFLitc\n\n ### Important :exclamation:\n\n _Providing incorrect/insufficient information or skipping steps to reproduce the issue *will* result in closing the issue or converting to a discussion without further explanation._\n\n If you have a generic question specific to your project, it is best asked in Discussions under the [Questions category](https://github.com/nextauthjs/next-auth/discussions/new?category=Questions)\n # Let's wait with this until adoption in other frameworks.\n # - type: dropdown\n # attributes:\n # label: Framework\n # description: Which framework(s) is this issue related to?\n # multiple: true\n # options:\n # - \"Next.js\"\n # - \"Other\"\n - type: textarea\n attributes:\n label: Environment\n description: |\n Run this command in your project's root folder and paste the result:\n\n `npx envinfo --system --binaries --browsers --npmPackages \"{next,react,next-auth,@auth/*}\"`\n\n Alternatively, you can manually gather the version information from your package.json for these packages: \"next\", \"react\" and \"next-auth\". Please also mention your OS and Node.js version, as well as the browser you are using.\n value: |\n ```\n Paste here\n ```\n validations:\n required: true\n - type: input\n attributes:\n label: Reproduction URL\n description: A URL to a public github.com repository outside the next-auth org that clearly reproduces your issue. You can use our [`next-auth-example`](https://github.com/nextauthjs/next-auth-example) template repository to get started more easily\n validations:\n required: true\n - type: textarea\n attributes:\n label: Describe the issue\n description: Describe us what the issue is and what have you tried so far to fix it. Add any extra useful information in this section. Feel free to use screenshots (but prefer [code blocks](https://docs.github.com/en/get-started/writing-on-github/working-with-advanced-formatting/creating-and-highlighting-code-blocks#syntax-highlighting) over a picture of your code) or a video explanation.\n validations:\n required: true\n - type: textarea\n attributes:\n label: How to reproduce\n description: Explain with clear steps how to reproduce the issue\n validations:\n required: true\n - type: textarea\n attributes:\n label: Expected behavior\n description: Explain what should have happened instead of what actually happened\n validations:\n required: true\n" }, { "path": ".github/ISSUE_TEMPLATE/2_bug_provider.yml", "content": "name: Bug report (Provider)\ndescription: Create a provider-specific report\nlabels: [triage, bug, providers]\nbody:\n - type: markdown\n attributes:\n value: |\n **NOTE:** Issues that are potentially security related should be reported to us by following the [Security guidelines](https://next-auth.js.org/security) rather than on GitHub.\n Thanks for taking the time to fill out this [Provider](https://next-auth.js.org/providers/overview) related issue!\n Is this your first time contributing? Check out this video: https://www.youtube.com/watch?v=cuoNzXFLitc\n\n ### Important :exclamation:\n\n _Providing incorrect/insufficient information or skipping steps to reproduce the issue *will* result in closing the issue or converting to a discussion without further explanation._\n\n If you have a generic question specific to your project, it is best asked in Discussions under the [Questions category](https://github.com/nextauthjs/next-auth/discussions/new?category=Questions)\n - type: dropdown\n attributes:\n label: Provider type\n description: Provider(s) this issue is related to\n multiple: true\n options:\n - \"Credentials\"\n - \"Email\"\n - \"Custom provider\"\n - \"42 School\"\n - \"Apple\"\n - \"Asgardeo\"\n - \"Atlassian\"\n - \"Auth0\"\n - \"Authentik\"\n - \"Azure Active Directory\"\n - \"Azure Active Directory B2C\"\n - \"Azure DevOps\"\n - \"Battlenet\"\n - \"Beyond Identity\"\n - \"Bitbucket\"\n - \"Box\"\n - \"Bungie\"\n - \"ClickUp\"\n - \"Cognito\"\n - \"Concept2\"\n - \"Coinbase\"\n - \"Descope\"\n - \"Discord\"\n - \"Dribbble\"\n - \"Dropbox\"\n - \"Eventbrite\"\n - \"EVE Online\"\n - \"Facebook\"\n - \"FACEIT\"\n - \"Figma\"\n - \"Foursquare\"\n - \"Freshbooks\"\n - \"FusionAuth\"\n - \"GitHub\"\n - \"GitLab\"\n - \"Google\"\n - \"Hugging Face\"\n - \"Identity Server 4\"\n - \"Instagram\"\n - \"Kakao\"\n - \"Frontegg\"\n - \"Keycloak\"\n - \"Kinde\"\n - \"Line\"\n - \"LinkedIn\"\n - \"Logto\"\n - \"Loops\"\n - \"Mailchimp\"\n - \"Mail.ru\"\n - \"Mastodon\"\n - \"Medium\"\n - \"Microsoft Entra ID\"\n - \"Naver\"\n - \"Netlify\"\n - \"NetSuite\"\n - \"Nextcloud\"\n - \"Notion\"\n - \"Okta\"\n - \"OneLogin\"\n - \"Osso\"\n - \"Osu\"\n - \"Patreon\"\n - \"Ping Identity\"\n - \"Pipedrive\"\n - \"Reddit\"\n - \"Roblox\"\n - \"Salesforce\"\n - \"SimpleLogin\"\n - \"Slack\"\n - \"Spotify\"\n - \"Strava\"\n - \"Threads\"\n - \"Tiktok\"\n - \"Todoist\"\n - \"Trakt\"\n - \"Twitch\"\n - \"Twitter\"\n - \"Vk\"\n - \"Webex\"\n - \"Wordpress\"\n - \"WorkOS\"\n - \"Yandex\"\n - \"Zoho\"\n - \"Zoom\"\n validations:\n required: true\n - type: textarea\n attributes:\n label: Environment\n description: |\n Run this command in your project's root folder and paste the result:\n\n `npx envinfo --system --binaries --browsers --npmPackages \"{next,react,next-auth,@auth/*}\"`\n\n Alternatively, you can manually gather the version information from your package.json for these packages: \"next\", \"react\" and \"next-auth\". Please also mention your OS and Node.js version, as well as the browser you are using.\n value: |\n ```\n Paste here\n ```\n validations:\n required: true\n - type: input\n attributes:\n label: Reproduction URL\n description: A URL to a public github.com repository outside the next-auth org that clearly reproduces your issue. You can use our [`next-auth-example`](https://github.com/nextauthjs/next-auth-example) template repository to get started more easily\n validations:\n required: true\n - type: textarea\n attributes:\n label: Describe the issue\n description: Describe us what the issue is and what have you tried so far to fix it. Add any extra useful information in this section. Feel free to use screenshots (but prefer [code blocks](https://docs.github.com/en/get-started/writing-on-github/working-with-advanced-formatting/creating-and-highlighting-code-blocks#syntax-highlighting) over a picture of your code) or a video explanation.\n validations:\n required: true\n - type: textarea\n attributes:\n label: How to reproduce\n description: Explain with clear steps how to reproduce the issue\n validations:\n required: true\n - type: textarea\n attributes:\n label: Expected behavior\n description: Explain what should have happened instead of what actually happened\n validations:\n required: true\n" }, { "path": ".github/ISSUE_TEMPLATE/3_bug_adapter.yml", "content": "name: Bug report (Adapter)\ndescription: Create an adapter-specific report\nlabels: [triage, bug, adapters]\nbody:\n - type: markdown\n attributes:\n value: |\n **NOTE:** Issues that are potentially security related should be reported to us by following the [Security guidelines](https://next-auth.js.org/security) rather than on GitHub.\n Thanks for taking the time to fill out this [Adapter](https://next-auth.js.org/getting-started/adapters) related issue!