2026-03-29 22:29:43 +00:00
|
|
|
import { createClient, type GenericCtx } from '@convex-dev/better-auth';
|
|
|
|
|
import { convex } from '@convex-dev/better-auth/plugins';
|
2026-04-01 18:59:46 +00:00
|
|
|
import { betterAuth, type BetterAuthOptions } from 'better-auth/minimal';
|
|
|
|
|
import { haveIBeenPwned } from 'better-auth/plugins';
|
|
|
|
|
|
2026-03-29 22:29:43 +00:00
|
|
|
import { components } from './_generated/api';
|
|
|
|
|
import { DataModel } from './_generated/dataModel';
|
|
|
|
|
import { query } from './_generated/server';
|
|
|
|
|
import authConfig from './auth.config';
|
|
|
|
|
import authSchema from './betterAuth/schema';
|
2026-04-21 19:37:09 +00:00
|
|
|
import { sendEmail } from './lib/resend';
|
2026-03-29 22:29:43 +00:00
|
|
|
|
|
|
|
|
const siteUrl = process.env.SITE_URL!;
|
|
|
|
|
|
|
|
|
|
export const authComponent = createClient<DataModel, typeof authSchema>(
|
|
|
|
|
components.betterAuth,
|
|
|
|
|
{
|
|
|
|
|
local: {
|
|
|
|
|
schema: authSchema,
|
|
|
|
|
},
|
2026-04-01 18:59:46 +00:00
|
|
|
},
|
2026-03-29 22:29:43 +00:00
|
|
|
);
|
|
|
|
|
|
2026-04-01 18:59:46 +00:00
|
|
|
export const createAuthOptions = (
|
|
|
|
|
ctx: GenericCtx<DataModel>,
|
|
|
|
|
): BetterAuthOptions => {
|
2026-03-29 22:29:43 +00:00
|
|
|
return {
|
|
|
|
|
baseURL: siteUrl,
|
|
|
|
|
database: authComponent.adapter(ctx),
|
|
|
|
|
emailAndPassword: {
|
2026-04-01 18:59:46 +00:00
|
|
|
minPasswordLength: 8,
|
|
|
|
|
maxPasswordLength: 128,
|
|
|
|
|
autoSignIn: true,
|
2026-03-29 22:29:43 +00:00
|
|
|
enabled: true,
|
2026-04-21 19:37:09 +00:00
|
|
|
requireEmailVerification: true,
|
|
|
|
|
sendResetPassword: async ({ user, url }) => {
|
|
|
|
|
void sendEmail({
|
|
|
|
|
to: user.email,
|
|
|
|
|
subject: 'Reset your password',
|
|
|
|
|
html: `<p>Click <a href="${url}">here</a> to reset your password.</p>`,
|
|
|
|
|
});
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
emailVerification: {
|
|
|
|
|
sendOnSignUp: true,
|
|
|
|
|
sendVerificationEmail: async ({ user, url }) => {
|
|
|
|
|
void sendEmail({
|
|
|
|
|
to: user.email,
|
|
|
|
|
subject: 'Verify your email',
|
|
|
|
|
html: `<p>Click <a href="${url}">here</a> to verify your email address.</p>`,
|
|
|
|
|
});
|
|
|
|
|
},
|
2026-03-29 22:29:43 +00:00
|
|
|
},
|
2026-05-14 21:27:23 +00:00
|
|
|
socialProviders: {
|
|
|
|
|
google: {
|
|
|
|
|
clientId: process.env.GOOGLE_CLIENT_ID!,
|
|
|
|
|
clientSecret: process.env.GOOGLE_CLIENT_SECRET!,
|
|
|
|
|
},
|
|
|
|
|
github: {
|
|
|
|
|
clientId: process.env.GITHUB_CLIENT_ID!,
|
|
|
|
|
clientSecret: process.env.GITHUB_CLIENT_SECRET!,
|
|
|
|
|
},
|
|
|
|
|
},
|
2026-04-01 18:59:46 +00:00
|
|
|
plugins: [convex({ authConfig }), haveIBeenPwned()],
|
2026-03-29 22:29:43 +00:00
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
export const createAuth = (ctx: GenericCtx<DataModel>) => {
|
|
|
|
|
return betterAuth(createAuthOptions(ctx));
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
export const getCurrentUser = query({
|
|
|
|
|
args: {},
|
|
|
|
|
handler: async (ctx) => {
|
|
|
|
|
return authComponent.getAuthUser(ctx);
|
|
|
|
|
},
|
|
|
|
|
});
|
