FEAT: added next-auth authentication

Author: anisharaz

apps/web/app/api/auth/[...nextauth]/route.ts

@@ -0,0 +1,2 @@
+import { handlers } from "@/auth"; // Referring to the auth.ts we just created
+export const { GET, POST } = handlers;

apps/web/auth.config.ts

@@ -0,0 +1,27 @@
+import type { NextAuthConfig } from "next-auth";
+import google from "next-auth/providers/google";
+
+export default {
+  providers: [google],
+  trustHost: true,
+  callbacks: {
+    // this function runs on each and every request according to the matcher in middleware file
+    authorized: async ({ auth, request: { nextUrl } }) => {
+      /* 
+        TODO: Uncomment This and add the code to protect routes in the similar way as in the example below
+      */
+      // const isLoggedIn = !!auth?.user;
+      // const isOnUser = nextUrl.pathname.startsWith("/user");
+      // if (isOnUser) {
+      //   if (isLoggedIn) {
+      //     return true;
+      //   }
+      //   return false;
+      // }
+      return true;
+    },
+  },
+  // theme: {
+  //   logo: "/logo.svg",
+  // },
+} satisfies NextAuthConfig;

apps/web/auth.ts

@@ -0,0 +1,15 @@
+import { PrismaAdapter } from "@auth/prisma-adapter";
+import NextAuth from "next-auth";
+import authConfig from "./auth.config";
+import { PG_PRISMA_CLIENT } from "@repo/database";
+export const { handlers, signIn, signOut, auth } = NextAuth({
+  adapter: PrismaAdapter(PG_PRISMA_CLIENT),
+  session: { strategy: "jwt", maxAge: 7 * 24 * 60 * 60 },
+  ...authConfig,
+  // callbacks: {
+  //   // this function determines if the user is allowed to signing or not, it runs before the user is created in the database
+  //   async signIn({ user, account, profile, email, credentials }) {
+  //     return true;
+  //   },
+  // },
+});

apps/web/middleware.ts

@@ -0,0 +1,13 @@
+import NextAuth from "next-auth";
+import authConfig from "./auth.config";
+export const { auth: middleware } = NextAuth(authConfig);
+export const config = {
+  /*
+   * Match all request paths except for the ones starting with:
+   * - api (API routes)
+   * - _next/static (static files)
+   * - _next/image (image optimization files)
+   * - favicon.ico, sitemap.xml, robots.txt (metadata files)
+   */
+  matcher: ["/((?!api|_next/static|_next/image|favicon.ico).*)"],
+};

apps/web/package.json

@@ -9,13 +9,15 @@
     "lint": "next lint"
   },
   "dependencies": {
+    "@auth/prisma-adapter": "^2.7.0",
     "@radix-ui/react-slot": "^1.1.0",
     "@repo/database": "workspace:*",
     "@repo/ui": "workspace:*",
     "class-variance-authority": "^0.7.0",
     "clsx": "^2.1.1",
     "lucide-react": "^0.452.0",
     "next": "14.2.6",
+    "next-auth": "5.0.0-beta.22",
     "react": "18.3.1",
     "react-dom": "18.3.1",
     "tailwind-merge": "^2.5.3",