\n Is this your first time contributing? Check out this video: https://www.youtube.com/watch?v=cuoNzXFLitc\n\n ### Important :exclamation:\n\n _Providing incorrect/insufficient information or skipping steps to reproduce the issue *will* result in closing the issue or converting to a discussion without further explanation._\n\n If you have a generic question specific to your project, it is best asked in Discussions under the [Questions category](https://github.com/nextauthjs/next-auth/discussions/new?category=Questions)\n - type: dropdown\n attributes:\n label: Adapter type\n description: Adapter(s) this issue is related to\n multiple: true\n options:\n - \"Custom adapter\"\n - \"@auth/azure-tables-adapter\"\n - \"@auth/edgedb-adapter\"\n - \"@auth/d1-adapter\"\n - \"@auth/dgraph-adapter\"\n - \"@auth/drizzle-adapter\"\n - \"@auth/dynamodb-adapter\"\n - \"@auth/fauna-adapter\"\n - \"@auth/firebase-adapter\"\n - \"@auth/hasura-adapter\"\n - \"@auth/kysely-adapter\"\n - \"@auth/mikro-orm-adapter\"\n - \"@auth/mongodb-adapter\"\n - \"@auth/neo4j-adapter\"\n - \"@auth/pg-adapter\"\n - \"@auth/pouchdb-adapter\"\n - \"@auth/prisma-adapter\"\n - \"@auth/sequelize-adapter\"\n - \"@auth/supabase-adapter\"\n - \"@auth/surrealdb-adapter\"\n - \"@auth/typeorm-adapter\"\n - \"@auth/unstorage-adapter\"\n - \"@auth/upstash-redis-adapter\"\n - \"@auth/xata-adapter\"\n validations:\n required: true\n - type: textarea\n attributes:\n label: Environment\n description: |\n Run this command in your project's root folder and paste the result:\n\n `npx envinfo --system --binaries --browsers --npmPackages \"{next,react,next-auth,@auth/*}\"`\n\n Alternatively, you can manually gather the version information from your package.json for these packages: \"next\", \"react\" and \"next-auth\". Please also mention your OS and Node.js version, as well as the browser you are using.\n value: |\n ```\n Paste here\n ```\n validations:\n required: true\n - type: input\n attributes:\n label: Reproduction URL\n description: A URL to a public github.com repository outside the next-auth org that clearly reproduces your issue. You can use our [`next-auth-example`](https://github.com/nextauthjs/next-auth-example) template repository to get started more easily\n validations:\n required: true\n - type: textarea\n attributes:\n label: Describe the issue\n description: Describe us what the issue is and what have you tried so far to fix it. Add any extra useful information in this section. Feel free to use screenshots (but prefer [code blocks](https://docs.github.com/en/get-started/writing-on-github/working-with-advanced-formatting/creating-and-highlighting-code-blocks#syntax-highlighting) over a picture of your code) or a video explanation.\n validations:\n required: true\n - type: textarea\n attributes:\n label: How to reproduce\n description: Explain with clear steps how to reproduce the issue\n validations:\n required: true\n - type: textarea\n attributes:\n label: Expected behavior\n description: Explain what should have happened instead of what actually happened\n validations:\n required: true\n" }, { "path": ".github/ISSUE_TEMPLATE/4_documentation.yml", "content": "name: \"Documentation\"\ndescription: Request to update or improve NextAuth.js documentation\nlabels: [\"triage\", \"documentation\"]\nbody:\n - type: textarea\n attributes:\n label: What is the improvement or update you wish to see?\n description: \"Example: The `next-auth` docs are missing information about X.\"\n validations:\n required: true\n - type: textarea\n attributes:\n label: Is there any context that might help us understand?\n description: A clear description of any added context that might help us understand.\n validations:\n required: true\n - type: input\n attributes:\n label: Does the docs page already exist? Please link to it.\n description: \"Example: https://next-auth.js.org/getting-started/introduction\"\n validations:\n required: false\n" }, { "path": ".github/ISSUE_TEMPLATE/config.yml", "content": "blank_issues_enabled: false\ncontact_links:\n - name: Get help from the community (Discord)\n url: https://discord.authjs.dev\n about: Ask questions and discuss with other community members\n - name: Ask a question\n url: https://github.com/nextauthjs/next-auth/discussions/new?category=questions\n about: Ask questions and discuss with other community members\n - name: Feature request\n url: https://github.com/nextauthjs/next-auth/discussions/new?category=ideas\n about: Feature requests should be opened as discussions\n" }, { "path": ".github/PULL_REQUEST_TEMPLATE.md", "content": "\n\n## ☕️ Reasoning\n\n\n\n## 🧢 Checklist\n\n- [ ] Documentation\n- [ ] Tests\n- [ ] Ready to be merged\n\n## 🎫 Affected issues\n\n\n\n## 📌 Resources\n\n- [Security guidelines](https://github.com/nextauthjs/.github/blob/main/SECURITY.md)\n- [Contributing guidelines](https://github.com/nextauthjs/.github/blob/main/CONTRIBUTING.md)\n- [Code of conduct](https://github.com/nextauthjs/.github/blob/main/CODE_OF_CONDUCT.md)\n- [Contributing to Open Source](https://kcd.im/pull-request)\n" }, { "path": ".github/broken-link-checker/action.yml", "content": "name: \"Broken Link Checker\"\ndescription: \"Recursively checks input URL for broken links\"\noutputs:\n version:\n description: \"Check for broken internal links\"\nruns:\n using: \"node20\"\n main: \"dist/index.js\"\n" }, { "path": ".github/broken-link-checker/index.d.ts", "content": "declare module \"broken-link-checker\";\n" }, { "path": ".github/broken-link-checker/package.json", "content": "{\n \"name\": \"broken-link-checker\",\n \"private\": true,\n \"version\": \"0.2.0\",\n \"description\": \"Find broken links as a GitHub Action\",\n \"main\": \"dist/index.js\",\n \"type\": \"module\",\n \"scripts\": {\n \"dev\": \"tsx src/index.ts\",\n \"build\": \"npx tsup --clean --minify --format esm src/index.ts\",\n \"types\": \"tsc\"\n },\n \"keywords\": [\n \"typescript\",\n \"broken-link-checker\",\n \"github-action\"\n ],\n \"author\": \"ndom91 (https://ndo.dev/)\",\n \"license\": \"MIT\",\n \"devDependencies\": {\n \"@types/node\": \"^20.11.15\",\n \"tsup\": \"^8.0.1\",\n \"tsx\": \"^4.7.0\",\n \"typescript\": \"^5.3.3\"\n },\n \"dependencies\": {\n \"@actions/core\": \"^1.10.1\",\n \"@actions/github\": \"^6.0.0\",\n \"broken-link-checker\": \"^0.7.8\"\n }\n}\n" }, { "path": ".github/broken-link-checker/src/index.ts", "content": "import blc from \"broken-link-checker\"\nimport { setFailed } from \"@actions/core\"\nimport * as github from \"@actions/github\"\n\ntype TODO = any\ntype Output = {\n errors: any[]\n links: any[]\n pages: any[]\n sites: any[]\n}\ntype Comment = {\n id: number\n}\ntype FindBotComment = {\n octokit: TODO\n owner: string\n repo: string\n prNumber: number\n}\n\nconst COMMENT_TAG = \"# Broken Link Checker\"\n\nasync function findBotComment({\n octokit,\n owner,\n repo,\n prNumber,\n}: FindBotComment): Promise {\n try {\n const { data: comments } = await octokit.rest.issues.listComments({\n owner,\n repo,\n issue_number: prNumber,\n })\n\n return comments.find((c: TODO) => c.body?.includes(COMMENT_TAG))\n } catch (error) {\n setFailed(\"Error finding bot comment: \" + error)\n return undefined\n }\n}\n\nasync function updateCheckStatus(\n brokenLinkCount: number,\n commentUrl?: string\n): Promise {\n const checkName = \"Broken Link Checker\"\n const summary = `Found ${brokenLinkCount} broken links in this PR. Click details for a list.`\n const text = `[See the comment for details](${commentUrl})`\n const { context, getOctokit } = github\n const octokit = getOctokit(process.env.GITHUB_TOKEN!)\n const { owner, repo } = context.repo\n\n // Can only update status on 'pull_request' events\n if (context.payload.pull_request) {\n const pullRequest = context.payload.pull_request\n const sha = pullRequest?.head.sha\n\n const checkParams = {\n owner,\n repo,\n name: checkName,\n head_sha: sha,\n status: \"completed\" as const,\n conclusion: \"failure\" as const,\n output: {\n title: checkName,\n summary: summary,\n text: text,\n },\n }\n\n try {\n await octokit.rest.checks.create(checkParams)\n } catch (error) {\n setFailed(\"Failed to create check: \" + error)\n }\n }\n}\n\nconst postComment = async (\n outputMd: string,\n brokenLinkCount: number = 0\n): Promise => {\n try {\n const { context, getOctokit } = github\n const octokit = getOctokit(process.env.GITHUB_TOKEN!)\n const { owner, repo } = context.repo\n let prNumber\n\n // Handle various trigger events\n if (context.payload.pull_request) {\n // Triggered by `pull_request`\n prNumber = context.payload.pull_request?.number\n } else if (context.payload.issue) {\n // Triggered by `issue_comment`\n prNumber = context.payload?.issue?.number\n }\n\n if (!prNumber) {\n setFailed(\"Count not find PR Number\")\n return \"\"\n }\n\n const botComment = await findBotComment({\n octokit,\n owner,\n repo,\n prNumber,\n })\n if (botComment) {\n console.log(\"Updating Comment\")\n const { data } = await octokit.rest.issues.updateComment({\n owner,\n repo,\n comment_id: botComment?.id,\n body: outputMd,\n })\n\n return data.html_url\n } else if (brokenLinkCount > 0) {\n console.log(\"Creating Comment\")\n const { data } = await octokit.rest.issues.createComment({\n owner,\n repo,\n issue_number: prNumber,\n body: outputMd,\n })\n return data.html_url\n }\n return \"\"\n } catch (error) {\n setFailed(\"Error commenting: \" + error)\n return \"\"\n }\n}\n\nconst generateOutputMd = (output: Output): string => {\n // Add comment header\n let outputMd = `${COMMENT_TAG}\n\n> **${output.links.length}** broken links found. Links organised below by source page, or page where they were found.\n`\n\n // Build map of page and array of its found broken links\n const linksByPage = output.links.reduce((acc, link) => {\n if (!acc[link.base.resolved]) {\n acc[link.base.resolved] = []\n acc[link.base.resolved].push(link)\n } else {\n acc[link.base.resolved].push(link)\n }\n return acc\n }, {})\n\n // Write out markdown tables of these links\n Object.entries(linksByPage).forEach(([page, links], i) => {\n outputMd += `\n\n### ${i + 1}) [${new URL(page).pathname}](${page})\n\n| Target Link | Link Text |\n|------|------|\n`\n\n // @ts-expect-error\n links.forEach((link: TODO) => {\n outputMd += `| [${new URL(link.url.resolved).pathname}](${\n link.url.resolved\n }) | \"${link.html?.text?.trim().replaceAll(\"\\n\", \"\")}\" |\n`\n })\n })\n\n // If there were scrape errors, append to bottom of comment\n if (output.errors.length) {\n outputMd += `\n### Errors\n`\n output.errors.forEach((error) => {\n outputMd += `\n${error}\n`\n })\n }\n\n return outputMd\n}\n\n// Main function that triggers link validation across .mdx files\nasync function brokenLinkChecker(): Promise {\n if (!process.env.GITHUB_TOKEN) {\n throw new Error(\"GITHUB_TOKEN is required\")\n }\n const siteUrl =\n process.env.VERCEL_PREVIEW_URL || \"https://authjs-nextra-docs.vercel.app\"\n const output: Output = {\n errors: [],\n links: [],\n pages: [],\n sites: [],\n }\n\n const options = {\n excludeExternalLinks: true,\n honorRobotExclusions: false,\n filterLevel: 0,\n excludedKeywords: [],\n }\n\n const siteChecker = new blc.SiteChecker(options, {\n error: (error: TODO) => {\n output.errors.push(error)\n },\n link: (result: TODO) => {\n if (result.broken) {\n output.links.push(result)\n }\n },\n end: async () => {\n if (output.links.length) {\n // DEBUG\n // console.debug(output.links)\n\n // Skip links that returned 308\n const brokenLinksForAttention = output.links.filter(\n (link) => link.broken && ![\"HTTP_308\"].includes(link.brokenReason)\n )\n\n const outputMd = generateOutputMd({\n errors: output.errors,\n links: brokenLinksForAttention,\n pages: [],\n sites: [],\n })\n const commentUrl = await postComment(\n outputMd,\n brokenLinksForAttention.length\n )\n\n // Update GitHub \"check\" status\n await updateCheckStatus(brokenLinksForAttention.length, commentUrl)\n\n brokenLinksForAttention.length && setFailed(`Found broken links`)\n }\n },\n })\n\n siteChecker.enqueue(siteUrl)\n}\n\nbrokenLinkChecker()\n" }, { "path": ".github/broken-link-checker/tsconfig.json", "content": "{\n \"compilerOptions\": {\n \"noEmit\": true,\n \"target\": \"esnext\",\n \"moduleResolution\": \"node\",\n \"rootDir\": \"./src\",\n \"types\": [\"./index.d.ts\", \"node\"],\n \"strict\": true,\n \"noImplicitAny\": true,\n \"allowSyntheticDefaultImports\": true\n }\n}\n" }, { "path": ".github/dependabot.yml", "content": "# To get started with Dependabot version updates, you'll need to specify which\n# package ecosystems to update and where the package manifests are located.\n# Please see the documentation for all configuration options:\n# https://docs.github.com/github/administering-a-repository/configuration-options-for-dependency-updates\n\nversion: 2\nupdates:\n - package-ecosystem: \"npm\" # See documentation for possible values\n directory: \"/\" # Location of package manifests\n schedule:\n interval: \"weekly\"\n versioning-strategy: \"increase\"\n allow:\n - dependency-name: \"oauth4webapi\"\n - dependency-name: \"jose\"\n" }, { "path": ".github/good-first-issue.md", "content": "This issue was marked with the `good first issue` label by a maintainer.\n\nThis means that it is a good candidate for someone interested in contributing to the project, but does not know where to start.\n\nHave a look at the [Contributing Guide](https://github.com/nextauthjs/.github/blob/main/CONTRIBUTING.md) first.\n\nThis will help you set up your development environment to get started. When you are ready, open a PR, and link back to this issue in the form of adding `Fixes #1234` to the PR description, where `1234` is the issue number. This will auto-close the issue when the PR gets merged, making it easier for us to keep track of what has been fixed.\n\nPlease make sure that - if applicable - you add tests for the changes you make.\n\nIf you have any questions, feel free to ask in the comments below or the PR. Generally, you don't need to `@mention` anyone directly, as we will get notified anyway and will respond as soon as we can)\n\n> [!NOTE] \n> There is no need to ask for permission \"can I work on this?\" Please, go ahead if there is no linked PR :slightly_smiling_face:\n" }, { "path": ".github/help-needed.md", "content": "This issue was marked with the `help needed` label by a maintainer.\n\nThe issue might require some digging, so it is recommended to have some experience with the project.\n\nHave a look at the [Contributing Guide](https://github.com/nextauthjs/.github/blob/main/CONTRIBUTING.md) first.\n\nThis will help you set up your development environment to get started. When you are ready, open a PR, and link back to this issue in the form of adding `Fixes #1234` to the PR description, where `1234` is the issue number. This will auto-close the issue when the PR gets merged, making it easier for us to keep track of what has been fixed.\n\nPlease make sure that - if applicable - you add tests for the changes you make.\n\nIf you have any questions, feel free to ask in the comments below or the PR. Generally, you don't need to `@mention` anyone directly, as we will get notified anyway and will respond as soon as we can)\n\n> [!NOTE] \n> There is no need to ask for permission \"can I work on this?\" Please, go ahead if there is no linked PR :slightly_smiling_face:\n" }, { "path": ".github/invalid-reproduction.md", "content": "We could not detect a valid reproduction link. **Make sure to follow the bug report template carefully.**\n\n### Why was this issue closed?\n\nTo be able to investigate, we need access to a reproduction to identify what triggered the issue. We need a link to a **public** GitHub repository. Example: ([NextAuth.js example repository](https://github.com/nextauthjs/next-auth-example)).\n\nThe bug template that you filled out has a section called \"Reproduction URL\", which is where you should provide the link to the reproduction.\n\n- If you did not provide a link or the link you provided is not hosted on github.com outside of the next-auth organization, we will close the issue.\n- If you provide a link to a private repository, we will close the issue.\n- If you provide a link to a repository but not in the correct section, we will close the issue.\n\n### What should I do?\n\nDepending on the reason the issue was closed, you can do the following:\n\n- If you did not provide a link hosted on github.com outside of the next-auth organization, please open a new issue with a link to such a reproduction.\n- If you provided a link to a private repository, please open a new issue with a link to a public repository.\n- If you provided a link to a repository but not in the correct section, please open a new issue with a link to a reproduction in the correct section.\n\n**In general, assume that we should not go through a lengthy onboarding process at your company code only to be able to verify an issue.**\n\n### My repository is private and cannot make it public\n\nIn most cases, a private repo will not be a sufficient **minimal reproduction**, as this codebase might contain a lot of unrelated parts that would make our investigation take longer. Please do **not** make it public. Instead, create a new repository using the templates above, adding the relevant code to reproduce the issue. Common things to look out for:\n\n- Remove any code that is not related to the issue. (pages, API Routes, components, etc.)\n- Remove any dependencies that are not related to the issue.\n- Remove any third-party service that would require us to sign up for an account to reproduce the issue.\n- Remove any environment variables that are not related to the issue.\n- Remove private packages that we do not have access to.\n- If the issue is not related to a monorepo specifically, try to reproduce the issue without a complex monorepo setup\n\n### I did not open this issue, but it is relevant to me, what can I do to help?\n\nAnyone experiencing the same issue is welcome to provide a minimal reproduction following the above steps by opening a new issue.\n\n### I think my reproduction is good enough, why aren't you looking into it quickly?\n\nWe look into every issue and monitor open issues for new comments.\n\nHowever, sometimes we might miss a few due to the popularity/high traffic of the repository. We apologize, and kindly ask you to refrain from tagging core maintainers, as that will usually not result in increased priority.\n\nUpvoting issues to show your interest will help us prioritize and address them as quickly as possible. That said, every issue is important to us, and if an issue gets closed by accident, we encourage you to open a new one linking to the old issue and we will look into it.\n\n### Useful Resources\n\n- [How to create a Minimal, Complete, and Verifiable example](https://stackoverflow.com/help/mcve)\n- [Bug report: Framework](https://github.com/nextauthjs/next-auth/issues/new?assignees=&labels=triage&projects=&template=1_bug_framework.yml)\n- [Bug report: Provider](https://github.com/nextauthjs/next-auth/issues/new?assignees=&labels=triage%2Cproviders&projects=&template=2_bug_provider.yml)\n- [Bug report: Adapter](https://github.com/nextauthjs/next-auth/issues/new?assignees=&labels=triage%2Cadapters&projects=&template=3_bug_adapter.yml)\n" }, { "path": ".github/pr-labeler.yml", "content": "# https://github.com/actions/labeler#create-githublabeleryml\nadapters: [\"packages/core/src/adapters.ts\", \"packages/adapter-*/**/*\"]\ncore: [\"packages/core/src/**/*\"]\nazure-tables: [\"packages/adapter-azure-tables/**/*\"]\nedgedb: [\"packages/adapter-edgedb/**/*\"]\nd1: [\"packages/adapter-d1/**/*\"]\ndgraph: [\"packages/adapter-dgraph/**/*\"]\ndrizzle: [\"packages/adapter-drizzle/**/*\"]\ndocumentation: [\"packages/docs/docs/**/*\"]\ndynamodb: [\"packages/adapter-dynamodb/**/*\"]\nexamples: [\"apps/examples/**/*\"]\nexpress: [\"packages/frameworks-express/**/*\"]\nfauna: [\"packages/adapter-fauna/**/*\"]\nfirebase: [\"packages/adapter-firebase/**/*\"]\nhasura: [\"packages/adapter-hasura/**/*\"]\nframeworks: [\"packages/frameworks-*/**/*\"]\nmikro-orm: [\"packages/adapter-mikro-orm/**/*\"]\nmongodb: [\"packages/adapter-mongodb/**/*\"]\nneo4j: [\"packages/adapter-neo4j/**/*\"]\nnext-auth: [\"packages/next-auth/**/*\"]\npg: [\"packages/adapter-pg/**/*\"]\nneon: [\"packages/adapter-neon/**/*\"]\nplaygrounds: [\"apps/playgrounds/**/*\"]\npouchdb: [\"packages/adapter-pouchdb/**/*\"]\nprisma: [\"packages/adapter-prisma/**/*\"]\nkysely: [\"packages/adapter-kysely/**/*\"]\nproviders: [\"packages/core/src/providers/**/*\"]\nsequelize: [\"packages/adapter-sequelize/**/*\"]\nsolidjs: [\"packages/frameworks-solid-start/**/*\"]\nsupabase: [\"packages/adapter-supabase/**/*\"]\nsurrealdb: [\"packages/adapter-surrealdb/**/*\"]\nsvelte: [\"packages/frameworks-sveltekit/**/*\"]\ntest: [\"**test**/*\"]\ntypeorm: [\"packages/adapter-typeorm/**/*\"]\nunstorage: [\"packages/adapter-unstorage/**/*\"]\nupstash-redis: [\"packages/adapter-upstash-redis/**/*\"]\nxata: [\"packages/adapter-xata/**/*\"]\n" }, { "path": ".github/stale.yml", "content": "# https://github.com/probot/stale#usage\n\ndaysUntilStale: 60\ndaysUntilClose: 7\nexemptLabels:\n - pinned\n - security\n - priority\n - bug\n - triage\n - accepted\nstaleLabel: stale\nonly: issues\nmarkComment: >\n It looks like this issue did not receive any activity for 60 days.\n It will be closed in 7 days if no further activity occurs. If you think your issue\n is still relevant, commenting will keep it open. Thanks!\ncloseComment: >\n To keep things tidy, we are closing this issue for now.\n If you think your issue is still relevant, leave a comment\n and we might reopen it. Thanks!\n" }, { "path": ".github/sync.yml", "content": "nextauthjs/express-auth-example:\n - source: apps/examples/express\n dest: .\n deleteOrphaned: true\n - .github/FUNDING.yml\n - LICENSE\n\nnextauthjs/sveltekit-auth-example:\n - source: apps/examples/sveltekit\n dest: .\n deleteOrphaned: true\n - .github/FUNDING.yml\n - LICENSE\n\nnextauthjs/solid-start-auth-example:\n - source: \"apps/examples/solid-start\"\n dest: .\n deleteOrphaned: true\n - .github/FUNDING.yml\n - LICENSE\n\nnextauthjs/next-auth-example:\n - source: apps/examples/nextjs\n dest: .\n deleteOrphaned: true\n - .github/FUNDING.yml\n - LICENSE\n\nnextauthjs/next-auth-pages-example:\n - source: apps/examples/nextjs-pages\n dest: .\n deleteOrphaned: true\n - .github/FUNDING.yml\n - LICENSE\n\nnextauthjs/qwik-auth-example:\n - source: apps/examples/qwik\n dest: .\n deleteOrphaned: true\n - .github/FUNDING.yml\n - LICENSE\n" }, { "path": ".github/version-pr/action.yml", "content": "name: \"Determine version\"\ndescription: \"Determines npm package version based on PR number and commit SHA\"\noutputs:\n version:\n description: \"npm package version\"\nruns:\n using: \"node20\"\n main: \"index.js\"\n" }, { "path": ".github/version-pr/index.js", "content": "const fs = require(\"fs\")\nconst path = require(\"path\")\nconst core = require(\"@actions/core\")\n\ntry {\n const packageJSONPath = path.join(\n process.cwd(),\n `packages/${process.env.PACKAGE_PATH || \"next-auth\"}/package.json`\n )\n const packageJSON = JSON.parse(fs.readFileSync(packageJSONPath, \"utf8\"))\n\n const sha8 = process.env.GITHUB_SHA.substring(0, 8)\n const prefix = \"0.0.0-\"\n const pr = process.env.PR_NUMBER\n const source = pr ? `pr.${pr}` : \"manual\"\n const packageVersion = `${prefix}${source}.${sha8}`\n packageJSON.version = packageVersion\n core.setOutput(\"version\", packageVersion)\n fs.writeFileSync(packageJSONPath, JSON.stringify(packageJSON))\n} catch (error) {\n core.setFailed(error.message)\n}\n" }, { "path": ".github/workflows/broken-link-checker.yml", "content": "name: \"Broken Link Checker\"\n\non:\n issue_comment:\n types: [edited]\n\npermissions:\n pull-requests: write\n checks: write\n\njobs:\n broken-link-checker:\n runs-on: ubuntu-latest\n if: github.actor == 'vercel[bot]'\n steps:\n - uses: actions/checkout@v4\n - uses: actions/setup-node@v4\n - run: corepack enable\n - uses: aaimio/vercel-preview-url-action@v2.2.0\n id: vercel_preview_url\n with:\n GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}\n preview_url_regexp: https.*\\/(.*-authjs.vercel.app)\n - name: Install dependencies\n run: cd ./.github/broken-link-checker && pnpm install --ignore-workspace && pnpm build\n - name: Run link checker\n uses: ./.github/broken-link-checker\n id: broken-links\n env:\n GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}\n VERCEL_PREVIEW_URL: https://${{ steps.vercel_preview_url.outputs.vercel_preview_url }}\n" }, { "path": ".github/workflows/codeql-analysis.yml", "content": "name: Code Analysis\n\non:\n push:\n branches: [beta, next]\n pull_request:\n branches: [main]\n schedule:\n - cron: \"43 17 * * 2\"\n\njobs:\n analyze:\n name: Verify\n runs-on: ubuntu-latest\n strategy:\n fail-fast: false\n matrix:\n language: [\"javascript\"]\n steps:\n - name: Checkout repository\n uses: actions/checkout@v3\n - name: Initialize CodeQL\n uses: github/codeql-action/init@v2\n with:\n languages: ${{ matrix.language }}\n - name: Perform CodeQL Analysis\n uses: github/codeql-action/analyze@v2\n" }, { "path": ".github/workflows/pr-labeler.yml", "content": "# https://github.com/actions/labeler#create-workflow\n\nname: Label Pull Requests\n\non:\n pull_request_target:\n\njobs:\n prs:\n name: Triage\n runs-on: ubuntu-latest\n steps:\n - uses: actions/labeler@v4\n with:\n repo-token: \"${{ secrets.GITHUB_TOKEN }}\"\n configuration-path: \".github/pr-labeler.yml\"\n" }, { "path": ".github/workflows/release.yml", "content": "name: Release\n\non:\n push:\n branches:\n - main\n - beta\n - next\n - 3.x\n pull_request:\n merge_group:\n # TODO: Support latest releases\n workflow_dispatch:\n inputs:\n name:\n type: choice\n description: Package name (npm)\n options:\n - \"next-auth\"\n - \"@auth/core\"\n - \"@auth/express\"\n - \"@auth/nuxt\"\n - \"@auth/qwik\"\n - \"@auth/solid-start\"\n - \"@auth/sveltekit\"\n - \"@auth/azure-tables-adapter\"\n - \"@auth/d1-adapter\"\n - \"@auth/dgraph-adapter\"\n - \"@auth/drizzle-adapter\"\n - \"@auth/dynamodb-adapter\"\n - \"@auth/edgedb-adapter\"\n - \"@auth/fauna-adapter\"\n - \"@auth/firebase-adapter\"\n - \"@auth/hasura-adapter\"\n - \"@auth/kysely-adapter\"\n - \"@auth/mikro-orm-adapter\"\n - \"@auth/mongodb-adapter\"\n - \"@auth/neo4j-adapter\"\n - \"@auth/pg-adapter\"\n - \"@auth/pouchdb-adapter\"\n - \"@auth/prisma-adapter\"\n - \"@auth/sequelize-adapter\"\n - \"@auth/supabase-adapter\"\n - \"@auth/surrealdb-adapter\"\n - \"@auth/test-adapter\"\n - \"@auth/typeorm-adapter\"\n - \"@auth/typeorm-legacy-adapter\"\n - \"@auth/unstorage-adapter\"\n - \"@auth/upstash-redis-adapter\"\n - \"@auth/xata-adapter\"\npermissions:\n id-token: write\n\nenv:\n TURBO_TOKEN: ${{ secrets.TURBO_TOKEN }}\n TURBO_TEAM: ${{ vars.TURBO_TEAM }}\n FORCE_COLOR: true\n NPM_CONFIG_PROVENANCE: true\n\njobs:\n test:\n name: Test\n runs-on: ubuntu-22.04\n steps:\n - name: Init\n uses: actions/checkout@v4\n with:\n fetch-depth: 0\n - name: Install pnpm\n uses: pnpm/action-setup@v4\n - name: Setup Node\n uses: actions/setup-node@v4\n with:\n node-version-file: \".nvmrc\"\n cache: \"pnpm\"\n - name: Install dependencies\n run: pnpm install\n - name: Peek\n run: pnpm peek\n if: ${{ github.repository == 'nextauthjs/next-auth' && github.event_name == 'push' && github.ref == 'refs/heads/main' }}\n - name: Get base commit SHA from main\n id: get_base_sha\n run: echo \"BASE_SHA=$(git merge-base origin/main HEAD)\" >> $GITHUB_ENV\n - name: Check for changes under /packages\n id: check-packages\n run: |\n if git diff --name-only ${{ env.BASE_SHA }}...HEAD | grep '^packages/'; then\n echo \"PACKAGES_CHANGES=true\" >> $GITHUB_ENV\n else\n echo \"PACKAGES_CHANGES=false\" >> $GITHUB_ENV\n fi\n - name: Build\n if: ${{ env.PACKAGES_CHANGES == 'true' || github.ref == 'refs/heads/main' }}\n run: pnpm build\n - name: Check formatting\n run: pnpm format\n timeout-minutes: 15\n - name: Run unit tests\n if: ${{ env.PACKAGES_CHANGES == 'true' || github.ref == 'refs/heads/main' }}\n run: pnpm test\n - name: Install Playwright\n if: github.repository == 'nextauthjs/next-auth'\n run: pnpm exec playwright install --with-deps chromium\n - name: Run E2E tests (Nextjs-Docker)\n continue-on-error: true\n if: false\n timeout-minutes: 15\n run: cd apps/examples/nextjs-docker && pnpm test:docker\n - name: Run E2E tests\n continue-on-error: true # TODO: Make this less flakey\n if: ${{ env.PACKAGES_CHANGES == 'true' || github.ref == 'refs/heads/main' }}\n timeout-minutes: 15\n env:\n AUTH_SECRET: ${{ secrets.AUTH_SECRET }}\n TEST_KEYCLOAK_USERNAME: ${{ secrets.TEST_KEYCLOAK_USERNAME }}\n TEST_KEYCLOAK_PASSWORD: ${{ secrets.TEST_KEYCLOAK_PASSWORD }}\n AUTH_KEYCLOAK_ID: ${{ secrets.AUTH_KEYCLOAK_ID }}\n AUTH_KEYCLOAK_SECRET: ${{ secrets.AUTH_KEYCLOAK_SECRET }}\n AUTH_KEYCLOAK_ISSUER: ${{ secrets.AUTH_KEYCLOAK_ISSUER }}\n AUTH_TRUST_HOST: 1\n DEBUG: \"pw:webserver\"\n run: pnpm test:e2e\n - uses: actions/upload-artifact@v4\n name: Upload Playwright artifacts\n with:\n name: playwright-traces\n path: \"**/packages/next-auth/test-results/*/trace.zip\"\n retention-days: 7\n - uses: codecov/codecov-action@v4\n if: always()\n name: Coverage\n with:\n token: ${{ secrets.CODECOV_TOKEN }}\n\n release-branch:\n name: Publish branch\n timeout-minutes: 120\n runs-on: ubuntu-latest\n needs: test\n if: ${{ github.event_name == 'push' }}\n environment: Production\n steps:\n - name: Init\n uses: actions/checkout@v4\n with:\n fetch-depth: 0\n # Please upvote https://github.com/orgs/community/discussions/13836\n token: ${{ secrets.GH_PAT }}\n - name: Install pnpm\n uses: pnpm/action-setup@v4\n - name: Setup Node\n uses: actions/setup-node@v4\n with:\n node-version-file: \".nvmrc\"\n cache: \"pnpm\"\n - name: Install dependencies\n run: pnpm install\n - name: Publish to npm and GitHub\n run: pnpm release\n env:\n # Please upvote https://github.com/orgs/community/discussions/13836\n GITHUB_TOKEN: ${{ secrets.GH_PAT }}\n NPM_TOKEN: ${{ secrets.NPM_TOKEN }}\n release-pr:\n name: Publish PR\n timeout-minutes: 120\n runs-on: ubuntu-latest\n needs: test\n if: ${{ github.event_name == 'pull_request' }}\n environment: Preview\n steps:\n - name: Init\n uses: actions/checkout@v4\n - name: Install pnpm\n uses: pnpm/action-setup@v4\n - name: Setup Node\n uses: actions/setup-node@v4\n with:\n node-version-file: \".nvmrc\"\n cache: \"pnpm\"\n - name: Install dependencies\n run: pnpm install\n - name: Determine version\n uses: ./.github/version-pr\n id: determine-version\n env:\n PR_NUMBER: ${{ github.event.number }}\n - name: Publish to npm\n run: |\n cd packages/core\n echo \"//registry.npmjs.org/:_authToken=$NPM_TOKEN\" >> .npmrc\n pnpm publish --no-git-checks --access public --tag experimental\n env:\n NPM_TOKEN: ${{ secrets.NPM_TOKEN }}\n - name: Comment version on PR\n uses: NejcZdovc/comment-pr@v2\n with:\n message:\n \"🎉 Experimental release [published 📦️ on npm](https://npmjs.com/package/@auth/core/v/${{ env.VERSION }})!\\n \\\n ```sh\\npnpm add @auth/core@${{ env.VERSION }}\\n```\\n \\\n ```sh\\nyarn add @auth/core@${{ env.VERSION }}\\n```\\n \\\n ```sh\\nnpm i @auth/core@${{ env.VERSION }}\\n```\"\n env:\n VERSION: ${{ steps.determine-version.outputs.version }}\n GITHUB_TOKEN: ${{ secrets.GH_PAT }}\n release-manual:\n name: Publish manually\n runs-on: ubuntu-latest\n if: ${{ github.event_name == 'workflow_dispatch' }}\n steps:\n - name: Init\n uses: actions/checkout@v4\n - name: Install pnpm\n uses: pnpm/action-setup@v4\n - name: Setup Node\n uses: actions/setup-node@v4\n with:\n node-version-file: \".nvmrc\"\n cache: \"pnpm\"\n - name: Install dependencies\n run: pnpm install\n - name: Map package name to path\n run: |\n case \"${{ github.event.inputs.name }}\" in\n *\"-adapter\")\n adapter_name=$(echo \"${{ github.event.inputs.name }}\" | sed 's/@auth\\///' | sed 's/-adapter//')\n echo \"PACKAGE_PATH=adapter-${adapter_name}\" >> $GITHUB_ENV\n ;;\n \"next-auth\")\n echo \"PACKAGE_PATH=next-auth\" >> $GITHUB_ENV\n ;;\n \"@auth/core\")\n echo \"PACKAGE_PATH=core\" >> $GITHUB_ENV\n ;;\n *)\n framework_name=$(echo \"${{ github.event.inputs.name }}\" | sed 's/@auth\\///')\n echo \"PACKAGE_PATH=frameworks-${framework_name}\" >> $GITHUB_ENV\n ;;\n esac\n - name: Determine version\n uses: ./.github/version-pr\n id: determine-version\n env:\n PACKAGE_PATH: ${{ env.PACKAGE_PATH }}\n - name: Publish to npm\n run: |\n pnpm build\n cd packages/$PACKAGE_PATH\n echo \"//registry.npmjs.org/:_authToken=$NPM_TOKEN\" >> .npmrc\n pnpm publish --no-git-checks --access public --tag experimental\n echo \"🎉 Experimental release published 📦️ on npm: https://npmjs.com/package/${{ github.event.inputs.name }}/v/${{ env.VERSION }}\"\n echo \"Install via: pnpm add ${{ github.event.inputs.name }}@${{ env.VERSION }}\"\n env:\n NPM_TOKEN: ${{ secrets.NPM_TOKEN }}\n PACKAGE_PATH: ${{ env.PACKAGE_PATH }}\n VERSION: ${{ steps.determine-version.outputs.version }}\n" }, { "path": ".github/workflows/sync-examples.yml", "content": "name: Sync Example Repositories\non:\n push:\n branches:\n - main\n workflow_dispatch:\njobs:\n sync:\n runs-on: ubuntu-latest\n steps:\n - name: Checkout Repository\n uses: actions/checkout@v3\n - name: Run GitHub File Sync\n uses: balazsorban44/repo-file-sync-action@master\n with:\n GH_PAT: ${{ secrets.GH_PAT }}\n IS_FINE_GRAINED: true\n SKIP_PR: true\n ORIGINAL_MESSAGE: true\n" }, { "path": ".github/workflows/triage.yml", "content": "name: Triage issue\non:\n issues:\n types: [labeled, opened]\n issue_comment:\n types: [created]\n\nenv:\n GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}\n\npermissions:\n issues: write\n\njobs:\n triage:\n runs-on: ubuntu-latest\n steps:\n - name: Nissuer\n uses: balazsorban44/nissuer@1.9.2\n with:\n label-area-prefix: \"\"\n label-area-section: \"[Provider|Adapter] type(.*)### Environment\"\n label-comments: '{ \"incomplete\": \".github/invalid-reproduction.md\", \"good first issue\": \".github/good-first-issue.md\", \"help needed\": \".github/help-needed.md\" }'\n reproduction-link-section: \"### Reproduction URL(.*)### Describe the issue\"\n reproduction-invalid-label: \"invalid reproduction\"\n reproduction-issue-labels: \"bug,\"\n reproduction-blocklist: \"github.com/nextauthjs.*\"\n" }, { "path": ".gitignore", "content": "# Misc\n.DS_Store\n.eslintcache\n.env\n.env.local\n.env.development.local\n.env.test.local\n.env.production.local\npackages/*/.npmrc\n\n\nnpm-debug.log*\nyarn-debug.log*\nyarn-error.log*\nfirebase-debug.log\nui-debug.log\n.pnpm-debug.log\n.husky\ntmp\n\n# Dependencies\nnode_modules\n\n# Build dirs\n.next\nbuild\ndist\n\n# Generated files\n.cache-loader\npackages/next-auth/providers\n# copied from @auth/core\npackages/frameworks-*/**/providers\npackages/*/*.js\n!packages/*/typedoc.config.js\npackages/*/*.d.ts\npackages/*/*.d.ts.map\npackages/*/lib\npackages/**/generated\n.xata*\n\n# Qwik needs to use .mjs. REVIEW: Check back, can we just use .js?\npackages/*/*.mjs\n\n# Development app\napps/dev/src/css\napps/dev/prisma/migrations\napps/dev/typeorm\napps/dev/nextjs-2\n\n# VS\n/.vs/slnx.sqlite-journal\n/.vs/slnx.sqlite\n/.vs\n.vscode/generated*\n\n# Jetbrains\n.idea\n\n# GitHub Actions runner\n/actions-runner\n/_work\n\n# DB\ndev.db*\npackages/adapter-prisma/prisma/dev.db\npackages/adapter-prisma/prisma/migrations\ndb.sqlite\npackages/adapter-supabase/supabase/.branches\npackages/adapter-drizzle/.drizzle\n\n# Tests\ncoverage\ndynamodblocal-bin\nfirestore-debug.log\ntest.schema.gql\ntest-results\nplaywright-report\nblob-report\nplaywright/.cache\n\n\n# Turborepo\n.turbo\n\n# Docs\ndocs/.next\ndocs/manifest.mjs\n\n# Core\npackages/core/src/providers/provider-types.ts\npackages/core/lib\npackages/core/providers\npackages/core/src/lib/pages/styles.ts\ndocs/docs/reference/core\n\n# Next.js\npackages/next-auth/lib\npackages/next-auth/providers\n# copied from @auth/core\npackages/next-auth/src/providers\ndocs/docs/reference/nextjs\n\n# SvelteKit\npackages/frameworks-sveltekit/index.*\npackages/frameworks-sveltekit/client.*\npackages/frameworks-sveltekit/.svelte-kit\npackages/frameworks-sveltekit/package\npackages/frameworks-sveltekit/vite.config.js.timestamp-*\npackages/frameworks-sveltekit/vite.config.ts.timestamp-*\ndocs/docs/reference/sveltekit\n\n# SolidStart\ndocs/docs/reference/solidstart\n\n\n# Express\ndocs/docs/reference/express\n\n\n# Adapters\ndocs/docs/reference/adapter\n\n## Drizzle migration folder\n.drizzle\n" }, { "path": ".nvmrc", "content": "22" }, { "path": ".prettierignore", "content": ".prettierignore\n.cache-loader\n.DS_Store\n.pnpm-debug.log\n.turbo\n.vscode/generated*\n/_work\n/actions-runner\nnode_modules\npatches\npnpm-lock.yaml\n.github/actions/issue-validator/index.mjs\n*.d.ts\n*.d.ts.map\n**/*.sh\n\n.svelte-kit\n.next\n.nuxt\n\n# --------------- Docs ---------------\n\n.next\ndocs/pages/reference\nstatic\ndocs/manifest.mjs\n\n# --------------- Packages ---------------\n\ncoverage\ndist\npackages/**/*.cjs\npackages/**/*.js\n!packages/*/scripts/*.js\n\n# @auth/core\npackages/core/src/providers/provider-types.ts\npackages/core/src/lib/pages/styles.ts\n\n# @auth/sveltekit\npackages/frameworks-sveltekit/package\npackages/frameworks-sveltekit/vite.config.{js,ts}.timestamp-*\n\n# @auth/express\npackages/frameworks-express/providers\n\n# next-auth\npackages/next-auth/src/providers/provider-types.ts\npackages/next-auth/css/index.css\n\n# Adapters\n.branches\ndb.sqlite\ndev.db\ndynamodblocal-bin\nfirebase-debug.log\nfirestore-debug.log\nmigrations\ntest.schema.gql\n\n# --------------- Apps ---------------\n\n# Examples should have their own Prettier config since they are templates too\napps/example-sveltekit\n\n# Development app\napps/dev/prisma\napps/dev/migrations\napps/dev/typeorm\n" }, { "path": ".vscode/extensions.json", "content": "{\n \"recommendations\": [\"esbenp.prettier-vscode\", \"bradlc.vscode-tailwindcss\"]\n}\n" }, { "path": ".vscode/settings.json", "content": "{\n \"typescript.tsdk\": \"node_modules/typescript/lib\",\n \"openInGitHub.remote.branch\": \"main\",\n \"typescript.preferences.importModuleSpecifierEnding\": \"js\",\n \"editor.formatOnSave\": true,\n \"editor.defaultFormatter\": \"esbenp.prettier-vscode\"\n}\n" }, { "path": ".vscode/snippets.code-snippets", "content": "{\n \"oauth2-spec\": {\n \"description\": \"Markdown link to OAuth 2 specification\",\n \"scope\": \"typescript\",\n \"prefix\": \"oauth2\",\n \"body\": [\"[OAuth 2](https://datatracker.ietf.org/doc/html/rfc6749)\"],\n },\n \"oidc-spec\": {\n \"description\": \"Markdown link to OpenID Connect specification\",\n \"scope\": \"typescript\",\n \"prefix\": \"oidc\",\n \"body\": [\"[OIDC](https://openid.net/specs/openid-connect-core-1_0.html)\"],\n },\n}\n" }, { "path": "LICENSE", "content": "ISC License\n\nCopyright (c) 2022-2024, Balázs Orbán\n\nPermission to use, copy, modify, and/or distribute this software for any\npurpose with or without fee is hereby granted, provided that the above\ncopyright notice and this permission notice appear in all copies.\n\nTHE SOFTWARE IS PROVIDED \"AS IS\" AND THE AUTHOR DISCLAIMS ALL WARRANTIES\nWITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF\nMERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR\nANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES\nWHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN\nACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF\nOR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.\n" }, { "path": "README.md", "content": "

\n
\n \n

Auth.js

\n

Authentication for the Web.

\n

Open Source. Full Stack. Own Your Data.

\n

\n \"X\n \"NPM \n \n \"Downloads\"\n \"GitHub\n \n \"TypeScript\"\n

\n

\n Auth.js is a set of open-source packages that are built on standard Web APIs for authentication in modern applications with any framework on any platform in any JS runtime.\n

\n

\n\n> Auth js is now part of [Better Auth](https://better-auth.com/blog/authjs-joins-better-auth). We recommend new projects to start with Better Auth unless there are some very specific feature gaps (most notably stateless session management without a database).\n\n## Features\n\n### Flexible and easy to use\n\n- Designed to work with any OAuth service, it supports 2.0+, OIDC\n- Built-in support for [many popular sign-in services](https://github.com/nextauthjs/next-auth/tree/main/packages/core/src/providers)\n- Email/Passwordless authentication\n- Passkeys/WebAuthn support\n- Bring Your Database - or none! - stateless authentication with any backend (Active Directory, LDAP, etc.)\n- Runtime-agnostic, runs anywhere! (Docker, Node.js, Serverless, etc.)\n\n### Own your data\n\nAuth.js can be used with or without a database.\n\n- An open-source solution that allows you to keep control of your data\n- Built-in support for [MySQL, MariaDB, Postgres, Microsoft SQL Server, MongoDB, SQLite, GraphQL, etc.](https://adapters.authjs.dev)\n- Works great with databases from popular hosting providers\n\n### Secure by default\n\n- Promotes the use of passwordless sign-in mechanisms\n- Designed to be secure by default and encourage best practices for safeguarding user data\n- Uses Cross-Site Request Forgery (CSRF) Tokens on POST routes (sign in, sign out)\n- Default cookie policy aims for the most restrictive policy appropriate for each cookie\n- When JSON Web Tokens are used, they are encrypted by default (JWE) with A256CBC-HS512\n- Features tab/window syncing and session polling to support short-lived sessions\n- Attempts to implement the latest guidance published by [Open Web Application Security Project](https://owasp.org)\n\nAdvanced configuration allows you to define your routines to handle controlling what accounts are allowed to sign in, for encoding and decoding JSON Web Tokens and to set custom cookie security policies and session properties, so you can control who can sign in and how often sessions have to be re-validated.\n\n### TypeScript\n\nAuth.js libraries are written with type safety in mind. [Check out the docs](https://authjs.dev/getting-started/typescript) for more information.\n\n## Security\n\nIf you think you have found a vulnerability (or are not sure) in Auth.js or any of the related packages (i.e. Adapters), we ask you to read our [Security Policy](https://authjs.dev/security) to reach out responsibly. Please do not open Pull Requests/Issues/Discussions before consulting with us.\n\n## Acknowledgments\n\n[Auth.js is made possible thanks to all of its contributors.](https://authjs.dev/contributors)\n\n\n \n\n
\n\n
\n\n## Contributing\n\nWe're open to all community contributions! If you'd like to contribute in any way, please first read\nour [Contributing Guide](https://github.com/nextauthjs/.github/blob/main/CONTRIBUTING.md).\n\n## License\n\nISC\n" }, { "path": "apps/dev/express/.gitignore", "content": "# API keys and secrets\n.env\n\n# Dependency directory\nnode_modules\n\n# Editors\n.idea\n*.iml\n.vscode/settings.json\n\n# OS metadata\n.DS_Store\nThumbs.db\n\n# Ignore built ts files\ndist/**/*\n\n# Ignore built css files\n/public/css/output.css\n\n" }, { "path": "apps/dev/express/.prettierignore", "content": "\n.DS_Store\nnode_modules\n/dist\n/.turbo\n/package\n.env\n.env.*\n!.env.example\n\n# Ignore files for PNPM, NPM and YARN\npnpm-lock.yaml\npackage-lock.json\nyarn.lock\n" }, { "path": "apps/dev/express/README.md", "content": "> The example repository is maintained from a [monorepo](https://github.com/nextauthjs/next-auth/tree/main/apps/examples/express). Pull Requests should be opened against [`nextauthjs/next-auth`](https://github.com/nextauthjs/next-auth).\n\n

\n
\n \n

Auth.js Example App with Express

\n

\n Open Source. Full Stack. Own Your Data.\n

\n

\n \n \"npm\"\n \n \n \"Bundle\n \n \n \"Downloads\"\n \n \n \"TypeScript\"\n \n

\n

\n\n# Documentation\n\n- [express.authjs.dev](https://express.authjs.dev)\n" }, { "path": "apps/dev/express/api/index.js", "content": "import { app } from \"../src/app.js\"\n\nexport default app\n" }, { "path": "apps/dev/express/package.json", "content": "{\n \"name\": \"express-auth-app\",\n \"description\": \"Express + Auth.js Developer app\",\n \"type\": \"module\",\n \"private\": true,\n \"scripts\": {\n \"start\": \"node --env-file=.env dist/server.js\",\n \"clean\": \"rm -rf dist\",\n \"build\": \"pnpm build:ts && pnpm build:css\",\n \"build:ts\": \"tsc\",\n \"build:css\": \"tailwindcss -i ./public/css/style.css -o ./public/css/output.css\",\n \"dev\": \"tsx watch --env-file=.env src/server.ts & pnpm build:css -w\",\n \"lint\": \"eslint src/*.ts --fix\",\n \"prettier\": \"prettier src/*.ts --write\"\n },\n \"author\": \"Auth.js Team (https://authjs.dev/contributors)\",\n \"license\": \"MIT\",\n \"dependencies\": {\n \"@auth/express\": \"workspace:*\",\n \"express\": \"^4.20.0\",\n \"morgan\": \"^1.10.0\",\n \"pug\": \"^3.0.2\"\n },\n \"devDependencies\": {\n \"@prettier/plugin-pug\": \"^3.0.0\",\n \"@types/express\": \"^4.17.21\",\n \"@types/morgan\": \"^1.9.9\",\n \"@types/pug\": \"^2.0.10\",\n \"tsx\": \"^4.7.3\",\n \"typescript\": \"5.4.5\"\n }\n}\n" }, { "path": "apps/dev/express/public/css/style.css", "content": "@tailwind base;\n\n@tailwind components;\n\n@tailwind utilities;\n" }, { "path": "apps/dev/express/src/app.ts", "content": "import express, { type Request, type Response } from \"express\"\nimport logger from \"morgan\"\nimport { join } from \"node:path\"\n\nimport {\n errorHandler,\n errorNotFoundHandler,\n} from \"./middleware/error.middleware.js\"\n\nimport {\n authenticatedUser,\n currentSession,\n} from \"./middleware/auth.middleware.js\"\nimport { ExpressAuth } from \"@auth/express\"\nimport { authConfig } from \"./config/auth.config.js\"\nimport * as pug from \"pug\"\n\nexport const app = express()\n\napp.set(\"port\", process.env.PORT || 3004)\n\n// @ts-expect-error (https://stackoverflow.com/questions/45342307/error-cannot-find-module-pug)\napp.engine(\"pug\", pug.__express)\napp.set(\"views\", join(import.meta.dirname, \"..\", \"views\"))\napp.set(\"view engine\", \"pug\")\n\n// Trust Proxy for Proxies (Heroku, Render.com, Docker behind Nginx, etc)\n// https://stackoverflow.com/questions/40459511/in-express-js-req-protocol-is-not-picking-up-https-for-my-secure-link-it-alwa\napp.set(\"trust proxy\", true)\n\napp.use(logger(\"dev\"))\n\n// Serve static files\n// NB: Uncomment this out if you want Express to serve static files for you vs. using a\n// hosting provider which does so for you (for example through a CDN).\n// app.use(express.static(join(import.meta.dirname, \"..\", \"public\")))\n\n// Parse incoming requests data\napp.use(express.urlencoded({ extended: true }))\napp.use(express.json())\n\n// Set session in res.locals\napp.use(currentSession)\n\n// Set up ExpressAuth to handle authentication\n// IMPORTANT: It is highly encouraged set up rate limiting on this route\napp.use(\"/api/auth/*\", ExpressAuth(authConfig))\n\n// Routes\napp.get(\"/protected\", async (_req: Request, res: Response) => {\n res.render(\"protected\", { session: res.locals.session })\n})\n\napp.get(\n \"/api/protected\",\n authenticatedUser,\n async (_req: Request, res: Response) => {\n res.json(res.locals.session)\n }\n)\n\napp.get(\"/\", async (_req: Request, res: Response) => {\n res.render(\"index\", {\n title: \"Express Auth Example\",\n user: res.locals.session?.user,\n })\n})\n\n// Error handlers\napp.use(errorNotFoundHandler)\napp.use(errorHandler)\n" }, { "path": "apps/dev/express/src/config/auth.config.ts", "content": "import Apple from \"@auth/express/providers/apple\"\nimport Auth0 from \"@auth/express/providers/auth0\"\nimport AzureB2C from \"@auth/express/providers/azure-ad-b2c\"\nimport BoxyHQSAML from \"@auth/express/providers/boxyhq-saml\"\nimport Cognito from \"@auth/express/providers/cognito\"\nimport Coinbase from \"@auth/express/providers/coinbase\"\nimport Discord from \"@auth/express/providers/discord\"\nimport Dropbox from \"@auth/express/providers/dropbox\"\nimport Facebook from \"@auth/express/providers/facebook\"\nimport GitHub from \"@auth/express/providers/github\"\nimport Gitlab from \"@auth/express/providers/gitlab\"\nimport Google from \"@auth/express/providers/google\"\nimport Hubspot from \"@auth/express/providers/hubspot\"\nimport Keycloak from \"@auth/express/providers/keycloak\"\nimport LinkedIn from \"@auth/express/providers/linkedin\"\nimport Netlify from \"@auth/express/providers/netlify\"\nimport Okta from \"@auth/express/providers/okta\"\nimport Passage from \"@auth/express/providers/passage\"\nimport Pinterest from \"@auth/express/providers/pinterest\"\nimport Reddit from \"@auth/express/providers/reddit\"\nimport Slack from \"@auth/express/providers/slack\"\nimport Spotify from \"@auth/express/providers/spotify\"\nimport Twitch from \"@auth/express/providers/twitch\"\nimport Twitter from \"@auth/express/providers/twitter\"\nimport WorkOS from \"@auth/express/providers/workos\"\nimport Zoom from \"@auth/express/providers/zoom\"\n\nexport const authConfig = {\n trustHost: true,\n debug: process.env.NODE_ENV !== \"production\" ? true : false,\n providers: [\n Apple,\n Auth0,\n AzureB2C({\n clientId: process.env.AUTH_AZURE_AD_B2C_ID,\n clientSecret: process.env.AUTH_AZURE_AD_B2C_SECRET,\n issuer: process.env.AUTH_AZURE_AD_B2C_ISSUER,\n }),\n BoxyHQSAML({\n clientId: \"dummy\",\n clientSecret: \"dummy\",\n issuer: process.env.AUTH_BOXYHQ_SAML_ISSUER,\n }),\n Cognito,\n Coinbase,\n Discord,\n Dropbox,\n Facebook,\n GitHub,\n Gitlab,\n Google,\n Hubspot,\n Keycloak,\n LinkedIn,\n Netlify,\n Okta,\n Passage,\n Pinterest,\n Reddit,\n Slack,\n Spotify,\n Twitch,\n Twitter,\n WorkOS({\n connection: process.env.AUTH_WORKOS_CONNECTION!,\n }),\n Zoom,\n ],\n}\n" }, { "path": "apps/dev/express/src/errors.ts", "content": "export class HttpError extends Error {\n status: number\n constructor(status: number, message: string) {\n super(message)\n this.status = status\n }\n}\n\nexport class NotFoundError extends HttpError {\n constructor(message: string, status = 404) {\n super(status, message)\n this.name = \"NotFoundError\"\n }\n}\n" }, { "path": "apps/dev/express/src/middleware/auth.middleware.ts", "content": "import { getSession } from \"@auth/express\"\nimport { authConfig } from \"../config/auth.config.js\"\nimport type { NextFunction, Request, Response } from \"express\"\n\nexport async function authenticatedUser(\n req: Request,\n res: Response,\n next: NextFunction\n) {\n const session = res.locals.session ?? (await getSession(req, authConfig))\n\n res.locals.session = session\n\n if (session) {\n return next()\n }\n\n res.status(400).json({ message: \"Not Authenticated\" })\n}\n\nexport async function currentSession(\n req: Request,\n res: Response,\n next: NextFunction\n) {\n const session = await getSession(req, authConfig)\n res.locals.session = session\n return next()\n}\n" }, { "path": "apps/dev/express/src/middleware/error.middleware.ts", "content": "import type { NextFunction, Request, Response } from \"express\"\nimport { HttpError, NotFoundError } from \"../errors.js\"\n\nexport const errorHandler = (\n err: HttpError | Error,\n _req: Request,\n res: Response,\n _next: NextFunction\n): void => {\n // Render the error page\n res.status((\"status\" in err && err.status) || 500)\n res.render(\"error\", {\n title: \"status\" in err ? err.status : err.name,\n message: err.message,\n })\n}\n\nexport const errorNotFoundHandler = (\n _req: Request,\n _res: Response,\n next: NextFunction\n): void => {\n next(new NotFoundError(\"Not Found\"))\n}\n" }, { "path": "apps/dev/express/src/server.ts", "content": "import { app } from \"./app.js\"\n\nconst port = app.get(\"port\")\n\nconst server = app.listen(port, () => {\n console.log(`Listening on port ${port}`)\n})\n\nexport default server\n" }, { "path": "apps/dev/express/tsconfig.json", "content": "{\n \"compilerOptions\": {\n \"module\": \"NodeNext\",\n \"esModuleInterop\": true,\n \"target\": \"esnext\",\n \"noImplicitAny\": true,\n \"moduleResolution\": \"NodeNext\",\n \"sourceMap\": true,\n \"outDir\": \"dist\",\n \"baseUrl\": \".\",\n \"skipLibCheck\": true,\n \"strict\": true\n },\n \"include\": [\"src/**/*.ts\"],\n \"exclude\": [\"node_modules\"]\n}\n" }, { "path": "apps/dev/express/views/error.pug", "content": "extends layout\n\nblock content\n h1=title\n p=message\n" }, { "path": "apps/dev/express/views/index.pug", "content": "extends layout\n\nblock content\n h1=title\n p\n | This is an example site to demonstrate how to use #{ ' ' }\n a(href=\"https://expressjs.com/\") Express\n | #{ ' ' } with #{ ' ' }\n a(href=\"https://authjs.dev/reference/express\") Express Auth\n |\n | for authentication.\n" }, { "path": "apps/dev/express/views/layout.pug", "content": "doctype html\nhtml\n head\n title=title\n meta(name=\"viewport\" content=\"width=device-width, initial-scale=1.0\")\n body\n div\n div\n if session\n div\n if session.user.image\n img(src=`${session.user.image}` style=\"width:64px;border-radius:50%;\")\n span\n | Signed in as #{ ' ' }\n strong= session.user.email || session.user.name\n a(\n href=\"/api/auth/signout\"\n ) Sign out\n else\n span You are not signed in #{ ' ' }\n a#sign-indiv(\n href=\"/api/auth/signin\"\n ) Sign in\n\n nav\n ul\n li\n a(href=\"/\") Home\n li\n a(href=\"/protected\") Protected\n li\n a(href=\"/api/protected\") Protected (API)\n\n block content\n" }, { "path": "apps/dev/express/views/protected.pug", "content": "extends layout\n\nblock content\n if session\n h1 Protected page\n p\n | This is a protected content. You can access this content because you are\n | signed in.\n p Session expiry: #{ session.expires ? session.expires : '' }\n else\n h1 Access Denied\n p\n | You must be #{ ' ' }\n a(href=\"/api/auth/signin\") signed in\n | #{ ' ' } to view this page\n" }, { "path": "apps/dev/nextjs/.gitignore", "content": "node_modules/\n/test-results/\n/playwright-report/\n/playwright/.cache/\ndbschema/edgeql-js\n" }, { "path": "apps/dev/nextjs/.vscode/settings.json", "content": "{\n \"typescript.tsdk\": \"../../../node_modules/.pnpm/typescript@4.9.4/node_modules/typescript/lib\",\n \"typescript.enablePromptUseWorkspaceTsdk\": true\n}\n" }, { "path": "apps/dev/nextjs/README.md", "content": "# NextAuth.js Development App\n\nThis folder contains a Next.js app using NextAuth.js for local development. See the following section on how to start:\n\n[Setting up local environment\n](https://github.com/nextauthjs/.github/blob/main/CONTRIBUTING.md#setting-up-local-environment)\n" }, { "path": "apps/dev/nextjs/app/api/protected/route.ts", "content": "import { auth } from \"auth\"\nimport { NextResponse } from \"next/server\"\n\nexport const GET = auth(function GET(req) {\n if (req.auth) return NextResponse.json(req.auth)\n return NextResponse.json({ message: \"Not authenticated\" }, { status: 401 })\n})\n" }, { "path": "apps/dev/nextjs/app/auth/[...nextauth]/route.ts", "content": "import { handlers } from \"auth\"\nexport const { GET, POST } = handlers\n\n// export const runtime = \"edge\"\n" }, { "path": "apps/dev/nextjs/app/client.tsx", "content": "\"use client\"\n\nimport { signIn, signOut, useSession } from \"next-auth/react\"\nimport { useRouter } from \"next/navigation\"\n\nexport default function Client() {\n const { data: session, update, status } = useSession()\n const router = useRouter()\n return (\n
\n
\n

Client Component

\n
\n
\n

Session

\n 
\n          {status === \"loading\"\n            ? \"Loading...\"\n            : JSON.stringify(session, null, 2)}\n
\n
\n {session ? (\n <>\n {\n await update({ user: { name: \"Client Fill Murray\" } })\n router.refresh()\n }}\n >\n Update Session - New Name\n \n \n \n ) : (\n <>\n \n {\n await signIn(\"webauthn\", {})\n }}\n >\n Sign in Credentials\n \n \n )}\n
\n
\n
\n )\n}\n" }, { "path": "apps/dev/nextjs/app/dashboard/page.tsx", "content": "export default function Page() {\n return

This page is protected.

\n}\n" }, { "path": "apps/dev/nextjs/app/layout.tsx", "content": "import { auth, signIn, signOut, unstable_update as update } from \"auth\"\nimport Footer from \"components/footer\"\nimport { Header } from \"components/header\"\nimport styles from \"components/header.module.css\"\nimport \"./styles.css\"\nimport { AuthError } from \"next-auth\"\n\nexport default function RootLayout(props: { children: React.ReactNode }) {\n return (\n \n \n \n
{props.children}
\n